Commands by ryanchapman

Commands by ryanchapman (5)

sorted by

Encrypt/decrypt a string from the command line

Need to encrypt something from the command line? I've used this before to encrypt passwords with a master password that was shared amongst a team. To decrypt: ~$ echo -n 'jA0EAwMCPdknsznAww5gySL1/quqhXg6QgQkIz5abzGP5EZgTbXCFU+y6dP8ySWovytc' | base64 --decode | gpg --decrypt gpg: CAST5 encrypted data Enter passphrase: secret gpg: encrypted with 1 passphrase HelloWorld! Show Sample Output
This is sample output - yours may be different.
```
Enter passphrase: secret
Repeat passphrase: secret
jA0EAwMCPdknsznAww5gySL1/quqhXg6QgQkIz5abzGP5EZgTbXCFU+y6dP8ySWovytc
```
0

echo 'HelloWorld!' | gpg --symmetric | base64

ryanchapman · 2013-07-06 08:30:35 0
Backup a directory structure

Copies a directory structure from /home/ to /backups/home (notice that the destination does not have a trailing slash)
This is sample output - yours may be different.
1

BEGIN=`date`; rsync -avxW /home/ /backups/home ; echo "Begin time: $BEGIN" ; echo "End time..: `date`"

ryanchapman · 2013-07-06 08:24:45 0
strace a program

How to figure out what a program is doing. -tt detailed timestamps -f also strace any child processes -v be very verbose, even with common structures -o write output to file -s N capture up to N characters of strings, rather than abbreviating with ...
This is sample output - yours may be different.
0

strace -ttvfo /tmp/logfile -s 1024 program

ryanchapman · 2013-07-06 08:19:29 0

I/O activity on a machine

Shows a constantly updating display of disk IO activity. Two sections are in the output. The first is the IO activity since the machine was booted, the second section is the IO activity in the last second Show Sample Output

This is sample output - yours may be different.

Every 1.0s: iostat -xmd 1 2                                                                          Sat Jul  6 02:05:14 2013

Linux 2.6.32-358.el6.x86_64 (webzv01.l.test.lan)     07/06/2013      _x86_64_

Device:         rrqm/s   wrqm/s     r/s     w/s    rMB/s    wMB/s avgrq-sz avgqu-sz   await  svctm  %util
vda               0.04     9.82    0.25    5.88     0.01     0.06    21.31     0.01    2.38   0.38   0.23
vda1              0.00     0.00    0.00    0.00     0.00     0.00    47.77     0.00   14.76   4.51   0.00
vda2              0.04     0.06    0.01    0.00     0.00     0.00    81.50     0.00    5.89   4.84   0.01
vda3              0.00     6.50    0.23    4.15     0.01     0.04    22.06     0.01    2.23   0.43   0.19
vda4              0.00     0.00    0.00    0.00     0.00     0.00     2.00     0.00   64.50  64.50   0.00
vda5              0.00     3.26    0.01    0.85     0.00     0.02    38.49     0.00    5.41   0.41   0.03
vdb               0.02     7.77    2.08   28.28     0.04     0.97    68.61     0.35   11.65   0.27   0.83
vdb1              0.02     7.77    2.08   28.28     0.04     0.97    68.61     0.35   11.65   0.27   0.83

Device:         rrqm/s   wrqm/s     r/s     w/s    rMB/s    wMB/s avgrq-sz avgqu-sz   await  svctm  %util
vda               0.00    19.00    0.00    5.00     0.00     0.09    38.40     0.00    0.80   0.40   0.20
vda1              0.00     0.00    0.00    0.00     0.00     0.00     0.00     0.00    0.00   0.00   0.00
vda2              0.00     0.00    0.00    0.00     0.00     0.00     0.00     0.00    0.00   0.00   0.00
vda3              0.00     0.00    0.00    0.00     0.00     0.00     0.00     0.00    0.00   0.00   0.00
vda4              0.00     0.00    0.00    0.00     0.00     0.00     0.00     0.00    0.00   0.00   0.00
vda5              0.00    19.00    0.00    5.00     0.00     0.09    38.40     0.00    0.80   0.40   0.20
vdb               0.00     0.00    0.00    0.00     0.00     0.00     0.00     0.00    0.00   0.00   0.00
vdb1              0.00     0.00    0.00    0.00     0.00     0.00     0.00     0.00    0.00   0.00   0.00

