Local and remote backups for macOS and Linux using BorgBackup

When I recently switched my Macbook, I got very frustrated with Time Machine. I had used it for occasional local backups of my home folder and was planning to move my data from the new to the old machine.

Unfortunately, the Migration Assistant failed to even find my Time Machine drive and I ended up simply rsyncing everything from the Time Machine backup to a new user folder. After that was done I added a new user in macOS and it just ran a chmod over the whole folder.

After this experience it’s clear that you could as well do your backups with any tool that backs up files, while saving yourself the trouble of Time Machine completely.

The best tool I found for the job is BorgBackup. It supports compression, deduplication, remote backups and many kinds of filters. Doing an incremental backup of 1m files takes about 5 minutes locally. Here are some rough steps to get you started:

Install Borg via Homebrew brew cask install borgbackup or Apt apt install borgbackup . If you plan on doing remote backups, Borg needs to be installed on the server as well.
Initialize a new backup. For local backups:
borg init --encryption=none /Volumes/external-disk/Backups/my-machine (I’m not using encryption here because the drive is encrypted)

For remote backups it’s about the same:
borg init --encryption=none my-backup-host.net:/backups/my-machine
Next create a file called ~/.borg-filter . This will have the files you do NOT want to backup. An example:

*.ab */.DS_Store */.tox /Users/manu/.cocoapods /Users/manu/.Trash /Users/manu/.pyenv/versions /Users/manu/.gem /Users/manu/.npm /Users/manu/.cpanm

1
2
3
4
5
6
7
8
9

*.ab
*/.DS_Store
*/.tox
/Users/manu/.cocoapods
/Users/manu/.Trash
/Users/manu/.pyenv/versions
/Users/manu/.gem
/Users/manu/.npm
/Users/manu/.cpanm

This will include some folders you can easily recreate.

Last you should prepare a backup command. To backup specific important folders to a remote server, I use something like:

function borg-backup() {
  NOW=$(date +"%Y-%m-%d_%H-%M")
  borg create -v --stats -C zlib --list --filter=AM --exclude-from ~/.borg-filter $BORG_REPO::$NOW \
    ~/Desktop \
    ~/Documents \
    ~/Pictures \
    ~/Library/Fonts

  borg prune -v --list $BORG_REPO --keep-daily=3 --keep-weekly=4 --keep-monthly=12
}

function borg-backup() {

NOW=$(date +"%Y-%m-%d_%H-%M")

borg create -v --stats -C zlib --list --filter=AM --exclude-from ~/.borg-filter $BORG_REPO::$NOW \

~/Desktop \

~/Documents \

~/Pictures \

~/Library/Fonts

borg prune -v --list $BORG_REPO --keep-daily=3 --keep-weekly=4 --keep-monthly=12

}

This will backup my Desktop, Documents, Pictures and Fonts to a new time-stamped snapshot. The last command will rotate and delete old backups. The variable $BORG_BACKUP has the repo name chosen in the previous step.

Also be sure to read the official documentation to tune all options to your needs.

Ansible Playbook to set up Tensorflow and Keras on Ubuntu 16.04

Virtual machines with GPUs are expensive. The cheapest I found so fare are from Paperspace. Nevertheless, it can be useful to quickly reproduce your setup without the disadvantages of snapshots or golden master images.

When you manage your hosts with Ansible, you can just run the below playbook against it to set it up from scratch. I use some additional roles to set up my home folder or firewall rules.

Before running it, you need to mirror the cuDNN installer package, since Nvidia doesn’t allow direct downloads. That part is marked in line 11.

Update all macOS Apps with a Single Command

Updates are important. While not as great as on Linux, you can use different package managers to manage all installed software and easily keep applications updated. Here the command I use. Requires homebrew, homebrew-cask-upgrade and mas.

function update-all {
    # update cli homebrew
    brew update
    brew upgrade
    brew prune
    brew cleanup

    # Homebrew cask (via https://github.com/buo/homebrew-cask-upgrade)
    brew cu -a -y --cleanup
    brew cleanup --force -s && rm -rf $(brew --cache)

    # Node
    npm update -g

    # Apple App store
    mas upgrade
    softwareupdate --install --all
}

function update-all {

# update cli homebrew

brew update

brew upgrade

brew prune

brew cleanup

# Homebrew cask (via https://github.com/buo/homebrew-cask-upgrade)

brew cu -a -y --cleanup

brew cleanup --force -s && rm -rf $(brew --cache)

# Node

npm update -g

# Apple App store

mas upgrade

softwareupdate --install --all

}

Find sites vulnerable to WordPress Content Injection Vulnerability

WordPress’ update cycle is reaching the speed of Windows XP. Even Google is sending out warnings, urging site owners to update. For me they were not accurate, but there are still many vulnerable sites out there.

