DEV Community: Mitch Jackson The latest articles on DEV Community by Mitch Jackson (@mjac). https://dev.to/mjac https://media2.dev.to/dynamic/image/width=90,height=90,fit=cover,gravity=auto,format=auto/https:%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Fuser%2Fprofile_image%2F64757%2Fa360303c-8745-4c09-8133-a59d16a1fbf7.jpg DEV Community: Mitch Jackson https://dev.to/mjac en csh - simple helper for urxvt Mitch Jackson Mon, 04 May 2020 21:54:00 +0000 https://dev.to/mjac/csh-simple-helper-for-urxvt-1jdh https://dev.to/mjac/csh-simple-helper-for-urxvt-1jdh <p>This shell script provides quick SSH shortcuts, and displays a configurable terminal background color while connected.</p> <p><code>!/bin/csh</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#!/bin/bash</span> <span class="c">#</span> <span class="c"># cssh: Color SSH helper</span> <span class="c">#</span> <span class="c"># Author: Mitch Jackson &lt;mitch@mitchjacksontech.com</span> <span class="c"># Copyright: </span> <span class="c">#</span> <span class="c"># Set the terminal background color and transparency before</span> <span class="c"># making an SSH connection, then resets them when the connection closes</span> <span class="c">#</span> <span class="c"># Allows for configuring different background colors per host,</span> <span class="c"># along with connetion aliases</span> <span class="c"># background color and opacity value to use during the session</span> <span class="nv">CONN_BGCOLOR</span><span class="o">=</span><span class="s2">"#330000"</span> <span class="nv">CONN_OPACITY</span><span class="o">=</span>85 <span class="c"># background color and opacity to return to after the session ends</span> <span class="nv">EXIT_BGCOLOR</span><span class="o">=</span><span class="s2">"#000000"</span> <span class="nv">EXIT_OPACITY</span><span class="o">=</span>70 <span class="c"># Connection Definitions:</span> <span class="c">#</span> <span class="c"># Define a shortname for each connection below</span> <span class="k">case</span> <span class="nv">$1</span> <span class="k">in </span>box1<span class="p">)</span> <span class="nv">SSH_HOST</span><span class="o">=</span><span class="s2">"box1.lion.land"</span> <span class="p">;;</span> box2<span class="p">)</span> <span class="nv">SSH_HOST</span><span class="o">=</span><span class="s2">"10.0.0.2"</span> <span class="nv">CONN_BGCOLOR</span><span class="o">=</span><span class="s2">"#002200"</span> <span class="p">;;</span> <span class="k">*</span><span class="p">)</span> <span class="c"># Catch-all</span> <span class="nv">SSH_HOST</span><span class="o">=</span><span class="s2">"</span><span class="nv">$1</span><span class="s2">"</span> <span class="nv">CONN_BGCOLOR</span><span class="o">=</span><span class="s2">"#000333"</span> <span class="p">;;</span> <span class="k">esac</span> <span class="nb">printf</span> <span class="s1">'\33]11;%s\007'</span> <span class="s2">"[</span><span class="nv">$CONN_OPACITY</span><span class="s2">]</span><span class="nv">$CONN_BGCOLOR</span><span class="s2">"</span> <span class="nb">command </span>ssh <span class="nv">$SSH_HOST</span> <span class="nv">$2</span> <span class="nv">$3</span> <span class="nv">$4</span> <span class="nb">printf</span> <span class="s1">'\33]11;%s\007'</span> <span class="s2">"[</span><span class="nv">$EXIT_OPACITY</span><span class="s2">]</span><span class="nv">$EXIT_BGCOLOR</span><span class="s2">"</span> </code></pre> </div> <p>Also, a simple script to set the terminal background color and opacity at any time</p> <p><code>!/bin/tglow</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c">#!/bin/bash</span> <span class="c">#</span> <span class="c"># tglow: Set terminal background and opacity</span> <span class="c">#</span> <span class="c"># Author: Mitch Jackson &lt;mitch@mitchjacksontech.com</span> <span class="c"># Copyright: Nope</span> <span class="k">function </span>usage<span class="o">()</span> <span class="o">{</span> <span class="nb">echo echo</span> <span class="s2">"tglow: set terminal background and opacity"</span> <span class="nb">echo echo</span> <span class="s2">" usage: tglow 30 green"</span> <span class="nb">echo</span> <span class="s2">" tglow 95 </span><span class="se">\"</span><span class="s2">#333000</span><span class="se">\"</span><span class="s2">"</span> <span class="nb">echo exit </span>1 <span class="o">}</span> <span class="k">if</span> <span class="o">[[</span> <span class="nt">-z</span> <span class="s2">"</span><span class="nv">$1</span><span class="s2">"</span> <span class="o">]]</span> <span class="o">||</span> <span class="o">[[</span> <span class="nt">-z</span> <span class="s2">"</span><span class="k">${</span><span class="nv">2</span><span class="p">+x</span><span class="k">}</span><span class="s2">"</span> <span class="o">]]</span><span class="p">;</span> <span class="k">then </span>usage <span class="k">fi </span><span class="nb">printf</span> <span class="s1">'\33]11;%s\007'</span> <span class="s2">"[</span><span class="nv">$1</span><span class="s2">]</span><span class="nv">$2</span><span class="s2">"</span> </code></pre> </div> <p><a href="https://media.dev.to/cdn-cgi/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fi%2Frd0qy5cdznevm1xm3mlg.png" class="article-body-image-wrapper"><img src="https://media.dev.to/cdn-cgi/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fi%2Frd0qy5cdznevm1xm3mlg.png" alt="Alt Text" width="800" height="337"></a></p> urxvt linux Perl 5.30 deprecates use of my() in a false conditional Mitch Jackson Mon, 10 Jun 2019 18:08:23 +0000 https://dev.to/mjac/perl-5-30-deprecates-use-of-my-in-a-false-conditional-55bg https://dev.to/mjac/perl-5-30-deprecates-use-of-my-in-a-false-conditional-55bg <p>Perl 5.30.0 is released (<a href="https://metacpan.org/pod/release/XSAWYERX/perl-5.30.0/pod/perldelta.pod" rel="noopener noreferrer">changelog</a>). With it comes a breaking change for me. It has been a long time since I've faced a breaking change with perl.</p> <p><a href="https://metacpan.org/pod/distribution/perl/pod/perldiag.pod#Deprecated-use-of-my()-in-false-conditional.-This-will-be-a-fatal-error-in-Perl-5.30" rel="noopener noreferrer">Deprecated use of my() in false conditional</a>.</p> <p>I have been using this deprecated syntax liberally like so:<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="c1"># This syntax generates a fatal error in perl 5.30</span> <span class="c1">#</span> <span class="c1"># Initialize $foo</span> <span class="c1"># If $bar tests true, $foo = 'foobar'</span> <span class="c1"># If $bar tests false, $foo = undef</span> <span class="k">my</span> <span class="nv">$foo</span> <span class="o">=</span> <span class="p">'</span><span class="s1">foobar</span><span class="p">'</span> <span class="k">if</span> <span class="nv">$bar</span><span class="p">;</span> </code></pre> </div> <blockquote> <p>There has been a long-standing bug in Perl that causes a lexical variable not to be cleared at scope exit when its declaration includes a false conditional.</p> </blockquote> <p>This could make for interesting bugs. The scoped variable declared this way may unexpectedly persist data!