how to monitor / shutdown processes and users?

dryhte · 2005-07-03 09:55:58

Hi,

As you can see in my previous post i'm totally new to Arch and fairly new to Linux...

Here's one thing that bothers me: I don't know how to keep track of all running processes (and end them if needed... I guess you need to 'kill' them but you first need to know their name, right...) and logged on users (even though that's only me, heh...)

How can you do that in Linux? (something like task manager or another admin tool - or a command line version)

Another thing... I think a wiki page 'securing the default Arch install' would be helpful...

(flame me if there already is one, but I didn't find it )

greetings,

d.

(I think Arch is going to be the one Linux distro to break the record of 1 month installation on my pc... woohoo!!!)

dryhte · 2005-07-03 10:21:11

Hi... I found out how to monitor processes

for reference of other newbies:
pstree -p shows the running processes with their process id
kill <process id> shuts down the process associated with that id

Now only 2 questions are left: how to monitor logins, and how to secure Arch Wink

scarecrow · 2005-07-03 10:59:45

I really like webmin, but it may not be your cup of tea.

T-Dawg · 2005-07-03 11:21:04

I prefer htop, or top.

Kern · 2005-07-03 15:19:54

processes man ps

Now only 2 questions are left: how to monitor logins, and how to secure Arch Wink

Arch Wink, is this a subrelease of Arch? if so i've never heard of it.

how to monitor logins: whos in the system now ...

open a terminal (su - if you prefer) and type who

how to monitor when someone logged in, similar above but type last

how to "secure" arch? secure against what ? theres an extensive chat in Archforums somewhere about securing PC's which is such a broad topic i will only say split the "secure" into 2 parts. one is securing against anyone that can physically sit at your PC, and the other agains net based attacks / exploits.

For the "sat at the PC" type of attack, deny physical access. locked room or desk-cupboard. if someone can power up the PC they can get into it regardless of how much software protection u install.

For the external type of attack the best thing you can do is keep it up to date using pacman-update regularly, and dont run unnecessary services. the rest depends on if you connect via dialup, adsl, u have a router/modem/firewall etc. remember that when a pc is unplugged, no-one is gonna have any success with an external attack.

remember too that root is a known user name, so reduces its security immediately. essential then that you choose a long mixed char password

further than that start looking at things like Bastille and search the arch forums for similar issues.

have fun and decide the level of paranoia that you want to treat this topic with

tomk · 2005-07-03 16:59:36

Don't forget Pink Chick's firewall.

dryhte · 2005-07-03 19:50:07

Kern wrote:

processes man ps
Now only 2 questions are left: how to monitor logins, and how to secure Arch Wink
Arch Wink, is this a subrelease of Arch? if so i've never heard of it.

I really don't know how that ended up in my post especially because I use semicolon, bracket instead of colon, wink, colon for my smiley...

but as relates to securing Arch, of course I mean against network based attacks. The way you would try to secure Windows. I know how to own windows computers when I have physical access to them, and I guess it's the same thing with Linux pc's... but I want to feel secure that nobody from the internet is going to appropriate my box for illegal or other things, on those few occasions that i'm not behind a router/firewall (which I am not sure I trust either... it's a Linksys wireless/wired router with integrated firewall capability. How secure is that? I don't know!)

Is there no way to deny all other pc's access to this pc? It's a laptop, not a server, so nobody has business accessing it remotely anyway... Actually, this is one of the reasons I had an eye on openBSD secure as hell...

EDIT: since we're at it... another thing I don't find is how I can find out at what speed my cpu is running... is it going down to 600 MHz when Idle or isn't it? etc... That stuff is pretty easy to see in windows... must be feasible at least in Linux hey

cactus · 2005-07-03 21:34:22

I believe to find out your cpu speed, you can just cat /proc/cpuinfo

tomk · 2005-07-03 21:44:55

dryhte wrote:

t's a Linksys wireless/wired router with integrated firewall capability. How secure is that? I don't know!

