![](\"https://img.shields.io/badge/最近一次与英文版同步-2021--04--24-green\"){kind=icon}
Sorry, the page you were looking for doesn't exist or has been moved.
\nYou can go back to the home page or use the search bar to find what you're looking for.
\nIf you think this is an error, please contact us.
\n)\n\n\n欢迎为本项目做出贡献!如果您要编辑添加内容,请提出 issue 或提交 pull request。\n\n## 开发部署\n\n要在本地构建并查看网站,请运行:\n\n```bash\nbundle install\nbundle exec jekyll serve -w\n```\n\n## 许可说明\n\n本课程的所有内容,包括网站源代码、讲义、练习题和讲课视频,均按照 [CC BY-NC-SA 4.0](https://creativecommons.org/licenses/by-nc-sa/4.0/) 国际许可协议进行许可。\n有关贡献或翻译的更多信息,请参见[这里](https://missing.csail.mit.edu/license)。\n\n-----------------\n\n## 2026 课程状态\n\n\n\n请在[sync-offical-2026](https://github.com/missing-semester-cn/missing-semester-cn.github.io/tree/sync-offical-2026)分支的README中认领任务并提交翻译。\n\n| 讲义 | 翻译者 | 状态 |\n| ---- | ---- | ---- |\n| [agentic-coding.md](_2026/agentic-coding.md) | [@Lingfeng AI](https://github.com/hanxiaomax) | 待翻译 |\n| [beyond-code.md](_2026/beyond-code.md) | 待分配 | 待翻译 |\n| [code-quality.md](_2026/code-quality.md) | 待分配 | 待翻译 |\n| [command-line-environment.md](_2026/command-line-environment.md) | 待分配 | 待翻译 |\n| [course-shell.md](_2026/course-shell.md) | 待分配 | 待翻译 |\n| [debugging-profiling.md](_2026/debugging-profiling.md) | 待分配 | 待翻译 |\n| [development-environment.md](_2026/development-environment.md) | 待分配 | 待翻译 |\n| [shipping-code.md](_2026/shipping-code.md) | 待分配 | 待翻译 |\n| [version-control.md](_2026/version-control.md) | 待分配 | 待翻译 |\n\n-----------------\n\n## 项目状态\n\n想要参与这个翻译项目,请通过创建一个 issue 来预订您的主题,我会相应地更新此表格,以避免重复工作。\n\n\n| 讲义 | 翻译者 | 状态 |\n| ---- | ---- |---- |\n| [course-shell.md](_2020/course-shell.md) | [@Lingfeng AI](https://github.com/hanxiaomax) | 完成 |\n| [shell-tools.md](_2020/shell-tools.md) | [@Lingfeng AI](https://github.com/hanxiaomax) | 完成 |\n| [editors.md](_2020/editors.md) | [@stechu](https://github.com/stechu) | 完成 |\n| [data-wrangling.md](_2020/data-wrangling.md) | [@Lingfeng AI](https://github.com/hanxiaomax) | 完成 |\n| [command-line.md](_2020/command-line.md) | [@Lingfeng AI](https://github.com/hanxiaomax) | 完成 |\n| [version-control.md](_2020/version-control.md) | [@Lingfeng AI](https://github.com/hanxiaomax) | 完成 |\n| [debugging-profiling.md](_2020/debugging-profiling.md) |[@Lingfeng AI](https://github.com/hanxiaomax) | 完成 |\n| [metaprogramming.md](_2020/metaprogramming.md) | [@Lingfeng AI](https://github.com/hanxiaomax) | 完成 |\n| [security.md](_2020/security.md) | [@catcarbon](https://github.com/catcarbon) | 完成 |\n| [potpourri.md](_2020/potpourri.md) | [@catcarbon](https://github.com/catcarbon) | 完成 |\n| [qa.md](_2020/qa.md) | [@AA1HSHH](https://github.com/AA1HSHH) | 完成 |\n| [about.md](about.md) | [@Binlogo](https://github.com/Binlogo) | 完成 |\n\n\n## 新项目\n\n[Learncpp中文版](https://github.com/hanxiaomax/Learncpp_CN).\n\n"
},
{
"path": "_2019/automation.md",
"content": "---\nlayout: lecture\ntitle: \"Automation\"\npresenter: Jose\nvideo:\n aspect: 56.25\n id: BaLlAaHz-1k\n---\n\nSometimes you write a script that does something but you want for it to run periodically, say a backup task. You can always write an *ad hoc* solution that runs in the background and comes online periodically. However, most UNIX systems come with the cron daemon which can run task with a frequency up to a minute based on simple rules.\n\nOn most UNIX systems the cron daemon, `crond` will be running by default but you can always check using `ps aux | grep crond`.\n\n## The crontab\n\nThe configuration file for cron can be displayed running `crontab -l` edited running `crontab -e` The time format that cron uses are five space separated fields along with the user and command\n\n- **minute** - What minute of the hour the command will run on,\n and is between '0' and '59'\n- **hour** - This controls what hour the command will run on, and is specified in\n the 24 hour clock, values must be between 0 and 23 (0 is midnight)\n- **dom** - This is the Day of Month, that you want the command run on, e.g. to\n run a command on the 19th of each month, the dom would be 19.\n- **month** - This is the month a specified command will run on, it may be specified\n numerically (0-12), or as the name of the month (e.g. May)\n- **dow** - This is the Day of Week that you want a command to be run on, it can\n also be numeric (0-7) or as the name of the day (e.g. sun).\n- **user** - This is the user who runs the command.\n- **command** - This is the command that you want run. This field may contain\n multiple words or spaces.\n\nNote that using an asterisk `*` means all and using an asterisk followed by a slash and number means every nth value. So `*/5` means every five. Some examples are\n\n```shell\n*/5 * * * * # Every five minutes\n 0 * * * * # Every hour at o'clock\n 0 9 * * * # Every day at 9:00 am\n 0 9-17 * * * # Every hour between 9:00am and 5:00pm\n 0 0 * * 5 # Every Friday at 12:00 am\n 0 0 1 */2 * # Every other month, the first day, 12:00am\n```\nYou can find many more examples of common crontab schedules in [crontab.guru](https://crontab.guru/examples.html)\n\n## Shell environment and logging\n\nA common pitfall when using cron is that it does not load the same environment scripts that common shells do such as `.bashrc`, `.zshrc`, &c and it does not log the output anywhere by default. Combined with the maximum frequency being one minute, it can become quite painful to debug cronscripts initially.\n\nTo deal with the environment, make sure that you use absolute paths in all your scripts and modify your environment variables such as `PATH` so the script can run successfully. To simplify logging, a good recommendation is to write your crontab in a format like this\n\n\n```shell\n* * * * * user /path/to/cronscripts/every_minute.sh >> /tmp/cron_every_minute.log 2>&1\n```\n\nAnd write the script in a separate file. Remember that `>>` appends to the file and that `2>&1` redirects `stderr` to `stdout` (you might to want keep them separate though).\n\n## Anacron\n\nOne caveat of using cron is that if the computer is powered off or asleep when the cron script should run then it is not executed. For frequent tasks this might be fine, but if a task runs less often, you may want to ensure that it is executed. [anacron](https://linux.die.net/man/8/anacron) works similar to `cron` except that the frequency is specified in days. Unlike cron, it does not assume that the machine is running continuously. Hence, it can be used on machines that aren't running 24 hours a day, to control regular jobs as daily, weekly, and monthly jobs.\n\n\n## Exercises\n\n1. Make a script that looks every minute in your downloads folder for any file that is a picture (you can look into [MIME types](https://developer.mozilla.org/en-US/docs/Web/HTTP/Basics_of_HTTP/MIME_types) or use a regular expression to match common extensions) and moves them into your Pictures folder.\n\n1. Write a cron script to weekly check for outdated packages in your system and prompts you to update them or updates them automatically.\n\n\n\n{% comment %}\n\n- [fswatch](https://github.com/emcrisostomo/fswatch)\n- GUI automation (pyautogui) [Automating the boring stuff Chapter 18](https://automatetheboringstuff.com/chapter18/)\n- Ansible/puppet/chef\n\n- https://xkcd.com/1205/\n- https://xkcd.com/1319/\n\n{% endcomment %}\n"
},
{
"path": "_2019/backups.md",
"content": "---\nlayout: lecture\ntitle: \"Backups\"\npresenter: Jose\nvideo:\n aspect: 56.25\n id: lrpqYF8tcYQ\n---\n\nThere are two types of people:\n\n- Those who do backups\n- Those who will do backups\n\nAny data you own that you haven't backed up is data that could be gone at any moment, forever. Here we will cover some good backup basics and the pitfalls of some approaches.\n\n## 3-2-1 Rule\n\nThe [3-2-1 rule](https://www.us-cert.gov/sites/default/files/publications/data_backup_options.pdf) is a general recommended strategy for backing up your data. It state that you should have:\n\n- at least **3 copies** of your data\n- **2** copies in **different mediums**\n- **1** of the copies being **offsite**\n\nThe main idea behind this recommendation is not to put all your eggs in one basket. Having 2 different devices/disks ensures that a single hardware failure doesn't take away all your data. Similarly, if you store your only backup at home and the house burns down or gets robbed you lose everything, that's what the offsite copy is there for. Onsite backups give you availability and speed, offsite give you the resiliency should a disaster happen.\n\n## Testing your backups\n\nA common pitfall when performing backups is blindly trusting whatever the system says it's doing and not verifying that the data can be properly recovered. Toy Story 2 was almost lost and their backups were not working, [luck](https://www.youtube.com/watch?v=8dhp_20j0Ys) ended up saving them.\n\n## Versioning\n\nYou should understand that [RAID](https://en.wikipedia.org/wiki/RAID) is not a backup, and in general **mirroring is not a backup solution**. Simply syncing your files somewhere will not help in several scenarios, such as:\n\n- Data corruption\n- Malicious software\n- Deleting files by mistake\n\nIf the changes on your data propagate to the backup then you won't be able to recover in these scenarios. Note that this is the case for a lot of cloud storage solutions like Dropbox, Google Drive, One Drive, &c. Some of them do keep deleted data around for short amounts of time but usually the interface to recover is not something you want to be using to recover large amounts of files.\n\nA proper backup system should be versioned in order to prevent this failure mode. By providing different snapshots in time one can easily navigate them to restore whatever was lost. The most widely known software of this kind is macOS Time Machine.\n\n## Deduplication\n\nHowever, making several copies of your data might be extremely costly in terms of disk space. Nevertheless, from one version to the next, most data will be identical and needs not be transferred again. This is where [data deduplication](https://en.wikipedia.org/wiki/Data_deduplication) comes into play, by keeping track of what has already been stored one can do **incremental backups** where only the changes from one version to the next need to be stored. This significantly reduces the amount of space needed for backups beyond the first copy.\n\n## Encryption\n\nSince we might be backing up to untrusted third parties like cloud providers it is worth considering that if you backup your data is copied *as is* then it could potentially be looked by unwanted agents. Documents like your taxes are sensitive information that should not be backed up in plain format. To prevent this, many backup solutions offer **client side encryption** where data is encrypted before being sent to the server. That way the server cannot read the data it is storing but you can decrypt it with your secret key.