<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="c1"># Use this instead</span> <span class="k">my</span> <span class="nv">$foo</span><span class="p">;</span> <span class="k">if</span> <span class="p">(</span> <span class="nv">$bar</span> <span class="p">)</span> <span class="p">{</span> <span class="nv">$foo</span> <span class="o">=</span> <span class="p">'</span><span class="s1">foobar</span><span class="p">';</span> <span class="p">}</span> <span class="c1"># Or this</span> <span class="k">my</span> <span class="nv">$foo</span><span class="p">;</span> <span class="nv">$foo</span> <span class="o">=</span> <span class="p">'</span><span class="s1">foobar</span><span class="p">'</span> <span class="k">if</span> <span class="nv">$bar</span><span class="p">;</span> </code></pre> </div> <p>According to <a href="https://rt.perl.org/Public/Bug/Display.html?id=133543#txn-1599917" rel="noopener noreferrer">RT# 133543</a>, the deprecation will not always be triggered with this syntax! Therefore, I feel I can't trust a run of a test suite under 5.30 to identify all the offending code statements.</p> <p>Is anybody else surprised to learn this declaration pattern is problematic?</p> perl deprecated How Do You Decide to Plunge Into a Startup? Mitch Jackson Tue, 17 Jul 2018 06:13:53 +0000 https://dev.to/mjac/how-do-you-decide-to-plunge-into-a-startup-2njp https://dev.to/mjac/how-do-you-decide-to-plunge-into-a-startup-2njp <p>I'm confident in the product. What other factors should I consider before giving significant time and resources into a startup as a minority owner with a majority share of the software/hardware development?</p> <p>That familiar place we all arrive at as developers: <strong>Let's make a business out of this!</strong> It is often an educational time sink. You learn just how reliably yourself and your friends will work without pay to chase a dream.</p> <p>I'm facing this question again! My friend, the CEO of a long-standing non-profit, made a software wish while we played board games on Thanksgiving. <strong>Hold my beer...</strong> Several months later, as a volunteer, I've rewritten large parts of their infrastructure, built and integrated custom hardware deployments based on small board computers, and provided whiz-bang new features that were a first for their market. There was much rejoicing. I sacrificed into my day-job billable hours more than I want to admit to make this happen.</p> <p>Now somebody else in the same space wants the same capability, and they're shopping vendors.</p> <p>The product is not just a website. There is hardware/software integration. Significant business integration. As well as live event support. Somebody would have to travel several countries supporting installations and providing training. That person would NOT be me.</p> <p>Everybody involved in the company would be working in "side-job" capacity. There's not enough money in the beginning to support full time employees.</p> <p>What factors would YOU consider before deciding to join with such a company? What steps would you make early, as the business is structured, to realize both success and a good financial position?</p> advice discuss business SMS Notifications with Perl and Twilio Mitch Jackson Thu, 14 Jun 2018 06:11:39 +0000 https://dev.to/mjac/sms-notifications-with-perl-and-twilio-1lbi https://dev.to/mjac/sms-notifications-with-perl-and-twilio-1lbi <p><a href="https://twilio.com" rel="noopener noreferrer">Twilio</a> is beyond useful, and easy to integrate. It's one of those tools that, once you get started, you just can't stop using it. You can add SMS Notifications and password resets to your existing application in an afternoon.</p> <p>I see several examples of Twilio usage on dev.to. But of course, none for Perl, until now.</p> <h2> First, the entire simple program: </h2> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="c1">#!/usr/bin/env perl</span> <span class="k">use</span> <span class="nv">v5</span><span class="mf">.10</span><span class="p">;</span> <span class="k">use</span> <span class="nv">strict</span><span class="p">;</span> <span class="k">use</span> <span class="nv">warnings</span><span class="p">;</span> <span class="k">use</span> <span class="nn">LWP::</span><span class="nv">UserAgent</span><span class="p">;</span> <span class="k">my</span> <span class="nv">%text_message</span> <span class="o">=</span> <span class="p">(</span> <span class="s">From</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">12513001300</span><span class="p">',</span> <span class="c1"># Me</span> <span class="s">To</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">16198675309</span><span class="p">',</span> <span class="c1"># Jenny</span> <span class="s">Body</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">Thank you for being a friend! Travel down the road and back again!</span><span class="p">'</span> <span class="p">);</span> <span class="k">my</span> <span class="nv">%credentials</span> <span class="o">=</span> <span class="p">(</span> <span class="s">account_id</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">____YOUR_ACCOUNT_SID_GOES_HERE____</span><span class="p">',</span> <span class="s">auth_token</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">____YOUR_AUTH_TOKEN_GOES_HERE____</span><span class="p">',</span> <span class="p">);</span> <span class="k">my</span> <span class="nv">%twilio</span> <span class="o">=</span> <span class="p">(</span> <span class="c1"># HTTP Authentication</span> <span class="s">api_domain</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">api.twilio.com:443</span><span class="p">',</span> <span class="s">api_realm</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">Twilio API</span><span class="p">',</span> <span class="c1"># Keep your line length within 80 characters please!</span> <span class="s">api_url</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">https://api.twilio.com/2010-04-01/Accounts/</span><span class="p">'</span> <span class="o">.</span> <span class="nv">$credentials</span><span class="p">{</span><span class="nv">account_id</span><span class="p">}</span> <span class="o">.</span> <span class="p">'</span><span class="s1">/Messages</span><span class="p">'</span> <span class="p">);</span> <span class="k">my</span> <span class="nv">$ua</span> <span class="o">=</span> <span class="nn">LWP::</span><span class="nv">UserAgent</span><span class="o">-&gt;</span><span class="k">new</span><span class="p">;</span> <span class="nv">$ua</span><span class="o">-&gt;</span><span class="nv">credentials</span><span class="p">(</span> <span class="nv">$twilio</span><span class="p">{</span><span class="nv">api_domain</span><span class="p">},</span> <span class="nv">$twilio</span><span class="p">{</span><span class="nv">api_realm</span><span class="p">},</span> <span class="nv">$credentials</span><span class="p">{</span><span class="nv">account_id</span><span class="p">},</span> <span class="nv">$credentials</span><span class="p">{</span><span class="nv">auth_token</span><span class="p">}</span> <span class="p">);</span> <span class="k">my</span> <span class="nv">$response</span> <span class="o">=</span> <span class="nv">$ua</span><span class="o">-&gt;</span><span class="nv">post</span><span class="p">(</span> <span class="nv">$twilio</span><span class="p">{</span><span class="nv">api_url</span><span class="p">},</span> <span class="o">\</span><span class="nv">%text_message</span> <span class="p">);</span> <span class="nv">say</span> <span class="nv">$response</span><span class="o">-&gt;</span><span class="nv">is_success</span> <span class="p">?</span> <span class="p">"</span><span class="s2">Message delivered</span><span class="p">"</span> <span class="p">:</span> <span class="p">"</span><span class="s2">Error: </span><span class="p">"</span><span class="o">.</span><span class="nv">$response</span><span class="o">-&gt;</span><span class="nv">decoded_content</span><span class="p">;</span> </code></pre> </div> <h2> As this is a #beginner post, let's break this down statement by statement. </h2> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="c1">#!