One could – for example – use Nerdydata to search the internet’s source code for vulnerable WP versions. A simple search across their “Popular sites” dataset reveals close to 300 matches.

Regex used: ver=4.7(\.1)?'

Using the same trick, you could also identify vulnerable WP installs you are managing. Here a GIST to a short Python script.

Optimize Spamassassin Detection Rate

Email is a terrible way to communicate and should be avoided where possible. Unfortunately it is also the lowest common denominator on the web and will continue to be for the near future.

In the early days of the internet it was easy to run your own mailserver. Due to the absurd quantity of spam this task got increasingly harder and many tech-savvy people gave up and switched to Gmail or other services. This is a pity because a decentralized email infrastructure is harder to surveil, subpoena or shut down. I encourage everyone to run their own mail service if possible.

In this guide I will summarize the steps needed to get an effective spamassassin (SA) setup. Continue reading →

Use Piwik for more Reliable Visitor Statistics (avoid referral spam and ad blockers)

Online marketers rely on statistics about their visitors to constantly adapt offers and learn about traffic sources. Google Analytics is the current tool of choice for most of them. Unfortunately GA is suffering from two major issues that won’t go away any time soon Continue reading →

Cheaply retrieve data from Amazon AWS Glacier

When it launched Amazon Glacier was applauded for providing a super-cheap long-term storage solution. While there are no surprises when uploading and storing files, retrieving them can get expensive. The pricing reflects the fact that Amazon needs to retrieve your files from tape, which is expensive and takes a long time. Several users reported high charges after retrieving their backups. To its defence, Amazon published a very detailed FAQ on this topic.

The key to getting your files back on the cheap is time. You can retrieve 5% of your total files for free each month, but that amount is calculated per hour, rather than per month or day. Example: You keep 500GB in Glacier. 500GB*5%/30/24=36MB/hour.

That’s great to know, but how can you keep retrieving 36MB for days or months without doing it manually? If you’re on OSX or Linux you can use mt-aws-glacier. It’s a Perl script to track and retrieve your Glacier files. Using mtglacier for slow retrieval isn’t straight forward. There is an issue to improve it, but for now let’s work with what’s available.

The tool has two commands to restore files. One initiates the job on Amazon’s side. After the job completes (takes about 4h), the files can be downloaded. With that in mind, we need to tell mtglacier to only request a few files and then sleep for another hour. There is no way to limit the file size to be requested, but the number of files can be limited. As long as you have many small files, this works great.

while true
do
  mtglacier restore --config vault.cfg --max-number-of-files 3
  mtglacier restore-completed --config vault.cfg
  sleep 3600
done

while true

mtglacier restore --config vault.cfg --max-number-of-files 3

mtglacier restore-completed --config vault.cfg

sleep 3600

done

If your hourly allowance is 35MB and your average file size is 10MB, 3 files per hour is about right with some space for error.

Hope this helps.

Yahoo: Email not accepted for policy reasons

Yahoo failed as internet company for a reason. Try sending an email with a link to a bank website. E.g. CIMB (Popular across Asia)

http://www.cimb-bizchannel.com.my/index.php?ch=srvpack

Your email will be rejected by Yahoo. Just awesome…

554 Message not allowed - [PH01] Email not accepted for policy reasons

1	554 Message not allowed - [PH01] Email not accepted for policy reasons

Workaround: Use a shortlink to hide your URL. E.g. http://goo.gl/tPb19A. Now your phishing emails will arrive safely. 😉

Download Uber ride history to Python Pandas

With Uber rides this cheap and self-driving cars around the corner, I doubt that future generations will have their own cars. Except for extreme use cases, like commuting from the countryside.

Personally I spent EUR 91 on Uber this year (2 months) and it got mit 260 km. That’s 0.31 EUR/km.

There is an API to download your rides, but getting receipts/prices didn’t work for me, so I had to scrape them from the website directly. Hope Uber allows getting prices from their API at some point.

This is the code I used. The Uber-logins aren’t automated yet.

