Главная » Linux

Linux which user runs process

На чтение 10 мин Просмотров 1 Опубликовано
Содержание
  1. How to Check Which User is Running a Process on Linux and Windows — Command Line and Task Manager Tools
  2. Checking Running Processes on Linux
  3. Using the “ps aux” Command
  4. Filtering Processes by User Using “ps -u” Command
  5. Using “ps -f -u ” Command
  6. Using “ps -e” or “ps -A” Command
  7. Combining Commands
  8. Using “htop” Command
  9. Using Quotes to Specify User
  10. Using “/proc” Filesystem
  11. Checking Running Processes on Windows
  12. Using Task Manager
  13. Using the Users Tab in Task Manager
  14. Using “TList” Command
  15. Using “Get-Process” Command
  16. Using “IncludeUserName” Parameter
  17. Using C# to Determine User
  18. Using ProcMon
  19. Additional Tips and Tricks
  20. Other helpful code examples for checking which user is running a process include «ps -f -u » for Linux and «WindowsIdentity.GetCurrent().Name» in C# for Windows
  21. Conclusion
  22. How to find PID’s user name in Linux?
  23. 6 Answers 6
  24. How to determine who started a process? [duplicate]
  25. 1 Answer 1
  26. Using top to see processes run by a user on behalf of sudo
  27. 2 Answers 2

How to Check Which User is Running a Process on Linux and Windows — Command Line and Task Manager Tools

Learn how to check which user is running a process on Linux and Windows systems using command-line tools and Task Manager. Use «ps aux» command for Linux and «Get-Process» command for Windows.

As a system administrator or a developer, knowing which user is running a process on a Linux or Windows system can be extremely helpful for troubleshooting and system management. In this post, we will provide you with information on how to check which user is running a process on linux and windows systems using command-line tools and Task Manager.

Checking Running Processes on Linux

Linux provides numerous ways to check running processes, and we will explore some of the most common command-line tools.

Using the “ps aux” Command

The “ps aux” command is a popular Linux command used to display information about all running processes. Simply open the terminal window and type “ps aux” to see a list of all the running processes on the system.

Filtering Processes by User Using “ps -u” Command

To see processes owned by a specific user, run “ps -u ” command in the terminal window. This will display all the processes owned by the specified user.

Using “ps -f -u ” Command

The “ps -f -u ” command will list all processes for a specific user. This command provides more detailed information about the processes, such as the process ID, parent process ID, CPU usage, and memory usage.

Using “ps -e” or “ps -A” Command

The “ps -e” or “ps -A” command displays all active Linux processes. This command provides information about all the processes running on the system, including their process ID, parent process ID, CPU usage, and memory usage.

Combining Commands

The ps command in Linux can also be combined with other commands such as top, htop, and pgrep to list running processes. For example, “ps aux | grep

” will list all processes containing the specified process name.

Читайте также:  Arch linux kde настройка

Using “htop” Command

The htop command in Linux allows users to filter processes by user. Simply open the terminal window and type “htop”, then press “F6” to filter processes by user.

Using Quotes to Specify User

Using double quotes in Linux command lines lets the interpreter know the user running the command. For example, “ps -u “ «” provides the same results as “ps -u ”.

Using “/proc” Filesystem

The /proc filesystem in Linux can be used to determine which groups a running process is in. Simply open the terminal window and type “ls -l /proc/

/”. This will display information about the process, including the user and group ID.

Checking Running Processes on Windows

Windows also provides numerous ways to check running processes, and we will explore some of the most common methods.

Using Task Manager

To see all running processes on Windows, open Task Manager and go to the details page. In the Name column, look for the process name and in the User Name column, see the user running the process.

Using the Users Tab in Task Manager

The Users tab in Windows Task Manager displays all processes executed by an individual user. This tab provides information about the user, the number of running processes, and the total amount of CPU and memory usage.

Using “TList” Command

The TList command can be used to find the Process ID of a running process on Windows. Simply open the command prompt and type “tlist

” to display the process ID.

Using “Get-Process” Command

In Windows, you can also use the “Get-Process” command to find the owner of a process. Simply open the PowerShell and type “Get-Process

| Format-Table ProcessName, UserName” to display the process name and the user running the process.

Using “IncludeUserName” Parameter

The “IncludeUserName” parameter in the Get-Process command requires elevated user rights. To use this command, open PowerShell with administrator privileges and type “Get-Process

Using C# to Determine User

WindowsIdentity.GetCurrent().Name can be used in C# to determine which user the current process is running as. This provides the username and the domain name.

Using ProcMon

Advanced users can use ProcMon to view what user a process or program is running as. ProcMon is a powerful tool that provides detailed information about system activity, including process and thread creation, file system activity, and registry activity.

Additional Tips and Tricks

Here are some additional tips and tricks to help you better manage your systems:

  • To view the processes owned by a specific user in Unix/Linux, use the “top -U [username]” command.
  • In Linux, you can specify multiple usernames separated by a comma to view processes for multiple users.
  • The Applications tab of Task Manager only shows desktop applications, while the Processes tab displays all running processes.
  • The ps command can also display information about system resource usage.
  • The “pgrep” command can be used with ps to list processes matching a specific pattern.
  • Windows Server also allows users to view running processes in Task Manager.
  • The top command in Linux provides real-time stats of running processes.
Читайте также:  Xerox b210 linux driver

Other helpful code examples for checking which user is running a process include «ps -f -u » for Linux and «WindowsIdentity.GetCurrent().Name» in C# for Windows

In shell, see what user a process is running as code example

Conclusion

Checking which user is running a process can be done using different methods on Linux and Windows systems. Using the appropriate command-line tools or Task Manager can help troubleshoot and manage system resources effectively. By using the tips and tricks provided in this post, users can gain a better understanding of their systems and improve their overall system management skills.

