How and Why to Log Your Bash History (opens in new tab)

(spin.atomicobject.com)

376 pointsmattnedrich9y ago135 comments

135 comments

I do something very similar, but without the prompt settings. I have settings in .bashrc[0] to have the history file based on date. I then use fzf[1] (fzf-tmux is great) and a grep-like tool(sift[2]) to use for ctrl-r that fuzzy-searches history and orders by usage frequency[3]. This way I can easily search for the command I'm thinking of fairly quickly. Particularly useful for those times I want to run a command again that was quite long or had more than a couple options/flags.

---

[0] HISTFILE="${HOME}/Sync/Dotfiles/history/$(date -u +%Y-%m-%d.%H.%M.%S)_${HOSTNAME_SHORT}_$$"; export HISTFILE

[1] https://github.com/junegunn/fzf

[2] https://sift-tool.org/

[3] __fzf_history__() {

sift --no-color -e "^[^#]" --files "_${HOSTNAME_SHORT}_" -N --no-filename $HOME/Sync/Dotfiles/history | sort | uniq -c | sort | $(__fzfcmd) +s --tac +m -n1..,.. --tiebreak=index --toggle-sort=ctrl-r | sed "s/ [0-9] *//"

}

biomcgary9y ago

For those who want a well thought out solution, I have a co-worker that created a very useful history shell script with lots of integrated tools for search. Just source in your bash profile.

https://github.com/autochthe/history

gingerlime9y ago

Thanks for the awesome tips and simple recipe to tie things together.

Had to tweak mine slightly though:

  ${HOSTNAME_SHORT} -> ${HOSTNAME}

  $HOME/Sync/Dotfiles/history -> $HOME/Sync/Dotfiles/history/*

(maybe the missing star was due to HN formatting?)

howeyc9y ago

Yes, the stars are missing, but not where you think. The --files option has a star on the inside of each quote. This makes the search only show history for the host you are on (I sync my Dotfiles between machines).

sift searches a path/folder so the star you have is not needed.

But yeah, HOSTNAME_SHORT is something I derive from HOSTNAME.

1 more reply

nzjrs9y ago

I having trouble seeing what's going on here. Is the formatting ok? Maybe throw it in a gist?

SEJeff9y ago

This entire blog post could be reduced to use the HISTFORMAT variable, which the author doesn't apparently know about. Put this in your ~/.bashrc:

    export HISTTIMEFORMAT='%Y-%m-%d %H:%M.%S | '

An example of the "history | tail" results:

    $ history | tail
    50198  2016-05-31 10:15.57 | cd docker
    50199  2016-05-31 10:16.03 | cd rpms/
    50200  2016-05-31 10:16.11 | scp docker* omniscience:/tmp/
    50201  2016-05-31 10:14.06 | screen -ls
    50202  2016-05-31 08:33.34 | screen -x
    50203  2016-05-31 19:06.53 | grep HIST .bashrc
    50204  2016-05-31 19:07.46 | history | tail
    50205  2016-05-31 19:08.10 | task ls
    50206  2016-05-31 19:08.23 | docker ps -qa
    50207  2016-05-31 19:08.30 | history | tail

A few from my bashrc:

    $ grep HIST .bashrc
    HISTCONTROL=ignoredups:ignorespace
    # for setting history length see HISTSIZE and HISTFILESIZE in bash(1)
    export HISTFILESIZE=99999
    export HISTSIZE=99999
    export HISTTIMEFORMAT='%Y-%m-%d %H:%M.%S | '
    export HISTIGNORE="ls:exit:history:[bf]g:jobs"

And then a cronjob that simply backs up the data.

reptation9y ago

the difference is that the author's version backs up every command to a file as it happens. If you have multiple terminals open, you do not get the same output running "history".

SEJeff9y ago

something other than:

    shopt -s histappend

Isn't that exactly what that shell option does?

1 more reply

teamhappy9y ago

I used to do the same thing to figure out which commands I should create short aliases for. Sounded like a good idea at the time but then I realized that I'm creating a file with an awful lot of interesting information in it and I not getting a lot in return. So I set my HISTSIZE to 1000 which is more than enough for interactive shell use and I don't have to worry about having stuff like "youtube-dl fuckmesilly.com/${insane_porn_title}" lying around on servers I have access to. (Or which server you can connect to with my private key -- you might as well remove HashKnownHosts from your ssh config if you log it all yourself.)

TLDR: Overwriting history is a feature.

tetraodonpuffer9y ago

not sure about "not getting a lot in return", there have been plenty of times where I have had to hand build something with strange defaults or additional commands, then six months later I am downloading the new version of the source and having the history of what I did back then is a lifesaver. Not to mention the times you remember you edited something somewhere and partially remember where/when but not exactly so you can just fuzzy search vim dirname and filter.

It does depend on what one does on their computer, obviously, but in my opinion for developers having a more or less permanent history with a fuzzy matcher (fzf is what I use) is extremely important.

I personally have bash set up so it saves a new history file each month, and a custom fzf alias to search on all of them, and I wouldn't want to have it any other way, I also treat these history files as confidential and make sure they are not in git etc. and if I have to input any passwords on the command line I just prepend the command with a space so it's not saved

ams61109y ago

Servers should have zero history saved on the disk. It gives any intruder an easy place to look for passwords, private keys, etc that may have been accidentally recorded and gives clues about related systems.

If you have administrative stuff you need to do more than once, write a little script or alias for it. Depending on history for this is just lazy.

TeMPOraL9y ago

OTOH what about audit trail? Are there any standard solutions for saving commands input at servers without giving person inputting those commands access to the logs?

Also, silly idea for a DOS attack vector: script-spam enough commands to have the audit history consume all available space on server.

1 more reply

mark_l_watson9y ago

Excellent point if anyone can get access to your home directory files.

I work around the security issues by not backing up history and having encrypted file systems on all of my Linux laptops. I don't save history on my servers.

guelo9y ago

A better solution for that problem is to not screw around with personal garbage on work computers.

teamhappy9y ago

The porn example was a joke; the ssh example wasn't.

iheartmemcache9y ago

Yep, also back in the day it was common protocol to have .history files chmod'd to 600 by default.

Having an unlimited history is great. Sometimes there'd be a tool or resource I'd vaguely remember skimming (e.g., "oh yeah, I was working on ___, so it must have been on (day +/- 24 hours)". I'd find a command that more or less is chronologically synced with the command, then go into Chrome's SQLite history db in my User Profile to find it.

tripzilch9y ago

That wasn't necessary. You could easily have made the very same point without calling someone's personal pastime/hobby, "garbage".

