How to create a script that kills all processes started by a specific user?
Linux - GeneralThis Linux forum is for general Linux questions and discussion.
If it is Linux Related and doesn't seem to fit in any other forum then this is the place.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Introduction to Linux - A Hands on Guide
This guide was created as an overview of the Linux Operating System, geared toward new users as an exploration tour and getting started guide, with exercises at the end of each chapter.
For more advanced trainees it can be a desktop reference, and a collection of the base knowledge needed to proceed with system and network administration. This book contains many real life examples derived from the author's experience as a Linux system and network administrator, trainer and consultant. They hope these examples will help you to get a better understanding of the Linux system and that you feel encouraged to try out things on your own.
Click Here to receive this Complete Guide absolutely free.
How to create a script that kills all processes started by a specific user?
Hey guys, I was wondering if someone can help me create a script that runs every 5 minutes and kills all processes started by a specific user. I know nothing about scripting, so any help would be appreciated!
I'm sorta thinking that you should be somehow able to use the ps command to find the list of PIDs, then pipe that output into xarg which executes a kill.
I'm sorta thinking, also, that you can take it from there... mmm?
And you really do need to master this particular "fundamental Linux/Unix skill," because you're going to use it a lot. These operating systems give you a set of fairly primitive fundamental commands, most with quite a few options, plus the ability to string those commands together such that "the whole is greater than the sum of its parts." You need to spend some serious time exploring these possibilities, and I daresay that this is a lot of what your instructor has in mind. (Ask him or her.)
In fact ... you can even handle the entire assignment this way, if you ponder the list of available commands long enough ... (he said, cryptically).
Last edited by sundialsvcs; 02-13-2013 at 08:28 PM.
Yeah, and let us repeat, Squerl101 ... take full advantage of this very "boots-on-the-ground important" exercise! Pay close attention to what can be done using these techniques, and learn them well. Ask your instructor about it, and listen to what he or she has to say. If you've ever wondered "what all the fuss was about," with regard to (originally...) "Unix in the 1970's," this is it.
DO NOT USE THIS ON rootAND DO NOT ASK HOW I KNOW THIS.
"May" require sudo.
Does not work against a fork bomb. Fork bombs fork faster than pkill can find processes to kill...
Try this one: (NOTE THIS WILL CAUSE YOU PROBLEMS)
Code:
#include <unistd.h>
void main(void)
{
while (1) fork();
}
In the time it takes pkill to kill one process, this application will fork several hundred, each new process will then fork several hundred while pkill kills the next (plus the several hundred generated by each of previous processes...)
It will eventually hang your system UNLESS you have reasonable ulimits set. (I have 1024 concurrent processes...).
For me to run it then there would be 1023 maximum number of processes (after that, the fork fails).
Then, for each process that pkill manages to kill, any one of the other 1022 processes will replace it...
So... how do you stop it?
It isn't a single step operation, and works best when there are reasonable ulimits to prevent the system from hanging.
1. pkill -SIGSTOP -u <user>
This will put all of the users processes in the suspended state. And that means they will no longer be running. It also means that new processes cannot be started (the ulimit has been reached).
2. pkill -SIGKILL -u <user>
Now that the user processes are stopped, pkill can find each one and kill it.
Note: pkill may not exist on all systems (linux yes, Solaris, should be, but AIX/BSD... don't know)
See also: killall
There are also other strategies available - look at the fuser command where you know the file being used to hold the fork bomb.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
How to create a script that kills all processes started by a specific user?
