Jitdor Tech Tips – Decoding Tech, One Tip at a Time

The Diesel Triple-Whammy: Why the Singapore Car Tax System is Officially Broken

I’ve reached my limit with the automotive landscape in Singapore. If you follow this blog, you know I appreciate engineering—whether it’s a cinema camera or a well-tuned engine. But right now, the logic behind our vehicle taxation feels less like “policy” and more like a targeted shakedown.

The “Special Tax” Ghost

Let’s talk about the Diesel Special Tax. For those who don’t drive diesel, here’s the history lesson: This tax was originally implemented to “compensate” for the fact that diesel wasn’t taxed at the pump. It was a lump-sum way for the government to get their cut since diesel was traditionally seen as a “commercial” fuel.

Then, years ago, they introduced a Diesel Duty at the pump (currently around $0.20 per litre). Logic would dictate that once you start taxing the fuel at the source, the “Special Tax” (the one meant to replace the fuel tax) should vanish.

Spoiler alert: It didn’t. So now, diesel car owners are effectively double-taxed. We pay at the pump like everyone else, and then we get hit with a “Special Tax” invoice every six months just for the privilege of owning a high-torque, efficient engine.

The Great Price Flip: Diesel is the New “Premium”

If double taxation wasn’t enough, look at the boards at any Shell or Caltex today. Diesel is currently retailing at approximately $4.68 per litre. That is significantly more expensive than even 98-octane premium petrol.

The old justification for the Special Tax was: “Diesel is cheaper, so you pay more in road tax to balance it out.” That argument is now dead. I am paying more at the pump, paying the fuel duty, AND paying the Special Tax. It’s a triple penalty that defies economic logic.

Cleaner Than Your Petrol Car?

The biggest irony? My car is Euro 6 compliant.

In any rational world, Euro 6 diesel engines are engineering marvels. Thanks to AdBlue (Selective Catalytic Reduction) and Particulate Filters, these engines often produce lower CO2 emissions and comparable NOx levels to their petrol counterparts. Yet, the tax structure treats us like we’re driving 1980s smoke-belchers. We’re being penalized for choosing a more efficient, high-tech powertrain that actually aligns with “green” goals.

The $121,000 Elephant in the Room

And then we have the latest COE results. $121,000 for Category B. Let that sink in. Before you even buy the four wheels, the seats, or the engine, you are paying over six figures just for a piece of paper that says you can park it in your driveway. We are now at a point where the COE alone costs more than a luxury sedan in almost any other country on Earth.

When you combine a $120k+ COE with a diesel regime that ignores both environmental science and current fuel market realities, the message from the authorities is loud and clear: We don’t care if the math doesn’t add up. Just pay.

It’s getting harder to justify the “passion for driving” when the system is designed to bleed you dry at every turn—from the bidding booth to the petrol station, all the way to the LTA tax portal.

What do you guys think? Is it time to give up on the diesel dream, or is the whole system just fundamentally broken? Let me know in the comments.

9 Apr 2026

Save More on Etiqa Insurance — Use My Referral Code!

I recently renewed my car insurance with Etiqa (Tiq by Etiqa) — and honestly, the experience was one of the smoother ones I’ve had. They were proactive in reminding me about renewal, offered clear quotes, followed up via calls and email, and made payment super easy.

The only thing that could be better? After payment, the new coverage period doesn’t auto-extend on the portal like a subscription service would. Still, it’s a small detail in an otherwise convenient process.

If you’re planning to get insured or renew your policy, here’s a tip — use my referral code below for extra savings.

My Etiqa Referral Code

👉 Referral Link: R426296

Visit Etiqa Singapore and enter it during your purchase or renewal to enjoy your reward!

Referral Benefits

Here’s what both of us get when you use my code:

Product	You (Friend)	Me (Referral Fee)
Tiq Travel Insurance	5% discount	S$10
Private Car Insurance	5% discount	S$30
ePROTECT Motorcycle	5% discount	S$20
Tiq Maid Insurance	5% discount	S$30
Tiq Personal Accident	5% discount	S$20
Pet Insurance	5% discount	S$20
Tiq Home Insurance	5% discount	S$15

Why I Recommend Etiqa

Smooth renewal experience — reminders, calls, and easy payment.
Responsive customer support that follows up promptly.
Digital-first experience — get quotes, pay, and manage policies online.
Referral perks — real rewards for both parties.

