rockthegod
Dark Overlord !!!
Hi all...
Can neone tell me how to hide any process in Linux from <ps -aux > command. ???????????????????
Can neone tell me how to hide any process in Linux from <ps -aux > command. ???????????????????
How to hide a process in Linux ???
- Status
OP
rockthegod
Dark Overlord !!!
reply
actually I hv seen a person hiding a particular process..there may be a command/program/hack nething.. probably which can hide a particular process tht u r currently running...tht person is not ready to disclose the tweak..so i am searching a hell lot for it.. even in windows thr is particular registry tweak which can hide a process from task manager...
actually I hv seen a person hiding a particular process..there may be a command/program/hack nething.. probably which can hide a particular process tht u r currently running...tht person is not ready to disclose the tweak..so i am searching a hell lot for it.. even in windows thr is particular registry tweak which can hide a process from task manager...
GNUrag
FooBar Guy
You can interrupt a process, you can kill a process, you can make a process sleep, you can stop a process
But you CANNOT hide a process. What your friend might have done is done some trick to fool off you people.
Note that, $ ps -ax is an incorrect syntax, and does not show complete process listing.
Just have a look at this small example that i have written:
what this does is destroys the argument table generated by executing the program. now if you go and view the file /proc/pid/cmdline then you'll notice that this file is empty since we destroyed argv variable.
compile and execute this program by:
$ gcc -o phide phide.c
# ./phide
now if you give $ ps aux then nothing would be shown.. However you can still view the program's listing by :
$ ps -u anurag -U anurag
replace anurag with the username who is executing the program. and you'll find the process phide listed.
Ask your friend to prove the he can hide processes for real or if he's playing some hiding trick.
But you CANNOT hide a process. What your friend might have done is done some trick to fool off you people.
Note that, $ ps -ax is an incorrect syntax, and does not show complete process listing.
Just have a look at this small example that i have written:
Code:
#include <stdio.h>
#include <stdlib.h>
int main(int argc, char *argv[])
{
int i;
for(i = 0; i < argc; i++)
memset(argv[i], 0, strlen(argv[i]));
for(;;);
}what this does is destroys the argument table generated by executing the program. now if you go and view the file /proc/pid/cmdline then you'll notice that this file is empty since we destroyed argv variable.
compile and execute this program by:
$ gcc -o phide phide.c
# ./phide
now if you give $ ps aux then nothing would be shown.. However you can still view the program's listing by :
$ ps -u anurag -U anurag
replace anurag with the username who is executing the program. and you'll find the process phide listed.
Ask your friend to prove the he can hide processes for real or if he's playing some hiding trick.
OP
rockthegod
Dark Overlord !!!
reply
thanx 4 the comprehensive info. Actually suppose u r working on a particular linux rig as a authentic user but not the administrator and u wanna run a process and don't want the admin to know tht such a process is running..even if he suspects tht a process is running in the background and he tries to list the processes tht is actually running on the rig by executing ps -aux command .
My friend actually showed me this thing happening on his machine. He was running a program <new.out> by executing <./new.out> so the process list showed <./new.out> running and then he did tht tweak and then even though the process was running , the linux task manager showed no such processes running. No..dont think tht I meant to do nething iilegal/forbidden.. its just a craze to know the tweak..thats all.
thanx 4 the comprehensive info. Actually suppose u r working on a particular linux rig as a authentic user but not the administrator and u wanna run a process and don't want the admin to know tht such a process is running..even if he suspects tht a process is running in the background and he tries to list the processes tht is actually running on the rig by executing ps -aux command .
My friend actually showed me this thing happening on his machine. He was running a program <new.out> by executing <./new.out> so the process list showed <./new.out> running and then he did tht tweak and then even though the process was running , the linux task manager showed no such processes running. No..dont think tht I meant to do nething iilegal/forbidden.. its just a craze to know the tweak..thats all.
OP
rockthegod
Dark Overlord !!!
yup, the process will run in the background. Thanx roxx 4 ur website link.
OP
rockthegod
Dark Overlord !!!
@e-freak: No No No. I didn't mean that "background" .... I meant tht the process
should run in the background but would not be visible in the "Task Manager"
of Linux in any case.
should run in the background but would not be visible in the "Task Manager"
of Linux in any case.
- Status