New Release of invoice2data

Thanks to some awesome contributors, there is a new release for invoice2data. This Python package allows you to get structured data from PDF invoices. Major enhancements:

powerful Yaml-based template format for new invoice issuers.
improved date-parseing thanks to dateparser.
improved PDF conversion thanks to new feature in xpdf
better testing and CI
option to add multiple keywords and regex to each field
option to define currency and date format (day or month first?)

All details and download on Github.

Unit testing for Jupyter (iPython) notebooks

At Quantego, we do most high-level work that supports energy analysts in Jupyter Notebooks. This allows us to pull several Java and Python packages together for a highly productive work environment.

Sample notebooks are hosted on Github and distributed with our Docker images. Of course we prefer for our sample notebooks to work, when people run them. They also uncover potential problems, by running at a very high level and thus using almost all available features.

If you have a similar setup – for example in a data analytics-driven environment – the following could work for you as well:

Make sure your notebooks run correctly when running “Run All”. When testing you may try different things and run cells out of order. For automatic testing to work, they should run all in sequence.
Test locally with

jupyter nbconvert --to=html --ExecutePreprocessor.enabled=True my-notebook.ipynb

1

jupyter nbconvert --to=html --ExecutePreprocessor.enabled=True my-notebook.ipynb

This will convert your notebooks to HTML. We’re not intersted in the output, only potential errors during conversion. This only works with Jupyter and iPython >=4. Previous versions simply ignore errors.

Next you could just run the same command in an isolated Docker container or in a CI step

docker run my_container /bin/sh -c \
  "/usr/local/bin/jupyter nbconvert \
      --to=html --ExecutePreprocessor.enabled=True \
      --ExecutePreprocessor.timeout=3600 \
      samples/my-sample.ipynb"

docker run my_container /bin/sh -c \

"/usr/local/bin/jupyter nbconvert \

--to=html --ExecutePreprocessor.enabled=True \

--ExecutePreprocessor.timeout=3600 \

samples/my-sample.ipynb"

A full working example for CircleCI can be found in our sample-repo.

Shell Function to Remove all Metadata from PDF

A handy function to remove all metadata from a PDF file. When done it will show all the remaining metadata for inspection. Needs pdftk and exiftool installed.

Combines commands from here and here. Good job, guys.

clean_pdf() {
 pdftk $1 dump_data | \
  sed -e 's/\(InfoValue:\)\s.*/\1\ /g' | \
  pdftk $1 update_info - output clean-$1
 
 exiftool -all:all= clean-$1
 exiftool -all:all clean-$1
 exiftool -extractEmbedded -all:all clean-$1
 qpdf --linearize clean-$1 clean2-$1
 
 pdftk clean2-$1 dump_data
 exiftool clean2-$1
 pdfinfo -meta clean2-$1
}

clean_pdf() {

pdftk $1 dump_data | \

sed -e 's/$InfoValue:$\s.*/\1\ /g' | \

pdftk $1 update_info - output clean-$1

exiftool -all:all= clean-$1

exiftool -all:all clean-$1

exiftool -extractEmbedded -all:all clean-$1

qpdf --linearize clean-$1 clean2-$1

pdftk clean2-$1 dump_data

exiftool clean2-$1

pdfinfo -meta clean2-$1

}

After adding this snippet in ~/.profile or copy and pasting it in the shell, you can just run

clean_pdf my-unclean.pdf

1	clean_pdf my-unclean.pdf

Incremental FTP backups

If you happen to only have FTP access to a server or account (CPanel) you’re looking after, LFTP is an efficient tool to keep incremental backups. This will make hard links of the previous backup and updated it, copying and storing only changed files.

#!/usr/bin/env bash
username='xxx'
password='xxx'
host='ftp.host'
localBackupDir='/backups/host'
remoteDir='/public_html/'
cd $localBackupDir
rm -rf backup.3
mv backup.2 backup.3
mv backup.1 backup.2
mv backup.0 backup.1
cp -al backup.1 backup.0 #-al or -r
lftp -e "set ssl:verify-certificate no; \
         mirror --only-newer --parallel=4 $remoteDir $localBackupDir/backup.0;\
         exit"\
     -u $username,$password $host

#!/usr/bin/env bash

username='xxx'

password='xxx'

host='ftp.host'

localBackupDir='/backups/host'

remoteDir='/public_html/'

cd $localBackupDir

rm -rf backup.3

mv backup.2 backup.3

mv backup.1 backup.2

mv backup.0 backup.1

cp -al backup.1 backup.0 #-al or -r

lftp -e "set ssl:verify-certificate no; \

mirror --only-newer --parallel=4 $remoteDir $localBackupDir/backup.0;\

exit"\

-u $username,$password $host

Extend Pandas DataFrame with custom functions and attributes

At Quantego.com we love working with Pandas Dataframes. We use them to store and analyze results from simulation runs. On top of our data matrix and a multi-level index we also need to accommodate custom plotting functions and attributes from the previous simulation run.

