TL;DR:
javascript:{h=location.href;open('https://archive.is/?run=1&url='+encodeURIComponent(h));location.href='https://web.archive.org/save/'+(h)}
Archive for the ‘Scripting’ Category
Bookmarklet to save a page both in the WayBack machine and Archive.is (ending on the latter to solve a reCAPTCHA)
Posted by jpluimers on 2023/08/22
Posted in Bookmarklet, Development, JavaScript/ECMAScript, Power User, Scripting, Software Development, Web Browsers, Web Development | Leave a Comment »
Burninator Sec: Twitter Removed the Blocked Account Export – Let’s Put it Back!
Posted by jpluimers on 2023/08/18
Hoping I can still use the Twitter API to perform thousands of requests: [Wayback/Archive] Burninator Sec: Twitter Removed the Blocked Account Export – Let’s Put it Back!
I dug around in the Data Archive and eventually found block.js, which is a JSON object of all the blocked accounts in their ideas. From there you can write a quick Python script to use the Twitter API to resolve all of those IDs to usernames.
Related: [Wayback/Archive] How to download your Twitter archive and Tweets | Twitter Help.
Via [Wayback/Archive] twitter export blocklist – Google Search and
Share this:
Posted in Development, Python, Scripting, SocialMedia, Software Development, Twitter | Leave a Comment »
Figuring out the threads for processes ran by python
Posted by jpluimers on 2023/08/17
A while ago I wrote about Figuring out the open network connections for processes ran by python, which explained the TL;DR:
pidof python | tr " " "\n" | xargs -r -n 1 lsof -i -a -e /run/user/1001/gvfs -p
Now I needed thread information as well, so below two examples using ps and pstree. I won’t explain the pidof and xargs stuff here as that was already covered in the above blog-post and I found out that ps already has a built-in way to filter on process name.
The ps solution uses the H, -L or -T argument to show the threads:
Share this:
Posted in *nix, *nix-tools, bash, Development, lsof, Power User, ps, Scripting, Software Development | Leave a Comment »
Youtube – Extract Meta Data – Amnesty International
Posted by jpluimers on 2023/08/16
Cool that Amnesty International can do a YouTube [Wayback/Archive] Extract Meta Data (Amnesty International).
Via:
- [Wayback/Archive] find youtube publish timestamp – Google Search
- [Wayback/Archive] How To: Determine The Exact (Local) Upload Time Of A YouTube Video – Citizen Evidence Lab – Amnesty International
- [Wayback/Archive] YouTube Data Viewer – Citizen Evidence Lab – Amnesty International
I wonder if I can write a Bookmarklet for this (it will likely require an HTTP POST request).
–jeroen
Share this:
Posted in Development, HTML, JavaScript/ECMAScript, LifeHacker, Power User, Privacy, Scripting, SocialMedia, Software Development, Web Development, YouTube | Leave a Comment »
Bookmarklet for Archive.is to navigate to the canonical link
Posted by jpluimers on 2023/08/15
This is a follow-up to Bookmarklets for Archive.is and the WayBack Machine to go to the original page.
Archive.is has two kinds of URLs:
- The encoded version is the short form without any meta-information,
- for example archive.is/jnp53
- The canonical version is a long form and has metadata about Archive date and time, and the Archived URL,
- for example 2022.02.22-215053/https://www.cloudflare.com/ips/
- and archive.today/20220222215053/https://www.cloudflare.com/ips/ (which redirects to the non-functioning https://archive.li/20220222215053/https://www.cloudflare.com/ips/)
- and https://archive.is/20220222215053/https://www.cloudflare.com/ips/
You get the first URL both after archiving and when browsing from an archived page to another archived page (if it is not archived you will go the unarchived full page URL).
Share this:
Posted in archive.is / archive.today, Development, Internet, InternetArchive, JavaScript/ECMAScript, Power User, Scripting, Software Development, WayBack machine | Leave a Comment »
Gradual Hedy programming language supports many numerals: easier for people not using English or not using Latin based alphabets
Posted by jpluimers on 2023/08/10
Yesterday, I wrote about Learn to program the gradual way: Welcome to Hedy! and today is the next installment: about numerals.
