tech

Often I have to digitize document printed on double-sided paper. Unfortunately the scanner / copier automatic feeder I have can only read single side document. So in this case, I have to scan the odd pages first as PDF, then scan the even pages as PDF. Then comes the problem on how to combine them. So here's the solution: pdfMergeOddEven.

pdfMergeOddEven is a simple python script takes two input: the odd pages file and the even pages file, and output a file which is the result of merging the two input files with the odd pages taken from the first input, and even pages taken from the second input. On command-line, it simply takes the three files as argument:

pdfMergeOddEven.py oddFile.pdf evenFile.pdf output.pdf

pdfMergeOddEven is actually just a simple python script that uses the wonderful python library PyPdf to do PDF manipulation. You can download pdfMergeOddEven here.

Here's a scenario that just happened to my wife that should not. This is on Fedora 8 with KDE.

1. Open a document from email attachment (with Kmail), that opens in OpenOffice.


2. "Save As" the document so that it can be edited.


3. OpenOffice "Save As" dialog open with the default directory "/tmp/kde-username" because that is where Kmail put its attachment.


4. Name the file something else, and save.


5. Edit the file, saving regularly, then shutdown the computer when finish.


6. Next time computer boot up, the document is gone, potentially loosing hours of work

I know all the arguments blaming the user. As a technical person, regrettably that was my first reaction also. On second thought, for regular user, who can tell what /tmp is ? Regular user does not know that /tmp are cleaned every reboot. Furthermore, in a hurry, if one just want to save quickly so that it can be used the next time computer boots up, it's understandable that user makes the mistake to save the document to whatever default directory is presented by the dialog box, thinking that she can always re-open it from "Recent Document" menu.

This is not limited to Kmail or Openoffice, I just tried and it's the same with KPDF, Kghostview, etc. Firefox opening files in application also has similar problem.

What should be the general solutions for this ? Should this be the responsibility of the desktop environment project (ie. KDE, GNOME) from their "Save As" dialog rather than each individual apps ? I'm thinking of filling a bug report but then I'm not sure whom I should file this with.

I can think of some hacky band-aid solution to prevent document loss next time like a rotating backup of /tmp for the next two reboot or edit the boot up script to not delete /tmp, etc, but none of those is a good enough general solution.

Maybe it should be sometime like:

1. Default to $HOME directory for saving if file is opened from /tmp


2. Have a shortcut in the dialog to go to the directory where the document is opened from (ie. "/tmp/kde-username") for the case where one would actually
   just want to save a temporary file there. Probably have a "warning" and a "don't warn me again" or "do this automatically next time" preference.

Do you have any thoughts ?

Update: A quick Google search yields that this is a general known problem that a lot of people has complained about. Unfortunately there is still no good once-for-all solution. Here are some references:
http://www.murrayc.com/blog/permalink/2006/10/31/tmp-does-not-belong-in-file-save-dialogs/
https://bugs.launchpad.net/openoffice/+bug/39854
http://www.kieransenior.co.uk/journal/2008/04/16/openoffice-writer-error-writing-file/
https://lists.ubuntu.com/archives/ubuntu-mozillateam-bugs/2007-August/020413.html

Sometimes we are using a publicly available Wifi hot spots and would like a better privacy when browsing the internet. Although our credit-card or bank account website are probably using secure connection, other websites are not and we simply would like to have more privacy. One way to do it is by setting up your own proxy server and using it as a private proxy.

However using our own proxy server still does not increase the privacy / security of our connection over the exposed wireless link, unless we use encryption. Encryption in this case is easily accomplished by using SSH tunneling. The benefits of this is two prongs. First, we have SSL level encryption, second, we keep our proxy server private by off-loading the authentication burden to the SSH server. In this entry I explain how to do it.

I assume that we are using a fairly modern linux distribution for our web proxy and SSH server. I also assume that we have SSH access to our machine set up securely. Most major linux distribution include Apache 2 web server and its proxy module in the distribution. It's better to use that than compiling Apache yourself, unless you know what you are doing. Assuming all that, then it is really easy to set up our proxy server.

First, we need to enable the web server to be a proxy server. The relevant configuration in

httpd.conf

file is as follow

LoadModule proxy_module modules/mod_proxy.so
#
# Proxy Server directives. Uncomment the following lines to
# enable the proxy server:
#
<IfModule mod_proxy.c>
ProxyRequests On
#
<Proxy *>
Order deny,allow
Deny from all
Allow from 127.0.0.1
</Proxy>
</IfModule>
# End of proxy directives.

The first line loads the proxy module to the web server. Proxy directives allow you specify by IP address the request that it will serve. In this case, we deny all request except request from

127.0.0.1

, which is

localhost

. This is how we keep your proxy server private, i.e. not an open proxy.

Now to use our proxy server from a different machine, -- let's call this is the laptop with wireless access --, we first have to connect to the server via SSH tunneling. This is both the encryption and authentication part. The simple proxy server cannot authenticate us, and hence only allows connection from

127.0.0.1

. The authentication part comes from the fact that we have to connect via SSH first to the proxy machine before we can use the proxy forwarding. To have SSH tunnel, simply do

$> ssh -L 3000:localhost:80 myproxyserver.myisp.net

This means, port 3000 in my laptop actually listen to port 80 on the proxy server via SSH tunneling, i.e. it is an encrypted tunnel. The port 3000 is random. We can use any port number that is unused in the laptop. Port 80 is the port where the web server binds to in the proxy server machine (of course one can set up the Apache to binds to different port in

httpd.conf

).

Now that we have tunneling set up to our proxy server, all we need to do is to configure web browser to use this. This differs slightly for different web browsers, but as an example, in Firefox 2, this is done via

Preference --> General tab --> Connection Settings

. Here we set

Pick "Manual Proxy Configuration:"
HTTP Proxy: localhost
Port: 3000
Use this proxy for all protocols: check

Now we can start browsing securely via this SSL encrypted tunnel to our proxy server. If we check the web server log in our proxy server machine, we should see that our request from the laptop's web browser is being forwarded by the proxy server. Also noticed that from the web server point of view, our request comes from

127.0.0.1

.