General :: User Processes That Are Given Direct Access To I/O Ports ?

Oct 5, 2010

Normally all I/O goes through the kernel so that it can schedule the operations and prevent processes from stepping on each other. A few special user processes are allowed to slide around the kernel, usually by being given direct access to I/O ports. X servers are the most common example of this isn't it ? give examples for any other processes that are allowed to slide around the kernel ?

View 3 Replies


ADVERTISEMENT

Ubuntu :: Disable Access To Running Processes For Some User

Jan 9, 2010

is there any possible way to hide currently running processes from an user? This means I do not want him to know about what programs/processes does any other user but him run. In short words if that user runs 'ps -aux' he should get only his processes.

View 3 Replies View Related

Ubuntu Servers :: Grant User Access To Open Ports

Nov 19, 2010

I have a JavaCL program trying to open a port on 41xxx and it is getting permission denied unless I run it as root. I would like to grant a single user this permission for opening this port. This program runs fine on a vanilla ubuntu install but not on server. Where does Ubuntu handle user permissions for opening ports?I understand this is typically a no-no on a server but this is an unusual circumstance.

View 1 Replies View Related

Security :: User Access Restrictions To Network, USB Ports, PCMCIA, CDROM

May 3, 2011

How to create a user account on a Linux desktop machine with restrictions on connecting to the LAN, WAN, PCMCIA ports, Firewire, CDROM and generally any user controllable output options?

I have the task to set up a machine for users working with sensitive data that should not be leaving the machine where it is processed. This means disabling access to the ethernet device, lan, all other ports as mentioned earlier, and any other way of leaking the data.

In Mac OSX this was achieved using "Parental controls" from the System preferences; this even allows a selection of the applications that can be used. Under XP, Device Manager offers the option to click various devices and "Disable" them, which worked so far just fine. Some will point out that the latter mentioned OS may be easy to circumvent the security of in other ways, but that has been mitigated with other measures and it's not the point anyway. For the operator users in question, the aforementioned measure proved successful and worked.Using OSX and XP to do this was a 10-15 minutes job with testing included.

So far all guides and tutorials pointed to useradd, groups an facl, but in actual practical terms did not help at all, in fact most of the research did not render any practical results so far. I surely don't expect to point and click, and would gladly run a set of commands from CLI. If I had them. I would really would like to achieve the same restricted user account configuration in a concise, comprehensive and practical manner under Linux too. Preferably tested on humans before, and known to be workign, of course.
The machines that need to be set up are two laptops running Ubuntu. So how can this be accomplished in Linux?

View 6 Replies View Related

General :: Pidgin IRC Direct Message To A User

Jun 13, 2011

I notice that when people message me in a channel the message itself show up in the channel, but I also get notified from pidgin that I got a message. Now my question is, how do I send a message to a specific user so he gets notified like I do, but still the message show up in the channel. I know It's not Linux specific question, but IRC is in Linux culture anyway, and I been googling but for no solution at the end.

View 3 Replies View Related

CentOS 5 Server :: Configuring Piranha To Load Balance (Direct Route) 2 Ports

Feb 18, 2009

I seem to be having a strange problem configuring Piranha to load balance (Direct route) 2 ports across 2 w2k3 servers in a test environment. What is strange is that 1 of the ports are working fine but the other port doesn't work. I've read many how-to and after many frustrating hours I disabled the firewall, iptables and arptables services and one of the ports are load balanced across the 2 real servers. Here's the environment.

[Code]....

I can telnet from the client to the realserves on both ports and it's works. When I telnet to the VIP only one port gets through and the other gives me "could not open connection to host port 32777 : connect failed. The configuration in Piranha for one port is the same as the other. I can't help but think that some other configuration for port 32777 was missed.

View 1 Replies View Related

Software :: List Processes Ports Listening

May 28, 2010

how can I check which process is using certain port? Like in a table with processes and used ports...