watch -n 1 'iostat -xmd 1 2'

ryanchapman · 2013-07-06 08:07:32 0

Decrypt SSL

If on a web server (with access to the ssl key), decrypt SSL off the wire
This is sample output - yours may be different.
0

openssl pkcs8 -in /etc/pki/tls/web.key -out /root/wc.key -nocrypt && tshark -o "ssl.desegment_ssl_records:TRUE" -o "ssl.desegment_ssl_application_data:TRUE" -o "ssl.keys_list:,443,http,/root/wc.key" -o "ssl.debug_file:rsa.log" -R "(tcp.port eq 443)"

ryanchapman · 2013-07-06 08:01:36 0

What's this?

commandlinefu.com is the place to record those command-line gems that you return to again and again. That way others can gain from your CLI wisdom and you from theirs too. All commands can be commented on, discussed and voted up or down.

Share Your Commands

Check These Out

check open ports without netstat or lsof

Update Ogg Vorbis file comments

The "vorbiscomment" utility lets you update information such as artist names and song and album tags in an Ogg Vorbis file. You can use this command to fix any mistakes that were made when ripping an album.

speedtest

alias speedtest='wget --output-document=/dev/null http://speedtest.wdc01.softlayer.com/downloads/test500.zip'

Get an IP address out of fail2ban jail

Removes an iptables rule created by fail2ban. This example shows how to remove a rule for an IP from the fail2ban-SSH chain. Can be used for any service monitored by fail2ban. For more on fail2ban, see http://www.fail2ban.org/wiki/index.php/Main_Page

multiline data block parse and CSV data extraction with perl

extract data in multiline blocks of data with perl pattern matching loop

analyze traffic remotely over ssh w/ wireshark

Please check out my blog article on this for more detail. http://jdubb.net/blog/2009/08/07/monitor-wireshark-capture-real-time-on-remote-host-via-ssh/

Conficker Detection with NMAP

Include a remote file (in vim)

Like vim scp://yourhost//your/file but in vim cmds.

Typing the current date ( or any string ) via a shortcut as if the keys had been actually typed with the hardware keyboard in any application.

That works in all softs, CLI or GUI... I don't want to waste time to all the time typing the same stuff . So, I have that command in my window manager shortcuts ( meta+l ). All the window managers have editable shortcuts AFAIK. If not, or you don't want to use it that way, you can easily use the xbindkeys soft. I you're using kde4, you can run : $ systemsettings then open "inputs actions" and create a new shortcut. For Gnome take a look there : http://www.cyberciti.biz/faq/howto-create-keyboard-shortcuts-in-gnome/ A more advanced one, with strings and newlines : $ xvkbd -xsendevent -text "---8

skip broken piece of a loop but not exit the loop entirely

useful for loops like for i in $(cat list_of_servers); do ssh -q $i hostname; done if there is an unreachable server, you can just press ctrl + \ to skip that server and continue on with the loop

Stay in the loop…

Follow the Tweets.

Every new command is wrapped in a tweet and posted to Twitter. Following the stream is a great way of staying abreast of the latest commands. For the more discerning, there are Twitter accounts for commands that get a minimum of 3 and 10 votes - that way only the great commands get tweeted.

» http://twitter.com/commandlinefu
» http://twitter.com/commandlinefu3
» http://twitter.com/commandlinefu10

Subscribe to the feeds.

Use your favourite RSS aggregator to stay in touch with the latest commands. There are feeds mirroring the 3 Twitter streams as well as for virtually every other subset (users, tags, functions,…):

Subscribe to the feed for:

» all commands
» commands with 3 up-votes (commandlinefu3)
» commands with 10 up-votes (commandlinefu10)
» commands by ryanchapman