[Archive] /Fay-lee-nuh/ (@Felienne) | Twitter kind of by surprise discovered that the ten numerical digits of the decimal numeral system used in virtually all programming languages are not the original Arabic forms.
Supporting other forms of decimal numerals will help learning to program when your background is non-English or even using ten systems outside the Arabic numeral realm so common in Latin alphabets. And they are a fun learning exercise for every body too!
Some of the related Tweets on this:
- [Archive] /Fay-lee-nuh/ on Twitter: “You know those things 0 to 9 that we call Arabic numerals?! The actual Arabic language uses different ones* But of course, we support that now too!!! * Fun fact I did not know until embarrassingly recently…”
- [Archive] Hedy on Twitter: “Turns out different languages not only have different words and letters but also…. numbers!! So to make sure Hedy works really well for all languages we need to do a “bit” of work! …”
- [Archive] Hedy on Twitter: “Can’t believe how little I knew about other languages and cultures before all this!”
- [Archive] Hedy on Twitter: “Tadaaaaaa! …”
- [Archive] Hedy on Twitter: “Turns out different languages not only have different words and letters but also…. numbers!! So to make sure Hedy works really well for all languages we need to do a “bit” of work! …”
- [Archive] Peter Bindels 💉💉💉⏳ on Twitter: “@Felienne Unicode actually has like 62 different numbering systems that use some form of a 0-9 symbol. And about 5 that use a non-0-9 system of counting.” (spoiler: Felienne knows)
- [Archive] Jeroen Wiert Pluimers on Twitter: “@dascandy42 @Felienne Looking for numer and number in … shows a few categories that I think are now missing from .. (which is already a huge leap forward)” / Twitter (this blog post has some notes so I might be able to create a pull request later)
Some more related Wikipedia links:
- Numeral – Wikipedia
- Numeral system – Wikipedia
- Numeral (linguistics) – Wikipedia
- Numerical digit – Wikipedia
- Decimal – Wikipedia
- Arabic numerals – Wikipedia
- Spread of the Latin script – Wikipedia
- Numerals in Unicode – Wikipedia
- List of Unicode characters – Wikipedia
- Unicode block – Wikipedia
- Number Forms – Wikipedia
- Enclosed Alphanumerics – Wikipedia
- Common Indic Number Forms – Wikipedia
- Aegean Numbers (Unicode block) – Wikipedia
- Ancient Greek Numbers (Unicode block) – Wikipedia
- Coptic Epact Numbers – Wikipedia
- Rumi Numeral Symbols – Wikipedia
- Sinhala Archaic Numbers – Wikipedia
- Cuneiform Numbers and Punctuation – Wikipedia
- Mayan Numerals (Unicode block) – Wikipedia
- Counting Rod Numerals (Unicode block) – Wikipedia
- Mathematical Alphanumeric Symbols – Wikipedia
- Indic Siyaq Numbers (Unicode block) – Wikipedia
- Ottoman Siyaq Numbers (Unicode block) – Wikipedia
- Enclosed Alphanumeric Supplement – Wikipedia
- Number Forms – Wikipedia
- Mathematical Alphanumeric Symbols – Wikipedia
- Unicode – Wikipedia
In the Unicode pages, look for “numeral”, “number”, and “numeric” (or just for “num”).
–jeroen
Share this:
Posted in Development, Hedy, Learning/Teaching, LifeHacker, Power User, Scripting, Software Development | Leave a Comment »
Learn to program the gradual way: Welcome to Hedy!
Posted by jpluimers on 2023/08/09
Cool way to learn programming in a gradual way which works adults just as well as for kids: [Wayback/Archive] Felienne/hedy
Hedy is a gradual programming language to teach children programming. Gradual languages use different language levels, where each level adds new concepts and syntactic complexity. At the end of the Hedy level sequence, kids master a subset of syntactically valid Python.
