Detecting and administrating hide processes in linux system
Author
Source
Iraqi Journal of Statistical Science
Issue
Vol. 2011, Issue 20 (31 Aug. 2011), pp.321-335, 15 p.
Publisher
University of Mosul College of Computer Science and Mathematics
Publication Date
2011-08-31
Country of Publication
Iraq
No. of Pages
15
Main Subjects
Topics
Abstract AR
يعد إخفاء المعالجات في نظام لينكس جزءا أساسيا من فعاليات rootkits و البرامج الخبيثة.
لذلك من المهم جدا مراقبة التحكم بالمعالجات المخفية في النظام للتأكد من سلامة و معولية نظام الحاسوب.
بالمعالجات من الممكن أن يكون عاملا حيويا في تحديد استقرارية و ثباته النظام.
فالتحكم الهدف من هذا البحث هو اكتشاف المعالجات المخفية في نظام لينكس بالاعتماد على ملفات النظام proc / و تطوير برمجيات توفر أدوات لمراقبة هذه العمليات فضلا عن مراقبة و السيطرة على بقية المعالجات في النظام للتأكد من أن العمليات المطلوبة تعمل و أن العدد الإجمالي لكل نوع من العمليات يكون مناسبا للحفاظ على استقرار النظام.
Abstract EN
Hiding processes in Linux system is an essential part of rootkits actions and malicious program.
So, it is very important to monitor and administrate the system hidden processes to ensure the safety and reliability of the computer system.
Also, process administration can be a vital factor in determining the stability of a running system.
The aim of this research is to detect hide processes in Linux system depending on / proc system files and offer tools for monitoring these processes in addition to monitoring and administrating all other processes in the system to ensure that the required processes are running and that the total number of each type of running process is appropriate to maintain system stability.
The software offers capability for displaying processes in the system including hidden processes with full information about them.
And it offers options for killing or suspending a process, change process priority and viewing the memory map and the memory status for a given process.
The work has been run successfully on Linux operating system, Ubuntu distribution, version 10.4, and developed using C++ GUI programming with Qt 4 package and number of shell commands.
American Psychological Association (APA)
Qasha, Rawa Butrus. 2011. Detecting and administrating hide processes in linux system. Iraqi Journal of Statistical Science،Vol. 2011, no. 20, pp.321-335.
https://search.emarefa.net/detail/BIM-399982
Modern Language Association (MLA)
Qasha, Rawa Butrus. Detecting and administrating hide processes in linux system. Iraqi Journal of Statistical Science No. 20 (2011), pp.321-335.
https://search.emarefa.net/detail/BIM-399982
American Medical Association (AMA)
Qasha, Rawa Butrus. Detecting and administrating hide processes in linux system. Iraqi Journal of Statistical Science. 2011. Vol. 2011, no. 20, pp.321-335.
https://search.emarefa.net/detail/BIM-399982
Data Type
Journal Articles
Language
English
Notes
Includes bibliographical references : p. 335
Record ID
BIM-399982