\n\nAs a side note, if your disk (or home partition) is not encrypted, then anyone that get hold of your computer can manage to override the user access controls and read your data. Modern hardware supports fast and efficient read and writes of encrypted data so you might want to consider enabling **full disk encryption**.\n\n\n## Append only\n\nThe properties reviewed so far focus on hardware failure or user mistakes but fail to address what happens if a malicious agent wanted to delete your data. Namely, say someone hacks into your system, are they able to wipe all your copies of the data you care about? If you worry about that scenario then you need some sort of append only backup solution. In general, this means having a server that will allow you to send new data but will refuse to delete existing data. Usually users have two keys, an append only key that supports creating new backups and a full access key that also allows for deleting old backups that are no longer needed. The latter one is stored offline.\n\nNote that this is a quite challenging scenario since you need the ability to make changes whilst still preventing a malicious user from deleting your data. Existing commercial solutions include [Tarsnap](https://www.tarsnap.com/) and [Borgbase](https://www.borgbase.com/).\n\n\n## Additional considerations\n\nSome other things you may want to look into are:\n\n- **Periodic backups**: outdated backups can become pretty useless. Making backups regularly should be a consideration for your system\n- **Bootable backups**: some programs allow you to clone your entire disk. That way you have an image that contains an entire copy of your system you can boot directly from.\n- **Differential backup strategies**, you may not necessarily care the same about all your data. You can define different backup policies for different types of data.\n- **Append only backups** an additional consideration is to enforce append only operations to your backup repositories in order to prevent malicious agents to delete them if they get hold of your machine.\n\n\n## Webservices\n\nNot all the data that you use lives on your hard disk. If you use **webservices**, then it might be the case that some data you care about, such as Google Docs presentations or Spotify playlists, is stored online. Another easy example that is easy to forget is email accounts with web access, such as Gmail. Figuring out a backup solution in these cases is somewhat trickier. However, there are many services that allow you to download your data, either directly or via an API. Tools such as [gmvault](https://github.com/gaubert/gmvault) for Gmail are available to download the email files to your computer.\n\n\n## Webpages\n\nSimilarly, some high quality content can be found online in the form of webpages. If said content is static one can easily back it up by just saving the website and all of its attachments. Another alternative is the [Wayback Machine](https://archive.org/web/), a massive digital archive of the World Wide Web managed by the [Internet Archive](https://archive.org/), a non profit organization focused on the preservation of all sorts of media. The Wayback Machine allows you to capture and archive webpages being able to later retrieve all the snapshots that have been archived for that website. If you find it useful, consider [donating](https://archive.org/donate/) to the project.\n\n\n## Resources\n\nSome good backup programs and services we have used and can honestly recommend:\n\n- [Tarsnap](https://www.tarsnap.com/) - deduplicated, encrypted online backup service for the truly paranoid.\n- [Borg Backup](https://borgbackup.readthedocs.io) - deduplicated backup program that supports compression and authenticated encryption. If you need a cloud provider [rsync.net](https://www.rsync.net/products/borg.html) has special offerings for Borg users.\n- [rsync](https://rsync.samba.org/) is a utility that provides fast incremental file transfer. It is not a full backup solution.\n- [rclone](https://rclone.org/) like rsync but for cloud storage providers such as Amazon S3, Dropbox, Google Drive, rsync.net, &c. Supports client side encryption of remote folders.\n\n## Exercises\n\n1. Consider how you are (not) backing up your data and look into fixing/improving that.\n\n1. Figure out how to backup your email accounts\n\n1. Choose a webservice you use often (Spotify, Google Music, etc.) and figure out what options for backing up your data are. Often people have already made tools (such as [youtube-dl](https://ytdl-org.github.io/youtube-dl/)) solutions based on available APIs.\n\n1. Think of a website you have visited repeatedly over the years and look it up in [archive.org](https://archive.org/web/), how many versions does it have?\n\n1. One way to efficiently implement deduplication is to use hardlinks. Whereas symbolic link (also called a soft link or a symlink) is a file that points to another file or folder, a hardlink is a exact copy of the pointer (it uses the same inode and points to the same place in the disk). Thus if the original file is removed a symlink stops working whereas a hard link doesn't. However, hardlinks only work for files. Try using the command `ln` to create hard links and compare them to symlinks created with `ln -s`. (In macOS you will need to install the gnu coreutils or the hln package).\n"
},
{
"path": "_2019/command-line.md",
"content": "---\nlayout: lecture\ntitle: \"Command-line environment\"\npresenter: Jose\nvideo:\n aspect: 62.5\n id: i0rf1gpKL1E\n---\n\n## Aliases & Functions\n\nAs you can imagine it can become tiresome typing long commands that involve many flags or verbose options. Nevertheless, most shells support **aliasing**. For instance, an alias in bash has the following structure (note there is no space around the `=` sign):\n\n```bash\nalias alias_name=\"command_to_alias\"\n```\n\n\n\nAlias have many convenient features\n\n```bash\n# Alias can summarize good default flags\nalias ll=\"ls -lh\"\n\n# Save a lot of typing for common commands\nalias gc=\"git commit\"\n\n# Alias can overwrite existing commands\nalias mv=\"mv -i\"\nalias mkdir=\"mkdir -p\"\n\n# Alias can be composed\nalias la=\"ls -A\"\nalias lla=\"la -l\"\n\n# To ignore an alias run it prepended with \\\n\\ls\n# Or can be disabled using unalias\nunalias la\n\n```\n\n\n\nHowever in many scenarios aliases can be limiting, specially when you are trying to write chain commands together that take the same arguments. An alternative exists which is **functions** which are a midpoint between aliases and custom shell scripts.\n\nHere is an example function that makes a directory and move into it.\n\n```bash\nmcd () {\n mkdir -p $1\n cd $1\n}\n```\n\nAlias and functions will not persist shell sessions by default. To make an alias persistent you need to include it a one the shell startup script files like `.bashrc` or `.zshrc`. My suggestion is to write them separately in a `.alias` and `source` that file from your different shell config files.\n\n\n\n## Shells & Frameworks\n\nDuring shell and scripting we covered the `bash` shell since it is by far the most ubiquitous shell and most systems have it as the default option. Nevertheless, it is not the only option.\n\nFor example the `zsh` shell is a superset of `bash` and provides many convenient features out of the box such as:\n\n- Smarter globbing, `**`\n- Inline globbing/wildcard expansion\n- Spelling correction\n- Better tab completion/selection\n- Path expansion (`cd /u/lo/b` will expand as `/usr/local/bin`)\n\nMoreover many shells can be improved with **frameworks**, some popular general frameworks like [prezto](https://github.com/sorin-ionescu/prezto) or [oh-my-zsh](https://github.com/robbyrussell/oh-my-zsh), and smaller ones that focus on specific features like for example [zsh-syntax-highlighting](https://github.com/zsh-users/zsh-syntax-highlighting) or [zsh-history-substring-search](https://github.com/zsh-users/zsh-history-substring-search). Other shells like [fish](https://fishshell.com/) include a lot of these user-friendly features by default. Some of these features include:\n\n- Right prompt\n- Command syntax highlighting\n- History substring search\n- manpage based flag completions\n- Smarter autocompletion\n- Prompt themes\n\nOne thing to note when using these frameworks is that if the code they run is not properly optimized or it is too much code, your shell can start slowing down. You can always profile it and disable the features that you do not use often or value over speed.\n\n## Terminal Emulators & Multiplexers\n\nAlong with customizing your shell it is worth spending some time figuring out your choice of **terminal emulator** and its settings. There are many many terminal emulators out there (here is a [comparison](https://anarc.at/blog/2018-04-12-terminal-emulators-1/)).\n\nSince you might be spending hundreds to thousands of hours in your terminal it pays off to look into its settings. Some of the aspects that you may want to modify in your terminal include:\n\n- Font choice\n- Color Scheme\n- Keyboard shortcuts\n- Tab/Pane support\n- Scrollback configuration\n- Performance (some newer terminals like [Alacritty](https://github.com/jwilm/alacritty) offer GPU acceleration)\n\nIt is also worth mentioning **terminal multiplexers** like [tmux](https://github.com/tmux/tmux). `tmux` allows you to pane and tab multiple shell sessions. It also supports attaching and detaching which is a very common use-case when you are working on a remote server and want to keep you shell running without having to worry about disowning you current processes (by default when you log out your processes are terminated). This way, with `tmux` you can jump into and out of complex terminal layouts. Similar to terminal emulators `tmux` supports heavy customization by editing the `~/.tmux.conf` file.\n\n\n## Command-line utilities\n\nThe command line utilities that most UNIX based operating systems have by default are more than enough to do 99% of the stuff you usually need to do.\n\n\nIn the next few subsections I will cover alternative tools for extremely common shell operations which are more convenient to use. Some of these tools add new improved functionality to the command whereas others just focus on providing a simpler, more intuitive interface with better defaults.\n\n### `fasd` vs `cd`\n\nEven with improved path expansion and tab autocomplete, changing directories can become quite repetitive. [Fasd](https://github.com/clvv/fasd) (or [autojump](https://github.com/wting/autojump)) solves this issue by keeping track of recent and frequent folders you have been to and performing fuzzy matching.