It's one thing to use porn as an example of "things that may be awkward if found in my bash history", it's something else to get judgemental about it. Unnecessary and off-topic.

glandium9y ago

If you don't want one command to end up in your history, type a space before the command.

jcoffland9y ago

FYI, if you want your bash history to go dark temporarily run:

  export HISTFILE=

The rest of your session will not be logged.

ymse9y ago

The default bash setting is to not write history until the session terminates. In which case the whole session will be forgotten, not just the stuff after overwriting HISTFILE (I always set it to /dev/null FWIW, didn't know blank was sufficient).

danudey9y ago

you can also update your HISTIGNORE to do things like not log 'youtube-dl' commands, or not log 'mysql -u root -p<password>', etc.

yomly9y ago

I'm a big fan of saving history - trying to remember all the shell based commands we use is a nightmare!

If you're using zsh, a tip I picked up from [0] was to alias all your common commands like

    'cd', 'ls' 'fg'...

to:

    ' cd' ' ls' ' fg' ...

Then add the following line to your zshrc to ignore lines prepended with a space:

    setopt HIST_IGNORE_SPACE

This keeps your history cleaner from any ls, cd, fg inputs you use.

[0] http://chneukirchen.org/blog/archive/2012/02/10-new-zsh-tric...

EDIT: formatting

Terretta9y ago

Dropping the ls, ok. But cd conveys relevant context.

It would be really clever if a series of cd/ls rolled into a final absolute path cd so history shows context for the subsequent batch of commands.

kerkeslager9y ago

If you find yourself doing a series of `cd` and `ls` commands frequently, I feel like you might be using `cd` and tab completion ineffectively.

Instead of doing:

    ls
    cd foo/
    ls
    cd bar/
    ls
    cd baz/

You can do:

    ls
    cd foo/<tab><tab>bar/<tab><tab>baz/

This isn't what it will look like, it's just the key sequence (if this doesn't make sense let me know and I'll try to explain better). <tab><tab> will list all the possible completions, which is equivalent to an ls, without having to type in an ls and then another cd.

You can frequently avoid even more `cd`/`ls` shenanigans by judiciously using `pushd`.

1 more reply

rsamvit9y ago

I just do:

function cd () { builtin cd "$@" && ls; }

superuser29y ago

Can you not set the template line for log entries? Seems like $(pwd) could go alongside time stamp.

agumonkey9y ago

There's a direct parameter to do that in one go.

HISTIGNORE="history:ls:[bf]g:exit:htop:ncdu:pwd:reset:clear:mount:umount:&:^[ \t]*"

Mine might be flawed though.

SEJeff9y ago

So you're saying you just showed me the one feature bash has over zsh!? Bash has an env var named HISTIGNORE that will allow you to not put commonly used boring commands in your history. Mine looks like:

    export HISTIGNORE="ls:exit:history:[bf]g:jobs"

guelo9y ago

A lot of times I want to go back and look in which directory I was executing some command.

matt-attack9y ago

Just a point on security, many advocate that logging commands is a major security weakness. Similar to why SSH now hashes entries in ~/.ssh/known_hosts by default. The idea is you don't want to provide hints on which remote systems you connect to, as these can offer a springboard to the intruder.

rietta9y ago

And one has to be mindful of that time you ran: export AWS_CREDENTIAL=xpXfLVsY/77Nr+m1mKmys719h0m2z2BCYSv9d5r

That is then an increased risk of breach because it is kept around for a long time. YMMV. Defense in depth, don't use production secrets in development, etc, etc.

dsfyu404ed9y ago

I agree.

Too bad the author didn't Grep "password" plus a few lines on either side. Even if you sudo <stuff> and type outside the prompt once every few hundred attempts it's still gonna turn up a lot after a year or more.

Even the most novice of adversaries would have a field day with the bash history of a lower level IT admin.

joshstrange9y ago

Just for those out there using zsh or fish I used to following in my .zshrc to get this working:

    precmd() {
        eval 'if [ "$(id -u)" -ne 0 ]; then echo "$(date "+%Y-%m-%d.%H:%M:%S") $(pwd) $(history | tail -n 1)" >>! ~/Dropbox/Logs/Bash/Macbook/bash-history-$(date "+%Y-%m-%d").log; fi'
    }

I Store my logs in dropbox but you can put them wherever

akerro9y ago

Thanks so much!

ag_479y ago

I do the opposite and maybe weird - I disable history, and keep the history file contents hand curated. Whenever I come up/across/use a command I'd like to keep for future or use frequently, it gets appended to the history file.

theoh9y ago

Do you use the fc command (shell builtin in the case of bash) to access the history? Or just up-arrow to scroll through the options?

ag_479y ago

Ctrl+R (reverse fuzzy lookup) -- In my early days, I quickly found it very annoying to have to scroll through garbage to get to the command I want.

tedks9y ago

Do you have an alias or something else that facilitates that, or do you just do it manually?

ag_479y ago

Never bothered to fully automate it, tbh.

I use `unset HISTFILE` to make sure when I exit the history file doesn't get all the cruft in. Every now and then I might do some housecleaning, including going through the history file then `cp ~/.bash_history{,.2}` to keep a clean copy around.

As far as saving, heres a handy function: `getlast() { fc -ln "$1" "$1" | sed '1s/^[[:space:]]*//' }`

jakozaur9y ago

Well given that we copy and paste a lot, by mistake there can be credentials and sensitive data in the bash history...

Moreover, bash history doesn't work nicely across different terminal tabs or computers.

Does anybody know a tool providing better command line history?

sophacles9y ago

How about just using bash?: http://unix.stackexchange.com/a/48116

There's several controls to make the bash history do what you want. The defaults are just a bit odd.

developer29y ago

1. Regarding commands with credentials or sensitive info, bash allows you to prefix the command with a space character to omit saving the command to the history. This requires remembering this fact, and of course you get nothing in your history to refer to later.

2. I remember a HN submission for a piece of software (or collection of softwares?) that provided a centralized log of your command history across multiple machines. In this way, if you are working on multiple machines in a cluster, you can later search back through your histories from those machines in a single location. My Google Fu is failing me now though.

pbhjpbhj9y ago

I have a little bit of bash to save my history files and a custom search, hss, to search across them. This makes the exposure an order of degrees, if it's in bash history already then it's going to hang around longer. If I weren't doing this if still have the same problem with bash's built-in/default history.

I started this in response to a HN post some years ago.

efyx9y ago

For better history across different terminal (on the same computer) you may want to try zsh

zeveb9y ago

For better pretty much everything, one may wish to try zsh. It's pretty much a strict superset of bash, but better.