Источник

How to find PID’s user name in Linux?

Can you help me to find the PID’s user name? Sometimes my server has high load. When I run top -c , I cannot even find the owner of a process which is causing load on the server.

We were experiencing server load issue due to bulk php process, so that i had this question, we can then find them using ‘lsof -p xxxx’.

6 Answers 6

I’m surprised nobody has put this up yet:

Try the -p option of the ps command.

For instance, if you have PID 1234 , run:

The -u was added to include the username in the output.

You can then use grep or awk , etc. to extract the info you want.

You were a tick faster than me. You’re waking up earlier? Depending on the Linux distrbution, ps u 1234 (Debian) or just ps 1234 (Android with Busybox) also works.

This works nicely with pgrep when you only have the process name (not the PID) or when you want to see the owners of multiple processes with a similar name: ps -u -p $(pgrep yourProcessName)

/proc/processID/status will have the information about user’s ID which you can use to find the username.

uid=$(awk '/^Uid:/' /proc/YOUR_PROCESS_ID/status) getent passwd "$uid" | awk -F: ''

Replace YOUR_PROCESS_ID with your process ID number.

The best answer, since it’s the fastest, especially if changed to : getent passwd $(< /proc/"$uid"/loginuid) | sed 's/\:.*$//'

Get only username from a PID:

PID=136323 USERNAME="$( ps -o uname= -p "$" )"

You can also combine it with a pgrep . In this example we show all usernames executing some .php file:

pgrep -f '\.php' | xargs -r ps -o uname= -p | sort -u

Find only one username running a certain unique process:

USERNAME mt24"> 
 
 
 
 
)" data-controller="se-share-sheet" data-se-share-sheet-title="Share a link to this answer" data-se-share-sheet-subtitle="" data-se-share-sheet-post-type="answer" data-se-share-sheet-social="facebook twitter " data-se-share-sheet-location="2" data-se-share-sheet-license-url="https%3a%2f%2fcreativecommons.org%2flicenses%2fby-sa%2f4.0%2f" data-se-share-sheet-license-name="CC BY-SA 4.0" data-s-popover-placement="bottom-start">Share 
 
)" title="">Improve this answer 
 
 
 
 
 
 
 
 
)">edited Sep 25, 2018 at 0:30 
 
 
 
 
 
answered Sep 25, 2018 at 0:21
Add a comment |
3

I think the shortest way is:

id -nu

The /proc//loginuid file has the uid number of the user running the process; id -nu reads uid from stdin and returns a user name.

Источник

How to determine who started a process? [duplicate]

It's using 100% cpu. I kill it , and after some time I see it again .
How can I determine who is running this process ?

when speaking of process and others it's always a good idea to tell us which linux distro you're using and which version you're running.

It is being run by root . Presumably from a cronjob but for more details you will have to tell us your operating system, whether you are the administrator, whether this is a remote machine administered by someone else etc.

I have CLOUDLINUX 6.5 x86_64 with cPanel. clamav is installed however its usage is disabled for customers . The process is constantly checking this /etc/passwd and overloading the cpu. I do not understand WHO is starting the process.

1 Answer 1

One way would be to replace the process by a "wrapper" script.

 # cd /usr/local/cpanel/3rdparty/bin/ # cp -p clamdscan clamdscan.orig # cat >clamdscan >/tmp/clamscan.log date >>/tmp/clamscan.log id >>/tmp/clamscan.log ps -fp $PPID >>/tmp/clamscan.log tty >>/tmp/clamscan.log pstree -Ap >> /tmp/clamscan.log exec $0.orig $* eof

That way each each call of clamscan will log some information. The commands are just to illustrate that you may change it at your convenience. Of course you should not let it run too long if you don't want to have a full /tmp directory.

 # cd /usr/local/cpanel/3rdparty/bin/ # mv clamdscan.orig clamdscan

Источник

Using top to see processes run by a user on behalf of sudo

If I run top -u username I will see all the processes by a particular user. Is there a way to also see all the processes that the user called via sudo?

2 Answers 2

It doesn't seem to be possible in an easy way.

From top 's perspective, any command a user runs using sudo would appear to be running as root because it really is running as root.

One way you could try, is to track it down to the terminal where the user is logged in, then see processes running as root on that terminal.

$ w user USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT user pts/0 w.x.y.z 07:01 0.00s 1.07s 0.03s w user

Now press f (field select), then g (toggle controlling tty field), then Enter .

Now watch for processes with pts/0 in the TTY column.

You can also sort by TTY by pressing g a second time.

Or you could use procfs to get a list of pids , e.g.

$ sudo grep -l SUDO_USER="\" /proc/*/environ

Then do anything with that list. Even use it to run top -p ,. .

sudo top -p $(sudo grep -l SUDO_USER='\' /proc/3*/environ | cut -f 3 -d / | tr '\n' ',' | sed -e 's/,$//')

Of course, in that case, top won't show you if that user starts a new command using sudo .

Also don't forget that a user running a command is probably being logged, e.g. to /var/log/secure or /var/log/auth.log , or /var/log/sudo.log , or whatever your system uses.

Источник

Оцените статью
© 2023 Posetke
Adblock
detector