\n\nThus if I have visited the path `/home/user/awesome_project/code` running `z code` will `cd` to it. If I have multiple folders called code I can disambiguate by running `z awe code` which will be closer match. Unlike autojump, fasd also provides commands that instead of performing `cd` just expand frequent and /or recent files,folders or both.\n\n\n### `bat` vs `cat`\n\nEven though `cat` does it job perfectly, [bat](https://github.com/sharkdp/bat) improves it by providing syntax highlighting, paging, line numbers and git integration.\n\n\n### `exa`/`ranger` vs `ls`\n\n`ls` is a great command but some of the defaults can be annoying such as displaying the size in raw bytes. [exa](https://github.com/ogham/exa) provides better defaults\n\nIf you are in need of navigating many folders and/or previewing many files, [ranger](https://github.com/ranger/ranger) can be much more efficient than `cd` and `cat` due to its wonderful interface. It is quite customizable and with a correct setup you can even [preview images](https://github.com/ranger/ranger/wiki/Image-Previews) in your terminal\n\n### `fd` vs `find`\n\n[fd](https://github.com/sharkdp/fd) is a simple, fast and user-friendly alternative to `find`. `find` defaults like having to use the `--name` flag (which is what you want to do 99% of the time) make it easier to use in an every day basis. It is also `git` aware and will skip files in your `.gitignore` and `.git` folder by default. It also has nice color coding by default.\n\n### `rg/fzf` vs `grep`\n\n`grep` is a great tool but if you want to grep through many files at once, there are better tools for that purpose. [ack](https://github.com/beyondgrep/ack3), [ag](https://github.com/ggreer/the_silver_searcher) & [rg](https://github.com/BurntSushi/ripgrep) recursively search your current directory for a regex pattern while respecting your gitignore rules. They all work pretty similar but I favor `rg` due to how fast it can search my entire home directory.\n\nSimilarly, it can be easy to find yourself doing `CMD | grep PATTERN` over an over again. [fzf](https://github.com/junegunn/fzf) is a command line fuzzy finder that enables you to interactively filter the output of pretty much any command.\n\n### `rsync` vs `cp/scp`\n\nWhereas `mv` and `scp` are perfect for most scenarios, when copying/moving around large amounts of files, large files or when some of the data is already on the destination `rsync` is a huge improvement. `rsync` will skip files that have already been transferred and with the `--partial` flag it can resume from a previously interrupted copy.\n\n### `trash` vs `rm`\n\n`rm` is a dangerous command in the sense that once you delete a file there is no turning back. However, modern OS do not behave like that when you delete something in the file explorer, they just move it to the Trash folder which is cleared periodically.\n\nSince how the trash is managed varies from OS to OS there is not a single CLI utility. In macOS there is [trash](https://hasseg.org/trash/) and in linux there is [trash-cli](https://github.com/andreafrancia/trash-cli/) among others.\n\n### `mosh` vs `ssh`\n\n`ssh ` is a very handy tool but if you have a slow connection, the lag can become annoying and if the connection interrupts you have to reconnect. [mosh](https://mosh.org/) is a handy tool that works allows roaming, supports intermittent connectivity, and provides intelligent local echo.\n\n### `tldr` vs `man`\n\nYou can figure out what a commands does and what options it has using `man` and the `-h`/'--help' flag most of the time. However, in some cases it can be a bit daunting navigating these if they are detailed\n\nThe [tldr](https://github.com/tldr-pages/tldr) command is a community driven documentation system that's available from the command line and gives a few simple illustrative examples of what the command does and the most common argument options.\n\n\n### `aunpack` vs `tar/unzip/unrar`\n\nAs [this xkcd](https://xkcd.com/1168/) references, it can be quite tricky to remember the options for `tar` and sometimes you need a different tool altogether such as `unrar` for .rar files.\nThe [atool](https://www.nongnu.org/atool/) package provides the `aunpack` command which will figure out the correct options and always put the extracted archives in a new folder.\n\n\n## Exercises\n\n1. Run `cat .bash_history | sort | uniq -c | sort -rn | head -n 10` (or `cat .zhistory | sort | uniq -c | sort -rn | head -n 10` for zsh) to get top 10 most used commands and consider writing shorter aliases for them\n1. Choose a terminal emulator and figure out how to change the following properties:\n - Font choice\n - Color scheme. How many colors does a standard scheme have? why?\n - Scrollback history size\n\n1. Install `fasd` or some similar software and write a bash/zsh function called `v` that performs fuzzy matching on the passed arguments and opens up the top result in your editor of choice. Then, modify it so that if there are multiple matches you can select them with `fzf`.\n1. Since `fzf` is quite convenient for performing fuzzy searches and the shell history is quite prone to those kind of searches, investigate how to bind `fzf` to `^R`. You can find some info [here](https://github.com/junegunn/fzf/wiki/Configuring-shell-key-bindings)\n1. What does the `--bar` option do in `ack`?\n"
},
{
"path": "_2019/course-overview.md",
"content": "---\nlayout: lecture\ntitle: \"Course Overview\"\npresenter: Anish\nvideo:\n aspect: 56.25\n id: qw2c6ffSVOM\n---\n\n# Motivation\n\nThis class is about [hacker](https://en.wikipedia.org/wiki/Hacker_culture)\ntools, not [hacker](https://en.wikipedia.org/wiki/Security_hacker) tools.\n\nMIT classes do not cover any of this content in detail. It's hugely beneficial\nto be proficient with your tools: it'll save you a lot of time (and the payoff\ntime is very short).\n\nWe want to teach you about new tools, how to make the most of your tools, how\nto customize your tools, and how to extend your tools.\n\n# Class structure\n\nWe have 6 lectures covering a [variety of topics](/2019/). We have lecture\nnotes online, but there will be a lot of content covered in class (e.g. in the\nform of demos) that may not be in the notes. We will be recording lectures.\n\nEach class is split into two 50-minute lectures with a 10-minute break in\nbetween. Lectures are mostly live demonstrations followed by hands-on\nexercises. We might have a short amount of time at the end of each class to get\nstarted on the exercises in an office-hours-style setting.\n\nTo make the most of the class, you should go through all the exercises on your\nown. We'll inspire you to learn more about your tools, and we'll show you\nwhat's possible and cover some of the basics in detail, but we can't teach you\neverything in the time we have.\n"
},
{
"path": "_2019/data-wrangling.md",
"content": "---\nlayout: lecture\ntitle: \"Data Wrangling\"\npresenter: Jon\nvideo:\n aspect: 56.25\n id: VW2jn9Okjhw\n---\n\nHave you ever had a bunch of text and wanted to do something with it?\nGood. That's what data wrangling is all about!\nSpecifically, adapting data from one format to another, until you end up\nwith exactly what you wanted.\n\nWe've already seen basic data wrangling: `journalctl | grep -i intel`.\n - find all system log entries that mention Intel (case insensitive)\n - really, most of data wrangling is about knowing what tools you have,\n and how to combine them.\n\nLet's start from the beginning: we need a data source, and something to\ndo with it. Logs often make for a good use-case, because you often want\nto investigate things about them, and reading the whole thing isn't\nfeasible. Let's figure out who's trying to log into my server by looking\nat my server's log:\n\n```bash\nssh myserver journalctl\n```\n\nThat's far too much stuff. Let's limit it to ssh stuff:\n\n```bash\nssh myserver journalctl | grep sshd\n```\n\nNotice that we're using a pipe to stream a _remote_ file through `grep`\non our local computer! `ssh` is magical. This is still way more stuff\nthan we wanted though. And pretty hard to read. Let's do better:\n\n```bash\nssh myserver journalctl | grep sshd | grep \"Disconnected from\"\n```\n\nThere's still a lot of noise here. There are _a lot_ of ways to get rid\nof that, but let's look at one of the most powerful tools in your\ntoolkit: `sed`.\n\n`sed` is a \"stream editor\" that builds on top of the old `ed` editor. In\nit, you basically give short commands for how to modify the file, rather\nthan manipulate its contents directly (although you can do that too).\nThere are tons of commands, but one of the most common ones is `s`:\nsubstitution. For example, we can write:\n\n```bash\nssh myserver journalctl\n | grep sshd\n | grep \"Disconnected from\"\n | sed 's/.*Disconnected from //'\n```\n\nWhat we just wrote was a simple _regular expression_; a powerful\nconstruct that lets you match text against patterns. The `s` command is\nwritten on the form: `s/REGEX/SUBSTITUTION/`, where `REGEX` is the\nregular expression you want to search for, and `SUBSTITUTION` is the\ntext you want to substitute matching text with.\n\n## Regular expressions\n\nRegular expressions are common and useful enough that it's worthwhile to\ntake some time to understand how they work. Let's start by looking at\nthe one we used above: `/.*Disconnected from /`. Regular expressions are\nusually (though not always) surrounded by `/`. Most ASCII characters\njust carry their normal meaning, but some characters have \"special\"\nmatching behavior. Exactly which characters do what vary somewhat\nbetween different implementations of regular expressions, which is a\nsource of great frustration. Very common patterns are:\n\n - `.` means \"any single character\" except newline\n - `*` zero or more of the preceding match\n - `+` one or more of the preceding match\n - `[abc]` any one character of `a`, `b`, and `c`\n - `(RX1|RX2)` either something that matches `RX1` or `RX2`\n - `^` the start of the line\n - `$` the end of the line\n\n`sed`'s regular expressions are somewhat weird, and will require you to\nput a `\\` before most of these to give them their special meaning. Or\nyou can pass `-E`.\n\nSo, looking back at `/.*Disconnected from /`, we see that it matches\nany text that starts with any number of characters, followed by the\nliteral string \"Disconnected from \". Which is what we wanted. But\nbeware, regular expressions are tricky. What if someone tried to log in\nwith the username \"Disconnected from\"? We'd have:\n\n```\nJan 17 03:13:00 thesquareplanet.com sshd[2631]: Disconnected from invalid user Disconnected from 46.97.239.16 port 55920 [preauth]\n```\n\nWhat would we end up with? Well, `*` and `+` are, by default, \"greedy\".