There is one aspect in which it's significantly worse, though: it's fiendishly difficult to configure and understand. I just use configs provided by others, which is not ideal but works.

2 more replies

ashitlerferad9y ago

I would just do this:

export HISTFILESIZE=5000000 export HISTSIZE=5000000 export HISTTIMEFORMAT="%F %T " shopt -s histverify shopt -s histappend

0942v86539y ago

Isn't this going to be pretty slow? It starts 5 subshells for every prompt. You could at least change $(pwd) to $PWD and switch the square brackets to double square brackets.

jrochkind19y ago

I don't get it, isn't your bash history already logged to `.bash_history`? What's the point of using PROMPT_COMMAND to send it in addition to another file?

nailer9y ago

Excellent question! Multiple tabs will squash each other, losing history from Tab B between when tab A was opened and when tab A was closed.

It's actually an insecure default - 'insecure' as in, it's a minor form of data loss.

Then again, so is bash launching scripts without pipefail, variable expansion fail, etc.

It'd be worth fixing all this stuff in the next major bash version.

outworlder9y ago

If you can use it, zsh does not have that issue. Plus a bunch of other goodies. It's been a while since I've last used bash.

jlgaddis9y ago

cf.

  histappend

all_usernames9y ago

A warning: do NOT do what one engineers I used to work with did, and upload his "dot files" onto GitHub for portability. A lot of secrets can be stored in a few months' worth of bash history.

packetslave9y ago

there's nothing wrong with uploading your dotfiles -- lots of people do that -- just as long as you do it sanely and don't upload things like .ssh/id_* and .{bash|zsh}_history

grep4master9y ago

Make sure you upload your AWS_SECRET_ACCESS_KEY and AWS_ACCESS_KEY_ID.

tymm9y ago

For the zsh users out there: I wrote a zsh plugin [0] a while ago which does a similar thing (writes time, directory and command to a file) + gives you a better (directory sensitive) history search.

[0] https://github.com/tymm/zsh-directory-history

gdulli9y ago

I go one big step further than this and log everything that comes across the screen.

One time it saved me from a crontab -r that wiped out a 100+ line crontab. I had viewed it recently so I just copied it out of my history.

On a day to day basis it's more about looking up old queries I typed out, the results of those queries at that time, bash commands and their results, the state of a file I edited at a certain time, a stack trace, the output of an ls -l command, etc. Anything I ever do in a session.

Some of those have their own logs or ways to capture history, but a way to capture everything at once is much more comprehensive and less sensitive to forgetting to set the size of the bash history on a given machine, archiving the bash/psql history files when a machine goes away, etc.

And besides not having to worry about the availability of distributed history/log data, being able to grep everything at once is invaluable.

szymon_k9y ago

Could you share a gist of that? Would love similar thing in my toolset!

gdulli9y ago

I don't do it with code, it's a feature of this product: https://www.vandyke.com/products/securecrt/

tetraodonpuffer9y ago

not the OP, but this discussion might be helpful

http://unix.stackexchange.com/questions/25639/how-to-automat...

I have been wondering about doing something like this as well

thro12379y ago

How do you do this?

gdulli9y ago

Session logging with this client: https://www.vandyke.com/products/securecrt/

jlgaddis9y ago

This could be done using

  script

as well.

pnewman39y ago

script gives you the whole console, including output and control characters. It's a useful tool but might be a little overkill for keeping track of what commands you have run.

SEJeff9y ago

install rootsh and set that to your shell. Set the logging directory to something in ~/ with 0600 perms, and away you go!

jawns9y ago

This is useful if you are developing locally, but what if a lot of your command line usage is on remote servers that you have SSH'd into?

I believe iTerm2 has some support for logging remote commands, but I'm not sure it quite does the trick. Anybody know of another tool that will log both local and remote commands?

blowski9y ago

Another problem for me is the ephemeral nature of many of the boxes I work on - Vagrant boxes, spot instances on AWS. I suppose I could do this and then export the bash history as part of the teardown process.

At the moment, I get around this by storing as much as I can in searchable scratch files, but this relies on me knowing what to copy. I'm sure there's a better way.

mrSugar9y ago

Work through ansible and manage your local ansible.log however you wish.

1 more reply

pbhjpbhj9y ago

I use the built-in script command sometimes when I'm using SSH, set to write a date+server named text file to my history folder. You could do that and awk out the output lines afterwards.

efyx9y ago

Why logging to a file when you could just set the HITSIZE variable in your .bashrc ? (plus this will give you ctrl+r search which is a must)

sp3329y ago

You would also need to unset HISTFILESIZE, export PROMPT_COMMAND="history -a", export HISTTIMEFORMAT="%d/%m/%y %T ", and set up log rotation to get the behavior listed in the article.

jerf9y ago

I have many shells open at once, sometimes dozens. Only one of them "wins" when saving history. If Bash has out-of-the-box support for merging multiple shell history, it's not obvious in the man page. And I have them open precisely because they're different contexts and I don't really want them sharing history. If you want a log of everything you run, you need to make it some other way.

So, basically, in combination with sp332's and raldi's points, the answer is that it is completely not the same.

jrochkind19y ago

I took the bash-history related stuff from https://github.com/mrzool/bash-sensible and have been VERY happy with it. Among other things, it makes sure all your histories from various open terminals get merged, not overwrite each other -- I think maybe just `shopt -s histappend` is enough for that? But I was messing around with my settings regarding history settings for a while tweaking and tweaking, until I found bash-sensible, tried it out cut and paste, and found it was perfect.

## SANE HISTORY DEFAULTS ##

# Append to the history file, don't overwrite it

shopt -s histappend

# Save multi-line commands as one command

shopt -s cmdhist

# Record each line as it gets issued

PROMPT_COMMAND='history -a'

# Huge history. Doesn't appear to slow things down, so why not?

HISTSIZE=500000

HISTFILESIZE=100000

# Avoid duplicate entries

HISTCONTROL="erasedups:ignoreboth"

# Don't record some commands

export HISTIGNORE="&:[ ]*:exit:ls:bg:fg:history"

# Useful timestamp format

HISTTIMEFORMAT='%F %T '

raldi9y ago

Because that doesn't include timestamps or working directories.

yardie9y ago

Use screen instead. Ctrl-a and "H" to enable and the same to disable. Log is saved in user directory as screen.<session>

That way I have control of when I log and what gets logged. And way easier to find than hunting for dot files.

blastrat9y ago

Yours is a good additional idea, but it is in no way a substitute. You might want to look at some history you forgot to log. Having intentional logging on top of comprehensive logging is like markup metadata, very handy too.

it makes me sad when everybody doesn't see the same things the same way. I'm just waiting now for systemd to disable bash history in favor of logging in binary form all mouse rolls intermixed with key clicks till it wipes it all out when you log out in case yours is a student account on a shared university machine. Don't worry, a GUI editor for it all is on the wishlist.

yardie9y ago

6 of one, half dozen of another. It really depends on how you see things. For security reasons we've disabled logging. And users don't access servers at the shell anyway so no need for it there. We log app usage in app.