[Wayback/Archive] Welcome to Hedy! – hedycode.com
Share this:
Posted in Development, Hedy, Interactive Tutorials, Learning/Teaching, LifeHacker, Power User, Scripting, Software Development | Leave a Comment »
I missed that the `choco list –localonly` had become default in 2015…
Posted by jpluimers on 2023/07/28
and when upgrading to Chocolatey to version 2, I got this error:
Invalid argument --localonly. This argument has been removed from the list command and cannot be used.
The upgrade broke a small batch file choco-list-installed.bat that I run on a lot of systems including both old and new chocolatey installations some dating back to before 2015 having this simple content:
choco list --localonly
Share this:
Posted in Batch-Files, Chocolatey, Development, Power User, Scripting, Software Development, Windows | Leave a Comment »
5 days after the exploit publication of snowcra5h/CVE-2023-38408: Remote Code Execution in OpenSSH’s forwarded ssh-agent
Posted by jpluimers on 2023/07/26
TL;DR is at the bottom (;
5 days ago this exploit development got published: [Wayback/Archive] snowcra5h/CVE-2023-38408: CVE-2023-38408 Remote Code Execution in OpenSSH’s forwarded ssh-agent.
It is about [Wayback/Archive] NVD – CVE-2023-38408 which there at NIST isn’t rated (yet?), neither at [Wayback/Archive] CVE-2023-38408 : The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remot.
However at [Wayback/Archive] CVE-2023-38408- Red Hat Customer Portal it scores 7.3 and [Wayback/Archive] CVE-2023-38408 | SUSE it did get a rating of 7.5, so since I mainly use OpenSuSE I wondered what to do as the CVE is formulated densely at [Wayback/Archive] www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt: it mentions Alice, but no Bob or Mallory (see Alice and Bob – Wikipedia).
Luckily, others readly already did the fine reading and emphasised the important bits, especially at [Wayback/Archive] RCE Vulnerability in OpenSSH’s SSH-Agent Forwarding: CVE-2023-38408 (note that instead of Alex, they actually mean Alice)
“A system administrator (Alice) runs SSH-agent on her local workstation, connects to a remote server with ssh, and enables SSH-agent forwarding with the -A or ForwardAgent option, thus making her SSH-agent (which is running on her local workstation) reachable from the remote server.”
According to researchers from Qualys, a remote attacker who has control of the host, which Alex has connected to, can load (dlopen()) and immediately unload (dlclose()) any shared library in /usr/lib* on Alice’s workstation (via her forwarded SSH-agent if it is compiled with ENABLE_PKCS11, which is the default).
The vulnerability lies in how SSH-agent handles forwarded shared libraries. When SSH-agent is compiled with ENABLE_PKCS11 (the default configuration), it forwards shared libraries from the user’s local workstation to the remote server. These libraries are loaded (dlopen()) and immediately unloaded (dlclose()) on the user’s workstation. The problem arises because certain shared libraries have side effects when loaded and unloaded, which can be exploited by an attacker who gains access to the remote server where SSH-agent is forwarded to.
Mitigations for the SSH-Agent Forwarding RCE Vulnerability
Share this:
Posted in *nix, *nix-tools, bash, bash, Communications Development, Development, Internet protocol suite, OpenSSH, Power User, PowerShell, Scripting, Security, Software Development, SSH | Leave a Comment »
Load jQuery Only If Not Present
Posted by jpluimers on 2023/07/26
Since I will likely need this one day:
- [Wayback] Load jQuery Only If Not Present | CSS-Tricks – CSS-Tricks
- [WayBack] Make Your Own Bookmarklets With jQuery – Smashing Magazine
- [Wayback] Better, Stronger, Safer
jQuerifyBookmarklet | Learning jQuery
Searching for the above, I ended up in some kind of YouTube vortex or time sink. This happens a lot when learning new stuff, so lets dump a bit more of what I learned along the way.