\nThey will match as much text as they can. So, in the above, we'd end up\nwith just\n\n```\n46.97.239.16 port 55920 [preauth]\n```\n\nWhich may not be what we wanted. In some regular expression\nimplementations, you can just suffix `*` or `+` with a `?` to make them\nnon-greedy, but sadly `sed` doesn't support that. We _could_ switch to\nperl's command-line mode though, which _does_ support that construct:\n\n```bash\nperl -pe 's/.*?Disconnected from //'\n```\n\nWe'll stick to `sed` for the rest of this though, because it's by far\nthe more common tool for these kinds of jobs. `sed` can also do other\nhandy things like print lines following a given match, do multiple\nsubstitutions per invocation, search for things, etc. But we won't cover\nthat too much here. `sed` is basically an entire topic in and of itself,\nbut there are often better tools.\n\nOkay, so we also have a suffix we'd like to get rid of. How might we do\nthat? It's a little tricky to match just the text that follows the\nusername, especially if the username can have spaces and such! What we\nneed to do is match the _whole_ line:\n\n```bash\n | sed -E 's/.*Disconnected from (invalid |authenticating )?user .* [^ ]+ port [0-9]+( \\[preauth\\])?$//'\n```\n\nLet's look at what's going on with a [regex\ndebugger](https://regex101.com/r/qqbZqh/2). Okay, so the start is still\nas before. Then, we're matching any of the \"user\" variants (there are\ntwo prefixes in the logs). Then we're matching on any string of\ncharacters where the username is. Then we're matching on any single word\n(`[^ ]+`; any non-empty sequence of non-space characters). Then the word\n\"port\" followed by a sequence of digits. Then possibly the suffix\n` [preauth]`, and then the end of the line.\n\nNotice that with this technique, as username of \"Disconnected from\"\nwon't confuse us any more. Can you see why?\n\nThere is one problem with this though, and that is that the entire log\nbecomes empty. We want to _keep_ the username after all. For this, we\ncan use \"capture groups\". Any text matched by a regex surrounded by\nparentheses is stored in a numbered capture group. These are available\nin the substitution (and in some engines, even in the pattern itself!)\nas `\\1`, `\\2`, `\\3`, etc. So:\n\n```bash\n | sed -E 's/.*Disconnected from (invalid |authenticating )?user (.*) [^ ]+ port [0-9]+( \\[preauth\\])?$/\\2/'\n```\n\nAs you can probably imagine, you can come up with _really_ complicated\nregular expressions. For example, here's an article on how you might\nmatch an [e-mail\naddress](https://www.regular-expressions.info/email.html). It's [not\neasy](https://web.archive.org/web/20221223174323/http://emailregex.com/). And there's [lots of\ndiscussion](https://stackoverflow.com/questions/201323/how-to-validate-an-email-address-using-a-regular-expression/1917982).\nAnd people have [written\ntests](https://fightingforalostcause.net/content/misc/2006/compare-email-regex.php).\nAnd [test matrices](https://mathiasbynens.be/demo/url-regex). You can\neven write a regex for determining if a given number [is a prime\nnumber](https://www.noulakaz.net/2007/03/18/a-regular-expression-to-check-for-prime-numbers/).\n\nRegular expressions are notoriously hard to get right, but they are also\nvery handy to have in your toolbox!\n\n## Back to data wrangling\n\nOkay, so we now have\n\n```bash\nssh myserver journalctl\n | grep sshd\n | grep \"Disconnected from\"\n | sed -E 's/.*Disconnected from (invalid |authenticating )?user (.*) [^ ]+ port [0-9]+( \\[preauth\\])?$/\\2/'\n```\n\nWe could do it just with `sed`, but why would we? For fun is why.\n\n```bash\nssh myserver journalctl\n | sed -E\n -e '/Disconnected from/!d'\n -e 's/.*Disconnected from (invalid |authenticating )?user (.*) [^ ]+ port [0-9]+( \\[preauth\\])?$/\\2/'\n```\n\nThis shows off some of `sed`'s capabilities. `sed` can also inject text\n(with the `i` command), explicitly print lines (with the `p` command),\nselect lines by index, and lots of other things. Check `man sed`!\n\nAnyway. What we have now gives us a list of all the usernames that have\nattempted to log in. But this is pretty unhelpful. Let's look for common\nones:\n\n```bash\nssh myserver journalctl\n | grep sshd\n | grep \"Disconnected from\"\n | sed -E 's/.*Disconnected from (invalid |authenticating )?user (.*) [^ ]+ port [0-9]+( \\[preauth\\])?$/\\2/'\n | sort | uniq -c\n```\n\n`sort` will, well, sort its input. `uniq -c` will collapse consecutive\nlines that are the same into a single line, prefixed with a count of the\nnumber of occurrences. We probably want to sort that too and only keep\nthe most common logins:\n\n```bash\nssh myserver journalctl\n | grep sshd\n | grep \"Disconnected from\"\n | sed -E 's/.*Disconnected from (invalid |authenticating )?user (.*) [^ ]+ port [0-9]+( \\[preauth\\])?$/\\2/'\n | sort | uniq -c\n | sort -nk1,1 | tail -n10\n```\n\n`sort -n` will sort in numeric (instead of lexicographic) order. `-k1,1`\nmeans \"sort by only the first whitespace-separated column\". The `,n`\npart says \"sort until the `n`th field, where the default is the end of\nthe line. In this _particular_ example, sorting by the whole line\nwouldn't matter, but we're here to learn!\n\nIf we wanted the _least_ common ones, we could use `head` instead of\n`tail`. There's also `sort -r`, which sorts in reverse order.\n\nOkay, so that's pretty cool, but we'd sort of like to only give the\nusernames, and maybe not one per line?\n\n```bash\nssh myserver journalctl\n | grep sshd\n | grep \"Disconnected from\"\n | sed -E 's/.*Disconnected from (invalid |authenticating )?user (.*) [^ ]+ port [0-9]+( \\[preauth\\])?$/\\2/'\n | sort | uniq -c\n | sort -nk1,1 | tail -n10\n | awk '{print $2}' | paste -sd,\n```\n\nLet's start with `paste`: it lets you combine lines (`-s`) by a given\nsingle-character delimiter (`-d`). But what's this `awk` business?\n\n## awk -- another editor\n\n`awk` is a programming language that just happens to be really good at\nprocessing text streams. There is _a lot_ to say about `awk` if you were\nto learn it properly, but as with many other things here, we'll just go\nthrough the basics.\n\nFirst, what does `{print $2}` do? Well, `awk` programs take the form of\nan optional pattern plus a block saying what to do if the pattern\nmatches a given line. The default pattern (which we used above) matches\nall lines. Inside the block, `$0` is set to the entire line's contents,\nand `$1` through `$n` are set to the `n`th _field_ of that line, when\nseparated by the `awk` field separator (whitespace by default, change\nwith `-F`). In this case, we're saying that, for every line, print the\ncontents of the second field, which happens to be the username!\n\nLet's see if we can do something fancier. Let's compute the number of\nsingle-use usernames that start with `c` and end with `e`:\n\n```bash\n | awk '$1 == 1 && $2 ~ /^c[^ ]*e$/ { print $2 }' | wc -l\n```\n\nThere's a lot to unpack here. First, notice that we now have a pattern\n(the stuff that goes before `{...}`). The pattern says that the first\nfield of the line should be equal to 1 (that's the count from `uniq\n-c`), and that the second field should match the given regular\nexpression. And the block just says to print the username. We then count\nthe number of lines in the output with `wc -l`.\n\nHowever, `awk` is a programming language, remember?\n\n```awk\nBEGIN { rows = 0 }\n$1 == 1 && $2 ~ /^c[^ ]*e$/ { rows += $1 }\nEND { print rows }\n```\n\n`BEGIN` is a pattern that matches the start of the input (and `END`\nmatches the end). Now, the per-line block just adds the count from the\nfirst field (although it'll always be 1 in this case), and then we print\nit out at the end. In fact, we _could_ get rid of `grep` and `sed`\nentirely, because `awk` [can do it\nall](https://backreference.org/2010/02/10/idiomatic-awk/), but we'll\nleave that as an exercise to the reader.\n\n## Analyzing data\n\nYou can do math!\n\n```bash\n | paste -sd+ | bc -l\n```\n\n```bash\necho \"2*($(data | paste -sd+))\" | bc -l\n```\n\nYou can get stats in a variety of ways.\n[`st`](https://github.com/nferraz/st) is pretty neat, but if you already\nhave R:\n\n```bash\nssh myserver journalctl\n | grep sshd\n | grep \"Disconnected from\"\n | sed -E 's/.*Disconnected from (invalid |authenticating )?user (.*) [^ ]+ port [0-9]+( \\[preauth\\])?$/\\2/'\n | sort | uniq -c\n | awk '{print $1}' | R --slave -e 'x <- scan(file=\"stdin\", quiet=TRUE); summary(x)'\n```\n\nR is another (weird) programming language that's great at data analysis\nand [plotting](https://ggplot2.tidyverse.org/). We won't go into too\nmuch detail, but suffice to say that `summary` prints summary statistics\nabout a matrix, and we computed a matrix from the input stream of\nnumbers, so R gives us the statistics we wanted!\n\nIf you just want some simple plotting, `gnuplot` is your friend:\n\n```bash\nssh myserver journalctl\n | grep sshd\n | grep \"Disconnected from\"\n | sed -E 's/.*Disconnected from (invalid |authenticating )?user (.*) [^ ]+ port [0-9]+( \\[preauth\\])?$/\\2/'\n | sort | uniq -c\n | sort -nk1,1 | tail -n10\n | gnuplot -p -e 'set boxwidth 0.5; plot \"-\" using 1:xtic(2) with boxes'\n```\n\n## Data wrangling to make arguments\n\nSometimes you want to do data wrangling to find things to install or\nremove based on some longer list. The data wrangling we've talked about\nso far + `xargs` can be a powerful combo:\n\n```bash\nrustup toolchain list | grep nightly | grep -vE \"nightly-x86|01-17\" | sed 's/-x86.*//' | xargs rustup toolchain uninstall\n```\n\n# Exercises\n\n1. If you are not familiar with Regular Expressions\n [here](https://regexone.com/) is a short interactive tutorial that\n covers most of the basics\n1. How is `sed s/REGEX/SUBSTITUTION/g` different from the regular sed?\n What about `/I` or `/m`?\n1. To do in-place substitution it is quite tempting to do something like\n `sed s/REGEX/SUBSTITUTION/ input.txt > input.txt`. However this is a\n bad idea, why? Is this particular to `sed`?\n1. Implement a simple grep equivalent tool in a language you are familiar with using regex. If you want the output to be color highlighted like grep is, search for ANSI color escape sequences.\n1. Sometimes some operations like renaming files can be tricky with raw commands like `mv` . `rename` is a nifty tool to achieve this and has a sed-like syntax. Try creating a bunch of files with spaces in their names and use `rename` to replace them with underscores.\n1. Look for boot messages that are _not_ shared between your past three\n reboots (see `journalctl`'s `-b` flag). You may want to just mash all\n the boot logs together in a single file, as that may make things\n easier.\n1. Produce some statistics of your system boot time over the last ten\n boots using the log timestamp of the messages\n ```\n Logs begin at ...\n ```\n and\n ```\n systemd[577]: Startup finished in ...\n ```\n1. Find the number of words (in `/usr/share/dict/words`) that contain at\n least three `a`s and don't have a `'s` ending. What are the three\n most common last two letters of those words? `sed`'s `y` command, or\n the `tr` program, may help you with case insensitivity. How many\n of those two-letter combinations are there? And for a challenge:\n which combinations do not occur?\n1. Find an online data set like [this\n one](https://commons.wikimedia.org/wiki/Data:Wikipedia_statistics/data.tab) or [this\n one](https://ucr.fbi.gov/crime-in-the-u.s/2016/crime-in-the-u.s.-2016/topic-pages/tables/table-1).\n Maybe another one [from\n here](https://www.springboard.com/blog/data-science/free-public-data-sets-data-science-project/).\n Fetch it using `curl` and extract out just two columns of numerical\n data. If you're fetching HTML data,\n [`pup`](https://github.com/EricChiang/pup) might be helpful. For JSON\n data, try [`jq`](https://stedolan.github.io/jq/). Find the min and\n max of one column in a single command, and the sum of the difference\n between the two columns in another.\n"