I find screen logging a bit more useful than shell logging. Shell only records the commands sent and not the result. Screen records everything including interactive like nano.

1 more reply

dahart9y ago

Damnit, this is so much smarter and easier than what I did!

I've been trying to leverage bash's history, and wanted to avoid putting a file write into my prompt hook. But I have a big kludgy system for exporting bash history separately for each day, de-duping the overlapping history, and trying to make sure bash always logs the command I typed.

I'm still fighting with bash sometimes not saving my history commands. I've done everything recommended in all corners of the Internet, but certain keyboard combos will still cause history lines to not get saved. It's maddening, and the solution here avoids it completely.

TorKlingberg9y ago

This looks like quite a dirty hack, but I'll try it.

I wish bash history wasn't so broken. I suppose once upon a time it was ok to assume people only had one shell session at a time.

SEMW9y ago

I'm curious as to why you consider it so broken.

As far as I can tell, bash deals with multiple shell sessions exactly how I'd expect (and want) it to: an individual terminal doesn't have access to the live session from other terminals, but when you close it it appends it's session to the shared history file, so each session ends up a continuous block in that file.

TorKlingberg9y ago

I don't know what it does exactly, but it always seems to lose history after a reboot. Either the last shell session to close overwrites the others, or they fail to save the history if not closed cleanly enough.

1 more reply

xtacy9y ago

I've switched to zsh and it works quite well with multiple sessions.

mc429y ago

Wouldn't the ideal solution not be a component of a simple file writer, but rather, a buffered writer? A command gets executed, thrown into buffer. A wait process in bash checks buffer, and then writes to .bash_history?

ZeroGravitas9y ago

Possibly a good opportunity to ask:

On Mac OS X and iTerm2 I've noticed a thing where pasting in commands means they don't get added to the history and using up arrow or search to find them doesn't work. Anyone seen that? It's one of those things that annoys me every time it happens, but I'm always in the middle of a task when it occurs so I never get a chance to figure it out.

tomswartz079y ago

Could it be that you're accidentally adding/copying a space at the beginning of the command?

I know Linux BASH will ignore the command from history if that's the case, and I think that OSX is similar.

stormbrew9y ago

This is controlled by an environment variable, HISTCONTROL:

              A colon-separated list of values controlling how commands are saved on the history list.  If the list of values includes ignorespace, lines which begin with a space character are not
              saved  in  the  history  list.   A  value  of  ignoredups  causes  lines  matching the previous history entry to not be saved.  A value of ignoreboth is shorthand for ignorespace and
              ignoredups.  A value of erasedups causes all previous lines matching the current line to be removed from the history list before that line is saved.  Any value not in the above  list
              is  ignored.   If  HISTCONTROL is unset, or does not include a valid value, all lines read by the shell parser are saved on the history list, subject to the value of HISTIGNORE.  The
              second and subsequent lines of a multi-line compound command are not tested, and are added to the history regardless of the value of HISTCONTROL.

ZeroGravitas9y ago

This is probably it, thanks, I didn't know this could occur. It only happens when I copy the output of a particular command, not always, so I'm guessing it has a space.

mpitt9y ago

I've just tried and I can't reproduce. It might be because you're copying a leading space: if a command is prefixed by white space it doesn't get saved in the history.

jchoksi9y ago

I implemented bash audit logging[0] by making use of Ryan Caloras's bash-prexec[1] project which provides a fairly robust and resilient way to implement ZSH's preexec and precmd functionality.

Some of the features of my solution are that it creates a sub folder in the user's home directory called ~/.bash_history and underneath this it will create sub folders for each month (YYYY-MM) and under each of those sub folders will reside a daily audit log file of all the bash command history (YYYY-MM-DD). The audit script logs both login and log outs, as well as each command executed in bash.

---

[0] https://github.com/onelittlehope/bash-prompt [1] https://github.com/rcaloras/bash-preexec

saurik9y ago

https://news.ycombinator.com/item?id=10695305

^ Here is my comment on a previous post for how I am logging all of my bash history in a logical manner (keeping track of terminals and timestamps, etc.) to an sqlite database.

brbsix9y ago

I've been tempted to do something similar. The context information (e.g. environment, working directory) would be especially helpful, since that's what I'm currently missing. Have you tried https://github.com/umang1912/advanced-shell-history? That was where I planned to start.

Here are a few other projects:

https://github.com/thenewwazoo/bash-history-sqlite # simple shell script to store Bash history into SQLite3 database

https://gist.github.com/pklaus/1e381be8592426568df9 # simple Python script to store Bash history into Pandas dataframe

https://gist.github.com/pklaus/26925cfa1fc6b370e043 # simple Python script to store Bash history in SQLite3 database

https://github.com/fredsmith/history-db # store Bash history in PHP/MySQL web server

https://github.com/joshuacronemeyer/shellsink # store Bash/Zsh history in Python web server

saurik9y ago

Most of these are extremely complex for almost no good reason. Storing you bash history "in the cloud" seems like a dumb idea to me, requiring a Python script for this seems gratuitous... and essentially all of these are using PROMPT_COMMAND (except bash-history-sqlite, which seems more legit), which doesn't have the correct behavior. I remember all sorts of issues with the timing of what is logged, how pipes are handled, and interaction with expected history behavior. I'm going to counter-ask: have you tried my script? ;P I recommend starting with my script, but obviously I'm going to be biased. Almost all of my script is the actual SQL parts: you will note that I have almost no shell shenanigans. At least from the perspective of asking me why I haven't tried something else, I feel like you would have to provide some rather extreme motivation at this point to work with one of these much more complex scripts.

wolfhumble9y ago

Where/how do you call this script?

saurik9y ago

I just stuff that in by .bashrc.

1 more reply

aceperry9y ago

"For the last three and a half years, every single command I’ve run from the command line on my MacBook Pro has been logged... the return I’ve gotten on that small investment is immense."