View 3 Replies View Related

General :: Max User Processes Different For The Same User?

Apr 13, 2011

When i do the following with logged in with root:

Code:

i get

Code:

When i login with user1 and do ulimit -a

i get

Code:

Why is the max user processes different for the same user? And how can i change this. I need for this user more then 20 processes...

View 2 Replies View Related

Ubuntu :: Processes Listening To Ports / Ipv4 | Ipv6 Only

Jul 3, 2011

I'm running a native dual-stack (ipv4 & ipv6) dsl connection.So, I've been adding firewall rules, cleaning up unwanted processes, etc to tighten security.I'm left with only 3 processes that are listening to ports. mysql, ipp & ssh.Still not quite sure I need mysql. I run Amarok but without using a database, so I don't actually use sql for anything that I'm aware of.Anyway, my question is;Is it possible to make any any of these processes listen to ipv4 only or ipv6 only? Is there a distinction there at all?

Example- ssh is currently listening to port 22 on both tcp & tcp6. I do all my ssh connections using 'ssh -6', so, Can I make ssh listen to tcp6 only, or ignore tcp ?

View 3 Replies View Related

General :: Processes With Effective User Name Or ID

May 21, 2009

I am studying for the LPIC-1 exam, and reading a book that they recommend: "Introduction to Linux: A Hands-on Guide", by Machtelt Garrels. There's one question on the 4th chapter (Processes), that I found confusing: Question: Based on process entries in /proc, owned by your UID, how would you work to find out which processes these actually represent?

What does he mean? If I run the command (considering that my username is sl33p):
Code:
$ps -u sl33p
...gives me the right answer?

The ps man page says:
-u userlist
Select by effective user ID (EUID) or name.

This selects the processes whose effective user name or ID is in userlist. The effective user ID describes the user whose file access permissions are used by the process (see geteuid(2)). Identical to U and --user.

View 8 Replies View Related

General :: Killing All Processes Of Current User?

Jun 15, 2010

user@host$ killall -9 -u user Will it definitely kill all processes owned by user (including forkbombs)?

No new processes is spawned to user from other users. No user's processes are in D-sleep and unkillable.No processes are trying to detect and ptrace or terminate this started killall (but they can ptrace or do other things with each other) There is ulimit that prevents too much processes (but killall is already started and allocated it's memory)

E.g. if killall will finish untampered and successfully is it 100% that no processes are left with this uid? If no, how to do it properly (with standard commands and no root access). Will SysRq+I definitely kill all things (even replicating)?

View 2 Replies View Related

General :: Kill All Idle User Processes ?

Nov 18, 2010

All the kill idle user processes scripts I've seen don't take into account that the user might have multiple sessions open. Such is the case with one of our clients. Currently, every hour or two I need to do the following:

This will get the TTY and idle time for all users.

For each idle time over a half hour, I do the following (TTY is the TTY from the previous command with a space.

I then kill those processes.

There must be a way to do this automatically in a bash or perl script. I've tried both, but can't seem to get things to work properly.

View 2 Replies View Related

General :: Setuid Process Cannot See Processes Owned By That User

Nov 2, 2010

I would like to give a non-root user (nicollet) the ability to detect and send a signal to processes started by Apache2 (those processes are FastCGI scripts and the signal tells them to empty their cache). The processes are owned by the web user (www-data), and I'm running on Debian unstable.

I can't find any way to have the nicollet user see those processes.

The processes are running and can see by both root and www-data:

root@linux-01:~# ps -Af | grep baryton
www-data 17649 17648 0 10:27 ? 00:00:00 baryton
www-data 28145 1 0 Nov01 ? 00:00:12 baryton --bot
root 18701 18700 0 10:46 pts/0 00:00:00 grep baryton
root@linux-01:~#

[Code]....

The most surprising is that the grep process is indeed run by www-data (because it's started from a setuid executable) and is visible, but the baryton process isn't.