},
{
"path": "_2019/dotfiles.md",
"content": "---\nlayout: lecture\ntitle: \"Dotfiles\"\npresenter: Anish\nvideo:\n aspect: 62.5\n id: YSZBWWJw3mI\n---\n\nMany programs are configured using plain-text files known as \"dotfiles\"\n(because the file names begin with a `.`, e.g. `~/.gitconfig`, so that they are\nhidden in the directory listing `ls` by default).\n\nA lot of the tools you use probably have a lot of settings that can be tuned\npretty finely. Often times, tools are customized with specialized languages,\ne.g. Vimscript for Vim or the shell's own language for a shell.\n\nCustomizing and adapting your tools to your preferred workflow will make you\nmore productive. We advise you to invest time in customizing your tool yourself\nrather than cloning someone else's dotfiles from GitHub.\n\nYou probably have some dotfiles set up already. Some places to look:\n\n- `~/.bashrc`\n- `~/.emacs`\n- `~/.vim`\n- `~/.gitconfig`\n\nSome programs don't put the files under your home folder directly and instead they put them in a folder under `~/.config`.\n\nDotfiles are not exclusive to command line applications, for instance the [MPV](https://mpv.io/) video player can be configured editing files under `~/.config/mpv`\n\n# Learning to customize tools\n\nYou can learn about your tool's settings by reading online documentation or\n[man pages](https://en.wikipedia.org/wiki/Man_page). Another great way is to\nsearch the internet for blog posts about specific programs, where authors will\ntell you about their preferred customizations. Yet another way to learn about\ncustomizations is to look through other people's dotfiles: you can find tons of\n[dotfiles\nrepositories](https://github.com/search?o=desc&q=dotfiles&s=stars&type=Repositories)\non GitHub --- see the most popular one\n[here](https://github.com/mathiasbynens/dotfiles) (we advise you not to blindly\ncopy configurations though).\n\n# Organization\n\nHow should you organize your dotfiles? They should be in their own folder,\nunder version control, and **symlinked** into place using a script. This has\nthe benefits of:\n\n- **Easy installation**: if you log in to a new machine, applying your\ncustomizations will only take a minute\n- **Portability**: your tools will work the same way everywhere\n- **Synchronization**: you can update your dotfiles anywhere and keep them all\nin sync\n- **Change tracking**: you're probably going to be maintaining your dotfiles\nfor your entire programming career, and version history is nice to have for\nlong-lived projects\n\n```shell\ncd ~/src\nmkdir dotfiles\ncd dotfiles\ngit init\ntouch bashrc\n# create a bashrc with some settings, e.g.:\n# PS1='\\w > '\ntouch install\nchmod +x install\n# insert the following into the install script:\n# #!/usr/bin/env bash\n# BASEDIR=$(dirname $0)\n# cd $BASEDIR\n#\n# ln -s ${PWD}/bashrc ~/.bashrc\ngit add bashrc install\ngit commit -m 'Initial commit'\n```\n\n# Advanced topics\n\n## Machine-specific customizations\n\nMost of the time, you'll want the same configuration across machines, but\nsometimes, you'll want a small delta on a particular machine. Here are a couple\nways you can handle this situation:\n\n### Branch per machine\n\nUse version control to maintain a branch per machine. This approach is\nlogically straightforward but can be pretty heavyweight.\n\n### If statements\n\nIf the configuration file supports it, use the equivalent of if-statements to\napply machine specific customizations. For example, your shell could have something\nlike:\n\n```shell\nif [[ \"$(uname)\" == \"Linux\" ]]; then {do_something else}; fi\n\n# Darwin is the architecture name for macOS systems\nif [[ \"$(uname)\" == \"Darwin\" ]]; then {do_something}; fi\n\n# You can also make it machine specific\nif [[ \"$(hostname)\" == \"myServer\" ]]; then {do_something}; fi\n```\n\n### Includes\n\nIf the configuration file supports it, make use of includes. For example,\na `~/.gitconfig` can have a setting:\n\n```\n[include]\n path = ~/.gitconfig_local\n```\n\nAnd then on each machine, `~/.gitconfig_local` can contain machine-specific\nsettings. You could even track these in a separate repository for\nmachine-specific settings.\n\nThis idea is also useful if you want different programs to share some configurations. For instance if you want both `bash` and `zsh` to share the same set of aliases you can write them under `.aliases` and have the following block in both.\n\n```bash\n# Test if ~/.aliases exists and source it\nif [ -f ~/.aliases ]; then\n source ~/.aliases\nfi\n```\n\n# Resources\n\n- Your instructors' dotfiles:\n [Anish](https://github.com/anishathalye/dotfiles),\n [Jon](https://github.com/jonhoo/configs),\n [Jose](https://github.com/jjgo/dotfiles)\n- [GitHub does dotfiles](http://dotfiles.github.io/): dotfile frameworks,\nutilities, examples, and tutorials\n- [Shell startup\n scripts](https://blog.flowblok.id.au/2013-02/shell-startup-scripts.html): an\n explanation of the different configuration files used for your shell\n\n# Exercises\n\n1. Create a folder for your dotfiles and set up [version\n control](/2019/version-control/).\n\n1. Add a configuration for at least one program, e.g. your shell, with some\n customization (to start off, it can be something as simple as customizing\n your shell prompt by setting `$PS1`).\n\n1. Set up a method to install your dotfiles quickly (and without manual effort)\n on a new machine. This can be as simple as a shell script that calls `ln -s`\n for each file, or you could use a [specialized\n utility](http://dotfiles.github.io/utilities/).\n\n1. Test your installation script on a fresh virtual machine.\n\n1. Migrate all of your current tool configurations to your dotfiles repository.\n\n1. Publish your dotfiles on GitHub.\n"
},
{
"path": "_2019/editors.md",
"content": "---\nlayout: lecture\ntitle: \"Editors\"\npresenter: Anish\nvideo:\n aspect: 62.5\n id: 1vLcusYSrI4\n---\n\n# Importance of Editors\n\nAs programmers, we spend most of our time editing plain-text files. It's worth\ninvesting time learning an editor that fits your needs.\n\nHow do you learn a new editor? You force yourself to use that editor for a\nwhile, even if it temporarily hampers your productivity. It'll pay off soon\nenough (two weeks is enough to learn the basics).\n\nWe are going to teach you Vim, but we encourage you to experiment with other\neditors. It's a very personal choice, and people have [strong\nopinions](https://en.wikipedia.org/wiki/Editor_war).\n\nWe can't teach you how to use a powerful editor in 50 minutes, so we're going\nto focus on teaching you the basics, showing you some of the more advanced\nfunctionality, and giving you the resources to master the tool. We'll teach you\nlessons in the context of Vim, but most ideas will translate to any other\npowerful editor you use (and if they don't, then you probably shouldn't use\nthat editor!).\n\n\n\n\n\nThe editor learning curves graph is a myth. Learning the basics of a powerful\neditor is quite easy (even though it might take years to master).\n\nWhich editors are popular today? See this [Stack Overflow\nsurvey](https://insights.stackoverflow.com/survey/2018/#development-environments-and-tools)\n(there may be some bias because Stack Overflow users may not be representative\nof programmers as a whole).\n\n## Command-line Editors\n\nEven if you eventually settle on using a GUI editor, it's worth learning a\ncommand-line editor for easily editing files on remote machines.\n\n# Nano\n\nNano is a simple command-line editor.\n\n- Move with arrow keys\n- All other shortcuts (save, exit) shown at the bottom\n\n# Vim\n\nVi/Vim is a powerful text editor. It's a command-line program that's usually\ninstalled everywhere, which makes it convenient for editing files on a remote\nmachine.\n\nVim also has graphical versions, such as GVim and\n[MacVim](https://macvim-dev.github.io/macvim/). These provide additional\nfeatures such as 24-bit color, menus, and popups.\n\n## Philosophy of Vim\n\n- When programming, you spend most of your time reading/editing, not writing\n - Vim is a **modal** editor: different modes for inserting text vs manipulating text\n- Vim is programmable (with Vimscript and also other languages like Python)\n- Vim's interface itself is like a programming language\n - Keystrokes (with mnemonic names) are commands\n - Commands are composable\n- Don't use the mouse: too slow\n- Editor should work at the speed you think\n\n## Introductory Vim\n\n### Modes\n\nVim shows the current mode in the bottom left.\n\n- Normal mode: for moving around a file and making edits\n - Spend most of your time here\n- Insert mode: for inserting text\n- Visual (visual, line, or block) mode: for selecting blocks of text\n\nYou change modes by pressing `Click on specific topics below to see lecture videos and lecture notes.
\n\nWe've also shared this class beyond MIT in the hopes that others may\nbenefit from these resources. You can find posts and discussion on
\n\n您也可以访问去年的讲座笔记和视频。
