LinuxQuestions.org

LinuxQuestions.org (/questions/)
-   Linux - Security (http://www.linuxquestions.org/questions/linux-security-4/)
-   -   How do you find ip address of users? (http://www.linuxquestions.org/questions/linux-security-4/how-do-you-find-ip-address-of-users-15143/)

Alinuxnoob 02-26-2002 05:54 PM

How do you find ip address of users?
 
How do you find the ip address of a user that is login on your PC?
I ran users and it says "root root root" 3 users..... Now I know that my linux box is not even close to secure..... Im still trying to figure out how to setup iptables but Im just wondering how to I find the ip address of any users that are login on my PC?

unSpawn 02-26-2002 06:26 PM

run "netstat -A inet -n", "-A inet" would tighten displaying connections for internet protocols only (no local unix domain sockets), and "-n" sez don't resolve addresses. *Btw, this is a /networking type question, please check and post to the appropriate forum, TIA.

frieza 02-26-2002 06:26 PM

hmm, doesn't sound like you necessarily have a security problem, when you type WHO, it lists EVERY instance of root, be it a real login, or an open terminal window the who output should read something like:





[root@hostname]#who


root ttyX (for virtual consols logged in as root)


root :X (for x window servers logged in as root)


root ttySX (for serial terminal connections logged in as root)


root pts/X (for any terminal windows open within x windows)





X being any number, note that nobody should be able to acces your computer as root from any terminal not specified in /etc/securetty, users using su will not show up as root, hope this helps, cheers

frieza 02-26-2002 06:27 PM

hmm, doesn't sound like you necessarily have a security problem, Try typing who instead of users it lists not only the users logged on, but where they are loging on from,be it a real login, or an open terminal window the who output should read something like:





[root@hostname]#who


root ttyX (for virtual consols logged in as root)


root :X (for x window servers logged in as root)


root ttySX (for serial terminal connections logged in as root)


root pts/X (for any terminal windows open within x windows)





X being any number, note that nobody should be able to acces your computer as root from any terminal not specified in /etc/securetty, users using su will not show up as root, hope this helps, cheers

frieza 02-26-2002 06:28 PM

oops, accidentally ran 2 replys :rolleyes:

Alinuxnoob 02-26-2002 08:03 PM

THx whoops I guess I really don't have a security problem but I did learn something new tho
thx for the help :-)

frieza 02-28-2002 09:42 AM

no problem, glad I could help someone breathe easier, hope you never really are hacked, i was once, though not while using a linux box, and i'ts a real pain.


All times are GMT -5. The time now is 09:52 AM.