Knowledge Base

The code:

update_xml_element() {
   # usage: parent="/toplevelobject" element="internalid" value="12341234" infile=./foo.xml _insert_xml_element
   _parent="${parent:-${1}}" ; _parent="${_parent%%/}"
   _element="${element:-${2}}"
   _value="${value:-${3}}"
   _infile="${infile:-${4}}"
   # example: xmlstarlet edit --update "/toplevelobject/internalid" --value "if-updated" --subnode "/toplevelobject[not(internalid)]" --type elem -n "internalid" --value "if-inserted"
   xmlstarlet edit --inplace --update "${_parent}/${_element}" --value "${_value}" --subnode "${_parent}[not(${_element})]" --type elem -n "${_element}" --value "${_value}" "${_infile}"
}

So then you just call this function, and it adds the correct element. I haven't needed to customize attributes of elements yet.

infile=input.xml parent="/episodedetails" element="episodenumber" value="4" update_xml_element

References

1. xmlstarlet update attribute value if it exists or create a line with the attribute - Stack Overflow
2. xml - xmlstarlet: create an attribute if it does not exist and edit it otherwise - Stack Overflow

This is a rewritten version of an old post: apt/preferences.d: A Useful Example with a focus on what syntax it replaced.

I used to use apt-mark hold to control packages that I wanted to pin. For example, zenity now uses gtk4 so I

But before I got that epoch part added, I marked the package.

apt-mark hold zenity

But I never found where this information was stored, and I prefer to have files that configure my apps rather than online commands only. I bet it was in /var/lib somewhere I never found.

You could at least show holds, and unhold items.

apt-mark showhold
apt-mark unhold zenity

Anyway, so to make the process so I can deploy a file to control this, I made a file: /etc/apt/preferences.d/zenity

Package: zenity
Version: 3.44.2-1
Pin: release
Pin-Priority: 600
Package: zenity-common
Version: 3.44.2-1
Pin: release
Pin-Priority: 600

The pin priority is higher than the default 500 for installed and installable packages. Of course if you've started tweaking these numbers for specific repositories but you still want this preference to have priority, you can adjust the numbers.

Later on, I built a copy of the last gtk3-based one for myself, with a package epoch (the number prepending a colon and then the regular version number) so it always has top priority version-wise. So I didn't need any of this anymore. But for anyone who doesn't want to rebuild a whole package, use this method I just described.

I use two different main Bible programs on my mobile device (with apologies to a random dude I follow):

• BibleTimeMini (from Play Store but not visible now?)
• AndBible: Bible Study (on F-droid) (source)

Both of these are SWORD project clients, which means they can use the mostly-open-source Bible contents and distribution mechanisms to get more content.

While I grew up reading the King James Version (KJV), aka Authorized Version (AV), of the Holy Bible, I now primarily use the English Standard Version (ESV). I also am interested in a few other translations, and both of these programs let you download and use and switch between multiple versions. In addition to other Bible texts, there are commentaries, dictionaries, and other types of mostly-print media available as modules to the SWORD project.

Because of BibleTimeMini's disappearance ¹ from the Play Store, I started researching presently-available Bible apps for mobile devices, starting in the free-software F-Droid app store, and found AndBible.

Each app has a different-generation mobile UI to navigate. I like the traditional view of BibleTimeMini, but I guess I'm getting used to the Material Design/modernness of AndBible.

BibleTimeMini would download additional modules to my visible internal storage, at /.sword/, so it was easy for me to manually manipulate the modules (i.e., back them up with other means). AndBible stores them... somewhere, that I haven't found. I found that frustrating. However, AndBible supports custom web repositories for modules (and you know how much I love repositories, so it's not too hard to get custom selections available as kind of a reverse-backup.

I much prefer the book-and-chapter navigation of BibleTimeMini, but I fear that AndBible is the only one to be available on the web in the long term, so I'm trying to get used to AndBible. I have backed up the apk of BibleTimeMini though, just like I partially mirror F-droid's repository.

Basically, I like carrying the Word of God in my pocket ², in all the various translations I care about, alongside all the electronic conveniences I would have in my pocket already anyways. And these two apps both do the job. And they're both FLOSS!

To request a certificate with the exact Microsoft OID for Client Auth certs for the domain, you can use an openssl.cnf that resembles the following.

