Current-Users archive
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]
Re: DoS attack against TCP services
On Sat, 28 Feb 2015, Christos Zoulas wrote:
Good idea. You can use crash, ps and see what each process is holding...
christos
Here the output from crash and ps
gate# crash
Crash version 7.0_BETA, image version 7.99.5.
WARNING: versions differ, you may not be able to examine this image.
Output from a running system is unreliable.
crash> ps
PID LID S CPU FLAGS STRUCT LWP * NAME WAIT
9470 > 1 7 4 0 fffffe8824dfc760 crash
22012 1 3 4 80 fffffe82ae6b52a0 sh wait
26781 1 3 5 80 fffffe813bb998a0 su wait
9257 1 3 0 80 fffffe815fcc50a0 sh wait
13570> 1 7 0 0 fffffe881c291280 sshd
12631 1 3 6 80 fffffe81ab1bd540 sshd select
21044 1 3 4 80 fffffe8811bdca00 pickup kqueue
6605 1 3 7 80 fffffe813b7cc040 getty ttyraw
7943 1 3 0 80 fffffe8817684040 sshd netio
8076 1 3 0 80 fffffe873be9cb80 sshd select
29513> 1 7 7 0 fffffe881a39c6e0 snmpd
13553 11 3 0 10000080 fffffe881ce1f680 named kqueue
13553 10 3 0 80 fffffe8348fa56e0 named parked
13553 9 3 6 80 fffffe87b4b1cb40 named parked
13553 8 3 1 80 fffffe863979c940 named parked
13553 7 2 7 0 fffffe881ed3c500 named
13553 6 3 4 80 fffffe88182101a0 named parked
13553 5 3 2 80 fffffe85240e6ac0 named parked
13553 4 3 6 80 fffffe881610a980 named parked
13553 3 3 5 80 fffffe872fa5c460 named parked
13553 2 3 3 80 fffffe813ccfa140 named parked
13553 1 3 0 80 fffffe85237e7a80 named sigwait
11500 1 3 2 80 fffffe8811bdc1c0 ntpd pause
6567 1 3 5 80 fffffe815fcc54c0 bash ttyraw
2965 1 3 5 80 fffffe881c2916a0 openvpn select
34 1 3 7 80 fffffe8823ae0580 sh wait
50 1 3 6 80 fffffe8823ae09a0 su wait
43 1 3 6 80 fffffe88239955a0 sh wait
2712 1 3 5 80 fffffe83120a94a0 sshd select
42 1 3 7 80 fffffe8823995180 sshd select
1968 1 3 3 80 fffffe88209c5a60 cron nanoslp
2073 1 3 0 80 fffffe8824270620 inetd kqueue
1847 1 3 0 80 fffffe8824270a40 ospf6d select
1604 1 3 3 80 fffffe881f366a80 qmgr kqueue
2321 1 3 4 80 fffffe8824270200 master kqueue
1882 1 3 6 80 fffffe88268ee5e0 sshd select
1742 1 3 5 80 fffffe88268eea00 powerd kqueue
1477 1 3 6 80 fffffe8823ae0160 zebra select
1379 1 3 2 80 fffffe83e1769920 dhcrelay select
827 1 3 6 80 fffffe813be09900 syslogd kqueue
1 1 3 7 80 fffffe813b871420 init wait
0 104 3 5 200 fffffe813be094e0 ipmi0 ipmi0
0 103 3 5 200 fffffe813be090c0 physiod physiod
0 102 3 0 200 fffffe813b7cc460 aiodoned aiodoned
0 101 3 1 200 fffffe813b84d020 ioflush syncer
0 100 3 0 200 fffffe813b7cc880 pgdaemon pgdaemon
0 97 3 0 200 fffffe813b493b40 scsibus1 sccomp
0 96 3 7 200 fffffe813b452700 usb5 usbevt
0 95 3 2 200 fffffe813b451b00 usb3 usbevt
0 94 3 0 200 fffffe813b4522e0 usb1 usbevt
0 93 3 7 200 fffffe813b4516e0 usb4 usbevt
0 92 3 0 200 fffffe813b452b20 usb0 usbevt
0 91 3 4 200 fffffe813b84d860 usb2 usbevt
0 90 3 0 200 fffffe813b84d440 atapibus0 sccomp
0 88 3 0 200 fffffe813b871000 cryptoret crypto_w
0 87 3 0 200 fffffe813b871840 unpgc unpgc
0 86 3 5 200 fffffe813b4512c0 vmem_rehash vmem_rehash
0 85 3 5 200 fffffe813b4d7360 coretemp7 coretemp7
0 84 3 3 200 fffffe813b4d7780 coretemp6 coretemp6
0 83 3 3 200 fffffe813b4d7ba0 coretemp5 coretemp5
0 82 3 0 200 fffffe813b4d6340 coretemp4 coretemp4