\n" }, { "path": "_2020/metaprogramming.md", "content": "---\nlayout: lecture\ntitle: \"元编程\"\ndetails: 构建系统、依赖管理、测试、持续集成\ndate: 2020-01-27\nready: true\nsync: true\nsyncdate: 2025-08-16\nvideo:\n aspect: 56.25\n id: _Ms1Z4xfqv4\nsolution:\n ready: true\n url: metaprogramming-solution\n---\n\n我们这里说的 “元编程(metaprogramming)” 是什么意思呢?好吧,对于本文要介绍的这些内容,这是我们能够想到的最能概括它们的词。因为我们今天要讲的东西,更多是关于 *流程* ,而不是写代码或更高效的工作。本节课我们会学习构建系统、代码测试以及依赖管理。在您还是学生的时候,这些东西看上去似乎对您来说没那么重要,不过当您开始实习或走进社会的时候,您将会接触到大型的代码库,本节课讲授的这些东西也会变得随处可见。必须要指出的是,“元编程” 也有 “[用于操作程序的程序](https://en.wikipedia.org/wiki/Metaprogramming)” 之含义,这和我们今天讲座所介绍的概念是完全不同的。\n\n# 构建系统\n\n如果您使用 LaTeX 来编写论文,您需要执行哪些命令才能编译出您想要的论文呢?执行基准测试、绘制图表然后将其插入论文的命令又有哪些?或者,如何编译本课程提供的代码并执行测试呢?\n\n对于大多数系统来说,不论其是否包含代码,都会包含一个 “构建过程”。有时,您需要执行一系列操作。通常,这一过程包含了很多步骤,很多分支。执行一些命令来生成图表,然后执行另外的一些命令生成结果,然后再执行其他的命令来生成最终的论文。有很多事情需要我们完成,您并不是第一个因此感到苦恼的人,幸运的是,有很多工具可以帮助我们完成这些操作。\n\n这些工具通常被称为 \"构建系统\",而且这些工具还不少。如何选择工具完全取决于您当前手头上要完成的任务以及项目的规模。从本质上讲,这些工具都是非常类似的。您需要定义 *依赖*、*目标* 和 *规则*。您必须告诉构建系统您具体的构建目标,系统的任务则是找到构建这些目标所需要的依赖,并根据规则构建所需的中间产物,直到最终目标被构建出来。理想的情况下,如果目标的依赖没有发生改动,并且我们可以从之前的构建中复用这些依赖,那么与其相关的构建规则并不会被执行。\n\n`make` 是最常用的构建系统之一,您会发现它通常被安装到了几乎所有基于 UNIX 的系统中。`make` 并不完美,但是对于中小型项目来说,它已经足够好了。当您执行 `make` 时,它会去参考当前目录下名为 `Makefile` 的文件。所有构建目标、相关依赖和规则都需要在该文件中定义,它看上去是这样的:\n\n```make\npaper.pdf: paper.tex plot-data.png\n\tpdflatex paper.tex\n\nplot-%.png: %.dat plot.py\n\t./plot.py -i $*.dat -o $@\n```\n\n这个文件中的指令,即如何使用右侧文件构建左侧文件的规则。或者,换句话说,冒号左侧的是构建目标,冒号右侧的是构建它所需的依赖。缩进的部分是从依赖构建目标时需要用到的一段命令。在 `make` 中,第一条指令还指明了构建的目的,如果您使用不带参数的 `make`,这便是我们最终的构建结果。或者,您可以使用这样的命令来构建其他目标:`make plot-data.png`。\n\n规则中的 `%` 是一种模式,它会匹配其左右两侧相同的字符串。例如,如果目标是 `plot-foo.png`, `make` 会去寻找 `foo.dat` 和 `plot.py` 作为依赖。现在,让我们看看如果在一个空的源码目录中执行 `make` 会发生什么?\n\n```console\n$ make\nmake: *** No rule to make target 'paper.tex', needed by 'paper.pdf'. Stop.\n```\n\n`make` 会告诉我们,为了构建出 `paper.pdf`,它需要 `paper.tex`,但是并没有一条规则能够告诉它如何构建该文件。让我们构建它吧!\n\n```console\n$ touch paper.tex\n$ make\nmake: *** No rule to make target 'plot-data.png', needed by 'paper.pdf'. Stop.\n```\n\n哟,有意思,我们是 **有** 构建 `plot-data.png` 的规则的,但是这是一条模式规则。因为源文件 `data.dat` 并不存在,因此 `make` 就会告诉您它不能构建 `plot-data.png`,让我们创建这些文件:\n\n```console\n$ cat paper.tex\n\\documentclass{article}\n\\usepackage{graphicx}\n\\begin{document}\n\\includegraphics[scale=0.65]{plot-data.png}\n\\end{document}\n$ cat plot.py\n#!/usr/bin/env python\nimport matplotlib\nimport matplotlib.pyplot as plt\nimport numpy as np\nimport argparse\n\nparser = argparse.ArgumentParser()\nparser.add_argument('-i', type=argparse.FileType('r'))\nparser.add_argument('-o')\nargs = parser.parse_args()\n\ndata = np.loadtxt(args.i)\nplt.plot(data[:, 0], data[:, 1])\nplt.savefig(args.o)\n$ cat data.dat\n1 1\n2 2\n3 3\n4 4\n5 8\n```\n\n当我们执行 `make` 时会发生什么?\n\n```console\n$ make\n./plot.py -i data.dat -o plot-data.png\npdflatex paper.tex\n... lots of output ...\n```\n\n看!PDF !\n\n如果再次执行 `make` 会怎样?\n\n```console\n$ make\nmake: 'paper.pdf' is up to date.\n```\n什么事情都没做!为什么?好吧,因为它什么都不需要做。make 检查出所有之前构建的目标仍然与其列出的依赖项保持最新状态。让我们试试修改 `paper.tex` 后再重新执行 `make`:\n\n```console\n$ vim paper.tex\n$ make\npdflatex paper.tex\n...\n```\n\n注意 `make` 并 **没有** 重新构建 `plot.py`,因为没必要;`plot-data.png` 的所有依赖都没有发生改变。\n\n\n# 依赖管理\n\n就您的项目来说,它的依赖可能本身也是其他的项目。您也许会依赖某些程序(例如 `python`)、系统包(例如 `openssl`)或相关编程语言的库(例如 `matplotlib`)。 现在,大多数的依赖可以通过某些 **软件仓库** 来获取,这些仓库会在一个地方托管大量的依赖,我们则可以通过一套非常简单的机制来安装依赖。例如 Ubuntu 系统下面有 Ubuntu 软件包仓库,您可以通过 `apt` 这个工具来访问, RubyGems 则包含了 Ruby 的相关库,PyPi 包含了 Python 库, Arch Linux 用户贡献的库则可以在 Arch User Repository 中找到。\n\n由于每个仓库、每种工具的运行机制都不太一样,因此我们并不会在本节课深入讲解具体的细节。我们会介绍一些通用的术语,例如 *版本控制*。大多数被其他项目所依赖的项目都会在每次发布新版本时创建一个 *版本号*。通常看上去像 8.1.3 或 64.1.20192004。版本号一般是数字构成的,但也并不绝对。版本号有很多用途,其中最重要的作用是保证软件能够运行。试想一下,假如我的库要发布一个新版本,在这个版本里面我重命名了某个函数。如果有人在我的库升级版本后,仍希望基于它构建新的软件,那么很可能构建会失败,因为它希望调用的函数已经不复存在了。有了版本控制就可以很好的解决这个问题,我们可以指定当前项目需要基于某个版本,甚至某个范围内的版本,或是某些项目来构建。这么做的话,即使某个被依赖的库发生了变化,依赖它的软件可以基于其之前的版本进行构建。\n\n这样还并不理想!如果我们发布了一项和安全相关的升级,它并 *没有* 影响到任何公开接口(API),但是处于安全的考虑,依赖它的项目都应该立即升级,那应该怎么做呢?这也是版本号包含多个部分的原因。不同项目所用的版本号其具体含义并不完全相同,但是一个相对比较常用的标准是 [语义版本号](https://semver.org/),这种版本号具有不同的语义,它的格式是这样的:主版本号.次版本号.补丁号。相关规则有:\n\n - 如果新的版本没有改变 API,请将补丁号递增;\n - 如果您添加了 API 并且该改动是向后兼容的,请将次版本号递增;\n - 如果您修改了 API 但是它并不向后兼容,请将主版本号递增。\n\n这么做有很多好处。现在如果我们的项目是基于您的项目构建的,那么只要最新版本的主版本号只要没变就是安全的 ,次版本号不低于之前我们使用的版本即可。换句话说,如果我依赖的版本是 `1.3.7`,那么使用 `1.3.8`、`1.6.1`,甚至是 `1.3.0` 都是可以的。如果版本号是 `2.2.4` 就不一定能用了,因为它的主版本号增加了。我们可以将 Python 的版本号作为语义版本号的一个实例。您应该知道,Python 2 和 Python 3 的代码是不兼容的,这也是为什么 Python 的主版本号改变的原因。类似的,使用 Python 3.5 编写的代码在 3.7 上可以运行,但是在 3.4 上可能会不行。\n\n使用依赖管理系统的时候,您可能会遇到锁文件(_lock files_)这一概念。锁文件列出了您当前每个依赖所对应的具体版本号。通常,您需要执行升级程序才能更新依赖的版本。这么做的原因有很多,例如避免不必要的重新编译、创建可复现的软件版本或禁止自动升级到最新版本(可能会包含 bug)。还有一种极端的依赖锁定叫做 _vendoring_,它会把您的依赖中的所有代码直接拷贝到您的项目中,这样您就能够完全掌控代码的任何修改,同时您也可以将自己的修改添加进去,不过这也意味着如果该依赖的维护者更新了某些代码,您也必须要自己去拉取这些更新。\n\n# 持续集成系统\n\n随着您接触到的项目规模越来越大,您会发现修改代码之后还有很多额外的工作要做。您可能需要上传一份新版本的文档、上传编译后的文件到某处、发布代码到 pypi,执行测试套件等等。或许您希望每次有人提交代码到 GitHub 的时候,他们的代码风格被检查过并执行过某些基准测试?如果您有这方面的需求,那么请花些时间了解一下持续集成。\n\n持续集成(Continuous integration),或者叫做 CI 是一种雨伞术语(umbrella term,涵盖了一组术语的术语),它指的是那些“当您的代码变动时,自动运行的东西”,市场上有很多提供各式各样 CI 工具的公司,这些工具大部分都是免费或开源的。比较大的有 Travis CI、Azure Pipelines 和 GitHub Actions。它们的工作原理都是类似的:您需要在代码仓库中添加一个文件,描述当前仓库发生任何修改时,应该如何应对。目前为止,最常见的规则是:如果有人提交代码,执行测试套件。当这个事件被触发时,CI 提供方会启动一个(或多个)虚拟机,执行您制定的规则,并且通常会记录下相关的执行结果。您可以进行某些设置,这样当测试套件失败时您能够收到通知或者当测试全部通过时,您的仓库主页会显示一个徽标。\n\n本课程的网站基于 GitHub Pages 构建,这就是一个很好的例子。Pages 在每次 `master` 有代码更新时,会执行 Jekyll 博客软件,然后使您的站点可以通过某个 GitHub 域名来访问。对于我们来说这些事情太琐碎了,我现在我们只需要在本地进行修改,然后使用 git 提交代码,发布到远端。CI 会自动帮我们处理后续的事情。\n\n## 测试简介\n\n多数的大型软件都有“测试套件”。您可能已经对测试的相关概念有所了解,但是我们觉得有些测试方法和测试术语还是应该再次提醒一下:\n\n - 测试套件(Test suite):所有测试的统称。\n - 单元测试(Unit test):一种“微型测试”,用于对某个封装的特性进行测试。\n - 集成测试(Integration test):一种“宏观测试”,针对系统的某一大部分进行,测试其不同的特性或组件是否能 *协同* 工作。\n - 回归测试(Regression test):一种实现特定模式的测试,用于保证之前引起问题的 bug 不会再次出现。\n - 模拟(Mocking): 使用一个假的实现来替换函数、模块或类型,屏蔽那些和测试不相关的内容。例如,您可能会“模拟网络连接” 或 “模拟硬盘”。\n\n\n# 课后练习\n[习题解答]({{site.url}}/{{site.solution_url}}/{{page.solution.url}})\n1. 大多数的 makefiles 都提供了 一个名为 `clean` 的构建目标,这并不是说我们会生成一个名为 `clean` 的文件,而是我们可以使用它清理文件,让 make 重新构建。您可以理解为它的作用是“撤销”所有构建步骤。在上面的 makefile 中为 `paper.pdf` 实现一个 `clean` 目标。您需要将构建目标设置为 [phony](https://www.gnu.org/software/make/manual/html_node/Phony-Targets.html)。您也许会发现 [`git ls-files`](https://git-scm.com/docs/git-ls-files) 子命令很有用。其他一些有用的 make 构建目标可以在 [这里](https://www.gnu.org/software/make/manual/html_node/Standard-Targets.html#Standard-Targets) 找到;\n\n2. 指定版本要求的方法很多,让我们学习一下 [Rust 的构建系统](https://doc.rust-lang.org/cargo/reference/specifying-dependencies.html) 的依赖管理。大多数的包管理仓库都支持类似的语法。对于每种语法(尖号、波浪号、通配符、比较、多个版本要求),构建一种场景使其具有实际意义;\n\n3. Git 可以作为一个简单的 CI 系统来使用,在任何 git 仓库中的 `.git/hooks` 目录中,您可以找到一些文件(当前处于未激活状态),它们的作用和脚本一样,当某些事件发生时便可以自动执行。请编写一个 [`pre-commit`](https://git-scm.com/docs/githooks#_pre_commit) 钩子,它会在提交前执行 `make paper.pdf` 并在出现构建失败的情况拒绝您的提交。这样做可以避免产生包含不可构建版本的提交信息;\n\n4. 基于 [GitHub Pages](https://pages.github.com/) 创建任意一个可以自动发布的页面。添加一个 [GitHub Action](https://github.com/features/actions) 到该仓库,对仓库中的所有 shell 文件执行 `shellcheck`([方法之一](https://github.com/marketplace/actions/shellcheck));\n\n5. [构建属于您的](https://help.github.com/en/actions/automating-your-workflow-with-github-actions/building-actions) GitHub action,对仓库中所有的 `.md` 文件执行 [`proselint`](http://proselint.com/) 或 [`write-good`](https://github.com/btford/write-good),在您的仓库中开启这一功能,提交一个包含错误的文件看看该功能是否生效。\n" }, { "path": "_2020/potpourri.md", "content": "---\nlayout: lecture\ntitle: \"大杂烩\"\ndate: 2020-01-29\nready: true\nsync: true\nsyncdate: 2025-08-16\nvideo:\n aspect: 56.25\n id: JZDt-PRq0uo\n---\n\n## 目录\n\n- [修改键位映射](#%E4%BF%AE%E6%94%B9%E9%94%AE%E4%BD%8D%E6%98%A0%E5%B0%84)\n- [守护进程](#%E5%AE%88%E6%8A%A4%E8%BF%9B%E7%A8%8B)\n- [FUSE](#fuse)\n- [备份](#%E5%A4%87%E4%BB%BD)\n- [API(应用程序接口)](#API%EF%BC%88%E5%BA%94%E7%94%A8%E7%A8%8B%E5%BA%8F%E6%8E%A5%E5%8F%A3%EF%BC%89)\n- [常见命令行标志参数及模式](#%E5%B8%B8%E8%A7%81%E5%91%BD%E4%BB%A4%E8%A1%8C%E6%A0%87%E5%BF%97%E5%8F%82%E6%95%B0%E5%8F%8A%E6%A8%A1%E5%BC%8F)\n- [窗口管理器](#%E7%AA%97%E5%8F%A3%E7%AE%A1%E7%90%86%E5%99%A8)\n- [VPN](#vpn)\n- [Markdown](#markdown)\n- [Hammerspoon (macOS 桌面自动化)](#Hammerspoon%20(macOS%E6%A1%8C%E9%9D%A2%E8%87%AA%E5%8A%A8%E5%8C%96))\n - [资源](#%E8%B5%84%E6%BA%90)\n- [开机引导以及 Live USB](#%E5%BC%80%E6%9C%BA%E5%BC%95%E5%AF%BC%E4%BB%A5%E5%8F%8A%20Live%20USB)\n- [Docker, Vagrant, VMs, Cloud, OpenStack](#docker-vagrant-vms-cloud-openstack)\n- [交互式记事本编程](#%E4%BA%A4%E4%BA%92%E5%BC%8F%E8%AE%B0%E4%BA%8B%E6%9C%AC%E7%BC%96%E7%A8%8B)\n- [GitHub](#github)\n\n## 修改键位映射\n作为一名程序员,键盘是你的主要输入工具。它像计算机里的其他部件一样是可配置的,而且值得你在这上面花时间。\n\n一个很常见的配置是修改键位映射。通常这个功能由在计算机上运行的软件实现。当某一个按键被按下,软件截获键盘发出的按键事件(keypress event)并使用另外一个事件取代。比如:\n- 将 Caps Lock 映射为 Ctrl 或者 Escape:Caps Lock 使用了键盘上一个非常方便的位置而它的功能却很少被用到,所以我们(讲师)非常推荐这个修改;\n- 将 PrtSc 映射为播放/暂停:大部分操作系统支持播放/暂停键;\n- 交换 Ctrl 和 Meta 键(Windows 的徽标键或者 Mac 的 Command 键)。\n\n你也可以将键位映射为任意常用的指令。软件监听到特定的按键组合后会运行设定的脚本。\n- 打开一个新的终端或者浏览器窗口;\n- 输出特定的字符串,比如:一个超长邮件地址或者 MIT ID;\n- 使计算机或者显示器进入睡眠模式。\n\n甚至更复杂的修改也可以通过软件实现:\n- 映射按键顺序,比如:按 Shift 键五下切换大小写锁定;\n- 区别映射单点和长按,比如:单点 Caps Lock 映射为 Escape,而长按 Caps Lock 映射为 Ctrl;\n- 对不同的键盘或软件保存专用的映射配置。\n\n下面是一些修改键位映射的软件:\n- macOS - [karabiner-elements](https://pqrs.org/osx/karabiner/), [skhd](https://github.com/koekeishiya/skhd) 或者 [BetterTouchTool](https://folivora.ai/)\n- Linux - [xmodmap](https://wiki.archlinux.org/index.php/Xmodmap) 或者 [Autokey](https://github.com/autokey/autokey)\n- Windows - 控制面板,[AutoHotkey](https://www.autohotkey.com/) 或者 [SharpKeys](https://www.randyrants.com/category/sharpkeys/)\n- QMK - 如果你的键盘支持定制固件,[QMK](https://docs.qmk.fm/) 可以直接在键盘的硬件上修改键位映射。保留在键盘里的映射免除了在别的机器上的重复配置。\n\n## 守护进程\n\n即便守护进程(daemon)这个词看上去有些陌生,你应该已经大约明白它的概念。大部分计算机都有一系列在后台保持运行,不需要用户手动运行或者交互的进程。这些进程就是守护进程。以守护进程运行的程序名一般以 `d` 结尾,比如 SSH 服务端 `sshd`,用来监听传入的 SSH 连接请求并对用户进行鉴权。\n\nLinux 中的 `systemd`(the system daemon)是最常用的配置和运行守护进程的方法。运行 `systemctl status` 命令可以看到正在运行的所有守护进程。这里面有很多可能你没有见过,但是掌管了系统的核心部分的进程:管理网络、DNS 解析、显示系统的图形界面等等。用户使用 `systemctl` 命令和 `systemd` 交互来 `enable`(启用)、`disable`(禁用)、`start`(启动)、`stop`(停止)、`restart`(重启)、或者 `status`(检查)配置好的守护进程及系统服务。\n\n`systemd` 提供了一个很方便的界面用于配置和启用新的守护进程或系统服务。下面的配置文件使用了守护进程来运行一个简单的 Python 程序。文件的内容非常直接所以我们不对它详细阐述。`systemd` 配置文件的详细指南可参见 [freedesktop.org](https://www.freedesktop.org/software/systemd/man/systemd.service.html)。\n\n```ini\n# /etc/systemd/system/myapp.service\n[Unit]\n# 配置文件描述\nDescription=My Custom App\n# 在网络服务启动后启动该进程\nAfter=network.target\n\n[Service]\n# 运行该进程的用户\nUser=foo\n# 运行该进程的用户组\nGroup=foo\n# 运行该进程的根目录\nWorkingDirectory=/home/foo/projects/mydaemon\n# 开始该进程的命令\nExecStart=/usr/bin/local/python3.7 app.py\n# 在出现错误时重启该进程\nRestart=on-failure\n\n[Install]\n# 相当于Windows的开机启动。即使GUI没有启动,该进程也会加载并运行\nWantedBy=multi-user.target\n# 如果该进程仅需要在GUI活动时运行,这里应写作:\n# WantedBy=graphical.target\n# graphical.target在multi-user.target的基础上运行和GUI相关的服务\n```\n\n如果你只是想定期运行一些程序,可以直接使用 [`cron`](https://www.man7.org/linux/man-pages/man8/cron.8.html)。它是一个系统内置的,用来执行定期任务的守护进程。\n\n\n## FUSE\n\n现在的软件系统一般由很多模块化的组件构建而成。你使用的操作系统可以通过一系列共同的方式使用不同的文件系统上的相似功能。比如当你使用 `touch` 命令创建文件的时候,`touch` 使用系统调用(system call)向内核发出请求。