I’ve used Etiqa for my own coverage, and I find them one of the most customer-friendly insurers in Singapore.

12 Nov 2025

Sync Your Tampermonkey Userscripts to iCloud on macOS

Tampermonkey is a popular userscript manager, but Microsoft Edge does not sync your installed scripts across Macs. By default, only the extension itself is synced via your Microsoft account. Fortunately, with a small trick using iCloud Drive and symbolic links, you can keep your Tampermonkey scripts in sync between multiple Macs.

Pages: 1 2

16 Oct 2025
在 Debian 系统中开启自动安全更新（Auto Patching）
在 Ubuntu 系统中，很多人习惯使用 Ubuntu Pro 或 Livepatch 来获得自动安全更新。但在 Debian 系统里，并没有完全一样的官方服务。不过，Debian 提供了一个非常成熟的工具 —— unattended-upgrades，可以帮助我们实现类似的功能：自动安装安全补丁，减少手动维护的工作量。

下面就带大家一步一步开启 Debian 的自动安全更新。

一、为什么要启用自动更新？
- 提高安全性：Debian 的安全团队会不断发布安全补丁，修复漏洞。如果不及时更新，系统可能暴露在攻击风险中。
- 降低维护成本：自动下载并安装更新，管理员无需每天手动运行 apt upgrade。
- 稳定性可控：通过配置，可以只允许「安全更新」自动安装，避免大版本升级导致兼容性问题。
二、安装必要的组件

Debian 默认自带 unattended-upgrades 包，如果没有，可以手动安装：
```
sudo apt update
sudo apt install unattended-upgrades apt-listchanges
```
- unattended-upgrades：负责自动下载和安装更新
- apt-listchanges：在更新前显示 changelog（可选）
三、启用自动更新

运行配置命令：
```
sudo dpkg-reconfigure unattended-upgrades
```
选择 Yes 之后，系统会自动在 /etc/apt/apt.conf.d/20auto-upgrades 中写入默认配置，例如：
```
APT::Periodic::Update-Package-Lists "1";
APT::Periodic::Download-Upgradeable-Packages "1";
APT::Periodic::AutocleanInterval "7";
APT::Periodic::Unattended-Upgrade "1";
```
这里的数字代表天数：
- 1 = 每天
- 7 = 每周一次
Pages: 1 2
12 Oct 2025
Keeping FRP Up to Date with a One-Line Script
If you run reverse proxies or tunneling setups on your homelab or servers, chances are you’ve come across FRP (Fast Reverse Proxy). It’s an open-source project that makes it easy to expose services behind NAT/firewalls via a client (frpc) and a server (frps).

The project is very active, and new releases roll out often. But keeping your binaries (/usr/local/bin/frps, /usr/local/bin/frpc) updated across multiple servers can be a hassle — especially if you’re running them under systemd instances like [email protected], [email protected], etc.

To solve that, here’s a simple script you can drop into /usr/local/bin/frp-update. It will:
- Check the latest release on GitHub
- Compare against your currently installed version (frpc first, then frps)
- Download and install the new binaries if needed
- Leave your running services untouched (you can restart them manually when ready)
Pages: 1 2
30 Sep 2025
Upgrading VMware ESXi via ESXCLI
We can upgrade our existing ESXi host using the command line. I would recommend doing it over SSH since it would allow better cut-and-paste operations, but the web prompt would work equally well.