/usr/bin/env perl</span> <span class="k">use</span> <span class="nv">v5</span><span class="mf">.10</span><span class="p">;</span> <span class="k">use</span> <span class="nv">strict</span><span class="p">;</span> <span class="k">use</span> <span class="nv">warnings</span><span class="p">;</span> </code></pre> </div> <p>Begin with a <a href="https://en.wikipedia.org/wiki/Shebang_(Unix)" rel="noopener noreferrer">Shebang Line</a>. If you execute this program from a shell, this is how the shell knows which interpreter to use for the program. <code>#!/usr/bin/env perl</code> has replaced the long in the tooth standard <code>#!/usr/bin/perl</code> with good reason.</p> <p>Invoking <code>use v5.10;</code> here allows us to use the <a href="https://perldoc.perl.org/functions/say.html" rel="noopener noreferrer">say</a> function.</p> <p><code>use strict</code> and <code>use warnings</code> asks Perl to warn you if you're doing something stupid. Like misspelling a variable name, or blogging at 2am.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="k">use</span> <span class="nn">LWP::</span><span class="nv">UserAgent</span><span class="p">;</span> </code></pre> </div> <p><a href="https://metacpan.org/pod/LWP::UserAgent" rel="noopener noreferrer">LWP::UserAgent</a> can perform most actions your web browser does. You can use it to browse pages, click links, and POST forms. It can keep persistent cookies. If you wanted to, say, write a robot to cheat an online poll, look no further.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="k">my</span> <span class="nv">%text_message</span> <span class="o">=</span> <span class="p">(</span> <span class="s">From</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">12513001300</span><span class="p">',</span> <span class="c1"># Me</span> <span class="s">To</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">16198675309</span><span class="p">',</span> <span class="c1"># Jenny</span> <span class="s">Body</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">Thank you for being a friend! Travel down the road and back again!</span><span class="p">'</span> <span class="p">);</span> </code></pre> </div> <p>Store information about your text message into a hash. You'll want to replace the example data with your own. Jenny's had enough phone harassment.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="k">my</span> <span class="nv">%credentials</span> <span class="o">=</span> <span class="p">(</span> <span class="s">account_id</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">____YOUR_ACCOUNT_SID_GOES_HERE____</span><span class="p">',</span> <span class="s">auth_token</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">____YOUR_AUTH_TOKEN_GOES_HERE____</span><span class="p">',</span> <span class="p">);</span> </code></pre> </div> <p>You can find your Twilio account credentials in the Dashboard under Settings/General. Twilio offers test API access. You can use the test API to text yourself.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="k">my</span> <span class="nv">%twilio</span> <span class="o">=</span> <span class="p">(</span> <span class="c1"># HTTP Authentication</span> <span class="s">api_domain</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">api.twilio.com:443</span><span class="p">',</span> <span class="s">api_realm</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">Twilio API</span><span class="p">',</span> <span class="c1"># Keep your line length within 80 characters please!</span> <span class="s">api_url</span> <span class="o">=&gt;</span> <span class="p">'</span><span class="s1">https://api.twilio.com/2010-04-01/Accounts/</span><span class="p">'</span> <span class="o">.</span> <span class="nv">$credentials</span><span class="p">{</span><span class="nv">account_id</span><span class="p">}</span> <span class="o">.</span> <span class="p">'</span><span class="s1">/Messages</span><span class="p">'</span> <span class="p">);</span> </code></pre> </div> <p>Information you need to send a request to the Twilio API. Twilio uses <a href="https://en.wikipedia.org/wiki/Basic_access_authentication" rel="noopener noreferrer">Basic HTTP Authentication</a>. Here is the DOMAIN and REALM for this authentication scheme. The Twilio API URL contains your account SID, so the full API URL is concatenated here.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="k">my</span> <span class="nv">$ua</span> <span class="o">=</span> <span class="nn">LWP::</span><span class="nv">UserAgent</span><span class="o">-&gt;</span><span class="k">new</span><span class="p">;</span> <span class="nv">$ua</span><span class="o">-&gt;</span><span class="nv">credentials</span><span class="p">(</span> <span class="nv">$twilio</span><span class="p">{</span><span class="nv">api_domain</span><span class="p">},</span> <span class="nv">$twilio</span><span class="p">{</span><span class="nv">api_realm</span><span class="p">},</span> <span class="nv">$credentials</span><span class="p">{</span><span class="nv">account_id</span><span class="p">},</span> <span class="nv">$credentials</span><span class="p">{</span><span class="nv">auth_token</span><span class="p">}</span> <span class="p">);</span> </code></pre> </div> <p>Instantiate a new instance of the LWP::UserAgent object, and set the credentials it will use for the HTTP Request to the Twilio API.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="k">my</span> <span class="nv">$response</span> <span class="o">=</span> <span class="nv">$ua</span><span class="o">-&gt;</span><span class="nv">post</span><span class="p">(</span> <span class="nv">$twilio</span><span class="p">{</span><span class="nv">api_url</span><span class="p">},</span> <span class="o">\</span><span class="nv">%text_message</span> <span class="p">);</span> </code></pre> </div> <p>$ua makes a HTTP POST request to $twilio{api_url}. The data from %text_message are sent as form values. This operation returns a <a href="https://metacpan.org/pod/HTTP::Response" rel="noopener noreferrer">HTTP::Response</a> Object.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight perl"><code><span class="nv">say</span> <span class="nv">$response</span><span class="o">-&gt;</span><span class="nv">is_success</span> <span class="p">?</span> <span class="p">"</span><span class="s2">Message delivered</span><span class="p">"</span> <span class="p">:</span> <span class="p">"</span><span class="s2">Error: </span><span class="p">"</span><span class="o">.</span><span class="nv">$response</span><span class="o">-&gt;</span><span class="nv">decoded_content</span><span class="p">;</span> </code></pre> </div> <p>This statement includes the <a href="https://perldoc.perl.org/perlop.html" rel="noopener noreferrer">ternary operator</a>, a short-hand for an if-else block. (Side note: If you didn't know what a ternary operator was, or what it was called, and you saw this statement block in some code, how would you phrase your internet search to learn what this statement was doing? Let me know in the comments...)</p> <p><code>$response-&gt;is_success</code> returns true or false based on the <a href="https://en.wikipedia.org/wiki/List_of_HTTP_status_codes" rel="noopener noreferrer">HTTP Status Code</a> returned by the web server.</p> <p>If Twilio reports the request was successful, you see <strong>Message Delivered</strong> displayed in your terminal. If Twilio reports a problem, you will see the full response from the Twilio API displayed in your terminal.