I'm still not sure why it's helpful to have three and a half years of your bash shell logs.

thinkersilver9y ago

The logger in me appended hostname and the tty to the file name and the log message. You could also add a user name to this as well[0].

I love this idea because you can easily analyse your commands then modify or automate your workflow where it makes sense. I've done this in the past to create a two letter aliases to frequently used bash commands.

[0] export PROMPT_COMMAND='if [ "$(id -u)" -ne 0 ]; then echo "$(date "+%Y-%m-%d.%H:%M:%S") $(hostname) $(tty) $(pwd) $(history 1)" >> ~/.logs/bash-history-$(date "+%Y-%m-%d").log.`hostname`; fi'

andmarios9y ago

I've written a bash history server in go and it has saved me more time than it took me to write it.

It stores commands in a sqlite database. For each command it also saves the time, the user and the host. It permits global search with some useful features (grep A/B/C switches, regexp, etc).

I wrote it to scratch an itch, thus the documentation isn't user friendly. If anyone is interested, shameless plug: https://github.com/andmarios/bashistdb

dallas-stuart9y ago

ICYMI: Sensible Bash addresses this well:

https://github.com/mrzool/bash-sensible

spike0219y ago

A long time ago I set my history file to save up to the previous 1000 commands, and I ended up mostly learning grep for the first time because I wanted to search quickly for various recent commands. Stuff like "history | grep _some ip_" or things like that.

Storing the entire history would no doubt be helpful, but I feel similarly to what other people have said so far, which is that it may not be the safest thing to do? Probably depends on usecase.

ojjzhna9y ago

I have bash script in my bash_profile to support separate history files named with tty, month and year (so separate files for each tty). It looks for recent history files for the given tty and reloads old history on first startup.

Have cron job to signal bash session to flush history with command timestamps/dates to disk daily.

Handy for recalling commands/command switches you ran months ago.

andy_boot9y ago

I like this idea but I know that I have accidentally entered my password or my password with a typo in it on the terminal on at least one occasion.

The only way round this that I can see is to grep out the password - but then my password (or a substring of it) is now in plaintext in my .zshrc/.bashrc

I can't think of a solution to this. Does anyone have anything?

camhutch9y ago

Start your passwords with /! - the slash stops you entering it into IRC, and the bang stops it going into history.

civilian9y ago

I wrote a command called 'lc', which list commands in a directory. I've found that what I really want is context-specific command history,and this provides it.

Linky: https://github.com/pconerly/lc-listcommands-bash

tezza9y ago

At work unfortunately the sys admins disable customisation. Especially HIST_SIZE etc :(

At regular intervals, especially when I have important commands to save I do a:

  cp ~/.bash_history ~/bash_history_bak_2016-05-31.txt

That way I can do a:

  cat ~/bash_history* | grep <important-command>

to find it

sergiosgc9y ago

Can't you work around the restriction using something like ProxyCommand /bin/bash --login --rcfile .mybashrc on ~/.ssh/config?

rbc9y ago

I frequently review my shell history to pickup past command invocations, but I think it has limits.

At some point, you have to clean things up and create a script for repetitive tasks, or write wrappers to tame complicated command line syntax. I think curl and groff are my favorite examples of commands that have too many options.

LeonB9y ago

In powershell there is a built in cmdlet for logging your history: start-transcript. Details here: http://til.secretgeek.net/powershell/Transcript.html

swehner9y ago

Doing the same. Also including the git branch (if applicable)

It's not obvious, but with this mechanism commands are only logged once they complete. So the log file does not include commands while they are still running. Run into that from time to time.

agumonkey9y ago

I recently had a bash hiccup causing the history to vanish. Not a problem for 90% of things but for a few long rsync commands (the one time crafts for you) it was a PITA. Or an opportunity in RTFM says the noob.

kasabali9y ago

Protip:

sudo chattr +a ~/.bash_history

ccvannorman9y ago

with El Capitan, my bash history isn't logged, with each fresh session letting me know Permission Denied on creating ~/.bash_history. The internet searching tells me to disable csrutil which I did, to no effect.

:-[

kayoone9y ago

I use the reverse lookup and zsh history heavily and it has served me well. Whats the benefit of this, logs that go back for a longer time ? I am not sure what the default setting on zsh is tbh.

jldugger9y ago

My job would be substantially harder if I couldn't ask bash history the question "how did someone solve this problem last time?"

DoubleMalt9y ago

ctrl-r does a fuzzy search in the history and provides most of what I want out of the box. I wonder why this hadn't been mentioned yet.

yoshuaw9y ago

Don't go overloading `require()` just because you can - the modules API has been locked down for a couple of years now, messing with the semantics causes all sort of fallout. - https://nodejs.org/api/modules.html (I'm looking at you webpack, babel)

Instead better would've been to use a custom method; internally the `require.resolve()` API can still be used to get the same semantics as `require()`

jl69y ago

I also use script to log both input and output of every terminal, and the timing option to record the timing of that input and output too. Naturally stored with caution, and with a shortcut to a non-logging terminal for dealing with anything sensitive.

alex_duf9y ago

export HISTFILESIZE=50000

export HISTSIZE=50000

raldi9y ago

https://news.ycombinator.com/item?id=11806647

j / k navigate · click thread line to collapse

135 comments

howeyc9y ago

---

[0] HISTFILE="${HOME}/Sync/Dotfiles/history/$(date -u +%Y-%m-%d.%H.%M.%S)_${HOSTNAME_SHORT}_$$"; export HISTFILE

[1] https://github.com/junegunn/fzf

[2] https://sift-tool.org/

[3] __fzf_history__() {

}

biomcgary9y ago

For those who want a well thought out solution, I have a co-worker that created a very useful history shell script with lots of integrated tools for search. Just source in your bash profile.

https://github.com/autochthe/history

gingerlime9y ago

Thanks for the awesome tips and simple recipe to tie things together.

Had to tweak mine slightly though:

  ${HOSTNAME_SHORT} -> ${HOSTNAME}

  $HOME/Sync/Dotfiles/history -> $HOME/Sync/Dotfiles/history/*

(maybe the missing star was due to HN formatting?)

howeyc9y ago

sift searches a path/folder so the star you have is not needed.

But yeah, HOSTNAME_SHORT is something I derive from HOSTNAME.

1 more reply

nzjrs9y ago

I having trouble seeing what's going on here. Is the formatting ok? Maybe throw it in a gist?

