18 Jul 2025

linux-firmware meta package on Arch Linux

Arch Linux linux-firmware is now a meta package. Its derivative Manjaro renamed it to linux-firmware-meta. The default set covers a wide range of firmwares that may not be applicable to most devices and can be trimmed down.

Remove the meta package, pacman -Rn linux-firmware
Identify device manufacturer, lspci
Remove irrelevant firmware, e.g. if Nvidia device is not installed, pacman -Rns linux-firmware-nvidia
Mark the necessary firmware as explicitly installed, pacman -D --asexplicit $(pacman -Qs -q linux-firmware | sed -z 's|\n| |g')
- This is necessary to avoid removing them when removing orphans.

5 Jul 2025

Defender for Endpoint on Alma

Microsoft Defender for Endpoint now supports Alma, probably requires mdatp at least v101.25042.

3 Apr 2025

CMC 3.37.0 switched to _cmc_summary index

Splunk Cloud Monitoring Console (CMC) app which auto-update itself separately from Splunk Cloud recently switched from “summary” to “_cmc_summary” index in 3.37.0 update released on 27 March 2025. The update broke my custom license monitoring dashboards and alert. Resolved the issue by including the new index.

Update: CMC 3.37.1 update reverts it back to “summary” index to allow for gradual transition.

16 Feb 2025

Opera's built-in adblocker does not support strict blocking

Unlike uBlock Origin, when using ||example.com^ filter in the Opera’s built-in adblocker, it does not block the webpage itself, instead only the secondary resources (e.g. example.com/script.js). This limitation also notably presents in Adblock Plus.

8 Feb 2025

Unable to get SSH host key due to short timeout

Some servers can be a bit slow in responding to host key request, so ssh-keyscan may return empty result when using the default 5 seconds timeout. A workaround is to increase the timeout, ssh-keyscan -T 10 hostname for 10 seconds.

Noticed this issue from host key verification error when mirroring a GitLab repository to an external repository. I could not fix it because I can’t modify the SSH client configuration in GitLab.com to increase ConnectTimeout.

1 Feb 2025

Do not disable Android lockscreen

Disabling the Android lockscreen may cause the display to turn on by itself, either after timeout or power button. Worse, after turning on, it may stay on and does not timeout. I experienced this issue in LineageOS 21 and 22. Apparently, this issue has been around since 17 and another one reported with version 20.

21 Jan 2025

LiquidText network requirement

If your corporate network/proxy has restrictive outbound connection, allow these domains to use LiquidText.

12 Jan 2025

Event 5136 does not record logon time

Every successful logon is recorded in Event 4624 but does not necessarily update the lastLogonTimestamp attribute (nor its human-friendly version LastLogonDate). Even when it gets updated (after ms-DS-Logon-Time-Sync-Interval minus a random percentage of 5 has passed), Event 5136 (a directory service object was modified) will not capture it.

7 Oct 2024

Image resizing/transformation in Cloudflare Pages Functions

Cloudflare Pages Functions does not support Cloudflare Images resizing/transformation either directly or through a Worker via service binding. Instead, fetch() from a Worker through a route.

24 Sep 2024

Splunk Connect for Syslog

In Splunk Connect for Syslog (SC4S), SC4S_DEST_GLOBAL_ALTERNATES has been deprecated since version 2. Instead, enable SC4S_ARCHIVE_GLOBAL which stores a copy of events locally, not only for archiving (if that’s what you intend) but also useful for troubleshooting dropped events.

If compliance_meta_by_source.conf is not working, you may have to create a custom post-filter in “/opt/sc4s/local/config/filters/“ instead.