</p> <h2> See how easy Twilio is? Go build something... </h2> <p>Frankly, Twilio has made themselves so easy to use that most languages can break their use down to one-liners. You can easily deliver an SMS via the shell using curl.</p> <p>If you ever meet a Twilio engineer, be sure to buy them a beer.</p> <p>Are you still reading? Go build something!</p> perl sms twilio beginners Would you pay a data ransom? Mitch Jackson Sun, 03 Jun 2018 20:58:26 +0000 https://dev.to/mjac/would-you-pay-a-data-ransom-3h5f https://dev.to/mjac/would-you-pay-a-data-ransom-3h5f <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fselfb31pebihka8dmy09.jpg" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fselfb31pebihka8dmy09.jpg" alt="TMBG Ticket" width="800" height="959"></a></p> <h1> Ticketfly.com data breach </h1> <p>I was notified by <a href="https://haveibeenpwned.com" rel="noopener noreferrer">Have I Been Pwned</a> that my Name, E-Mail address, Mailing addresses and phone numbers were dumped publicly online as part of the <a href="http://ticketfly.com" rel="noopener noreferrer">ticketfly.com</a> data ransom involving 26 million account records. <a href="https://www.billboard.com/articles/business/8458918/ticketfly-warned-hacker-vulnerability-website-down" rel="noopener noreferrer">Motherboard reports</a> the attacker requested a ransom of 1BTC (~$7500). It's unclear if the request was ignored intentionally, or overlooked. In theory, it would have cost ticketfly.com $0.000288 to protect my customer record. Now the dark web knows I always buy tickets to see They Might Be Giants.</p> <h1> Would I pay the 1BTC ransom? </h1> <p>It's common advice that a blackmailer will never stop asking for more money. It's also safe to assume that just because the hacker doesn't publicly dump the data immediately, she/he will still be selling it on the black market.</p> <p>However this is a low-cost ransom request. Paying the ransom may buy time to fix the vulnerability, and perhaps could have kept ticketfly online. I'm told that venues cannot buy, sell, or verify tickets for concerts this weekend. This is going to cause probably more than $7500 in damage to every ticketfly venue.</p> <p>I'd would have paid the ransom.</p> <p>What would you do?</p> discuss ticketfly breach Auto-generate a Database Schema Diagram Mitch Jackson Sat, 02 Jun 2018 03:34:14 +0000 https://dev.to/mitchjacksontech/auto-generate-a-database-schema-diagram-be3 https://dev.to/mitchjacksontech/auto-generate-a-database-schema-diagram-be3 <h1> Generate a Live Database Schema Diagram for your Catalyst Application </h1> <p>When building a web application, I always create a URL endpoint that generates a database schema diagram on the fly. This is a quick reference item that never gets old.</p> <p><a href="https://res.cloudinary.com/practicaldev/image/fetch/s--kL3Hzgfq--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/jum5zbmuj6c6612nfjza.png" class="article-body-image-wrapper"><img src="https://res.cloudinary.com/practicaldev/image/fetch/s--kL3Hzgfq--/c_limit%2Cf_auto%2Cfl_progressive%2Cq_auto%2Cw_880/https://thepracticaldev.s3.amazonaws.com/i/jum5zbmuj6c6612nfjza.png" alt="schema diagram"></a></p> <p>This approach can be used with any Perl web framework. The provided example is for the Catalyst Framework using a DBIx::Class ORM. This example provides the url <a href="http://mywebsite.com/dbdiagram">http://mywebsite.com/dbdiagram</a></p> <div class="highlight"><pre class="highlight perl"><code> <span class="cm">=head2 dbdiagram Render an image representing the current data model =cut</span> <span class="k">use</span> <span class="nn">SQL::</span><span class="nv">Translator</span><span class="p">;</span> <span class="k">sub </span><span class="nf">dbdiagram</span> <span class="p">:Local :Args(0) {</span> <span class="k">my</span> <span class="p">(</span><span class="nv">$self</span><span class="p">,</span> <span class="nv">$c</span><span class="p">)</span> <span class="o">=</span> <span class="nv">@_</span><span class="p">;</span> <span class="k">my</span> <span class="nv">$translator</span> <span class="o">=</span> <span class="nn">SQL::</span><span class="nv">Translator</span><span class="o">-&gt;</span><span class="k">new</span><span class="p">(</span> <span class="nv">parser</span> <span class="o">=&gt;</span> <span class="s">'SQL::Translator::Parser::DBIx::Class'</span><span class="p">,</span> <span class="nv">data</span> <span class="o">=&gt;</span> <span class="nv">$c</span><span class="o">-&gt;</span><span class="nv">model</span><span class="p">(</span><span class="s">'Ezn'</span><span class="p">)</span><span class="o">-&gt;</span><span class="nv">schema</span><span class="p">,</span> <span class="nv">producer</span> <span class="o">=&gt;</span> <span class="s">'Diagram'</span><span class="p">,</span> <span class="nv">producer_args</span> <span class="o">=&gt;</span> <span class="p">{</span> <span class="nv">output_type</span> <span class="o">=&gt;</span> <span class="s">'png'</span><span class="p">,</span> <span class="nv">title</span> <span class="o">=&gt;</span> <span class="s">"My clever database diagram"</span><span class="p">,</span> <span class="nv">add_color</span> <span class="o">=&gt;</span> <span class="mi">1</span><span class="p">,</span> <span class="nv">font_size</span> <span class="o">=&gt;</span> <span class="s">'large'</span><span class="p">,</span> <span class="p">},</span> <span class="p">)</span> <span class="ow">or</span> <span class="nb">die</span> <span class="nn">SQL::</span><span class="nv">Translator</span><span class="o">-&gt;</span><span class="nv">error</span><span class="p">;</span> <span class="nv">$c</span><span class="o">-&gt;</span><span class="nv">res</span><span class="o">-&gt;</span><span class="nv">content_type</span><span class="p">(</span><span class="s">'image/png'</span><span class="p">);</span> <span class="nv">$c</span><span class="o">-&gt;</span><span class="nv">res</span><span class="o">-&gt;</span><span class="nv">body</span><span class="p">(</span><span class="nv">$translator</span><span class="o">-&gt;</span><span class="nv">translate</span><span class="p">);</span> <span class="p">}</span> </code></pre></div> <p><em>Don't Forget</em> to restrict to authorized users!</p> <p>See also: </p> <ul> <li><a href="http://www.catalystframework.org/">Catalyst Framework</a></li> <li><a href="https://metacpan.org/pod/DBIx::Class">DBIx::Class</a></li> <li><a href="https://metacpan.org/pod/SQL::Translator::Parser::DBIx::Class">SQL::Translator::Parser::DBIx::Class</a></li> <li><a href="https://metacpan.org/pod/SQL::Translator::Producer::Diagram">SQL::Translator::Producer::Diagram</a></li> </ul> perl catalyst dbixclass howto Trac Install Guide Mitch Jackson Fri, 25 May 2018 03:06:19 +0000 https://dev.to/mjac/trac-install-guide-588e https://dev.to/mjac/trac-install-guide-588e <h1> Install Trac with Git on a Debian 9 </h1> <p><a href="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fmrskgwy0jmyobefco3cp.png" class="article-body-image-wrapper"><img src="https://media2.dev.to/dynamic/image/width=800%2Cheight=%2Cfit=scale-down%2Cgravity=auto%2Cformat=auto/https%3A%2F%2Fdev-to-uploads.s3.amazonaws.com%2Fuploads%2Farticles%2Fmrskgwy0jmyobefco3cp.png" alt="Trac" width="450" height="511"></a></p> <p>Since I was documenting the process anyway, why not make my first post with dev.to a software install guide.