Subclassing pandas.DataFrame for this task was a no-brainer. The new version 0.16.1 (to be released in the next days) includes some fixes to make working with subclasses of complex data-frames (DF) easier. Here an example of what can be done. First define two new classes for pandas.Series (single col DF) and pandas.DataFrame . You can define new functions or attributes, as needed.

class CustomSeries(pandas.Series):
    @property
    def _constructor(self):
        return CustomSeries

    def custom_series_function(self):
        return 'OK'

class CustomDataFrame(pandas.DataFrame):
    "My custom dataframe"
    def __init__(self, *args, **kw):
        super(CustomDataFrame, self).__init__(*args, **kw)

    @property
    def _constructor(self):
        return CustomDataFrame

    _constructor_sliced = CustomSeries

    def custom_frame_function(self):
        return 'OK'

class CustomSeries(pandas.Series):

@property

def _constructor(self):

return CustomSeries

def custom_series_function(self):

return 'OK'

class CustomDataFrame(pandas.DataFrame):

"My custom dataframe"

def __init__(self, *args, **kw):

super(CustomDataFrame, self).__init__(*args, **kw)

@property

def _constructor(self):

return CustomDataFrame

_constructor_sliced = CustomSeries

def custom_frame_function(self):

return 'OK'

Notice _constructor and _constructor_sliced . They make sure you get the correct class back, when slicing the DF.

Via self you have convenient access to all Pandas functions and can even roll your own.

Regex to find phone numbers in every format

I couldn’t find a truly universal regular expression (regex) to match phone numbers, no matter from which country and in which format. They all seemed to be limited in some way. Even named entity extraction APIs require you to set a country to find phone numbers.

In the end I rolled my own regex. It simply looks for a certain amount of numbers and characters generally used to make phone numbers human-readable. If you are looking to match longer or shorter numbers, you can just change the quantifiers. Some examples it will match:

540 297 1860
+886-2-8663-8287
0870882993
0090 530 229 12 04
+66 (0) 28340463
058 218 0600
(2014-2015
062-21-8608888
886-5-2781880
011-81-27372-9341
03- 7722 5012
+886-2-8663-8287
+62  21  5694 2002
+34 918 380 082
+90 532 643 34 34
+7 495 228 3513
+ 7 702 270 38 13 + 7 777

540 297 1860

+886-2-8663-8287

0870882993

0090 530 229 12 04

+66 (0) 28340463

058 218 0600

(2014-2015

062-21-8608888

886-5-2781880

011-81-27372-9341

03- 7722 5012

+886-2-8663-8287

+62 21 5694 2002

+34 918 380 082

+90 532 643 34 34

+7 495 228 3513

+ 7 702 270 38 13 + 7 777

While not matching:

9:00-17:00
2015(15:00

1 2	9:00-17:00 2015(15:00

And here the regex:

(?!.*[a-zA-Z\,:])(?=(\D*\d){7,14})([\+\d\(]{1,2}.{6,23}\d)

1	(?!.[a-zA-Z\,:])(?=(\D\d){7,14})([\+\d\(]{1,2}.{6,23}\d)

To use it in Python

import re

rex = '(?!.*[a-zA-Z\,:])(?=(\D*\d){7,14})([\+\d\(]{1,2}.{6,23}\d)'
numbers = re.findall(rex, str_with_phone_numbers)

import re

rex = '(?!.*[a-zA-Z\,:])(?=(\D*\d){7,14})([\+\d\(]{1,2}.{6,23}\d)'

numbers = re.findall(rex, str_with_phone_numbers)

Let me know, if this is useful for you or if you find space for improvement. Currently the biggest issue I see is that the matching ranges between numbers and total chars are unrelated. Due to many filling chars higher values are needed. Those can lead to false negatives. Best test it for yourself.

Snapdragon Tech Blog

Technology projects, issues and inspirations for deployment and administration