Watch your $
For checking for the availability of version of jQuery, lots of links I found use $(). or $. constructs which depend on the context of $ being the global alias for the jQuery. When mixing libraries, this global symbol (yes, unlike many languages $ and _ are valid and heavily symbols in JavaScript) can be used by any of these libraries and if you are not absolutely sure about your context, using them is a plain risk: [Wayback/Archive] Global Variables Are Bad.
Adding to the confusion, there are both the jQuery() and jQuery, which seem to be distinctly different. To add to the confusion, there is also jquery.
Since JavaScript is weakly typed, any typos are for you (in the sense of “you, the developer”) to figure out.
Some links from the vortex are below.
Confirmation of my fear of a using global names
- [Wayback/Archive] Why does JQuery have dollar signs everywhere? – Stack Overflow (thanks [Wayback/Archive] Sachin Kainth for asking, and [Wayback/Archive] User T.J. Crowder for answering)
$is just a shortcut forjQuery. The idea is that everything is done with the one global symbol (since the global namespaces is ridiculously crowded),jQuery, but you can use$(because it’s shorter) if you like:// These are the same barring your using noConflict (more below) var divs = $("div"); // Find all divs var divs = jQuery("div"); // Also find all divs, because console.log($ === jQuery); // "true"If you don’t want to use the alias, you don’t have to. And if you want$to not be an alias forjQuery, you can usenoConflictand the library will restore$to whatever it was before jQuery took it over. (Useful if you also use Prototype or MooTools.) - [Wayback/Archive] What does the dot after dollar sign mean in jQuery when declaring variables? – Stack Overflow
Q
I see variables declared as:$.root = $("body");and$root = $("body");What is the difference between the two?A (thanks [Wayback/Archive] Sampson)
Functions in JavaScript are objects. And like most objects in JavaScript, you can arbitrarily add properties to them. The$function is just that, a function. So if you want to pop a property onto it and reference a jQuery collection, or reference, you can.By adding the collection as a property on the$function, it is one less variable in the current scope. You can examine the keys of the jQuery function before and after if you’d like to see how it affects the function’s topography and (enumerable) property list:Object.keys($); // ["fn", "extend", "expando"..."parseHTML", "offset", "noConflict"] $.root = $("body"); // [<body>] Object.keys($); // ["fn", "extend", "expando"..."parseHTML", "offset", "noConflict", "root"]
jQuery documentation
- [Wayback/Archive] jQuery() | jQuery API Documentation – returning an empty set
Returning an Empty Set
Calling thejQuery()method with no arguments returns an empty jQuery set (with a.lengthproperty of 0). Similarly, if an argument ofnull,undefined, an empty array ([]), or an empty string ("") is passed, the set contains no elements. - [Wayback/Archive]
.jquery| jQuery API Documentation
The.jqueryproperty is assigned to the jQuery prototype, commonly referred to by its alias$.fn. It is a string containing the version number ofjQuery, such as “1.5.0” or “1.4.4”.Examples:
Determine if an object is a jQuery object12345678910var a = { what: "A regular JS object" },b = $( "body" );if ( a.jquery ) { // Falsy, since it's undefinedalert( "a is a jQuery object!" );}if ( b.jquery ) { // Truthy, since it's a stringalert( "b is a jQuery object!" );}Get the current version of jQuery running on the page1alert( "You are running jQuery version: " + $.fn.jquery ); - [Wayback/Archive] Types | jQuery API Documentation: Prototype
Prototype
All objects have a prototype property. Whenever the interpreter looks for a property, it also checks in the object’s prototype if the property is not found on the object itself. jQuery uses the prototype extensively to add methods to jQuery instances. Internally, jQuery makesjQuery.fnan alias ofjQuery.prototypeso you can use either one (though plugin developers have standardized onfn).1234567891011121314var form = $("#myform");console.log( form.clearForm ); // undefined// jQuery.fn === jQuery.prototypejQuery.fn.clearForm = function() {return this.find( ":input" ).each(function() {this.value = "";}).end();};// works for all instances of jQuery objects, because// the new method was added to the prototypeconsole.log( form.clearForm ); // functionform.clearForm(); - [Wayback/Archive] jQuery.fn.extend() | jQuery API Documentation
The
jQuery.fn.extend()method extends the jQuery prototype ($.fn) object to provide new methods that can be chained to thejQuery()function.This seems to be a construction that lots of people use to shoehorn truckloads of functionality into an almost global context. Doing that requires careful naming of each method, which the example does not make clear.