</p> <h2> Trac is my favored project management environment </h2> <p>Trac has been around for a long time. I was using it before git existed. It's been stable and reliable all this time. Unlike all the big bloated tools out there these days like GitLab and Jira, Trac runs quite well on the cheapest virtual servers you can rent. </p> <h3> Features include: </h3> <ul> <li>Ticketing system</li> <li>Milestone tracking</li> <li>Time tracking</li> <li>Git integration with repository browsing</li> <li>Wiki</li> <li>Automated notifications</li> <li>CI integration</li> <li>Low system requirements</li> </ul> <h2> About this guide </h2> <p>Most guides or walkthroughs of this sort are very basic. They try to get you there with the least amount of information possible. My approach to guides opposes this philosophy. Advanced users may choose to skip over extra information like firewall configuration, and setting up E-Mail forwarding.</p> <p>It's assumed the shell commands presented will be run using sudo, or as root.</p> <h2> Prepare your server </h2> <h3> Create a Digital Ocean droplet using Debian 9 </h3> <p>Creating a server with Digital Ocean is quite straightforward. Trac can run comfortably on the $5/mo small DO droplet. <a href="https://m.do.co/c/5745ded1be6a" rel="noopener noreferrer">Use my referral link</a> and get $10 of free credit.</p> <p>This guide was written using Digital Ocean. You may encounter very minor differences during install in another environment. However this guide should still get you there. If not, please let me know.</p> <h3> Configure DNS for your Trac server </h3> <p>An obvious candidate is trac.yourdomain.com. This uses that example domain name. Update DNS so your new domain name points to your server. </p> <p>You will also need an SPF record, or most mail your server sends will be rejected as spam. This will probably be adequate for your use case:</p> <p><code>TXT @ v=spf1 a -all</code></p> <h3> Update the server </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>aptitude <span class="nt">-y</span> update aptitude <span class="nt">-y</span> upgrade </code></pre> </div> <h3> Configure hostname and domain name on your server </h3> <p>Override Digital Ocean auto-config of domain name<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">sed</span> <span class="nt">-i</span> <span class="s1">'s/^manage_etc_hosts: true$/manage_etc_hosts: False/'</span> /etc/cloud/cloud.cfg </code></pre> </div> <p>Set the system hostname<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">cat</span> <span class="o">&lt;&lt;</span> <span class="no">EOF</span><span class="sh"> &gt; /etc/hostname trac </span><span class="no">EOF </span></code></pre> </div> <p>Edit <code>/etc/hosts</code> to set the system domain name</p> <p>Find these lines<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight conf"><code><span class="m">127</span>.<span class="m">0</span>.<span class="m">1</span>.<span class="m">1</span> <span class="n">example</span>.<span class="n">com</span> <span class="n">droplet</span> <span class="m">127</span>.<span class="m">0</span>.<span class="m">1</span>.<span class="m">1</span> <span class="n">localhost</span> </code></pre> </div> <p>Update for your trac domain name<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight conf"><code><span class="m">127</span>.<span class="m">0</span>.<span class="m">1</span>.<span class="m">1</span> <span class="n">trac</span>.<span class="n">yourdomain</span>.<span class="n">com</span> <span class="n">trac</span> <span class="m">127</span>.<span class="m">0</span>.<span class="m">0</span>.<span class="m">1</span> <span class="n">localhost</span> </code></pre> </div> <p><em>Do not</em> use simply use your root domain, yourdomain.com. You must have a subdomain prepended, such as trac.yourdomain.com. Otherwise you will have trouble later in the guide, allowing Trac to send e-mail notifications</p> <p>At this point, reboot your server, and confirm your domain name and hostname remain correct after reboots. Use the shell commands <code>hostname</code> and <code>domainname</code>.</p> <h3> Configure the firewall </h3> <h4> Install and enable firewalld </h4> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>aptitude <span class="nt">-y</span> <span class="nb">install </span>firewalld systemctl <span class="nb">enable </span>firewalld systemctl start firewalld firewall-cmd <span class="nt">--zone</span><span class="o">=</span>public <span class="nt">--add-interface</span><span class="o">=</span>eth0 firewall-cmd <span class="nt">--zone</span><span class="o">=</span>public <span class="nt">--add-interface</span><span class="o">=</span>eth0 <span class="nt">--permanent</span> </code></pre> </div> <h4> Protecting SSH </h4> <p>Many people will advise you to jump through hoops to protect SSH on your linux server. Unless you really need SSH available to the whole world (you don't) use my simpler approach. Disallow SSH in your firewall, except for trusted ip addresses. Since the whole internet can't talk to your SSH port, there's no need for elaborate settings and blocking firewalls like fail2ban.</p> <p>Repeat the following commands for every trusted IP address<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Repeat these commands for every trusted IP address</span> firewall-cmd <span class="nt">--zone</span><span class="o">=</span>trusted <span class="nt">--add-source</span><span class="o">=</span>1.2.3.4 firewall-cmd <span class="nt">--zone</span><span class="o">=</span>trusted <span class="nt">--add-source</span><span class="o">=</span>1.2.3.4 <span class="nt">--permanent</span> </code></pre> </div> <p>Should you find yourself unable to connect to SSH, because your current IP address has not been added to the trusted list, this is no problem. Just visit your server dashboard at digitalocean.com. Select the Access menu item. You will see a big blue button that says Launch Console. This gives you shell access to your server over the web. Issue the above command to grant yourself access from your new IP address. </p> <p>Disable SSH to the public internet<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>firewall-cmd <span class="nt">--zone</span><span class="o">=</span>public <span class="nt">--remove-service</span><span class="o">=</span>ssh firewall-cmd <span class="nt">--zone</span><span class="o">=</span>public <span class="nt">--remove-service</span><span class="o">=</span>ssh <span class="nt">--permanent</span> </code></pre> </div> <p>Allow websites hosted on your server through your firewall<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>firewall-cmd <span class="nt">--zone</span><span class="o">=</span>public <span class="nt">--add-service</span><span class="o">=</span>http firewall-cmd <span class="nt">--zone</span><span class="o">=</span>public <span class="nt">--add-service</span><span class="o">=</span>http <span class="nt">--permanent</span> firewall-cmd <span class="nt">--zone</span><span class="o">=</span>public <span class="nt">--add-service</span><span class="o">=</span>https firewall-cmd <span class="nt">--zone</span><span class="o">=</span>public <span class="nt">--add-service</span><span class="o">=</span>https <span class="nt">--permanent</span> </code></pre> </div> <h3> Get a free SSL certificate free from Lets Encrypt </h3> <p>You want all interactions with Trac and Git to be secure. To do this, enforce https for all your web traffic. You will need a security certificate for this. </p> <h4> Your DNS records must be in place for this step </h4> <p>Depending on your domain registry, and how you manage your DNS records, it can take minutes to hours before your new DNS names appear to everybody on the internet. If you cannot ping your domain name (<code>ping trac.yourdomain.com</code>) you will need to wait a while before completing this step.