This also includes the SAN URI which is separate from the NTCS.

files/2024/listings/openssl.cnf (Source)

References

Weblinks

1. [MS-WCCE]: szOID_NTDS_CA_SECURITY_EXT | Microsoft Learn
2. x509 - Create own ASN.1 module for custom extension in OpenSSL command line tools - Stack Overflow
3. /docs/man1.1.1/man3/ASN1_generate_nconf.html
4. is it possible making openssl skipping the country/common name prompts? - Stack Overflow
5. Preview of SAN URI for Certificate Strong Mapping for KB5014754 - Microsoft Community Hub
6. KB5014754: Certificate-based authentication changes on Windows domain controllers - Microsoft Support
7. certreq | Microsoft Learn

Auxiliary

1. Manually injecting a SID in a certificate – Q&D Security
2. Generate-ServerCertificate.ps1

I received an email with an attached pdf. This pdf was password-protected (encrypted). Atril thankfully can read those, but I didn't know how to view the file attached to the pdf. (Yes, I know, attached inside an attachment; I wasn't in control of the sender.)

Besides, who wants to use a graphical environment when a cli will do?

qpdf input.pdf output.pdf --decrypt --password='passphrasehere'
mkdir -p outdir
pdftk output.pdf unpack_files output outdir

Old research

My old solution involved pdftk and pdfdetach and for some reason I was failing to read the pdf correctly with pdftk.

pdftk inputfile.pdf input_pw 'passphrasehere' outputfile.pdf
pdfdetach -upw 'passphrasehere' -saveall inputfile.pdf

References

1. How to Remove a Password from a PDF File in Linux
2. Open a pdf with blank password with pdftk - Stack Overflow

I heavily adapted a unicode chart I found somewhere for my own needs. I show the hexadecimal, decimal, and vim digraph values for some characters I use occasionally. I miss the ALT+157 alt codes, but they were from my old non-free OS days when you didn't want to load up charmap.exe. If I had any environments around like that, I'd bother to add those here too.

<html lang="en">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=us-ascii">
<link rel=stylesheet type="text/css" href="general-info.css">
<meta name="description" content="Lists all Unicode characters">
<meta name="keywords" content="character code">
<style type="text/css">
</style>
<title>Abbreviated Unicode Table</title>
</head>
<body>
<hr class=hf>
<h2>Useful Unicode Table</h2>
<p><table cellspacing=0 cellpadding=2 border=0><tr>
<td>
<table cellspacing=0 cellpadding=2 border=1 bordercolor="#88DD44">
<tr><th>Name</th><th>Html Symbol</th><th>Raw character</th><th>hex</th><th>dec</th><th>vim digraph</th></tr>
<tr><td>Cent</td>       <td>&#x00A2;</td><td>¢</td><td>00A2</td><td>162</td> <td>Ct</td></tr>
<tr><td>Yen</td>        <td>&#x00A5;</td><td>¥</td><td>00A5</td><td>165</td> <td>Ye</td></tr>
<tr><td>Section</td>    <td>&#x00A7;</td><td>§</td><td>00A7</td><td>167</td> <td>SE</td></tr>
<tr><td>Degrees</td>    <td>&#x00B0;</td><td>°</td><td>00B0</td><td>176</td> <td>DG</td></tr>
<tr><td>Euro</td>       <td>&#x20AC;</td><td>€</td><td>20AC</td><td>8364</td><td>Eu or =e</td></tr>
<tr><td>Square root</td><td>&#x221A;</td><td>√</td><td>221A</td><td>8730</td><td>RT</td></tr>
</table>
</body>
<footer>
<h4>References</h4>
vim <em>:help digraph</em>
</footer>
</html>

A screenshot of it rendered on my system.

Provided by a coworker, who got it from somewhere on the Internet that I cannot source correctly:

function Use-Culture
{
   param(
      [Parameter(Mandatory)][CultureInfo]$Culture,
      [Parameter(Mandatory)][ScriptBlock]$ScriptBlock
   )
   # Note: In Windows 10, a culture-info object can be created from *any* string.
   #        However, an identifier that does't refer to a *predefined* culture is
   #        reflected in .LCID containing 4096 (0x1000)
   if ($Culture.LCID -eq 4096) { Throw "Unrecognized culture: $($Culture.DisplayName)" }
   # Save the current culture / UI culture values.
   $PrevCultures = [Threading.Thread]::CurrentThread.CurrentCulture, [Threading.Thread]::CurrentThread.CurrentUICulture
   try {
      # (Temporarily) set the culture and UI culture for the current thread.
      [Threading.Thread]::CurrentThread.CurrentCulture = [Threading.Thread]::CurrentThread.CurrentUICulture = $Culture
      # Now invoke the given code.
   & $ScriptBlock
   }
   finally {
      # Restore the previous culture / UI culture values.
      [Threading.Thread]::CurrentThread.CurrentCulture = $PrevCultures[0]
      [Threading.Thread]::CurrentThread.CurrentUICulture = $PrevCultures[1]
   }
}

You would use it in something like this:

Use-Culture -Culture en-US -ScriptBlock { Get-AdUserPasswordExpiration -Identity bgstack15 }

This might have been adapted from Windows PowerShell 2.0 String Localization | Keith Hill's Blog