SEJeff9y ago

This entire blog post could be reduced to use the HISTFORMAT variable, which the author doesn't apparently know about. Put this in your ~/.bashrc:

    export HISTTIMEFORMAT='%Y-%m-%d %H:%M.%S | '

An example of the "history | tail" results:

    $ history | tail
    50198  2016-05-31 10:15.57 | cd docker
    50199  2016-05-31 10:16.03 | cd rpms/
    50200  2016-05-31 10:16.11 | scp docker* omniscience:/tmp/
    50201  2016-05-31 10:14.06 | screen -ls
    50202  2016-05-31 08:33.34 | screen -x
    50203  2016-05-31 19:06.53 | grep HIST .bashrc
    50204  2016-05-31 19:07.46 | history | tail
    50205  2016-05-31 19:08.10 | task ls
    50206  2016-05-31 19:08.23 | docker ps -qa
    50207  2016-05-31 19:08.30 | history | tail

A few from my bashrc:

    $ grep HIST .bashrc
    HISTCONTROL=ignoredups:ignorespace
    # for setting history length see HISTSIZE and HISTFILESIZE in bash(1)
    export HISTFILESIZE=99999
    export HISTSIZE=99999
    export HISTTIMEFORMAT='%Y-%m-%d %H:%M.%S | '
    export HISTIGNORE="ls:exit:history:[bf]g:jobs"

And then a cronjob that simply backs up the data.

reptation9y ago

the difference is that the author's version backs up every command to a file as it happens. If you have multiple terminals open, you do not get the same output running "history".

SEJeff9y ago

something other than:

    shopt -s histappend

Isn't that exactly what that shell option does?

1 more reply

teamhappy9y ago

TLDR: Overwriting history is a feature.

tetraodonpuffer9y ago

It does depend on what one does on their computer, obviously, but in my opinion for developers having a more or less permanent history with a fuzzy matcher (fzf is what I use) is extremely important.

ams61109y ago

If you have administrative stuff you need to do more than once, write a little script or alias for it. Depending on history for this is just lazy.

TeMPOraL9y ago

OTOH what about audit trail? Are there any standard solutions for saving commands input at servers without giving person inputting those commands access to the logs?

Also, silly idea for a DOS attack vector: script-spam enough commands to have the audit history consume all available space on server.

1 more reply

mark_l_watson9y ago

Excellent point if anyone can get access to your home directory files.

I work around the security issues by not backing up history and having encrypted file systems on all of my Linux laptops. I don't save history on my servers.

guelo9y ago

A better solution for that problem is to not screw around with personal garbage on work computers.

teamhappy9y ago

The porn example was a joke; the ssh example wasn't.

iheartmemcache9y ago

Yep, also back in the day it was common protocol to have .history files chmod'd to 600 by default.

tripzilch9y ago

That wasn't necessary. You could easily have made the very same point without calling someone's personal pastime/hobby, "garbage".

It's one thing to use porn as an example of "things that may be awkward if found in my bash history", it's something else to get judgemental about it. Unnecessary and off-topic.

glandium9y ago

If you don't want one command to end up in your history, type a space before the command.

jcoffland9y ago

FYI, if you want your bash history to go dark temporarily run:

  export HISTFILE=

The rest of your session will not be logged.

ymse9y ago

danudey9y ago

you can also update your HISTIGNORE to do things like not log 'youtube-dl' commands, or not log 'mysql -u root -p<password>', etc.

yomly9y ago

I'm a big fan of saving history - trying to remember all the shell based commands we use is a nightmare!

If you're using zsh, a tip I picked up from [0] was to alias all your common commands like

    'cd', 'ls' 'fg'...

to:

    ' cd' ' ls' ' fg' ...

Then add the following line to your zshrc to ignore lines prepended with a space:

    setopt HIST_IGNORE_SPACE

This keeps your history cleaner from any ls, cd, fg inputs you use.

[0] http://chneukirchen.org/blog/archive/2012/02/10-new-zsh-tric...

EDIT: formatting

Terretta9y ago

Dropping the ls, ok. But cd conveys relevant context.

It would be really clever if a series of cd/ls rolled into a final absolute path cd so history shows context for the subsequent batch of commands.

kerkeslager9y ago

If you find yourself doing a series of `cd` and `ls` commands frequently, I feel like you might be using `cd` and tab completion ineffectively.

Instead of doing:

    ls
    cd foo/
    ls
    cd bar/
    ls
    cd baz/

You can do:

    ls
    cd foo/<tab><tab>bar/<tab><tab>baz/

You can frequently avoid even more `cd`/`ls` shenanigans by judiciously using `pushd`.

1 more reply

rsamvit9y ago

I just do:

function cd () { builtin cd "$@" && ls; }

superuser29y ago

Can you not set the template line for log entries? Seems like $(pwd) could go alongside time stamp.

agumonkey9y ago

There's a direct parameter to do that in one go.

HISTIGNORE="history:ls:[bf]g:exit:htop:ncdu:pwd:reset:clear:mount:umount:&:^[ \t]*"

Mine might be flawed though.

SEJeff9y ago

    export HISTIGNORE="ls:exit:history:[bf]g:jobs"

guelo9y ago

A lot of times I want to go back and look in which directory I was executing some command.

matt-attack9y ago

rietta9y ago

And one has to be mindful of that time you ran: export AWS_CREDENTIAL=xpXfLVsY/77Nr+m1mKmys719h0m2z2BCYSv9d5r

That is then an increased risk of breach because it is kept around for a long time. YMMV. Defense in depth, don't use production secrets in development, etc, etc.

dsfyu404ed9y ago

I agree.

Even the most novice of adversaries would have a field day with the bash history of a lower level IT admin.

joshstrange9y ago

Just for those out there using zsh or fish I used to following in my .zshrc to get this working:

    precmd() {
        eval 'if [ "$(id -u)" -ne 0 ]; then echo "$(date "+%Y-%m-%d.%H:%M:%S") $(pwd) $(history | tail -n 1)" >>! ~/Dropbox/Logs/Bash/Macbook/bash-history-$(date "+%Y-%m-%d").log; fi'
    }

I Store my logs in dropbox but you can put them wherever

akerro9y ago

Thanks so much!

ag_479y ago

theoh9y ago

Do you use the fc command (shell builtin in the case of bash) to access the history? Or just up-arrow to scroll through the options?

ag_479y ago

Ctrl+R (reverse fuzzy lookup) -- In my early days, I quickly found it very annoying to have to scroll through garbage to get to the command I want.

tedks9y ago

Do you have an alias or something else that facilitates that, or do you just do it manually?

ag_479y ago

Never bothered to fully automate it, tbh.