What's going on here? Why can ps run by www-data show those processes, but ps run by a setuid executable running as www-data cannot, when it's started by nicollet?

View 1 Replies View Related

General :: Some Processes Do Not Start In Multi-user Mode

Feb 2, 2009

Few days ago, the server did not respond to a ssh request from a user at night. A user tried to check what went wrong with computer and tried to login from terminal next morning. As the computer was unresponsive, he somehow decided to boot it by turning the power off. To make the story short, the server rebooted; however, he can't login to his account. Actually, the server could not start some processes; but was able to ask user to enter his account username. Even though, he enters the correct username and password, server does not accept the request. I also could not login as root.

I just checked the server logs by booting it in single user mode. Here are some interesting lines:

Before the reboot:

irqbalance : can't balance irqs on a uniprocessor system: failed

After the reboot:

irqbalance : can't balance irqs on a uniprocessor system: failed
fsck:
fsck /: (this is repeated 900+ times)

[code]....

View 1 Replies View Related

General :: Print The Number Of Processes That Each User Is Currently Running In Unix?

Mar 6, 2011

I'm trying to get the end result to have the same format as this as well:

1 bin
2 daemon
67 erozner

[code]....

Where the numbers are the number of processes being run by the user (the name right next to it).if I input the command egrep myFile into the terminal, it should look for every line with the letter x in myFile, right?

View 5 Replies View Related

General :: Tools To View/edit User Space Memory Of Running Processes?

Nov 2, 2010

Are there any tools to view/edit user space memory of running processes on Linux?

It would be a great learning tool.

View 1 Replies View Related

Software :: Direct Access To Key Strikes?

Jul 13, 2010

How can one have direct access to key strikes. Normally the key strikes that collected by the concerned programme and access to the same is not available to any other user programs. I am trying to write a program to simultaneously catch the key strikes. Obviously for this would require a low-level access to the keyboard. How can one do it ?

View 2 Replies View Related

Programming :: How To Do A Direct Memory Access

Jul 26, 2011

I have a single board computer previously running DOS. I recently made Linux running on it. Now that the system is running Linux, I have to translate the code that was supported by DOS. The code has segments that allow direct access of memory mapped registers through the macro _MK_FP and do read/write. I have read that where DOS allows this kind of direct memory access, Linux does not. Is there a way to do this in Linux?

View 6 Replies View Related

Ubuntu :: No 3D Cube And Direct Desktop Access

Mar 5, 2011

Running Ubuntu Netbook remix on a Toshiba NB500-upgraded to 2 Gigabytes RAM. Very slow opening applications via the side icons. 8-12 seconds. Is that normal for this distro?
- No 3D cube. Installed related compiz software, adjusted settings, ticked cubes etc. Not a peep.
- No direct desktop access. Only via side icons. Just find it fiddly re: using desktop and changing background via side icons.
Couple other items (MBB for one) but for another category.

View 7 Replies View Related

Red Hat / Fedora :: Mailserver Have To Have Direct Access To WAN Or Can It Be A LAN Device With Just One NIC ?

Apr 22, 2010

Does a mailserver have to have direct access to WAN or can it be a LAN device with just one NIC ?

We have two WAN access points.

One is an adsl router joined to the switch and all seems fine for internet browsing.

The other is a wireless system with a linksys router joining by way of PPPoE and this appears to connect fine.

This PPPoE is direct to our ISP and where we need to downlod our mail to our pending mailserver.

When the linksys router is also joined to the switch all devices can use either the adsl or linksys to roam the net. 192.168.1.1 linksys & 192.168.1.10 is adsl.

When I join the linksys direct to the mailserver I will then need two NIC's. One for the Linksys and one for the LAN.

This is where the fun has started.

So.... Can I just have one NIC (connected to the switch) on the mailserver?