The latest version at the time of writing is 8.0U1a, which is identified by the image name ESXi-8.0U1a-21813344. The commands to upgrade your ESXi host using the standard profile would therefore be:
```
esxcli network firewall ruleset set -e true -r httpClient

esxcli software profile update -d https://hostupdate.vmware.com/software/VUM/PRODUCTION/main/vmw-depot-index.xml -p ESXi-8.0U1a-21813344-standard
```
After a few minutes, the command line upgrade will show “The update completed successfully.” You will also see the recommended action “Reboot Required: true” being displayed.
21 Aug 2023
Fix: NO_PUBKEY error when installing ookla/speedtest-cli on Debian 11
You’re here probably because you tried to use install the official Ookla Speedtest client in Linux, and failed. When you do an apt update you will be presented with the following error:
```
W: GPG error: https://packagecloud.io/ookla/speedtest-cli/debian bullseye InRelease: The following signatures couldn't be verified because the public key is not available: NO_PUBKEY 8E61C2AB9A6D1557
E: The repository 'https://packagecloud.io/ookla/speedtest-cli/debian bullseye InRelease' is not signed.
N: Updating from such a repository can't be done securely, and is therefore disabled by default.
```
This happens because, unfortunately, the installation script did not put the public cert that is used to verify the signature of the repository at the correct place, when you’re running Debian Bullseye.

To fix this issue, first create an empty folder (if it isn’t already there), and make sure it has read and execute access for everyone and also write access for the owner (aka 0755):
```
mkdir -p /etc/apt/keyrings
chmod 755 /etc/apt/keyrings
```
Then add the GPG public key to the newly-created folder:
```
curl -fsSL https://packagecloud.io/ookla/speedtest-cli/gpgkey | gpg --dearmor > /etc/apt/keyrings/ookla_speedtest-cli-archive-keyring.gpg
```
Note that /etc/apt/keyrings/ookla_speedtest-cli-archive-keyring.gpg is actually specified in the repository file, /etc/apt/sources.list.d/ookla_speedtest-cli.list. If you have saved the .gpg file in a different name, be sure to also modify the references in the .list file.
14 Jul 2022
CoinTickr Setup Guide
Finally received my Kickstarter-backed CoinTickr, onlyt to realize it doesn’t come with a user manual, even though the packaging clearly states otherwise. The QR code teleports you to the cointickr.io site, with no sight of setup instructions besides a ton of marketing stuff on its Indiegogo campaign right now, which is lame.

Fortunately, for someone with an immense number of IoT devices, it ain’t rocket science to figure it out. I’m putting together a quick guide so that you can get yours up and running in a jiffy.

Nope, that User Manual bullet point is a blatant lie
1. If you see BTC/USDT 88,888, the device should already be broadcasting a Wi-Fi network named Coinstats. It is a 2.4Ghz network that can be joined without password. Get on that network with your mobile device or laptop. If you are not seeing this network, try a different device, or long press the top button on the CoinTickr to enter configuration mode. If you are using your mobile phone, it would help to temporarily disable your mobile internet.
2. You should be assigned an IP from the 10.10.0.0/24 subnet. Your device is likely to prompt you “no internet”, which is ok.
3. Fire up your browser of choice, and key in http://10.10.0.2 in the address bar.
4. You will be presented with the admin page.
5. Pick your Wi-Fi network from the list (2.4Ghz only!) and supply the password. Key in the coin/fiat pair and hit the Save Changes button.
6. You’re all set!
7. The Coinstats Wi-Fi will be disabled at this point and if you want to update the settings in the future, simply long-press the top button and repeat step 3-5.
2 Jun 2022
HEVC Video Extensions for Windows 11, free from Microsoft Store

If you have installed a fresh copy of Windows and attempted to play an H.265-encoded 4K UHD movie file, chances are you will be prompted to purchase this HEVC extension for S$1.50.

However, there is actually a free version of this extension that is not searchable from the Microsoft Store.

You’re welcome.

27 Feb 2022
Setting up Cloudflared, the DNS-over-HTTPS client, the correct way

DNS over HTTPS (DoH) is a protocol for performing remote Domain Name System (DNS) resolution via the HTTPS protocol, which prevents eavesdropping and manipulation of DNS data by man-in-the-middle attacks by employing HTTPS encryptions between the DoH client and the DoH-based DNS resolver. At the time of writing, the official guide at Cloudflare is broken, as the cloudflared service install command would fail to complete. This article walks you through the process of setting up DoH on your Debian 10 system.

Pages: 1 2

30 Nov 2020