</p> <h4> Use certbot to request an SSL certificate </h4> <p>Install certbot<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>aptitude <span class="nt">-y</span> <span class="nb">install </span>certbot </code></pre> </div> <p>Stop your web server, if it's running. Certbot will prove you own this domain name by hosting it's own temporary web server. There are other ways to use certbot. Look at letsencrypt.org if you're interested.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>systemctl stop apache2 </code></pre> </div> <p>Request an SSL certificate.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>certbot certonly <span class="nt">--standalone</span> <span class="nt">-n</span> <span class="nt">--agree-tos</span> <span class="se">\</span> <span class="nt">-m</span> youremail@yourdomain.com <span class="se">\</span> <span class="nt">-d</span> trac.yourdomain.com </code></pre> </div> <p>We will configure the server to use this certificate later. The certificate can be found at:<br> <code>/etc/letsencrypt/live/trac.mydomain.com/*.pem</code></p> <h3> Configure a local mail server so Trac can send E-Mails </h3> <p>Install Exim<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>aptitude <span class="nt">-y</span> <span class="nb">install </span>exim4 </code></pre> </div> <p>Update the Exim config file to contain these directives:<br> <code>/etc/exim4/update-exim4.conf.conf</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight conf"><code><span class="n">dc_eximconfig_configtype</span>=<span class="s1">'internet'</span> <span class="n">dc_eximconfig_other_hostnames</span>=<span class="s1">'trac.yourdomain.com'</span> </code></pre> </div> <p>Do not specify yourdomain.com as dc_eximconfig_other_hostnames, or mail to @yourdomain.com addresses will never be delivered. Also, if the output of the <code>domainname</code> command is yourdomain.com instead of trac.yourdomain.com, mail to @yourdomain.com will never be delivered. This happens because exim will try to deliver the mail locally, instead of over the internet.</p> <p>It's a good idea to create a root email alias on your server, so you receive notices from your server<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">cat</span> <span class="o">&lt;&lt;</span> <span class="no">EOF</span><span class="sh"> &gt;&gt; /etc/aliases root: youremail@yourdomain.com </span><span class="no">EOF </span></code></pre> </div> <p>Restart Exim to apply the changed configuration<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>systemctl restart exim4 </code></pre> </div> <p>Check that Exim correctly decides to send mail via the internet.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>exim <span class="nt">-bt</span> yourname@yourdomain.com exim <span class="nt">-bt</span> yourname exim <span class="nt">-bt</span> root </code></pre> </div> <p>Send a test e-mail<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">echo</span> <span class="s2">"Test email"</span> | mail <span class="nt">-s</span> <span class="s2">"testing new server"</span> yourname@yourdomain.com </code></pre> </div> <p>Watch your logs if there is a problem<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">tail</span> <span class="nt">-f</span> /var/log/exim4/<span class="k">*</span> &amp; <span class="nb">tail</span> <span class="nt">-f</span> /var/log/maillog &amp; journalctl <span class="nt">-f</span> &amp; </code></pre> </div> <h2> Install software and dependencies </h2> <p>Install software via Debian packages.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>aptitude <span class="nt">-y</span> <span class="nb">install</span> <span class="se">\</span> apache2 <span class="se">\</span> exim4 <span class="se">\</span> git <span class="se">\</span> libapache2-mod-wsgi <span class="se">\</span> libmariadb-dev-compat <span class="se">\</span> mariadb-server <span class="se">\</span> python <span class="se">\</span> python-pip </code></pre> </div> <p>At the moment, Trac does not install properly for me using only debian packages. You'll use a python virtual environment to install the latest version of Trac and associated libraries</p> <p>Create the project home<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir</span> <span class="nt">-p</span> /var/www/trac </code></pre> </div> <p>Spawn a virtual environment<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>pip <span class="nb">install </span>virtualenv virtualenv /var/www/trac/virtualenv </code></pre> </div> <p>Activate the virtual environment<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">source</span> /var/www/trac/virtualenv/bin/activate </code></pre> </div> <p>Install Trac and dependencies<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>pip <span class="nb">install </span>trac pip <span class="nb">install </span>docutils pip <span class="nb">install </span>babel pip <span class="nb">install </span>pygments pip <span class="nb">install </span>MySQL-python pip <span class="nb">install </span>TracAccountManager </code></pre> </div> <h2> Setup MariaDB </h2> <p>Enable MariaDB<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>systemctl <span class="nb">enable </span>mariadb systemctl start mariadb </code></pre> </div> <p>Run the following command and answer the questions. You will set your database admin password here.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>mysql_secure_installation </code></pre> </div> <p>Create a database for Trac, with the following SQL statements at the database prompt. Of course, replace TRAC_DB_PASSWORD with a real password.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight sql"><code><span class="n">mysql</span> <span class="o">-</span><span class="n">u</span> <span class="n">root</span> <span class="o">-</span><span class="n">p</span> <span class="o">&gt;</span> <span class="k">CREATE</span> <span class="k">DATABASE</span> <span class="n">trac</span> <span class="k">DEFAULT</span> <span class="nb">CHARACTER</span> <span class="k">SET</span> <span class="n">utf8</span> <span class="k">COLLATE</span> <span class="n">utf8_bin</span><span class="p">;</span> <span class="o">&gt;</span> <span class="k">GRANT</span> <span class="k">ALL</span> <span class="k">ON</span> <span class="n">trac</span><span class="p">.</span><span class="o">*</span> <span class="k">TO</span> <span class="n">trac_db</span><span class="o">@</span><span class="n">localhost</span> <span class="n">IDENTIFIED</span> <span class="k">BY</span> <span class="s1">'TRAC_DB_PASSWORD'</span><span class="p">;</span> <span class="o">&gt;</span> <span class="n">FLUSH</span> <span class="k">PRIVILEGES</span><span class="p">;</span> <span class="o">#</span> <span class="n">Press</span> <span class="n">CTRL</span><span class="o">-</span><span class="n">D</span> <span class="k">to</span> <span class="n">exit</span> <span class="k">database</span> <span class="n">shell</span> </code></pre> </div> <h2> Create a bare Git repository </h2> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir</span> <span class="nt">-p</span> /var/www/trac/git git init <span class="nt">--bare</span> /var/www/trac/git/myproject.git </code></pre> </div> <h2> Trac Set-up </h2> <h3> Initialize a Trac project </h3> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="c"># Initalize a trac project</span> trac-admin <span class="se">\</span> /var/www/trac/project <span class="se">\</span> initenv project <span class="se">\</span> mysql://trac_db:TRAC_DB_PASSWORD@localhost/trac <span class="se">\</span> git /var/www/trac/git/myproject.git </code></pre> </div> <h3> Update Trac.ini </h3> <p>Make the following changes to the Trac project config file<br> <code>/var/www/trac/project/conf/trac.ini</code></p> <p>Add the following sections<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="nn">[components]</span> <span class="err">tracopt.versioncontrol.git*</span> <span class="err">=</span> <span class="err">enabled</span> <span class="py">tracopt.versioncontrol.git.git_fs.csetpropertyrenderer</span> <span class="p">=</span> <span class="s">enabled</span> <span class="py">tracopt.versioncontrol.git.git_fs.gitconnector</span> <span class="p">=</span> <span class="s">enabled</span> <span class="py">tracopt.versioncontrol.git.git_fs.gitwebprojectsrepositoryprovider</span> <span class="p">=</span> <span class="s">enabled</span> <span class="err">acct_mgr.admin.