惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

WordPress大学
WordPress大学
The Register - Security
The Register - Security
Hugging Face - Blog
Hugging Face - Blog
博客园 - 聂微东
GbyAI
GbyAI
Recent Commits to openclaw:main
Recent Commits to openclaw:main
博客园_首页
D
Docker
S
Security @ Cisco Blogs
K
Kaspersky official blog
爱范儿
爱范儿
Simon Willison's Weblog
Simon Willison's Weblog
TaoSecurity Blog
TaoSecurity Blog
V
V2EX
C
CXSECURITY Database RSS Feed - CXSecurity.com
T
Troy Hunt's Blog
Cloudbric
Cloudbric
博客园 - 三生石上(FineUI控件)
Cyber Security Advisories - MS-ISAC
Cyber Security Advisories - MS-ISAC
The Hacker News
The Hacker News
美团技术团队
S
SegmentFault 最新的问题
L
Lohrmann on Cybersecurity
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
宝玉的分享
宝玉的分享
The Last Watchdog
The Last Watchdog
Y
Y Combinator Blog
M
MIT News - Artificial intelligence
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
CTFtime.org: upcoming CTF events
CTFtime.org: upcoming CTF events
Martin Fowler
Martin Fowler
Google Online Security Blog
Google Online Security Blog
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
C
Cybersecurity and Infrastructure Security Agency CISA
T
Tor Project blog
Vercel News
Vercel News
The Cloudflare Blog
G
Google Developers Blog
T
Threat Research - Cisco Blogs
AI
AI
Stack Overflow Blog
Stack Overflow Blog
I
InfoQ
Scott Helme
Scott Helme
S
Schneier on Security
大猫的无限游戏
大猫的无限游戏
The GitHub Blog
The GitHub Blog
S
Securelist
IT之家
IT之家
Microsoft Azure Blog
Microsoft Azure Blog

Stonecharioteer on Tech

I Traced My Traffic Through a Home Tailscale Exit Node What Was I Reading Last? In Three Not-So-Easy Pieces Dogfooding Is Hard Code blocks in your books, finally GoForGo v0.9.0 Merrilin - We built an app to read books I use a Macbook now Data Structures & Algorithms - Preparing for Interviews Using a local DNS namespace for local service discovery Direction KOllector - Publishing KOReader Highlights gbt: branches touched in the last 24 hours A Soiree into Symbols in Ruby Some Smalltalk about Ruby Loops Ruby Blocks Returning from Ruby Blocks, Procs and Lambdas My Linux Laptop Finally Works: How Claude Helped Me Fix Years of Annoyances TIL: Watchexec - Modern File Watching for Development Workflows A Less Busy Mind GoForGo - Learn Go through live examples Migrating My Old Blog to Hugo with Claude The Qtile Window Manager: A Python-Powered Tiling Experience Read the RFCs that Built the Internet Py-x-Protobuf - Or How I Learned to Stop Worrying and Love Protocol Buffers Python Reverse a List New Beginnings Leaving ChainSafe Systems Screen Lock for Cinnamon Desktop using Zenity and Terminal Commands Crews Not Teams A System for Getting Better at LeetCode So Far So Rust Retrying HTTP Requests with Rust A Primer on Control Charts Learning Rust Explicit is Better than Implicit: Rust for Pythonistas Using Custom Delimiters in Jinja Templates TIL: Creating Fixed Length Iterables in Python Documentation Without Assumption Vagrant Python - A Reflection in 2022 Learning Golang No, A Virtual Machine Is Not Enough: Why Developers Need Native Linux Empathy in Tech For Those Who Came in Late A Weekend With PostgreSQL TIL: Gooey and Python Fire for Quick GUIs and CLIs TIL: 2ality - Dr. Axel Rauschmayer's JavaScript Blog TIL: MassDNS - High-Performance Bulk DNS Lookups TIL: Matomo Analytics, Google Tech Writing, Memory Programming, and NES TV Signals TIL: MontyDB - MongoDB Implemented in Python Returning to the Craft of Programming TIL: CPUFetch, OneFetch, and Learn CSS TIL: DNS Performance Testing and Pi-hole with Unbound TIL: Eli Bendersky's Blog, Awesome By Example, NoCoDB, and Martin Kleppmann TIL: CRDTs, Extreme HTTP Performance, and BYTEPATH Game TIL: AutoInvent, ASGI, Python Packaging, RAPIDS GPU Computing, and FlaskCon TIL: MangaDesk - Terminal Client for MangaDex TIL: McFly - Smart Shell History Search TIL: Siege Load Testing and Awesome FastAPI Resources TIL: Ventoy Bootable USB and Justniffer Network Analysis TIL: CLI Code Review, Git Split Diffs, and Internal Combustion Engine TIL: Benford's Law, Web Security Headers, Event Sourcing, and Mozilla Security Guidelines How to Write Documentation - The README.md File The Importance of Documentation TIL: NNgroup UX Research, SponsorBlock, and Labella Python Library TIL: The Little Book of Rust Macros and Rust Performance Book TIL: Git-Bug Distributed Issue Tracker and Omni Kubernetes Monitoring TIL: Zellij - Modern Terminal Multiplexer TIL: How Discord Handles 2.5 Million Concurrent Voice Users TIL: Volumio - The Audiophile Music Player TIL: Areopagitica - Milton's Defense of Free Speech TIL: Fast Node Manager, Zoxide Smart CD, Technical Writing, PyO3, and Qubes OS TIL: Slurm Workload Manager for HPC Clusters TIL: Data Visualization Guide and Oso Authorization Academy TIL: CORS Deep Dive, Piku Tiny PaaS, Rust Strings, and Deno Standard Library TIL: Raspberry Pi OS Development, Vim Beginner Guide, Password Management, and QueryBook TIL: uBlock Origin Performance Optimization on Firefox TIL: Breaking PostgreSQL at Scale and LeetCode Problem Patterns TIL: Awesome Tmux Resources for Terminal Multiplexing TIL: Grit - A Multitree-Based Personal Task Manager TIL: Lens 4.2 Kubernetes IDE, Shell Scripting Guide, and Dark HTTP Server Do The Job You Hate So You Won't Hate The Job You Love TIL: Innernet VPN Solution and NoteCalc Calculator App TIL: Argo CD for GitOps and Lens Kubernetes IDE TIL: Modern Rust CLI Tools - System Monitoring, HTTP Requests, and DNS TIL: tz - A Time Zone Helper Tool TIL: Distributed Systems Education, Fallacies, and Self-Hosted Internet Archiving TIL: Real-Time Voice Cloning Technology TIL: ChartMuseum for Helm, AMD's Corporate Journey, and Kubernetes Pod Scaling TIL: Docker and Kubernetes Tools - Whaler, Descheduler, and Dive TIL: Post-Mortem Collection, Terminal Plotting, and Technical Twitter TIL: Dark Mode Toggle Web Component by Google Chrome Labs TIL: Python eval(), exec(), and compile() Functions TIL: Camelot PDF Tables, PostgreSQL Row Level Security, Zerodha Varsity, and Write Yourself a Git TIL: i Hate Regex - The Ultimate Regex Cheat Sheet TIL: Dolt - Git for Data and Database Version Control TIL: x86 Assembly Programming and SafeEyes Break Reminder TIL: Comprehensive Distributed Systems Reading List TIL: Cosmopolitan C Library, Distributed Systems Book, High Performance Browser Networking, and Rust Roguelike Tutorial TIL: ABlog for Sphinx - Documentation as a Blog Platform
TIL: fuser Command for Process and File Investigation
2021-03-12 · via Stonecharioteer on Tech