As far as saving, heres a handy function: `getlast() { fc -ln "$1" "$1" | sed '1s/^[[:space:]]*//' }`

jakozaur9y ago

Well given that we copy and paste a lot, by mistake there can be credentials and sensitive data in the bash history...

Moreover, bash history doesn't work nicely across different terminal tabs or computers.

Does anybody know a tool providing better command line history?

sophacles9y ago

How about just using bash?: http://unix.stackexchange.com/a/48116

There's several controls to make the bash history do what you want. The defaults are just a bit odd.

developer29y ago

pbhjpbhj9y ago

I started this in response to a HN post some years ago.

efyx9y ago

For better history across different terminal (on the same computer) you may want to try zsh

zeveb9y ago

For better pretty much everything, one may wish to try zsh. It's pretty much a strict superset of bash, but better.

There is one aspect in which it's significantly worse, though: it's fiendishly difficult to configure and understand. I just use configs provided by others, which is not ideal but works.

2 more replies

ashitlerferad9y ago

I would just do this:

export HISTFILESIZE=5000000 export HISTSIZE=5000000 export HISTTIMEFORMAT="%F %T " shopt -s histverify shopt -s histappend

0942v86539y ago

Isn't this going to be pretty slow? It starts 5 subshells for every prompt. You could at least change $(pwd) to $PWD and switch the square brackets to double square brackets.

jrochkind19y ago

I don't get it, isn't your bash history already logged to `.bash_history`? What's the point of using PROMPT_COMMAND to send it in addition to another file?

nailer9y ago

Excellent question! Multiple tabs will squash each other, losing history from Tab B between when tab A was opened and when tab A was closed.

It's actually an insecure default - 'insecure' as in, it's a minor form of data loss.

Then again, so is bash launching scripts without pipefail, variable expansion fail, etc.

It'd be worth fixing all this stuff in the next major bash version.

outworlder9y ago

If you can use it, zsh does not have that issue. Plus a bunch of other goodies. It's been a while since I've last used bash.

jlgaddis9y ago

cf.

  histappend

all_usernames9y ago

A warning: do NOT do what one engineers I used to work with did, and upload his "dot files" onto GitHub for portability. A lot of secrets can be stored in a few months' worth of bash history.

packetslave9y ago

there's nothing wrong with uploading your dotfiles -- lots of people do that -- just as long as you do it sanely and don't upload things like .ssh/id_* and .{bash|zsh}_history

grep4master9y ago

Make sure you upload your AWS_SECRET_ACCESS_KEY and AWS_ACCESS_KEY_ID.

tymm9y ago

For the zsh users out there: I wrote a zsh plugin [0] a while ago which does a similar thing (writes time, directory and command to a file) + gives you a better (directory sensitive) history search.

[0] https://github.com/tymm/zsh-directory-history

gdulli9y ago

I go one big step further than this and log everything that comes across the screen.

One time it saved me from a crontab -r that wiped out a 100+ line crontab. I had viewed it recently so I just copied it out of my history.

And besides not having to worry about the availability of distributed history/log data, being able to grep everything at once is invaluable.

szymon_k9y ago

Could you share a gist of that? Would love similar thing in my toolset!

gdulli9y ago

I don't do it with code, it's a feature of this product: https://www.vandyke.com/products/securecrt/

tetraodonpuffer9y ago

not the OP, but this discussion might be helpful

http://unix.stackexchange.com/questions/25639/how-to-automat...

I have been wondering about doing something like this as well

thro12379y ago

How do you do this?

gdulli9y ago

Session logging with this client: https://www.vandyke.com/products/securecrt/

jlgaddis9y ago

This could be done using

  script

as well.

pnewman39y ago

script gives you the whole console, including output and control characters. It's a useful tool but might be a little overkill for keeping track of what commands you have run.

SEJeff9y ago

install rootsh and set that to your shell. Set the logging directory to something in ~/ with 0600 perms, and away you go!

jawns9y ago

This is useful if you are developing locally, but what if a lot of your command line usage is on remote servers that you have SSH'd into?

I believe iTerm2 has some support for logging remote commands, but I'm not sure it quite does the trick. Anybody know of another tool that will log both local and remote commands?

blowski9y ago

At the moment, I get around this by storing as much as I can in searchable scratch files, but this relies on me knowing what to copy. I'm sure there's a better way.

mrSugar9y ago

Work through ansible and manage your local ansible.log however you wish.

1 more reply

pbhjpbhj9y ago

I use the built-in script command sometimes when I'm using SSH, set to write a date+server named text file to my history folder. You could do that and awk out the output lines afterwards.

efyx9y ago

Why logging to a file when you could just set the HITSIZE variable in your .bashrc ? (plus this will give you ctrl+r search which is a must)

sp3329y ago

You would also need to unset HISTFILESIZE, export PROMPT_COMMAND="history -a", export HISTTIMEFORMAT="%d/%m/%y %T ", and set up log rotation to get the behavior listed in the article.

jerf9y ago

So, basically, in combination with sp332's and raldi's points, the answer is that it is completely not the same.

jrochkind19y ago

## SANE HISTORY DEFAULTS ##

# Append to the history file, don't overwrite it

shopt -s histappend

# Save multi-line commands as one command

shopt -s cmdhist

# Record each line as it gets issued

PROMPT_COMMAND='history -a'

# Huge history. Doesn't appear to slow things down, so why not?

HISTSIZE=500000

HISTFILESIZE=100000

# Avoid duplicate entries

HISTCONTROL="erasedups:ignoreboth"

# Don't record some commands

export HISTIGNORE="&:[ ]*:exit:ls:bg:fg:history"

# Useful timestamp format

HISTTIMEFORMAT='%F %T '

raldi9y ago

Because that doesn't include timestamps or working directories.

yardie9y ago

Use screen instead. Ctrl-a and "H" to enable and the same to disable. Log is saved in user directory as screen.<session>

That way I have control of when I log and what gets logged. And way easier to find than hunting for dot files.

blastrat9y ago

yardie9y ago

I find screen logging a bit more useful than shell logging. Shell only records the commands sent and not the result. Screen records everything including interactive like nano.

1 more reply

dahart9y ago

Damnit, this is so much smarter and easier than what I did!

TorKlingberg9y ago

This looks like quite a dirty hack, but I'll try it.

I wish bash history wasn't so broken. I suppose once upon a time it was ok to assume people only had one shell session at a time.

SEMW9y ago

I'm curious as to why you consider it so broken.

TorKlingberg9y ago

1 more reply

xtacy9y ago

I've switched to zsh and it works quite well with multiple sessions.

mc429y ago

ZeroGravitas9y ago

Possibly a good opportunity to ask:

tomswartz079y ago

Could it be that you're accidentally adding/copying a space at the beginning of the command?

