Stone, Timothy wrote:
>Excuse the pun. :) I need help with determining the users logged in, etc.Given this actual example: 1. [tstone@vahalla tstone]$ who -l -H 2. USER LINE LOGIN-TIME FROM 3. tstone pts/0 Jan 21 16:21 4. tstone pts/1 Jan 21 16:21 5. tstone pts/4 Jan 15 15:26 6. tstone pts/2 Jan 21 16:22 7. tstone pts/3 Jan 24 09:29 (10.40.100.80) I'm trying to run down the logins... Line 1 is of course the command the produced the output. Line 2 is the result of the -H switch Line 3-6 are the logins in question. Line 7 is the login that produced the output Looking closely at the four (4) logins associated with Lines 3-6: Lines 4 & 6 are stdin logins (terminals open in konsole) What are lines 3 & 5? As close as I can determine Line 5 is the login associated with restarting the box. But I haven't the faintest clue what Line 3's login is for. Is there a more descriptive tool that points back to the processes or reasons for the logins? Finally, if I find a rogue login, how can I terminate it? Warmest Regards, Tim
Try the command 'w' - I find it more useful. It will show which program is running in each connection as well as username and where they connect from. Once you know the user, program name and tty, you can use 'ps -ef' to find the process ID (PID) - then use 'kill PID' (or 'kill -9 PID' if you really mean it).
ps -ef gives a rather lengthy list - you might want to try:
ps -ef | grep <user> | grep <tty>
/jan
--
redhat-list mailing list
unsubscribe mailto:[EMAIL PROTECTED]?subject=unsubscribe
https://listman.redhat.com/mailman/listinfo/redhat-list