Stone, Timothy wrote:
Excuse the pun. :) I need help with determining the users logged in, etc.

Given this actual example:

1. [tstone@vahalla tstone]$ who -l -H
2. USER     LINE     LOGIN-TIME   FROM
3. tstone   pts/0    Jan 21 16:21
4. tstone   pts/1    Jan 21 16:21
5. tstone   pts/4    Jan 15 15:26
6. tstone   pts/2    Jan 21 16:22
7. tstone   pts/3    Jan 24 09:29 (10.40.100.80)

I'm trying to run down the logins...

Line 1 is of course the command the produced the output.
Line 2 is the result of the -H switch
Line 3-6 are the logins in question.
Line 7 is the login that produced the output

Looking closely at the four (4) logins associated with Lines 3-6:

Lines 4 & 6 are stdin logins (terminals open in konsole)

What are lines 3 & 5? As close as I can determine Line 5 is the login associated with restarting the box. But I haven't the faintest clue what Line 3's login is for.

Is there a more descriptive tool that points back to the processes or reasons for the logins?

Finally, if I find a rogue login, how can I terminate it?

Warmest Regards,
Tim
>
Try the command 'w' - I find it more useful. It will show which program is running in each connection as well as username and where they connect from. Once you know the user, program name and tty, you can use 'ps -ef' to find the process ID (PID) - then use 'kill PID' (or 'kill -9 PID' if you really mean it).

ps -ef gives a rather lengthy list - you might want to try:

ps -ef | grep <user> | grep <tty>

/jan





--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list

Reply via email to