Control users login/logout times and force logoff?

Posted on 2004-05-01
Last Modified: 2013-12-16

I currently use rh9.  Have a nice little box that I'm using as an internet gateway/squid transparent proxy.  I would like to force network clients to log off and kill internet access after a certain time of day.

Can someone please point me in the right direction?

BTW, the clients are all winxppro boxes.  Domain logn to SAMBA running on the same box.  IPTABLES for the firewall scripts.

Question by:oregonisonline
  • 3
  • 2
  • 2
  • +2

Expert Comment

ID: 10969866
I think you are asking for "scheduling tasks" for your linux box to stop some gateway for some clients

For scheduling solution "crontab" is used. You can schedule any job for different periods of time.
A short and easy documentation for crontab:

have fun.

Expert Comment

ID: 10971030
Hi Oregonisonline,

I think this deservers some more explanations :

- what do you mean by "Log Off" ? Do you mean log the off from their client computer ? If so, it looks like a Windows problem (assuming the clients are running Windows).

- you want to "kill internet access after a certain time of day"...  suspect you want to re-authorize it after a certain other time of the day too. If you want to disable ALL access, and if your box is doing NAT (masquerading) or routing for the clients, I'd use cron to remove / add your NAT rule, hence completely disabling / enabling Internet access.
LVL 17

Expert Comment

ID: 10972764
" I would like to force network clients to log off and kill internet access after a certain time of day."

A very easy but not very elegant method would be to have a cron job setup for a certain time which contains the command "service network stop". Then have a cron job setup for the time you want to allow access again which has the command "service network start".
Enterprise Mobility and BYOD For Dummies

Like “For Dummies” books, you can read this in whatever order you choose and learn about mobility and BYOD; and how to put a competitive mobile infrastructure in place. Developed for SMBs and large enterprises alike, you will find helpful use cases, planning, and implementation.


Expert Comment

ID: 10973314
Just as a note... if you "network stop", you don't only kill internet access for the users but kick any kind of Internet communication for your gateway : no more remote admin, backup, monitoring, mail, nothing....

It's maybe not what you want.
LVL 38

Expert Comment

ID: 10974094
You might just want to run a cron job to kill all the users login sessions (or remote user's login).

Please defind what you mean by "Control users login/logout times and force logoff"?

Do you mean kick off all the user at the same time of the day? if so, use cron to kill all the
normal user's process will do the job for you.

Author Comment

ID: 10974392
Sorry I didn't jump back on earlier. I'll try and make this a little more clear.

I may have to push this to a Windows2000 Domain controller with ISA server.  It's starting to look that way.

In a Windows domain, you can set local and domain security policies which include the ability to force a user's logoff of the domain (and machine) to include network access at a specified time of day.  Each user can be different.  

I don't want to just do a network stop on the linux box, as there are other users who will have unrestricted access to the internet and other network functions.

Basically, want the kids to be forced to log off their machines by 10 pm m-f  11:30 pm on the weekends, while allowing the adults to continue access as normal.

I hope this clears it up a bit.
LVL 38

Accepted Solution

yuzh earned 250 total points
ID: 10974559
If you want to just kick off the kids, you could put all the kids login name in a text file, make it
looks like:

david fred alex

let's say you want to put it in /var/adm/ and named it as kids.txt

then use the following script to kill all the kids process:


for name in `cat $INPUTFILE`
     kill -9 `ps -ef | grep $name | grep -v grep | awk '{print $2}' `


# End of script

then edit your crontab, to make it looks like:
30 23  * * * /path-to/myscript >/dev/null 2>&1

man crontab
to learn more about crontab.

Expert Comment

ID: 10975981
yuzh: I sure hope he has no kid named "joe" (would kill the joe editor) or "ache" (would kill apache) :P

-> ps -U $name looks better :P

Anyways, I have the feeling oregonisonline's problem is a Windows problem, not a Unix one.

Author Comment

ID: 10986989
Since it appears that there is no "graceful" way to make this happen with Linux, I'm gonna go the Windows route.  

Not too happy about that though.

Thanks for all of the great posts.  Yuz came the closest to what I was looking for so points awarded to him.

Featured Post

What is SQL Server and how does it work?

The purpose of this paper is to provide you background on SQL Server. It’s your self-study guide for learning fundamentals. It includes both the history of SQL and its technical basics. Concepts and definitions will form the solid foundation of your future DBA expertise.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Over the last ten+ years I have seen Linux configuration tools come and go. In the early days there was the tried-and-true, all-powerful linuxconf that many thought would remain the one and only Linux configuration tool until the end of times. Well,…
I. Introduction There's an interesting discussion going on now in an Experts Exchange Group — Attachments with no extension ( This reminded me of questions tha…
Connecting to an Amazon Linux EC2 Instance from Windows Using PuTTY.
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

18 Experts available now in Live!

Get 1:1 Help Now