*</span> <span class="err">=</span> <span class="err">enabled</span> <span class="err">acct_mgr.api.*</span> <span class="err">=</span> <span class="err">enabled</span> <span class="py">acct_mgr.db.sessionstore</span> <span class="p">=</span> <span class="s">disabled</span> <span class="py">acct_mgr.htfile.htdigeststore</span> <span class="p">=</span> <span class="s">disabled</span> <span class="py">acct_mgr.htfile.htpasswdstore</span> <span class="p">=</span> <span class="s">enabled</span> <span class="err">acct_mgr.http.*</span> <span class="err">=</span> <span class="err">disabled</span> <span class="err">acct_mgr.notification.*</span> <span class="err">=</span> <span class="err">enabled</span> <span class="err">acct_mgr.pwhash.*</span> <span class="err">=</span> <span class="err">disabled</span> <span class="err">acctmgr.register.*</span> <span class="err">=</span> <span class="err">enabled</span> <span class="py">acct_mgr.svnserve.svnservepasswordstore</span> <span class="p">=</span> <span class="s">disabled</span> <span class="err">acct_mgr.web_ui.*</span> <span class="err">=</span> <span class="err">enabled</span> <span class="py">acct_mgr.web_ui.LoginModule</span> <span class="p">=</span> <span class="s">enabled</span> <span class="py">acct_mgr.web_ui.resetpwstore</span> <span class="p">=</span> <span class="s">disabled</span> <span class="py">acct_mgr.guard.accountguard</span> <span class="p">=</span> <span class="s">enabled</span> <span class="py">trac.web.auth.LoginModule</span> <span class="p">=</span> <span class="s">disabled</span> <span class="nn">[account-manager]</span> <span class="py">password_store</span> <span class="p">=</span> <span class="s">HtPasswdStore</span> <span class="py">htpasswd_hash_type</span> <span class="p">=</span> <span class="s">md5</span> <span class="py">htpasswd_file</span> <span class="p">=</span> <span class="s">/var/www/trac/users.htpasswd</span> <span class="py">allow_delete_account</span> <span class="p">=</span> <span class="s">false</span> <span class="py">login_attempt_max_count</span> <span class="p">=</span> <span class="s">5</span> <span class="py">user_lock_time</span> <span class="p">=</span> <span class="s">60</span> <span class="py">user_lock_max_time</span> <span class="p">=</span> <span class="s">0</span> <span class="py">user_lock_time_progression</span> <span class="p">=</span> <span class="s">2</span> <span class="nn">[git]</span> <span class="py">shortrev_len</span> <span class="p">=</span> <span class="s">40</span> </code></pre> </div> <p>Edit the logo section<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="nn">[header_logo]</span> <span class="py">alt</span> <span class="p">=</span> <span class="s">Yet Another Trac Project</span> <span class="py">height</span> <span class="p">=</span> <span class="s">-1</span> <span class="py">link</span> <span class="p">=</span> <span class="s">/</span> <span class="py">src</span> <span class="p">=</span> <span class="s">/chrome/common/trac_banner.png</span> <span class="py">width</span> <span class="p">=</span> <span class="s">-1</span> </code></pre> </div> <p>Edit the attachment size limits<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="nn">[attachment]</span> <span class="py">max_size</span> <span class="p">=</span> <span class="s">8388608</span> <span class="py">max_zip_size</span> <span class="p">=</span> <span class="s">8388608</span> <span class="py">render_unsafe_content</span> <span class="p">=</span> <span class="s">disabled</span> </code></pre> </div> <p>Edit log settings, to log through syslog<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="nn">[logging]</span> <span class="c"># log_file = trac.log # log_format = &lt;inherited&gt; </span><span class="py">log_level</span> <span class="p">=</span> <span class="s">WARNING</span> <span class="py">log_type</span> <span class="p">=</span> <span class="s">syslog</span> </code></pre> </div> <p>Edit your project settings<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="nn">[project]</span> <span class="py">admin</span> <span class="p">=</span> <span class="s">youremail@yourdomain.com</span> <span class="py">admin_trac_url</span> <span class="p">=</span> <span class="s">trac.yourdomain.com</span> <span class="py">descr</span> <span class="p">=</span> <span class="s">Name For Your Project</span> </code></pre> </div> <p>Edit the mail settings to use system sendmail for e-mail delivery. Note, you can also instruct Trac to relay via SMTP if you prefer.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight ini"><code><span class="nn">[notification]</span> <span class="py">email_sender</span> <span class="p">=</span> <span class="s">SendmailEmailSender</span> <span class="py">smtp_from</span> <span class="p">=</span> <span class="s">trac@yourdomain.com</span> <span class="py">smtp_reply_to</span> <span class="p">=</span> <span class="s">trac@yourdomain.com</span> </code></pre> </div> <p>Create an empty password file<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">touch</span> /var/www/trac/users.htpasswd </code></pre> </div> <h3> Generate static files, python cache </h3> <p>To reduce overhead in trac, extract and store static files that can be served directly by Apache.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir</span> <span class="nt">-p</span> /var/www/trac/static trac-admin /var/www/trac/project deploy /var/www/trac/static </code></pre> </div> <p>Allow for a python code cache<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">mkdir</span> <span class="nt">-p</span> /var/www/trac/python_egg_cache </code></pre> </div> <h2> Configure Apache to serve Trac via WSGI </h2> <p>Enable apache modules<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>a2enmod ssl a2enmod wsgi a2enmod cgi </code></pre> </div> <p>Set ownership of trac files to the apache system user<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">chown </span>www-data:www-data <span class="nt">-R</span> /var/www/trac </code></pre> </div> <p>Edit the apache config file. If your server is going to host multiple websites, you may wish to create a new conf file, rather than editing the default one. <br> <code>/etc/apache2/sites-available/000-default.conf</code><br> </p> <div class="highlight js-code-highlight"> <pre class="highlight conf"><code> &lt;<span class="n">VirtualHost</span> *:<span class="m">80</span>&gt; <span class="c"># Catch all non-ssl requests and redirect them to ssl </span> <span class="n">ServerName</span> <span class="n">trac</span>.<span class="n">yourdomain</span>.<span class="n">com</span> <span class="n">Redirect</span> <span class="n">permanent</span> / <span class="n">https</span>://<span class="n">trac</span>.<span class="n">yourdomain</span>.<span class="n">com</span>/ &lt;/<span class="n">VirtualHost</span>&gt; &lt;<span class="n">VirtualHost</span> *:<span class="m">443</span>&gt; <span class="n">ServerName</span> <span class="n">trac</span>.