0 81 3 6 200 fffffe813b4d6760 coretemp3 coretemp3
0 80 3 7 200 fffffe813b4d6b80 coretemp2 coretemp2
0 79 3 7 200 fffffe813b495320 coretemp1 coretemp1
0 78 3 3 200 fffffe813b495740 coretemp0 coretemp0
0 77 3 0 200 fffffe813b495b60 ciss0 ciss_cmd
0 76 3 6 200 fffffe813b493300 acpitz0 acpitz0
0 67 3 5 200 fffffe813b42d2a0 atabus1 atath
0 66 3 2 200 fffffe813b42d6c0 atabus0 atath
0 65 3 2 200 fffffe813b42dae0 usbtask-dr usbtsk
0 64 3 2 200 fffffe813b2bf280 usbtask-hc usbtsk
0 63 3 0 200 fffffe813b2bf6a0 bnx1 bnx1
0 62 3 5 200 fffffe813b2bfac0 bnx0 bnx0
0 61 3 0 200 fffffe813a7b3260 scsibus0 sccomp
0 60 3 0 200 fffffe813a7b3680 ipmi ipmicmd
0 59 3 2 200 fffffe813a7b3aa0 pms0 pmsreset
0 58 3 7 200 fffffe813a78a240 xcall/7 xcall
0 57 1 7 200 fffffe813a78a660 softser/7
0 56 1 7 200 fffffe813a78aa80 softclk/7
0 55 1 7 200 fffffe813a77c220 softbio/7
0 54 1 7 200 fffffe813a77c640 softnet/7
0 53 1 7 201 fffffe813a77ca60 idle/7
0 52 3 6 200 fffffe813a734200 xcall/6 xcall
0 51 1 6 200 fffffe813a734620 softser/6
0 50 1 6 200 fffffe813a734a40 softclk/6
0 49 1 6 200 fffffe813a7251e0 softbio/6
0 48 1 6 200 fffffe813a725600 softnet/6
0 > 47 7 6 201 fffffe813a725a20 idle/6
0 46 3 5 200 fffffe813a6df1c0 xcall/5 xcall
0 45 1 5 200 fffffe813a6df5e0 softser/5
0 44 1 5 200 fffffe813a6dfa00 softclk/5
0 43 1 5 200 fffffe813a70f1a0 softbio/5
0 42 1 5 200 fffffe813a70f5c0 softnet/5
0 > 41 7 5 201 fffffe813a70f9e0 idle/5
0 40 3 4 200 fffffe813a708180 xcall/4 xcall
0 39 1 4 200 fffffe813a7085a0 softser/4
0 38 1 4 200 fffffe813a7089c0 softclk/4
0 37 1 4 200 fffffe813a6bb160 softbio/4
0 36 1 4 200 fffffe813a6bb580 softnet/4
0 35 1 4 201 fffffe813a6bb9a0 idle/4
0 34 3 3 200 fffffe813a6ee140 xcall/3 xcall
0 33 1 3 200 fffffe813a6ee560 softser/3
0 32 1 3 200 fffffe813a6ee980 softclk/3
0 31 1 3 200 fffffe813a6e7120 softbio/3
0 30 1 3 200 fffffe813a6e7540 softnet/3
0 > 29 7 3 201 fffffe813a6e7960 idle/3
0 28 3 2 200 fffffe813a66c100 xcall/2 xcall
0 27 1 2 200 fffffe813a66c520 softser/2
0 26 1 2 200 fffffe813a66c940 softclk/2
0 25 1 2 200 fffffe813a6a80e0 softbio/2
0 24 1 2 200 fffffe813a6a8500 softnet/2
0 > 23 7 2 201 fffffe813a6a8920 idle/2
0 22 3 1 200 fffffe813a6a10c0 xcall/1 xcall
0 21 1 1 200 fffffe813a6a14e0 softser/1
0 20 1 1 200 fffffe813a6a1900 softclk/1
0 19 1 1 200 fffffe813a6620a0 softbio/1
0 18 1 1 200 fffffe813a6624c0 softnet/1
0 > 17 7 1 201 fffffe813a6628e0 idle/1
0 16 3 4 200 fffffe8826ede080 sysmon smtaskq
0 15 3 0 200 fffffe8826ede4a0 pmfsuspend pmfsuspend
0 14 3 2 200 fffffe8826ede8c0 pmfevent pmfevent
0 13 3 0 200 fffffe882aefe060 sopendfree sopendfr
0 12 3 0 200 fffffe882aefe480 nfssilly nfssilly
0 11 3 0 200 fffffe882aefe8a0 cachegc cachegc
0 10 3 7 200 fffffe882df06040 vrele vrele
0 9 3 5 200 fffffe882df06460 vdrain vdrain
0 8 3 0 200 fffffe882df06880 modunload mod_unld
0 7 3 0 200 fffffe882df11020 xcall/0 xcall
0 6 1 0 200 fffffe882df11440 softser/0
0 5 3 0 200 fffffe882df11860 softclk/0 tstile
0 4 1 0 200 fffffe882df17000 softbio/0
0 3 1 0 40200 fffffe882df17420 softnet/0
0 2 1 0 201 fffffe882df17840 idle/0
0 1 3 0 200 ffffffff80f430e0 swapper uvm
crash> exit
Home |
Main Index |
Thread Index |
Old Index