内核再根据文件系统,调用特有的方法来创建文件。这里的问题是,UNIX 文件系统在传统上是以内核模块的形式实现,导致只有内核可以进行文件系统相关的调用。\n\n[FUSE](https://en.wikipedia.org/wiki/Filesystem_in_Userspace)(用户空间文件系统)允许运行在用户空间上的程序实现文件系统调用,并将这些调用与内核接口联系起来。在实践中,这意味着用户可以在文件系统调用中实现任意功能。\n\nFUSE 可以用于实现如:一个将所有文件系统操作都使用 SSH 转发到远程主机,由远程主机处理后返回结果到本地计算机的虚拟文件系统。这个文件系统里的文件虽然存储在远程主机,对于本地计算机上的软件而言和存储在本地别无二致。`sshfs` 就是一个实现了这种功能的 FUSE 文件系统。\n\n一些有趣的 FUSE 文件系统包括:\n- [sshfs](https://github.com/libfuse/sshfs):使用 SSH 连接在本地打开远程主机上的文件\n- [rclone](https://rclone.org/commands/rclone_mount/):将 Dropbox、Google Drive、Amazon S3、或者 Google Cloud Storage 一类的云存储服务挂载为本地文件系统\n- [gocryptfs](https://nuetzlich.net/gocryptfs/):覆盖在加密文件上的文件系统。文件以加密形式保存在磁盘里,但该文件系统挂载后用户可以直接从挂载点访问文件的明文\n- [kbfs](https://keybase.io/docs/kbfs):分布式端到端加密文件系统。在这个文件系统里有私密(private),共享(shared),以及公开(public)三种类型的文件夹\n- [borgbackup](https://borgbackup.readthedocs.io/en/stable/usage/mount.html):方便用户浏览删除重复数据后的压缩加密备份\n\n## 备份\n\n任何没有备份的数据都可能在一个瞬间永远消失。复制数据很简单,但是可靠地备份数据很难。下面列举了一些关于备份的基础知识,以及一些常见做法容易掉进的陷阱。\n\n首先,复制存储在同一个磁盘上的数据不是备份,因为这个磁盘是一个单点故障(single point of failure)。这个磁盘一旦出现问题,所有的数据都可能丢失。放在家里的外置磁盘因为火灾、抢劫等原因可能会和源数据一起丢失,所以是一个弱备份。推荐的做法是将数据备份到不同的地点存储。\n\n同步方案也不是备份。即使方便如 Dropbox 或者 Google Drive,当数据在本地被抹除或者损坏,同步方案可能会把这些“更改”同步到云端。同理,像 RAID 这样的磁盘镜像方案也不是备份。它不能防止文件被意外删除、损坏、或者被勒索软件加密。\n\n有效备份方案的几个核心特性是:版本控制,删除重复数据,以及安全性。对备份的数据实施版本控制保证了用户可以从任何记录过的历史版本中恢复数据。在备份中检测并删除重复数据,使其仅备份增量变化可以减少存储开销。在安全性方面,作为用户,你应该考虑别人需要有什么信息或者工具才可以访问或者完全删除你的数据及备份。最后一点,不要盲目信任备份方案。用户应该经常检查备份是否可以用来恢复数据。\n\n备份不限制于备份在本地计算机上的文件。云端应用的重大发展使得我们很多的数据只存储在云端。当我们无法登录这些应用,在云端存储的网络邮件,社交网络上的照片,流媒体音乐播放列表,以及在线文档等等都会随之丢失。用户应该有这些数据的离线备份,而且已经有项目可以帮助下载并存储它们。\n\n如果想要了解更多具体内容,请参考本课程 2019 年关于备份的 [课堂笔记](/2019/backups)。\n\n\n## API(应用程序接口)\n\n关于如何使用计算机有效率地完成 _本地_ 任务,我们这堂课已经介绍了很多方法。这些方法在互联网上其实也适用。大多数线上服务提供的 API(应用程序接口)让你可以通过编程方式来访问这些服务的数据。比如,美国国家气象局就提供了一个可以从 shell 中获取天气预报的 API。\n\n这些 API 大多具有类似的格式。它们的结构化 URL 通常使用 `api.service.com` 作为根路径,用户可以访问不同的子路径来访问需要调用的操作,以及添加查询参数使 API 返回符合查询参数条件的结果。\n\n以美国天气数据为例,为了获得某个地点的天气数据,你可以发送一个 GET 请求(比如使用 `curl`)到 [`https://api.weather.gov/points/42.3604,-71.094`](https://api.weather.gov/points/42.3604,-71.094)。返回中会包括一系列用于获取特定信息(比如小时预报、气象观察站信息等)的 URL。通常这些返回都是 `JSON` 格式,你可以使用 [`jq`](https://stedolan.github.io/jq/) 等工具来选取需要的部分。\n\n有些需要认证的 API 通常要求用户在请求中加入某种私密令牌(secret token)来完成认证。请阅读你想访问的 API 所提供的文档来确定它请求的认证方式,但是其实大多数 API 都会使用 [OAuth](https://www.oauth.com/)。OAuth 通过向用户提供一系列仅可用于该 API 特定功能的私密令牌进行校验。因为使用了有效 OAuth 令牌的请求在 API 看来就是用户本人发出的请求,所以请一定保管好这些私密令牌。否则其他人就可以冒用你的身份进行任何你可以在这个 API 上进行的操作。\n\n[IFTTT](https://ifttt.com/) 这个网站可以将很多 API 整合在一起,让某 API 发生的特定事件触发在其他 API 上执行的任务。IFTTT 的全称 If This Then That 足以说明它的用法,比如在检测到用户的新推文后,自动发布在其他平台。但是你可以对它支持的 API 进行任意整合,所以试着来设置一下任何你需要的功能吧!\n\n## 常见命令行标志参数及模式\n\n命令行工具的用法千差万别,阅读 `man` 页面可以帮助你理解每种工具的用法。即便如此,下面我们将介绍一下命令行工具一些常见的共同功能。\n\n - 大部分工具支持 `--help` 或者类似的标志参数(flag)来显示它们的简略用法。\n - 会造成不可撤回操作的工具一般会提供“空运行”(dry run)标志参数,这样用户可以确认工具真实运行时会进行的操作。这些工具通常也会有“交互式”(interactive)标志参数,在执行每个不可撤回的操作前提示用户确认。\n - `--version` 或者 `-V` 标志参数可以让工具显示它的版本信息(对于提交软件问题报告非常重要)。\n - 基本所有的工具支持使用 `--verbose` 或者 `-v` 标志参数来输出详细的运行信息。多次使用这个标志参数,比如 `-vvv`,可以让工具输出更详细的信息(经常用于调试)。同样,很多工具支持 `--quiet` 标志参数来抑制除错误提示之外的其他输出。\n - 大多数工具中,使用 `-` 代替输入或者输出文件名意味着工具将从标准输入(standard input)获取所需内容,或者向标准输出(standard output)输出结果。\n - 会造成破坏性结果的工具一般默认进行非递归的操作,但是支持使用“递归”(recursive)标志函数(通常是 `-r`)。\n - 有的时候你可能需要向工具传入一个 _看上去_ 像标志参数的普通参数,比如:\n - 使用 `rm` 删除一个叫 `-r` 的文件;\n - 在通过一个程序运行另一个程序的时候(`ssh machine foo`),向内层的程序(`foo`)传递一个标志参数。\n \n 这时候你可以使用特殊参数 `--` 让某个程序 _停止处理_ `--` 后面出现的标志参数以及选项(以 `-` 开头的内容):\n - `rm -- -r` 会让 `rm` 将 `-r` 当作文件名;\n - `ssh machine --for-ssh -- foo --for-foo` 的 `--` 会让 `ssh` 知道 `--for-foo` 不是 `ssh` 的标志参数。\n\n## 窗口管理器\n\n大部分人适应了 Windows、macOS、以及 Ubuntu 默认的“拖拽”式窗口管理器。这些窗口管理器的窗口一般就堆在屏幕上,你可以拖拽改变窗口的位置、缩放窗口、以及让窗口堆叠在一起。这种堆叠式(floating/stacking)管理器只是窗口管理器中的一种。特别在 Linux 中,有很多种其他的管理器。\n\n平铺式(tiling)管理器就是一个常见的替代。顾名思义,平铺式管理器会把不同的窗口像贴瓷砖一样平铺在一起而不和其他窗口重叠。这和 [tmux](https://github.com/tmux/tmux) 管理终端窗口的方式类似。平铺式管理器按照写好的布局显示打开的窗口。如果只打开一个窗口,它会填满整个屏幕。新开一个窗口的时候,原来的窗口会缩小到比如三分之二或者三分之一的大小来腾出空间。打开更多的窗口会让已有的窗口进一步调整。\n\n就像 tmux 那样,平铺式管理器可以让你在完全不使用鼠标的情况下使用键盘切换、缩放、以及移动窗口。它们值得一试!\n\n## VPN\n\nVPN 现在非常火,但我们不清楚这是不是因为 [一些好的理由](https://gist.github.com/joepie91/5a9909939e6ce7d09e29)。你应该了解 VPN 能提供的功能和它的限制。使用了 VPN 的你对于互联网而言,**最好的情况** 下也就是换了一个网络供应商(ISP)。所有你发出的流量看上去来源于 VPN 供应商的网络而不是你的“真实”地址,而你实际接入的网络只能看到加密的流量。\n\n虽然这听上去非常诱人,但是你应该知道使用 VPN 只是把原本对网络供应商的信任放在了 VPN 供应商那里——网络供应商 _能看到的_,VPN 供应商 _也都能看到_。如果相比网络供应商你更信任 VPN 供应商,那当然很好。反之,则连接 VPN 的价值不明确。机场的不加密公共热点确实不可以信任,但是在家庭网络环境里,这个差异就没有那么明显。\n\n你也应该了解现在大部分包含用户敏感信息的流量已经被 HTTPS 或者 TLS 加密。这种情况下你所处的网络环境是否“安全”不太重要:供应商只能看到你和哪些服务器在交谈,却不能看到你们交谈的内容。\n\n这一切的大前提都是“最好的情况”。曾经发生过 VPN 提供商错误使用弱加密或者直接禁用加密的先例。另外,有些恶意的或者带有投机心态的供应商会记录和你有关的所有流量,并很可能会将这些信息卖给第三方。找错一家 VPN 经常比一开始就不用 VPN 更危险。\n\nMIT 向有访问校内资源需求的成员开放自己运营的 [VPN](https://ist.mit.edu/vpn)。如果你也想自己配置一个 VPN,可以了解一下 [WireGuard](https://www.wireguard.com/) 以及 [Algo](https://github.com/trailofbits/algo)。\n\n## Markdown\n\n你在职业生涯中大概率会编写各种各样的文档。在很多情况下这些文档需要使用标记来增加可读性,比如:插入粗体或者斜体内容,增加页眉、超链接、以及代码片段。\n\n在不使用 Word 或者 LaTeX 等复杂工具的情况下,你可以考虑使用 [Markdown](https://commonmark.org/help/) 这个轻量化的标记语言(markup language)。你可能已经见过 Markdown 或者它的一个变种。很多环境都支持并使用 Markdown 的一些子功能。\n\nMarkdown 致力于将人们编写纯文本时的一些习惯标准化。比如:\n- 用 `*` 包围的文字表示强调(*斜体*),或者用 `**` 表示特别强调(**粗体**);\n- 以 `#` 开头的行是标题,`#` 的数量表示标题的级别,比如:`##二级标题`;\n- 以 `-` 开头代表一个无序列表的元素。一个数字加 `.`(比如 `1.`)代表一个有序列表元素;\n- 反引号 `` ` ``(backtick)包围的文字会以 `代码字体` 显示。如果要显示一段代码,可以在每一行前加四个空格缩进,或者使用三个反引号包围整个代码片段:\n\n ```\n 就像这样\n ```\n- 如果要添加超链接,将 _需要显示_ 的文字用方括号包围,并在后面紧接着用圆括号包围链接:`[显示文字](指向的链接)`。\n\nMarkdown 不仅容易上手,而且应用非常广泛。实际上本课程的课堂笔记和其他资料都是使用 Markdown 编写的。点击 [这个链接](https://github.com/missing-semester-cn/missing-semester-cn.github.io/blob/master/_2020/potpourri.md) 可以看到本页面的原始 Markdown 内容。\n\n\n\n## Hammerspoon (macOS 桌面自动化)\n\n[Hammerspoon](https://www.hammerspoon.org/) 是面向 macOS 的一个桌面自动化框架。它允许用户编写和操作系统功能挂钩的 Lua 脚本,从而与键盘、鼠标、窗口、文件系统等交互。\n\n下面是 Hammerspoon 的一些示例应用:\n\n- 绑定移动窗口到的特定位置的快捷键\n- 创建可以自动将窗口整理成特定布局的菜单栏按钮\n- 在你到实验室以后,通过检测所连接的 WiFi 网络自动静音扬声器\n- 在你不小心拿了朋友的充电器时弹出警告\n\n从用户的角度,Hammerspoon 可以运行任意 Lua 代码,绑定菜单栏按钮、按键、或者事件。Hammerspoon 提供了一个全面的用于和系统交互的库,因此它能没有限制地实现任何功能。你可以从头编写自己的 Hammerspoon 配置,也可以结合别人公布的配置来满足自己的需求。\n\n### 资源\n\n- [Getting Started with Hammerspoon](https://www.hammerspoon.org/go/):Hammerspoon 官方教程\n- [Sample configurations](https://github.com/Hammerspoon/hammerspoon/wiki/Sample-Configurations):Hammerspoon 官方示例配置\n- [Anish's Hammerspoon config](https://github.com/anishathalye/dotfiles-local/tree/mac/hammerspoon):Anish 的 Hammerspoon 配置\n\n## 开机引导以及 Live USB\n\n在你的计算机启动时,[BIOS](https://en.wikipedia.org/wiki/BIOS) 或者 [UEFI](https://en.wikipedia.org/wiki/Unified_Extensible_Firmware_Interface) 会在加载操作系统之前对硬件系统进行初始化,这被称为引导(booting)。你可以通过按下计算机提示的键位组合来配置引导,比如 `Press F9 to configure BIOS. Press F12 to enter boot menu`。在 BIOS 菜单中你可以对硬件相关的设置进行更改,也可以在引导菜单中选择从硬盘以外的其他设备加载操作系统——比如 Live USB。\n\n[Live USB](https://en.wikipedia.org/wiki/Live_USB) 是包含了完整操作系统的闪存盘。Live USB 的用途非常广泛,包括:\n - 作为安装操作系统的启动盘;\n - 在不将操作系统安装到硬盘的情况下,直接运行 Live USB 上的操作系统;\n - 对硬盘上的相同操作系统进行修复;\n - 恢复硬盘上的数据。\n\nLive USB 通过在闪存盘上 _写入_ 操作系统的镜像制作,而写入不是单纯的往闪存盘上复制 `.iso` 文件。你可以使用 [UNetbootin](https://unetbootin.github.io/) 、[Rufus](https://github.com/pbatard/rufus) 等 Live USB 写入工具制作。\n\n## Docker, Vagrant, VMs, Cloud, OpenStack\n\n[虚拟机](https://en.wikipedia.org/wiki/Virtual_machine)(Virtual Machine)以及容器化(containerization)等工具可以帮助你模拟一个包括操作系统的完整计算机系统。虚拟机可以用于创建独立的测试或者开发环境,以及用作安全测试的沙盒。\n\n[Vagrant](https://www.vagrantup.com/) 是一个构建和配置虚拟开发环境的工具。它支持用户在配置文件中写入比如操作系统、系统服务、需要安装的软件包等描述,然后使用 `vagrant up` 命令在各种环境(VirtualBox,KVM,Hyper-V 等)中启动一个虚拟机。[Docker](https://www.docker.com/) 是一个使用容器化概念的类似工具。\n\n租用云端虚拟机可以享受以下资源的即时访问:\n\n- 便宜、常开、且有公共 IP 地址的虚拟机用来托管网站等服务\n- 有大量 CPU、磁盘、内存、以及 GPU 资源的虚拟机\n- 超出用户可以使用的物理主机数量的虚拟机\n - 相比物理主机的固定开支,虚拟机的开支一般按运行的时间计算。所以如果用户只需要在短时间内使用大量算力,租用 1000 台虚拟机运行几分钟明显更加划算。\n\n受欢迎的 VPS 服务商有 [Amazon AWS](https://aws.amazon.com/),[Google Cloud](https://cloud.google.com/)、[ Microsoft Azure](https://azure.microsoft.com/) 以及 [DigitalOcean](https://www.digitalocean.com/)。\n\nMIT CSAIL 的成员可以使用 [CSAIL OpenStack instance](https://tig.csail.mit.edu/shared-computing/open-stack/)\n申请免费的虚拟机用于研究。\n\n## 交互式记事本编程\n\n[交互式记事本](https://en.wikipedia.org/wiki/Notebook_interface) 可以帮助开发者进行与运行结果交互等探索性的编程。现在最受欢迎的交互式记事本环境大概是 [Jupyter](https://jupyter.org/)。它的名字来源于所支持的三种核心语言:Julia、Python、R。[Wolfram Mathematica](https://www.wolfram.com/mathematica/) 是另外一个常用于科学计算的优秀环境。\n\n## GitHub\n\n[GitHub](https://github.com/) 是最受欢迎的开源软件开发平台之一。我们课程中提到的很多工具,从 [vim](https://github.com/vim/vim) 到\n[Hammerspoon](https://github.com/Hammerspoon/hammerspoon),都托管在 Github 上。向你每天使用的开源工具作出贡献其实很简单,下面是两种贡献者们经常使用的方法:\n\n- 创建一个 [议题(issue)](https://help.github.com/en/github/managing-your-work-on-github/creating-an-issue)。\n议题可以用来反映软件运行的问题或者请求新的功能。创建议题并不需要创建者阅读或者编写代码,所以它是一个轻量化的贡献方式。高质量的问题报告对于开发者十分重要。在现有的议题发表评论也可以对项目的开发作出贡献。\n- 使用 [拉取请求(pull request)](https://help.github.com/en/github/collaborating-with-issues-and-pull-requests/about-pull-requests) 提交代码更改。由于涉及到阅读和编写代码,提交拉取请求总的来说比创建议题更加深入。拉取请求是请求别人把你自己的代码拉取(且合并)到他们的仓库里。很多开源项目仅允许认证的管理者管理项目代码,所以一般需要 [复刻(fork)](https://help.github.com/en/github/getting-started-with-github/fork-a-repo) 这些项目的上游仓库(upstream repository),在你的 Github 账号下创建一个内容完全相同但是由你控制的复刻仓库。这样你就可以在这个复刻仓库自由创建新的分支并推送修复问题或者实现新功能的代码。完成修改以后再回到开源项目的 Github 页面 [创建一个拉取请求](https://help.github.com/en/github/collaborating-with-issues-and-pull-requests/creating-a-pull-request)。\n\n提交请求后,项目管理者会和你交流拉取请求里的代码并给出反馈。如果没有问题,你的代码会和上游仓库中的代码合并。很多大的开源项目会提供贡献指南,容易上手的议题,甚至专门的指导项目来帮助参与者熟悉这些项目。\n" }, { "path": "_2020/qa.md", "content": "---\nlayout: lecture\ntitle: \"提问&回答\"\ndate: 2020-01-30\nready: true\nsync: true\nsyncdate: 2025-08-16\nvideo:\n aspect: 56.25\n id: Wz50FvGG6xU\n---\n\n最后一节课,我们回答学生提出的问题:\n\n\n- [学习操作系统相关内容的推荐,比如进程,虚拟内存,中断,内存管理等](#学习操作系统相关内容的推荐比如进程虚拟内存中断内存管理等)\n- [你会优先学习的工具有那些?](#你会优先学习的工具有那些)\n- [使用 Python VS Bash 脚本 VS 其他语言?](#使用-python-vs-bash-脚本-vs-其他语言)\n- [`source script.sh` 和 `./script.sh` 有什么区别?](#source-scriptsh-和-scriptsh-有什么区别)\n- [各种软件包和工具存储在哪里?引用过程是怎样的? `/bin` 或 `/lib` 是什么?](#各种软件包和工具存储在哪里引用过程是怎样的-bin-或-lib-是什么)\n- [我应该用 `apt-get install` 还是 `pip install` 去下载软件包呢?](#我应该用-apt-get-install-还是-pip-install-去下载软件包呢)\n- [用于提高代码性能,简单好用的性能分析工具有哪些?](#用于提高代码性能简单好用的性能分析工具有哪些)\n- [你使用那些浏览器插件?](#你使用那些浏览器插件)\n- [有哪些有用的数据整理工具?](#有哪些有用的数据整理工具)\n- [Docker 和虚拟机有什么区别?](#docker-和虚拟机有什么区别)\n- [不同操作系统的优缺点是什么,我们如何选择(比如选择最适用于我们需求的 Linux 发行版)?](#不同操作系统的优缺点是什么我们如何选择比如选择最适用于我们需求的-linux-发行版)\n- [使用 Vim 编辑器 VS Emacs 编辑器?](#使用-vim-编辑器-vs-emacs-编辑器)\n- [机器学习应用的提示或技巧?](#机器学习应用的提示或技巧)\n- [还有更多的 Vim 小窍门吗?](#还有更多的-vim-小窍门吗)\n- [2FA 是什么,为什么我需要使用它?](#2fa-是什么为什么我需要使用它)\n- [对于不同的 Web 浏览器有什么评价?](#对于不同的-web-浏览器有什么评价)\n\n\n## 学习操作系统相关内容的推荐,比如进程,虚拟内存,中断,内存管理等\n\n\n\n首先,不清楚你是不是真的需要了解这些更底层的话题。\n当你开始编写更加底层的代码,比如实现或修改内核的时候,这些内容是很重要的。除了其他课程中简要介绍过的进程和信号量之外,大部分话题都不相关。\n\n学习资源:\n\n- [MIT's 6.828 class](https://pdos.csail.mit.edu/6.828/) - 研究生阶段的操作系统课程(课程资料是公开的)。