View 5 Replies View Related

Software :: Unable To Access Hdd Direct Or From Live CD

Jun 8, 2010

I've got an Hitachi Deskstar 164GB IDE drive which I've somehow managed to upset while attempting to swap distros. I'm guessing its lost the MBR as I can't get a PC to see it except in the BIOS. The BIOS tells me that the primary master has 164GB, Cylinders 65535, Head 16, Precomp 0, Landing zone 65534 and Sector 255. (my understanding of that info is very limited). The PC won't boot direct from the hdd and a live Knoppix disc can't see it. Trying fdisk -l produces no list. (Naturally, I can't install another distro on it either).

View 10 Replies View Related

Fedora Installation :: Cannot Open Volume For Direct Access

Jul 8, 2011

I am using a Dell Inspiron 14R laptop that came with Windows 7 Home Basic. The partitions of my hard disk before installing Fedora 15 were:
Dell (OEM Partition)
OS (C: ) (Primary Partition)
RECOVERY (Primary Partition)
New Volume (E: ) (Logical Drive)

I tried shrinking my C: drive (which has Windows) but couldn't do so hence performed the procedure on E: instead. I did this to create a 15GB unformatted space to install Fedora in. While installing Fedora, I chose the option "Use Free space" under Disk Partitioning Setup but the OS got installed in E: drive. Currently, I am able to use both Windows and Fedora under dual-boot but the problem I am facing is that when working with Windows, I am unable to see drive E: in Computer.

Windows Disk Manager is able to detect the partition and is showing it to be healthy (1st screenshot). Its name now is New Volume and neither am I able to change its path or letter (Error: incorrect parameters) nor am I able to check it using "chkdsk" (Error: cannot open volume for direct access/ GUI doesn't work as well) (2nd screenshot). On the other hand, I am able to access both the partitions in Fedora.

Another point to mention is that after finishing the installation of Fedora, when I started Windows, the Disk Manager as well as Dell DataSafe showed that the Windows Recovery drive had been formatted (maybe inappropriate terminology!) and was no longer retrievable. To rectify this problem, I restored my Windows to before Fedora was installed and I seem to have got the Recovery drive back (1st screenshot) (before doing this, it was nameless and empty).

View 4 Replies View Related

General :: Give User Access To Directory In Another User's Home

Mar 8, 2010

I'm developing an application in which one user must run java software that I'm compiling as another user. I wanted to give user A permission to see the bin direcory of my workspace, which is in the home directory of user B. I was wondering how can this be done? I gave the bin direcotry full read/execute premissions, but since it's in my home directory user A can't navigate to it.

I know there are a few ways I could get around the problem but they arn't very elegant. I was wondering if there is a simple method for giving a user access to a specific directory without giving access to all the parent directories. I tried symbolic link but user A still can't access it, and a hard link to a directory isn't allowed in Linux. I don't feel like making a hard link to every single file in the bin directory, and I'm not sure that would work anyways, since every recompile overwrites them.

View 7 Replies View Related

Networking :: Iptable Rule For Blocking Direct Internet Access

Jun 13, 2010

i have the following system in my lan.

firewall(iptables)
etho(private) - 192.168.2.1
eth1(public) -189.117.57.2

squid server at 192.168.2.10

my request is that i have to make all out bound internet connection should go from proxy server , not directly to firewall. Please specify a iptable rule for blocking direct internet access. my clients ip ranges from 192.168.2.20 to 192.168.2.47

View 5 Replies View Related

Ubuntu Networking :: Access Blocked Sites By VPN And Unblocked By Direct ADSL?

Nov 21, 2010

I am in China, where some web sites(....., facebook, etc) are blocked. So I have to access these blocked site by VPN. But how can I access blocked sites by VPN and unblocked sites by my direct ADSL?

View 2 Replies View Related

Server :: Limit User Processes ?