Well, you haven't given the model number, but most of these all-in-one boxes are OK for "everyday" use i.e. some surfing, e-mail. a bit of downloading etc. Google "Linksys <your_model_number> security".

dryhte wrote:

Is there no way to deny all other pc's access to this pc?

Basically, you need iptables. It's up to you whether you go for it on its own, and learn its rule syntax, or get one of the many frontends available e.g. firestarter, shorewall, etc. Or you could just google for "iptables scripts" - there's plenty of them out there.

dryhte wrote:

how I can find out at what speed my cpu is running

cat /proc/cpuinfo

max_sipos · 2005-07-03 22:13:39

Also, note that the simple iptables script (simple.rules I think it's called, in /etc/iptables) is great unless you want to
- open some services on your machine, like SSH or a web server
- use your machine as a router and have 2+ NICs

However, if you are doing the above, you most probably know how to properly configure iptables anyways.

phrakture · 2005-07-04 02:55:27

cactus wrote:

I believe to find out your cpu speed, you can just cat /proc/cpuinfo

cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_cur_freq

if using frequency scaling...

dryhte wrote:

Is there no way to deny all other pc's access to this pc?

$ cat /etc/hosts.deny
#
# /etc/hosts.deny
#

ALL: ALL: DENY

# End of file

iphitus · 2005-07-04 03:07:08

phrakture wrote:

cactus wrote:
I believe to find out your cpu speed, you can just cat /proc/cpuinfo
cat /sys/devices/system/cpu/cpu0/cpufreq/cpuinfo_cur_freq
if using frequency scaling...

both work good.

[ ~/ion-3ds-20050625/etc ]$ cat /proc/cpuinfo                                        [ Monday 04/07/05 ]
processor       : 0
vendor_id       : GenuineIntel
cpu family      : 6
model           : 9
model name      : Intel(R) Pentium(R) M processor 1400MHz
stepping        : 5
cpu MHz         : 598.705

phrakture · 2005-07-04 03:32:49

iphitus wrote:

both work good.

that depends alot on the hardware... my /proc/cpuinfo always reports 2999.99 MHz, no matter what it's scaled at - I know neri's laptop was the same way... so basically, cpuinfo *may work* but the sysfs version *always works*

dryhte · 2005-07-04 04:45:17

the sysfs version does nothing for me... that directory does not exist.

phrakture · 2005-07-04 04:53:31

dryhte wrote:

the sysfs version does nothing for me... that directory does not exist.

are you using cpufreq frequency scaling? the directory only appears then

dryhte · 2005-07-04 06:54:08

That's just what I wanted to find out

I don't know how to enable it (yet) but I wanted to check whether it had been 'automagically' enabled for me

Arch Linux

#1 2005-07-03 09:55:58

how to monitor / shutdown processes and users?

#2 2005-07-03 10:21:11

Re: how to monitor / shutdown processes and users?

#3 2005-07-03 10:59:45

Re: how to monitor / shutdown processes and users?

#4 2005-07-03 11:21:04

Re: how to monitor / shutdown processes and users?

#5 2005-07-03 15:19:54

Re: how to monitor / shutdown processes and users?

#6 2005-07-03 16:59:36

Re: how to monitor / shutdown processes and users?

#7 2005-07-03 19:50:07

Re: how to monitor / shutdown processes and users?

#8 2005-07-03 21:34:22

Re: how to monitor / shutdown processes and users?

#9 2005-07-03 21:44:55

Re: how to monitor / shutdown processes and users?

#10 2005-07-03 22:13:39

Re: how to monitor / shutdown processes and users?

#11 2005-07-04 02:55:27

Re: how to monitor / shutdown processes and users?

#12 2005-07-04 03:07:08

Re: how to monitor / shutdown processes and users?

#13 2005-07-04 03:32:49

Re: how to monitor / shutdown processes and users?

#14 2005-07-04 04:45:17

Re: how to monitor / shutdown processes and users?

#15 2005-07-04 04:53:31

Re: how to monitor / shutdown processes and users?

#16 2005-07-04 06:54:08

Re: how to monitor / shutdown processes and users?

Board footer