\n- 现代操作系统 第四版(*Modern Operating Systems 4th ed*) - 作者是 Andrew S. Tanenbaum 这本书对上述很多概念都有很好的描述。\n- FreeBSD 的设计与实现(*The Design and Implementation of the FreeBSD Operating System*) - 关于 FreeBSD OS 不错的资源(注意,FreeBSD OS 不是 Linux)。\n- 其他的指南例如 [用 Rust 写操作系统](https://os.phil-opp.com/) 这里用不同的语言逐步实现了内核,主要用于教学的目的。\n\n\n## 你会优先学习的工具有那些?\n\n值得优先学习的内容:\n\n- 多去使用键盘,少使用鼠标。这一目标可以通过多加利用快捷键,更换界面等来实现。\n- 学好编辑器。作为程序员你大部分时间都是在编辑文件,因此值得学好这些技能。\n- 学习怎样去自动化或简化工作流程中的重复任务。因为这会节省大量的时间。\n- 学习像 Git 之类的版本控制工具并且知道如何与 GitHub 结合,以便在现代的软件项目中协同工作。\n\n## 使用 Python VS Bash 脚本 VS 其他语言?\n\n通常来说,Bash 脚本对于简短的一次性脚本有效,比如当你想要运行一系列的命令的时候。但是 Bash 脚本有一些比较奇怪的地方,这使得大型程序或脚本难以用 Bash 实现:\n\n- Bash 对于简单的使用情形没什么问题,但是很难对于所有可能的输入都正确。例如,脚本参数中的空格会导致 Bash 脚本出错。\n- Bash 对于代码重用并不友好。因此,重用你先前已经写好的代码很困难。通常 Bash 中没有软件库的概念。\n- Bash 依赖于一些像 `$?` 或 `$@` 的特殊字符指代特殊的值。其他的语言却会显式地引用,比如 `exitCode` 或 `sys.args`。\n\n因此,对于大型或者更加复杂的脚本我们推荐使用更加成熟的脚本语言例如 Python 和 Ruby。\n你可以找到很多用这些语言编写的,用来解决常见问题的在线库。\n如果你发现某种语言实现了你所需要的特定功能库,最好的方式就是直接去使用那种语言。\n\n## `source script.sh` 和 `./script.sh` 有什么区别?\n\n这两种情况 `script.sh` 都会在 bash 会话中被读取和执行,不同点在于哪个会话执行这个命令。\n对于 `source` 命令来说,命令是在当前的 bash 会话中执行的,因此当 `source` 执行完毕,对当前环境的任何更改(例如更改目录或是定义函数)都会留存在当前会话中。\n单独运行 `./script.sh` 时,当前的 bash 会话将启动新的 bash 会话(实例),并在新实例中运行命令 `script.sh`。\n因此,如果 `script.sh` 更改目录,新的 bash 会话(实例)会更改目录,但是一旦退出并将控制权返回给父 bash 会话,父会话仍然留在先前的位置(不会有目录的更改)。\n同样,如果 `script.sh` 定义了要在终端中访问的函数,需要用 `source` 命令在当前 bash 会话中定义这个函数。否则,如果你运行 `./script.sh`,只有新的 bash 会话(进程)才能执行定义的函数,而当前的 shell 不能。\n\n## 各种软件包和工具存储在哪里?引用过程是怎样的? `/bin` 或 `/lib` 是什么?\n\n根据你在命令行中运行的程序,这些包和工具会全部在 `PATH` 环境变量所列出的目录中查找到, 你可以使用 `which` 命令(或是 `type` 命令)来检查你的 shell 在哪里发现了特定的程序。\n一般来说,特定种类的文件存储有一定的规范,[文件系统,层次结构标准(Filesystem, Hierarchy Standard)](https://en.wikipedia.org/wiki/Filesystem_Hierarchy_Standard) 可以查到我们讨论内容的详细列表。\n\n- `/bin` - 基本命令二进制文件\n- `/sbin` - 基本的系统二进制文件,通常是 root 运行的\n- `/dev` - 设备文件,通常是硬件设备接口文件\n- `/etc` - 主机特定的系统配置文件\n- `/home` - 系统用户的主目录\n- `/lib` - 系统软件通用库\n- `/opt` - 可选的应用软件\n- `/sys` - 包含系统的信息和配置([第一堂课](/2020/course-shell/) 介绍的)\n- `/tmp` - 临时文件( `/var/tmp` ) 通常重启时删除\n- `/usr/` - 只读的用户数据\n + `/usr/bin` - 非必须的命令二进制文件\n + `/usr/sbin` - 非必须的系统二进制文件,通常是由 root 运行的\n + `/usr/local/bin` - 用户编译程序的二进制文件\n- `/var` -变量文件 像日志或缓存\n\n## 我应该用 `apt-get install` 还是 `pip install` 去下载软件包呢?\n\n这个问题没有普遍的答案。这与使用系统程序包管理器还是特定语言的程序包管理器来安装软件这一更笼统的问题相关。需要考虑的几件事:\n\n- 常见的软件包都可以通过这两种方法获得,但是小众的软件包或较新的软件包可能不在系统程序包管理器中。在这种情况下,使用特定语言的程序包管理器是更好的选择。\n- 同样,特定语言的程序包管理器相比系统程序包管理器有更多的最新版本的程序包。\n- 当使用系统软件包管理器时,将在系统范围内安装库。如果出于开发目的需要不同版本的库,则系统软件包管理器可能不能满足你的需要。对于这种情况,大多数编程语言都提供了隔离或虚拟环境,因此你可以用特定语言的程序包管理器安装不同版本的库而不会发生冲突。对于 Python,可以使用 virtualenv,对于 Ruby,使用 RVM 。\n- 根据操作系统和硬件架构,其中一些软件包可能会附带二进制文件或者软件包需要被编译。例如,在树莓派(Raspberry Pi)之类的 ARM 架构计算机中,在软件附带二进制文件和软件包需要被编译的情况下,使用系统包管理器比特定语言包管理器更好。这在很大程度上取决于你的特定设置。\n你应该仅使用一种解决方案,而不同时使用两种方法,因为这可能会导致难以解决的冲突。我们的建议是尽可能使用特定语言的程序包管理器,并使用隔离的环境(例如 Python 的 virtualenv)以避免影响全局环境。\n\n## 用于提高代码性能,简单好用的性能分析工具有哪些?\n\n性能分析方面相当有用和简单工具是 [print timing](/2020/debugging-profiling/#timing)。你只需手动计算代码不同部分之间花费的时间。通过重复执行此操作,你可以有效地对代码进行二分法搜索,并找到花费时间最长的代码段。\n\n对于更高级的工具, Valgrind 的 [Callgrind](http://valgrind.org/docs/manual/cl-manual.html) 可让你运行程序并计算所有的时间花费以及所有调用堆栈(即哪个函数调用了另一个函数)。然后,它会生成带注释的代码版本,其中包含每行花费的时间。但是,它会使程序运行速度降低一个数量级,并且不支持线程。其他的,[ `perf` ](http://www.brendangregg.com/perf.html) 工具和其他特定语言的采样性能分析器可以非常快速地输出有用的数据。[Flamegraphs](http://www.brendangregg.com/flamegraphs.html) 是对采样分析器结果的可视化工具。你还可以使用针对特定编程语言或任务的工具。例如,对于 Web 开发而言,Chrome 和 Firefox 内置的开发工具具有出色的性能分析器。\n\n有时,代码中最慢的部分是系统等待磁盘读取或网络数据包之类的事件。在这些情况下,需要检查根据硬件性能估算的理论速度是否不偏离实际数值,也有专门的工具来分析系统调用中的等待时间,包括用于用户程序内核跟踪的 [eBPF](http://www.brendangregg.com/blog/2019-01-01/learn-ebpf-tracing.html) 。如果需要低级的性能分析,[ `bpftrace` ](https://github.com/iovisor/bpftrace) 值得一试。\n\n\n## 你使用那些浏览器插件?\n\n我们钟爱的插件主要与安全性与可用性有关:\n- [uBlock Origin](https://github.com/gorhill/uBlock) - 是一个 [用途广泛(wide-spectrum)](https://github.com/gorhill/uBlock/wiki/Blocking-mode) 的拦截器,它不仅可以拦截广告,还可以拦截第三方的页面,也可以拦截内部脚本和其他种类资源的加载。如果你打算花更多的时间去配置,前往 [中等模式(medium mode)](https://github.com/gorhill/uBlock/wiki/Blocking-mode:-medium-mode) 或者 [强力模式(hard mode)](https://github.com/gorhill/uBlock/wiki/Blocking-mode:-hard-mode)。在你调整好设置之前一些网站会停止工作,但是这些配置会显著提高你的网络安全水平。另外, [简易模式(easy mode)](https://github.com/gorhill/uBlock/wiki/Blocking-mode:-easy-mode) 作为默认模式已经相当不错了,可以拦截大部分的广告和跟踪,你也可以自定义规则来拦截网站对象。\n- [Stylus](https://github.com/openstyles/stylus/) - 是 Stylish 的分支(不要使用 Stylish,它会 [窃取浏览记录](https://www.theregister.co.uk/2018/07/05/browsers_pull_stylish_but_invasive_browser_extension/)),这个插件可让你将自定义 CSS 样式加载到网站。使用 Stylus,你可以轻松地自定义和修改网站的外观。可以删除侧边框,更改背景颜色,更改文字大小或字体样式。这可以使你经常访问的网站更具可读性。此外,Stylus 可以找到其他用户编写并发布在 [userstyles.org](https://userstyles.org/) 中的样式。大多数常用的网站都有一个或几个深色主题样式。\n- 全页屏幕捕获 - 内置于 [Firefox](https://screenshots.firefox.com/) 和 [ Chrome 扩展程序](https://chrome.google.com/webstore/detail/full-page-screen-capture/fdpohaocaechififmbbbbbknoalclacl?hl=en) 中。这些插件提供完整的网站截图,通常比打印要好用。\n- [多账户容器](https://addons.mozilla.org/en-US/firefox/addon/multi-account-containers/) - 该插件使你可以将 Cookie 分为“容器”,从而允许你以不同的身份浏览 web 网页并且/或确保网站无法在它们之间共享信息。\n- 密码集成管理器 - 大多数密码管理器都有浏览器插件,这些插件帮你将登录凭据输入网站的过程不仅方便,而且更加安全。与简单复制粘贴用户名和密码相比,这些插件将首先检查网站域是否与列出的条目相匹配,以防止冒充网站的网络钓鱼窃取登录凭据。\n\n## 有哪些有用的数据整理工具?\n\n在数据整理那一节课程中,我们没有时间讨论一些数据整理工具,包括分别用于 JSON 和 HTML 数据的专用解析器, `jq` 和 `pup`。Perl 语言是另一个更高级的可以用于数据整理管道的工具。另一个技巧是使用 `column -t` 命令,可以将空格文本(不一定对齐)转换为对齐的文本。\n\n更一般地讲,还有 vim 和 Python 两个非传统意义上的数据整理工具。对于某些复杂的多行转换,vim 宏是非常有用的工具。你可以记录一系列操作,并根据需要重复执行多次,例如,在“编辑器”一节的 [讲义](/2020/editors/#macros)(去年 [视频](/2019/editors/))中,有一个示例是使用 vim 宏将 XML 格式的文件转换为 JSON。\n\n对于通常以 CSV 格式显示的表格数据, Python [pandas](https://pandas.pydata.org/) 库是一个很棒的工具。不仅因为它能让复杂操作的定义(如分组依据,联接或过滤器)变得非常容易,而且还便于根据不同属性绘制数据。它还支持导出多种表格格式,包括 XLS,HTML 或 LaTeX。另外,R 语言(一种有争议的 [不好](http://arrgh.tim-smith.us/) 的语言)具有很多功能,可以计算数据的统计数字,这在管道的最后一步中非常有用。 [ggplot2](https://ggplot2.tidyverse.org/) 是 R 中很棒的绘图库。\n\n## Docker 和虚拟机有什么区别?\n\nDocker 基于容器这个更为概括的概念。关于容器和虚拟机之间最大的不同是,虚拟机会执行整个的 OS 栈,包括内核(即使这个内核和主机内核相同)。与虚拟机不同,容器避免运行其他内核实例,而是与主机分享内核。在 Linux 环境中,有 LXC 机制来实现,并且这能使一系列分离的主机像是在使用自己的硬件启动程序,而实际上是共享主机的硬件和内核。因此容器的开销小于完整的虚拟机。\n\n另一方面,容器的隔离性较弱而且只有在主机运行相同的内核时才能正常工作。例如,如果你在 macOS 上运行 Docker,Docker 需要启动 Linux 虚拟机去获取初始的 Linux 内核,这样的开销仍然很大。最后,Docker 是容器的特定实现,它是为软件部署而定制的。基于这些,它有一些奇怪之处:例如,默认情况下,Docker 容器在重启之间不会有以任何形式的存储。\n\n## 不同操作系统的优缺点是什么,我们如何选择(比如选择最适用于我们需求的 Linux 发行版)?\n\n关于 Linux 发行版,尽管有相当多的版本,但大部分发行版在大多数使用情况下的表现是相同的。\n可以使用任何发行版去学习 Linux 与 UNIX 的特性和其内部工作原理。\n发行版之间的根本区别是发行版如何处理软件包更新。\n某些版本,例如 Arch Linux 采用滚动更新策略,用了最前沿的软件包(bleeding-edge),但软件可能并不稳定。另外一些发行版(如 Debian,CentOS 或 Ubuntu LTS)其更新策略要保守得多,因此更新的内容会更稳定,但会牺牲一些新功能。我们建议你使用 Debian 或 Ubuntu 来获得简单稳定的台式机和服务器体验。\n\nMac OS 是介于 Windows 和 Linux 之间的一个操作系统,它有很漂亮的界面。但是,Mac OS 是基于 BSD 而不是 Linux,因此系统的某些部分和命令是不同的。\n另一种值得体验的是 FreeBSD。虽然某些程序不能在 FreeBSD 上运行,但与 Linux 相比,BSD 生态系统的碎片化程度要低得多,并且说明文档更加友好。\n除了开发 Windows 应用程序或需要使用某些 Windows 系统更好支持的功能(例如对游戏的驱动程序支持)外,我们不建议使用 Windows。\n\n对于双系统,我们认为最有效的是 macOS 的 bootcamp,长期来看,任何其他组合都可能会出现问题,尤其是当你结合了其他功能比如磁盘加密。\n\n## 使用 Vim 编辑器 VS Emacs 编辑器?\n\n我们三个都使用 vim 作为我们的主要编辑器。但是 Emacs 也是一个不错的选择,你可以两者都尝试,看看那个更适合你。Emacs 不使用 vim 的模式编辑,但是这些功能可以通过 Emacs 插件像 [Evil](https://github.com/emacs-evil/evil) 或 [Doom Emacs](https://github.com/hlissner/doom-emacs) 来实现。\nEmacs 的优点是可以用 Lisp 语言进行扩展(Lisp 比 vim 默认的脚本语言 vimscript 要更好用)。\n\n## 机器学习应用的提示或技巧?\n\n课程的一些经验可以直接用于机器学习程序。\n就像许多科学学科一样,在机器学习中,你需要进行一系列实验,并检查哪些数据有效,哪些无效。\n你可以使用 Shell 轻松快速地搜索这些实验结果,并且以合理的方式汇总。这意味着需要在限定时间内或使用特定数据集的情况下,检查所有实验结果。通过使用 JSON 文件记录实验的所有相关参数,使用我们在本课程中介绍的工具,这件事情可以变得极其简单。\n最后,如果你不使用集群提交你的 GPU 作业,那你应该研究如何使该过程自动化,因为这是一项非常耗时的任务,会消耗你的精力。\n\n## 还有更多的 Vim 小窍门吗?\n\n更多的窍门:\n\n- 插件 - 花时间去探索插件。有很多不错的插件修复了 vim 的缺陷或者增加了能够与现有 vim 工作流结合的新功能。关于这部分内容,资源是 [VimAwesome](https://vimawesome.com/) 和其他程序员的 dotfiles。\n- 标记 - 在 vim 里你可以使用 `m\n\no <-- o <-- o <-- o <---- o \n ^ /\n \\ v\n --- o <-- o\n\n\n\nGit 中的提交是不可改变的。但这并不代表错误不能被修改,只不过这种“修改”实际上是创建了一个全新的提交记录。而引用(参见下文)则被更新为指向这些新的提交。\n\n## 数据模型及其伪代码表示\n\n以伪代码的形式来学习 Git 的数据模型,可能更加清晰:\n\n```\n// 文件就是一组数据\ntype blob = arrayLecture video coming soon!
\n{% endif %}\n\n{{ content }}\n\nLicensed under CC BY-NC-SA.
\nRedirecting you to {{ page.redirect }}
\n \n\n" }, { "path": "about.md", "content": "---\nlayout: lecture\ntitle: \"开设此课程的动机\"\n---\n\n在传统的计算机科学课程中,从操作系统、编程语言到机器学习,这些高大上课程和主题已经非常多了。\n然而有一个至关重要的主题却很少被专门讲授,而是留给学生们自己去探索。 这部分内容就是:精通工具。\n\n这些年,我们在麻省理工学院参与了许多课程的助教活动,过程当中愈发意识到很多学生对于工具的了解知之甚少。\n计算机设计的初衷就是任务自动化,然而学生们却常常陷在大量的重复任务中,或者无法完全发挥出诸如\n版本控制、文本编辑器等工具的强大作用。效率低下和浪费时间还是其次,更糟糕的是,这还可能导致数据丢失或\n无法完成某些特定任务。\n\n这些主题不是大学课程的一部分:学生一直都不知道如何使用这些工具,或者说,至少是不知道如何高效\n地使用,因此浪费了时间和精力在本来可以更简单的任务上。标准的计算机科学课程缺少了这门能让计算\n变得更简捷的关键课程。\n\n# The missing semester of your CS education\n\n为了解决这个问题,我们开设了一个课程,涵盖各项对成为高效率计算机科学家或程序员至关重要的\n主题。这个课程实用且具有很强的实践性,提供了各种能够立即广泛应用解决问题的趁手工具指导。\n该课在 2020 年 1 月“独立活动期”开设,为期一个月,是学生开办的短期课程。虽然该课程针对\n麻省理工学院,但我们公开提供了全部课程的录制视频与相关资料。\n\n如果该课程适合你,那么以下还有一些具体的课程示例:\n\n## 命令行与 shell 工具\n\n如何使用别名、脚本和构建系统来自动化执行通用重复的任务。不再总是从文档中拷贝粘贴\n命令。不要再“逐个执行这 15 个命令”,不要再“你忘了执行这个命令”、“你忘了传那个\n参数”,类似的对话不要再有了。\n\n例如,快速搜索历史记录可以节省大量时间。在下面这个示例中,我们展示了如何通过`convert`命令\n在历史记录中跳转的一些技巧。\n\n\n\n## 版本控制\n\n如何**正确地**使用版本控制,利用它避免尴尬的情况发生。与他人协作,并且能够快速定位\n有问题的提交\n不再大量注释代码。不再为解决 bug 而找遍所有代码。不再“我去,刚才是删了有用的代码?!”。\n我们将教你如何通过拉取请求来为他人的项目贡献代码。\n\n下面这个示例中,我们使用`git bisect`来定位哪个提交破坏了单元测试,并且通过`git revert`来进行修复。\n\n\n\n## 文本编辑\n\n不论是本地还是远程,如何通过命令行高效地编辑文件,并且充分利用编辑器特性。不再来回复制文件。不再重复编辑文件。\n\nVim 的宏是它最好的特性之一,在下面这个示例中,我们使用嵌套的 Vim 宏快速地将 html 表格转换成了 csv 格式。\n\n\n\n## 远程服务器\n\n使用 SSH 密钥连接远程机器进行工作时如何保持连接,并且让终端能够复用。不再为了仅执行个别命令\n总是打开许多命令行终端。不再每次连接都总输入密码。不再因为网络断开或必须重启笔记本时\n就丢失全部上下文。\n\n以下示例,我们使用`tmux`来保持远程服务器的会话存在,并使用`mosh`来支持网络漫游和断开连接。\n\n\n\n## 查找文件\n\n如何快速查找你需要的文件。不再挨个点击项目中的文件,直到找到你所需的代码。\n\n以下示例,我们通过`fd`快速查找文件,通过`rg`找代码片段。我们也用到了`fasd`快速`cd`并`vim`最近/常用的文件/文件夹。\n\n\n\n## 数据处理\n\n如何通过命令行直接轻松快速地修改、查看、解析、绘制和计算数据和文件。不再从日志文件拷贝\n粘贴。不再手动统计数据。不再用电子表格画图。\n\n## 虚拟机\n\n如何使用虚拟机尝试新操作系统,隔离无关的项目,并且保持宿主机整洁。不再因为做安全实验而\n意外损坏你的计算机。不再有大量随机安装的不同版本软件包。\n\n## 安全\n\n如何在不泄露隐私的情况下畅游互联网。不再抓破脑袋想符合自己疯狂规则的密码。不再连接不安全的开放 WiFi 网络。不再传输未加密的信息。\n\n# 结论\n\n这 12 节课将包括但不限于以上内容,同时每堂课都提供了能帮助你熟悉这些工具的练手小测验。如果不能\n等到一月,你也可以看下[黑客工具](https://hacker-tools.github.io/lectures/),这是我们去年的\n试讲。它是本课程的前身,包含许多相同的主题。\n\n无论面对面还是远程在线,欢迎你的参与。\n\nHappy hacking,![](\"https://img.shields.io/badge/文档同步时间-2021--04--24-blue\"){kind=icon}
\n\n![](\"https://img.shields.io/badge/Chinese-✔-green\"){kind=icon}
\n {% else %}\n {{ lecture.title }} {% if lecture.noclass %}[no class]{% endif %}![](\"https://img.shields.io/badge/Chinese-✘-orange\"){kind=icon}
\n {% endif %}\n {% if lecture.sync %}\n ![](\"https://img.shields.io/badge/Update-✔-green\"){kind=icon}
\n {% else %}\n ![](\"https://img.shields.io/badge/Update-✘-orange\"){kind=icon}
\n {% endif %}\n {% if lecture.solution.ready%}\n ![](\"https://img.shields.io/badge/Solution-✔-green\"){kind=icon}
\n {% else %}\n ![](\"https://img.shields.io/badge/Solution-✘-orange\"){kind=icon}
\n {% endif %}\n