A really important jQuery documentation problem is the lack of a separate documentation entry statingjQuery.fn = jQuery.prototypewhich is in the source code (more recent versions have it on different lines):- [Wayback/Archive] jquery/core.js at 1.7.1 · jquery/jquery – line 76
jQuery.fn = jQuery.prototype = { // The current version of jQuery being used jquery: version, - [Wayback/Archive] jquery/core.js at 1.7.1 · jquery/jquery – line 192
// The current version of jQuery being used
jquery: "@VERSION",
- [Wayback/Archive] jquery/core.js at 1.7.1 · jquery/jquery – line 76
- [Wayback/Archive] jQuery.noConflict() | jQuery API Documentation
Many JavaScript libraries use$as a function or variable name, just as jQuery does. In jQuery’s case,$is just an alias forjQuery, so all functionality is available without using$. If you need to use another JavaScript library alongside jQuery, return control of$back to the other library with a call to$.noConflict(). Old references of$are saved during jQuery initialization;noConflict()simply restores them.If for some reason two versions of jQuery are loaded (which is not recommended), calling$.noConflict( true )from the second version will return the globally scoped jQuery variables to those of the first version.…If necessary, you can free up thejQueryname as well by passingtrueas an argument to the method. This is rarely necessary, and if you must do this (for example, if you need to use multiple versions of the jQuery library on the same page), you need to consider that most plug-ins rely on the presence of thejQueryvariable and may not operate correctly in this situation. - [Wayback/Archive] jQuery – MDN Web Docs Glossary: Definitions of Web-related terms | MDN
jQuery is a JavaScript Library that focuses on simplifying DOM manipulation, AJAX calls, and Event handling.jQuery uses a format,$(selector).action()to assign an element(s) to an event. To explain it in detail,$(selector)will call jQuery to selectselectorelement(s), and assign it to an event API called.action().Before writing this post, I had no idea what jQuery was and why it had the word Query in the name (I wrongly associated it with a server-side JavaScript SQL library).
JavaScript documentation
- [Wayback/Archive] Object prototypes – Learn web development | MDN
Prototypes are the mechanism by which JavaScript objects inherit features from one another.
…
Every object in JavaScript has a built-in property, which is called its prototype. The prototype is itself an object, so the prototype will have its own prototype, making what’s called a prototype chain. The chain ends when we reach a prototype that has
nullfor its own prototype.…
Prototypes are a powerful and very flexible feature of JavaScript, making it possible to reuse code and combine objects.In particular they support a version of inheritance. Inheritance is a feature of object-oriented programming languages that lets programmers express the idea that some objects in a system are more specialized versions of other objects. - [Wayback/Archive] Object – JavaScript | MDN
Nearly all objects in JavaScript are instances of
Object; a typical object inherits properties (including methods) fromObject.prototype, although these properties may be shadowed (a.k.a. overridden). However, anObjectmay be deliberately created for which this is not true (e.g. by [Wayback/Archive]Object.create(null)), or it may be altered so that this is no longer true (e.g. with [Wayback/Archive]Object.setPrototypeOf).Changes to theObjectprototype object are seen by all objects through prototype chaining, unless the properties and methods subject to those changes are overridden further along the prototype chain. This provides a very powerful although potentially dangerous mechanism to override or extend object behavior. - [Wayback/Archive] javascript – How does the “this” keyword work? – Stack Overflow has a few very precise and elaborate answers. Too much to quote here so I just thank these people:
- [Wayback/Archive] Maxim Gershkovich for asking
- [Wayback/Archive] Sebastian Simon for answering
- [Wayback/Archive] Mahesha999 for answering
Note $ is used to prefix variables too
[Wayback/Archive] jquery – Why use $ (dollar sign) in the name of javascript variables? – Stack Overflow (thanks [Wayback/Archive] Simon and [Wayback/Archive] Konerak):
The$in the variable name is only part of the name, but the convention is to use it to start variable names when the variable represents a jQuery object.var $myHeaderDiv = $('#header'); var myHeaderDiv = document.getElementById('header');Now later in your code, you know the$myHeaderDivis already a jQuery object, so you can call jQuery functions:$myHeaderDiv.fade();To get from the DOM-variable to the jQuery variable:
var $myHeaderDiv = jQuery(myHeaderDiv); //assign to another variable jQuery(myHeaderDiv).fade(); //use directly //or, as the $ is aliased to the jQuery object if you don't specify otherwise: var $myHeaderDiv = jQuery(myHeaderDiv); //assign $(myHeaderDiv).fade(); //useTo get from the jQuery variable to the DOM-variable.
var myHeaderDiv = $myHeaderDiv.get(0);
Finding the jQuery version
Via [Wayback/Archive] detect jquery version – Google Search:
- [Wayback/Archive] How to check what version of jQuery is loaded? – Stack Overflow – Answer (question by [Wayback/Archive] Luke101, answer by [Wayback/Archive] Darin Dimitrov)
if (typeof jQuery != 'undefined') { // jQuery is loaded => print the version alert(jQuery.fn.jquery); }no - [Wayback/Archive] How to check what version of jQuery is loaded? – Stack Overflow – Comment by [Wayback/Archive] Uzbekjon:
There are 2 ways to check currently loaded jquery version:
jQuery.fn.jqueryandjQuery().jquery(shorthands:$.fn.jquery$().jquery). I wrote about it in details with links to jquery source code if you’d like to dig deeper- [Wayback/Archive] jQuery Howto: How to check jQuery version?
jQuery.fn = jQuery.prototype = {// The current version of jQuery being usedjquery: version,
- [Wayback/Archive] jQuery Howto: How to check jQuery version?
- [Wayback/Archive] How to check what version of jQuery is loaded? – Stack Overflow – Comment:
Don’t use
jQuery().jquery. It creates a jQuery object for nothing, just use what the answer says.– user9016207
Via [Wayback/Archive] jquery fn – Google Search:
- [Wayback/Archive] javascript – What does
jQuery.fnmean? – Stack Overflow (thanks [Wayback/Archive] ajsie and [Wayback/Archive] Andy E)
jQuery.fn = jQuery.prototype = { // ... }That meansjQuery.fn.jqueryis an alias forjQuery.prototype.jquery, which returns the current jQuery version. Again from the source code:// The current version of jQuery being used jquery: "@VERSION",- [Wayback/Archive] jquery/core.js at 1.7.1 · jquery/jquery – line 76
jQuery.fn = jQuery.prototype = { - [Wayback/Archive] jquery/core.js at 1.7.1 · jquery/jquery – line 192
// The current version of jQuery being used
jquery: "@VERSION",
- [Wayback/Archive] jquery/core.js at 1.7.1 · jquery/jquery – line 76
- [Wayback/Archive] javascript – Get jQuery version from inspecting the jQuery object – Stack Overflow (thanks [Wayback/Archive] Jeff and [Wayback/Archive] Devy):
for the cases where your page is loading with other javascript libraries like mootools that are conflicting with the$symbol, you can usejQueryinstead.For instance,jQuery.fn.jqueryorjQuery().jquerywould work just fine:
–jeroen
Share this:
Posted in Development, JavaScript/ECMAScript, jQuery, Scripting, Software Development, Web Development | Leave a Comment »
The Wiert Corner - irregular stream of stuff 