<span class="n">yourdomain</span>.<span class="n">com</span> &lt;<span class="n">IfModule</span> <span class="n">mod_headers</span>.<span class="n">c</span>&gt; <span class="n">Header</span> <span class="n">always</span> <span class="n">set</span> <span class="n">Strict</span>-<span class="n">Transport</span>-<span class="n">Security</span> <span class="s2">"max-age=15768000; includeSubDomains; preload"</span> &lt;/<span class="n">IfModule</span>&gt; <span class="n">CustomLog</span> /<span class="n">var</span>/<span class="n">log</span>/<span class="n">httpd</span>/<span class="n">yourdomain</span>.<span class="n">com_trac</span>.<span class="n">access</span>.<span class="n">log</span> <span class="n">combined</span> <span class="n">ErrorLog</span> /<span class="n">var</span>/<span class="n">log</span>/<span class="n">httpd</span>/<span class="n">yourdomain</span>.<span class="n">com_trac</span>.<span class="n">error</span>.<span class="n">log</span> <span class="n">SetEnv</span> <span class="n">PYTHON_EGG_CACHE</span> /<span class="n">var</span>/<span class="n">www</span>/<span class="n">trac</span>/<span class="n">python_egg_cache</span> <span class="n">Alias</span> /<span class="n">chrome</span> /<span class="n">var</span>/<span class="n">www</span>/<span class="n">trac</span>/<span class="n">static</span>/<span class="n">htdocs</span> &lt;<span class="n">Directory</span> <span class="s2">"/var/www/trac/static/htdocs"</span>&gt; &lt;<span class="n">IfModule</span> <span class="n">mod_authz_core</span>.<span class="n">c</span>&gt; <span class="n">Require</span> <span class="n">all</span> <span class="n">granted</span> &lt;/<span class="n">IfModule</span>&gt; &lt;/<span class="n">Directory</span>&gt; <span class="n">WSGIDaemonProcess</span> <span class="n">tracweb</span> <span class="n">python</span>-<span class="n">home</span>=/<span class="n">var</span>/<span class="n">www</span>/<span class="n">trac</span>/<span class="n">virtualenv</span> <span class="n">WSGIProcessGroup</span> <span class="n">tracweb</span> <span class="n">WSGIApplicationGroup</span> %{<span class="n">GLOBAL</span>} <span class="n">WSGIScriptAlias</span> / /<span class="n">var</span>/<span class="n">www</span>/<span class="n">trac</span>/<span class="n">static</span>/<span class="n">cgi</span>-<span class="n">bin</span>/<span class="n">trac</span>.<span class="n">wsgi</span> &lt;<span class="n">Directory</span> /<span class="n">var</span>/<span class="n">www</span>/<span class="n">trac</span>/<span class="n">static</span>/<span class="n">cgi</span>-<span class="n">bin</span>&gt; &lt;<span class="n">IfModule</span> <span class="n">mod_authz_core</span>.<span class="n">c</span>&gt; <span class="n">Require</span> <span class="n">all</span> <span class="n">granted</span> &lt;/<span class="n">IfModule</span>&gt; &lt;/<span class="n">Directory</span>&gt; <span class="n">SSLEngine</span> <span class="n">on</span> <span class="n">SSLCertificateFile</span> /<span class="n">etc</span>/<span class="n">letsencrypt</span>/<span class="n">live</span>/<span class="n">www</span>.<span class="n">yourdomain</span>.<span class="n">com</span>/<span class="n">cert</span>.<span class="n">pem</span> <span class="n">SSLCertificateKeyFile</span> /<span class="n">etc</span>/<span class="n">letsencrypt</span>/<span class="n">live</span>/<span class="n">www</span>.<span class="n">yourdomain</span>.<span class="n">com</span>/<span class="n">privkey</span>.<span class="n">pem</span> <span class="n">SSLCertificateChainFile</span> /<span class="n">etc</span>/<span class="n">letsencrypt</span>/<span class="n">live</span>/<span class="n">www</span>.<span class="n">yourdomain</span>.<span class="n">com</span>/<span class="n">fullchain</span>.<span class="n">pem</span> &lt;/<span class="n">VirtualHost</span>&gt; </code></pre> </div> <p>Check your Apache configuration for errors<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">source</span> /etc/apache2/envvars apache2 <span class="nt">-t</span> </code></pre> </div> <p>Watch the output of your logs, to detect any problems<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>journalctl <span class="nt">-f</span> &amp; <span class="nb">tail</span> <span class="nt">-f</span> /var/log/apache2/<span class="k">*</span> </code></pre> </div> <p>Start Apache web server<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>systemctl restart apache2 </code></pre> </div> <h2> Log in and configure Trac </h2> <h3> Authentication plugin </h3> <p>Open trac.yourdomain.com in your browser. If you've done everything correctly, you should see the introductory WIKI page. Click the Login link, to be taken to the initial authentication setup</p> <p>Step 1: Choose the following options:</p> <ul> <li>Convert login names to lower case on registration and login - Checked</li> <li>Restrict sending cookies to HTTPS connections - Checked</li> <li>Authentication Front-End: Use a HTML login form</li> <li>Integrate links to related actions in the login form - Checked</li> <li>Allow the user to be remembered across sessions: checked</li> </ul> <p>Steps 2 through 5: No changes to defaults</p> <p>Step 6, choose your initial login name and password</p> <h3> Anonymous user permissions </h3> <p>By default, website visitors can see basically everything. In the admin menu, you can configure permissions for anonymous users.</p> <h2> Getting started with your Git repository </h2> <p>From your workstation, not the server, clone the repository<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code>git clone https://trac.yourdomain.com/git/myproject.git </code></pre> </div> <p>Create a README.md file, commit to git, and push back to the server<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code><span class="nb">cd </span>myproject <span class="nb">cat</span> <span class="o">&lt;&lt;</span> <span class="no">EOF</span><span class="sh"> &gt; README.md # My Project I am just getting started with my project! </span><span class="no">EOF </span>git add README.md git commit <span class="nt">-a</span> <span class="nt">-m</span> <span class="s2">"Add Readme File"</span> git push </code></pre> </div> <p>Visit Trac in your browser. You should see the code changes reflected in the Timeline, and Browse Source menu options.</p> <h1> Troubleshooting </h1> <p>Log files are your friends when something goes wrong on your server. You can watch all the relevant logs in real time, to see what errors are given with something doesn't work.<br> </p> <div class="highlight js-code-highlight"> <pre class="highlight shell"><code> <span class="c"># Linux system logs</span> journalctl <span class="nt">-f</span> &amp; <span class="c"># E-Mail logs</span> <span class="nb">tail</span> <span class="nt">-f</span> /var/log/maillog &amp; <span class="nb">tail</span> <span class="nt">-f</span> /var/log/exim4/<span class="k">*</span> &amp; <span class="c"># Web server logs</span> <span class="nb">tail</span> <span class="nt">-f</span> /var/log/apache2/<span class="k">*</span> &amp; </code></pre> </div> <h1> Getting Help </h1> <ul> <li><a href="https://trac.edgewall.org/wiki/TracFaq" rel="noopener noreferrer">Trac FAQ</a></li> <li><a href="https://trac.edgewall.org/wiki/TracGuide" rel="noopener noreferrer">Trac Documentation</a></li> <li><a href="https://trac.edgewall.org/wiki/MailingList" rel="noopener noreferrer">Trac Mailing Lists</a></li> </ul> <h1> Contact </h1> <p>Please let me know if you discover errors in this guide that need to be corrected.</p> trac linux git devops