fuser - Identify Process Using Files/Ports

fuser(1) - Linux man page

Essential Linux command for troubleshooting file access and network connections:

What fuser Does:

  • File Usage: Shows which processes are accessing specific files
  • Directory Monitoring: Identifies processes with open files in directories
  • Network Analysis: Finds processes using specific network ports
  • Mount Point Investigation: Discovers what’s preventing unmounting

Basic Syntax:

1
fuser [options] file|directory|port

Common Use Cases:

File Access Investigation:

1
2
3
4
5
6
7
8
# Show processes using a file
fuser /var/log/syslog

# Show detailed process information
fuser -v /etc/passwd

# Show processes using files in directory
fuser /home/user/

Network Port Analysis:

1
2
3
4
5
6
7
8
# Find process using TCP port 80
fuser 80/tcp

# Find process using UDP port 53
fuser 53/udp

# Multiple ports at once
fuser 80/tcp 443/tcp

Mount Point Troubleshooting:

1
2
3
4
5
# Why can't I unmount this drive?
fuser -m /mnt/external

# Show all processes with files open on filesystem
fuser -vm /mnt/external

Output Interpretation:

Access Type Indicators:

  • c: Current directory
  • e: Executable being run
  • f: Open file
  • F: Open file for writing
  • r: Root directory
  • m: Memory-mapped file

Example Output:

1
2
3
4
$ fuser -v /var/log/messages
                     USER        PID ACCESS COMMAND
/var/log/messages:   root       1234 f     rsyslogd
                     root       5678 F     logrotate

Powerful Options:

Verbose Mode:

1
2
3
4
5
# Show detailed information
fuser -v filename

# Include user names and process details
fuser -uv filename

Kill Processes:

1
2
3
4
5
6
7
8
# Kill all processes using file (dangerous!)
fuser -k filename

# Interactive kill with confirmation
fuser -ki filename

# Send specific signal
fuser -k -TERM filename

Network Mode:

1
2
3
4
5
# Show all network connections
fuser -n tcp port_number

# UDP connections
fuser -n udp port_number

Practical Scenarios:

“Device is busy” Error:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
# Can't unmount USB drive
umount /mnt/usb
# umount: /mnt/usb: device is busy

# Find the culprit
fuser -vm /mnt/usb
# Shows: bash (PID 1234) has current directory there

# Fix: change directory and unmount
cd ~
umount /mnt/usb

Port Already in Use:

 1
 2
 3
 4
 5
 6
 7
 8
 9
10
11
# Development server won't start
# Error: Port 8000 already in use

# Find what's using the port
fuser 8000/tcp
# Output: 8000/tcp: 5432

# Get process details
ps aux | grep 5432
# Kill if necessary
kill 5432

Log File Locked:

1
2
3
4
5
6
7
# Can't edit log file
# Find processes with file open
fuser -v /var/log/application.log

# Safely stop services before editing
systemctl stop application
vi /var/log/application.log

Security and Safety:

Permission Requirements:

  • Root Access: Often needed for system files and other users’ processes
  • Network Ports: Some operations require elevated privileges
  • Process Inspection: Limited to processes you own unless root

Safety Considerations:

  • Kill Command: Use -k option very carefully
  • System Processes: Don’t kill critical system processes
  • Confirmation: Use -i for interactive confirmation when killing

Alternative Commands:

  • lsof: More comprehensive file and process investigation
  • netstat: Network connection analysis
  • ss: Modern replacement for netstat
  • pgrep/pkill: Process finding and killing by name

fuser is invaluable for system administration, debugging file access issues, and understanding what processes are doing on your system.