I know Linux BASH will ignore the command from history if that's the case, and I think that OSX is similar.

stormbrew9y ago

This is controlled by an environment variable, HISTCONTROL:

              A colon-separated list of values controlling how commands are saved on the history list.  If the list of values includes ignorespace, lines which begin with a space character are not
              saved  in  the  history  list.   A  value  of  ignoredups  causes  lines  matching the previous history entry to not be saved.  A value of ignoreboth is shorthand for ignorespace and
              ignoredups.  A value of erasedups causes all previous lines matching the current line to be removed from the history list before that line is saved.  Any value not in the above  list
              is  ignored.   If  HISTCONTROL is unset, or does not include a valid value, all lines read by the shell parser are saved on the history list, subject to the value of HISTIGNORE.  The
              second and subsequent lines of a multi-line compound command are not tested, and are added to the history regardless of the value of HISTCONTROL.

ZeroGravitas9y ago

This is probably it, thanks, I didn't know this could occur. It only happens when I copy the output of a particular command, not always, so I'm guessing it has a space.

mpitt9y ago

I've just tried and I can't reproduce. It might be because you're copying a leading space: if a command is prefixed by white space it doesn't get saved in the history.

jchoksi9y ago

I implemented bash audit logging[0] by making use of Ryan Caloras's bash-prexec[1] project which provides a fairly robust and resilient way to implement ZSH's preexec and precmd functionality.

---

[0] https://github.com/onelittlehope/bash-prompt [1] https://github.com/rcaloras/bash-preexec

saurik9y ago

https://news.ycombinator.com/item?id=10695305

^ Here is my comment on a previous post for how I am logging all of my bash history in a logical manner (keeping track of terminals and timestamps, etc.) to an sqlite database.

brbsix9y ago

Here are a few other projects:

https://github.com/thenewwazoo/bash-history-sqlite # simple shell script to store Bash history into SQLite3 database

https://gist.github.com/pklaus/1e381be8592426568df9 # simple Python script to store Bash history into Pandas dataframe

https://gist.github.com/pklaus/26925cfa1fc6b370e043 # simple Python script to store Bash history in SQLite3 database

https://github.com/fredsmith/history-db # store Bash history in PHP/MySQL web server

https://github.com/joshuacronemeyer/shellsink # store Bash/Zsh history in Python web server

saurik9y ago

wolfhumble9y ago

Where/how do you call this script?

saurik9y ago

I just stuff that in by .bashrc.

1 more reply

aceperry9y ago

"For the last three and a half years, every single command I’ve run from the command line on my MacBook Pro has been logged... the return I’ve gotten on that small investment is immense."

I'm still not sure why it's helpful to have three and a half years of your bash shell logs.

thinkersilver9y ago

The logger in me appended hostname and the tty to the file name and the log message. You could also add a user name to this as well[0].

[0] export PROMPT_COMMAND='if [ "$(id -u)" -ne 0 ]; then echo "$(date "+%Y-%m-%d.%H:%M:%S") $(hostname) $(tty) $(pwd) $(history 1)" >> ~/.logs/bash-history-$(date "+%Y-%m-%d").log.`hostname`; fi'

andmarios9y ago

I've written a bash history server in go and it has saved me more time than it took me to write it.

It stores commands in a sqlite database. For each command it also saves the time, the user and the host. It permits global search with some useful features (grep A/B/C switches, regexp, etc).

I wrote it to scratch an itch, thus the documentation isn't user friendly. If anyone is interested, shameless plug: https://github.com/andmarios/bashistdb

dallas-stuart9y ago

ICYMI: Sensible Bash addresses this well:

https://github.com/mrzool/bash-sensible

spike0219y ago

Storing the entire history would no doubt be helpful, but I feel similarly to what other people have said so far, which is that it may not be the safest thing to do? Probably depends on usecase.

ojjzhna9y ago

Have cron job to signal bash session to flush history with command timestamps/dates to disk daily.

Handy for recalling commands/command switches you ran months ago.

andy_boot9y ago

I like this idea but I know that I have accidentally entered my password or my password with a typo in it on the terminal on at least one occasion.

The only way round this that I can see is to grep out the password - but then my password (or a substring of it) is now in plaintext in my .zshrc/.bashrc

I can't think of a solution to this. Does anyone have anything?

camhutch9y ago

Start your passwords with /! - the slash stops you entering it into IRC, and the bang stops it going into history.

civilian9y ago

I wrote a command called 'lc', which list commands in a directory. I've found that what I really want is context-specific command history,and this provides it.

Linky: https://github.com/pconerly/lc-listcommands-bash

tezza9y ago

At work unfortunately the sys admins disable customisation. Especially HIST_SIZE etc :(

At regular intervals, especially when I have important commands to save I do a:

  cp ~/.bash_history ~/bash_history_bak_2016-05-31.txt

That way I can do a:

  cat ~/bash_history* | grep <important-command>

to find it

sergiosgc9y ago

Can't you work around the restriction using something like ProxyCommand /bin/bash --login --rcfile .mybashrc on ~/.ssh/config?

rbc9y ago

I frequently review my shell history to pickup past command invocations, but I think it has limits.

LeonB9y ago

In powershell there is a built in cmdlet for logging your history: start-transcript. Details here: http://til.secretgeek.net/powershell/Transcript.html

swehner9y ago

Doing the same. Also including the git branch (if applicable)

It's not obvious, but with this mechanism commands are only logged once they complete. So the log file does not include commands while they are still running. Run into that from time to time.

agumonkey9y ago

kasabali9y ago

Protip:

sudo chattr +a ~/.bash_history

ccvannorman9y ago

:-[

kayoone9y ago

I use the reverse lookup and zsh history heavily and it has served me well. Whats the benefit of this, logs that go back for a longer time ? I am not sure what the default setting on zsh is tbh.

jldugger9y ago

My job would be substantially harder if I couldn't ask bash history the question "how did someone solve this problem last time?"

DoubleMalt9y ago

ctrl-r does a fuzzy search in the history and provides most of what I want out of the box. I wonder why this hadn't been mentioned yet.

yoshuaw9y ago

Instead better would've been to use a custom method; internally the `require.resolve()` API can still be used to get the same semantics as `require()`

jl69y ago

alex_duf9y ago

export HISTFILESIZE=50000

export HISTSIZE=50000

raldi9y ago

https://news.ycombinator.com/item?id=11806647

j / k navigate · click thread line to collapse