You know the pain, you cloned a repo over HTTPS, and now Git asks you for your password each time you want to push or pull.
Chances are you already have the git credential-osxkeychain command installed.
If not, just install Git with brew: brew install git.
Once installed, just tell Git to use the KeyChain to store your credentials:
git config --global credential.helper osxkeychain
When a team signs their commits, it’s easy to verify the commits are actually from the team members.
If you don’t have a GPG key yet, generate one with gpg --gen-key. Enter the info at the prompt, and then type gpg --list-secret-keys --keyid-format LONG to view your key info.
At the line starting with sec, the string between the / and the space is your PUBLIC_KEY_ID. Note it down, and add run the following command to instruct git to use it:
git config user.signingkey PUBLIC_KEY_ID
git config gpg.program gpg
git config commit.gpgsign true
No need to close your terminal tab anymore (or furiously hitting your keyboard) when your SSH session frozen. SSH has an escape sequence that will let you properly close the connection and give you back the prompt. In order, type: Return, ~, .
That’s it! This will send an escape sequence to your local SSH socket and close the connection.
SSH has more escape sequences under the hood, hit Return ~ ? to display the full list:
Sometimes you have PSD or a small-ish SQLite file you’d like to track with Git. The problem is Git is bad at tracking changes in big binary files by default. With Git Large File Storage (LFS) you can replace these large files with text pointers while storing the file contents on a remote server. Both GitHub and BitBucket support it. Here is how to get started:
1. Install Git LFS extension (Mac here):
brew install git-lfs
By Fabien Loudet, Senior SysOps at Rosetta Stone
Say you want to execute a command with elevated privileges (root), but also want to keep your environment variables (HTTP_PROXY for instance).
sudo offers this feature through its -E option, from the manpage:
-E The -E (preserve environment) option indicates to the
security policy that the user wishes to preserve their
By Fabien Loudet, Senior SysOps at Rosetta Stone
Debian based distributions offers a package named molly-guard. It is a utility preventing yourself to accidentally reboot or shutdown the wrong system.
Once installed, it will override the existing shutdown, reboot, halt and poweroff commands by asking you to type the hostname of the machine, in order to confirm that it is really what you intended to do.
$ sudo reboot
W: molly-guard: SSH session detected!
If your app is about searching (business directories, dictionaries, etc) or a catalog of browsable items, it’s always a good idea to let your API use a read-only database user. Another use case would be for doing backups, no write permissions needed either.
Here is how to do that for PostgreSQL v9.0+ (syntax quasi-similar for MySQL):
-- Say we just created the user "pouet"
-- Allow the user to CONNECT
GRANT CONNECT ON DATABASE mydb TO pouet;
Recommended by Fabien Loudet, Senior SysOps at Rosetta Stone
The vipe program from the moreutils package allows to "insert a text editor into a pipe". That is, run your EDITOR in the middle of a unix pipeline and edit the data that is piped.
command1 | vipe | command2