Feb 10, 2010

I have some domains on a VPS server. Typical account memory usage for all domains runs at 50% of available, but I have a problem. One domain is causing me trouble because intermittently traffic will spike on that domain, causing so many requests within 1 min that I exceed my memory allocation for my entire VPS package. Apache is then killed but the virtualization software and Apache must then be restarted.

A sample snippet from tops right before the sever went down would like like this:

All of that memory usage adds up. I would like to "throttle" the number of processes that user/domain can run. I think this would be a quick and easy way to keep the domain from taking down my entire VPS. My understanding is that I could do this with the /etc/security/limits.conf file.

Is that correct?

I have never done this before. Do I want to set a hard or soft limit? I think if I wanted to limit the number of processes for "coldclim" to 15 I would add a line to limits.conf like this:

Code:

Assuming that is correct, can anyone tell me how the website would respond once it reached its limit? Would visitor queries become sluggish, or would the website not come up for them at all?

View 4 Replies View Related

Server :: With PS Cannot Control The Processes Of Another User

Feb 15, 2011

I have a problem with the permission of the directories under /proc, they are readable and accessible only by Owner (they have permission 500 instead of the usual 555) As a consequence, the processes are visible only to the Owners or to Root. For exampleif I want to check if there is mysql

I see it only with the user mysql or with root because the directory has permission 500

This problem obstacles the functioning of some applications that should check the existence of some processes managed by other users. At the beginning all was working well. But after a while the problem appeared and I dont know which is the reason of it. how to restore the standard management of permissions of / proc?]

I have a Ubuntu server Maverick 10:10.

View 2 Replies View Related

Red Hat / Fedora :: Some Processes Does Not Start In Multi-user Mode

Feb 2, 2009

Few days ago, the server did not respond to a ssh request from a user at night. A user tried to check what went wrong with computer and tried to login from terminal next morning. As the computer was unresponsive, he somehow decided to boot it by turning the power off. To make the story short, the server rebooted; however, he can't login to his account. Actually, the server could not start some processes; but was able to ask user to enter his account username. Even though, he enters the correct username and password, server does not accept the request. I also could not login as root.

I just checked the server logs by booting it in single user mode. Here are some interesting lines:

Before the reboot:
irqbalance : can't balance irqs on a uniprocessor system: failed

After the reboot:
irqbalance : can't balance irqs on a uniprocessor system: failed

fsck:

This might be something related with shadow file.

Here is part of /etc/shadow

View 3 Replies View Related

Ubuntu Security :: Bunch Of Vmware-user-wra Processes Stall Cpu 100%

Mar 24, 2010

this is scary, bunch of vmware-user-wra processes stall cpu 100%!! What's going on? Server has just been restarted! Bere I restarted, the root started all this vmware-user-wra!! I was configuring vncserver! After restart, it's started by user roo300 which I have used to login via SecureShell!

Code:

top - 20:20:29 up 4 min, 85 users, load average: 76.57, 35.14, 13.60
Tasks: 629 total, 90 running, 539 sleeping, 0 stopped, 0 zombie
Cpu(s): 1.5%us, 98.5%sy, 0.0%ni, 0.0%id, 0.0%wa, 0.0%hi, 0.0%si, 0.0%st
Mem: 3873304k total, 369500k used, 3503804k free, 50492k buffers

[code]....

View 2 Replies View Related

Ubuntu :: VirtualBox 3.2.10 Can't Access USB Ports?

Nov 22, 2010

I installed VirtualBox 3.2.10 running Windows XP Pro and I don't have Access to my USB Ports in XP.VirtualBox shows the ports but they are grayed out and XP device manager lists Intell 82801FB/FBM USB2 Enhanced Host Controller - 265CStandard OpenHCD USB ControllerUSB Root ControllerUSB Root Controllerunder device manager but when I click the USB Root Ports it shows nothing attached and says that there are 8 ports available in each HUB.If I plug in a device Windows does not detect a new device or report any kind of errors about USB devices and there are no yellow exclamation points under Device Manager.

View 3 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved