warden.int.autonlab.org daily security run output

Fri Jul 24 23:01:09 EDT 2015

Checking setuid files and devices:

warden.int.autonlab.org setuid diffs:

--- /var/log/setuid.today	2015-07-02 23:01:10.884239161 -0400
+++ /tmp/security.mVHhoqx3	2015-07-24 23:01:07.146239850 -0400
@@ -1,93 +1,99 @@
-   65 -r-sr-xr-x  1 root  wheel      19440 May 14 16:51:21 2015 /bin/rcp
-12380 -r-sr-xr--  1 root  operator    9520 May 14 16:51:47 2015 /sbin/mksnap_ffs
-12436 -r-sr-xr-x  1 root  wheel      27616 May 14 16:51:49 2015 /sbin/ping
-12386 -r-sr-xr-x  1 root  wheel      36520 May 14 16:51:49 2015 /sbin/ping6
-12379 -r-sr-xr--  2 root  operator   15240 May 14 16:51:49 2015 /sbin/poweroff
-12379 -r-sr-xr--  2 root  operator   15240 May 14 16:51:49 2015 /sbin/shutdown
-11822 -r-sr-xr-x  4 root  wheel      27880 May 14 16:52:17 2015 /usr/bin/at
-11822 -r-sr-xr-x  4 root  wheel      27880 May 14 16:52:17 2015 /usr/bin/atq
-11822 -r-sr-xr-x  4 root  wheel      27880 May 14 16:52:17 2015 /usr/bin/atrm
-11822 -r-sr-xr-x  4 root  wheel      27880 May 14 16:52:17 2015 /usr/bin/batch
-11777 -r-xr-sr-x  1 root  kmem       12712 May 14 16:52:17 2015 /usr/bin/btsockstat
-11744 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/bin/chfn
-11744 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/bin/chpass
-11744 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/bin/chsh
-11843 -r-sr-xr-x  1 root  wheel      32296 May 14 16:52:42 2015 /usr/bin/crontab
-11720 -r-sr-xr-x  1 root  wheel      11032 May 14 16:52:24 2015 /usr/bin/lock
-11904 -r-sr-xr-x  1 root  wheel      25256 May 14 16:52:24 2015 /usr/bin/login
-11914 -r-sr-sr-x  1 root  daemon     32232 May 14 16:52:46 2015 /usr/bin/lpq
-11827 -r-sr-sr-x  1 root  daemon     37736 May 14 16:52:46 2015 /usr/bin/lpr
-11902 -r-sr-sr-x  1 root  daemon     31960 May 14 16:52:46 2015 /usr/bin/lprm
-11804 -r-xr-sr-x  1 root  kmem      144312 May 14 16:52:26 2015 /usr/bin/netstat
-11868 -r-sr-xr-x  1 root  wheel       6776 May 14 16:52:27 2015 /usr/bin/opieinfo
-11819 -r-sr-xr-x  1 root  wheel      13400 May 14 16:52:27 2015 /usr/bin/opiepasswd
-11840 -r-sr-xr-x  2 root  wheel       7928 May 14 16:52:27 2015 /usr/bin/passwd
-11647 -r-sr-xr-x  1 root  wheel      15240 May 14 16:52:27 2015 /usr/bin/quota
-11662 -r-sr-xr-x  1 root  wheel      15192 May 14 16:52:27 2015 /usr/bin/rlogin
-11707 -r-sr-xr-x  1 root  wheel      11168 May 14 16:52:28 2015 /usr/bin/rsh
-11892 -r-sr-xr-x  1 root  wheel      17200 May 14 16:52:28 2015 /usr/bin/su
-11728 -r-xr-sr-x  1 root  tty        15600 May 14 16:52:33 2015 /usr/bin/wall
-11946 -r-xr-sr-x  1 root  tty        11608 May 14 16:52:33 2015 /usr/bin/write
-11744 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/bin/ypchfn
-11744 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/bin/ypchpass
-11744 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/bin/ypchsh
-11840 -r-sr-xr-x  2 root  wheel       7928 May 14 16:52:27 2015 /usr/bin/yppasswd
-   55 -r-sr-xr-x  1 root  wheel      19440 May 14 16:51:21 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/bin/rcp
-12372 -r-sr-xr--  1 root  operator    9520 May 14 16:51:47 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/mksnap_ffs
-12428 -r-sr-xr-x  1 root  wheel      27616 May 14 16:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/ping
-12378 -r-sr-xr-x  1 root  wheel      36520 May 14 16:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/ping6
-12371 -r-sr-xr--  2 root  operator   15240 May 14 16:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/poweroff
-12371 -r-sr-xr--  2 root  operator   15240 May 14 16:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/shutdown
-11814 -r-sr-xr-x  4 root  wheel      27880 May 14 16:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/at
-11814 -r-sr-xr-x  4 root  wheel      27880 May 14 16:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/atq
-11814 -r-sr-xr-x  4 root  wheel      27880 May 14 16:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/atrm
-11814 -r-sr-xr-x  4 root  wheel      27880 May 14 16:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/batch
-11769 -r-xr-sr-x  1 root  kmem       12712 May 14 16:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/btsockstat
-11736 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chfn
-11736 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chpass
-11736 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chsh
-11835 -r-sr-xr-x  1 root  wheel      32296 May 14 16:52:42 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/crontab
-11712 -r-sr-xr-x  1 root  wheel      11032 May 14 16:52:24 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lock
-11896 -r-sr-xr-x  1 root  wheel      25256 May 14 16:52:24 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/login
-11906 -r-sr-sr-x  1 root  daemon     32232 May 14 16:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lpq
-11819 -r-sr-sr-x  1 root  daemon     37736 May 14 16:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lpr
-11894 -r-sr-sr-x  1 root  daemon     31960 May 14 16:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lprm
-11796 -r-xr-sr-x  1 root  kmem      144312 May 14 16:52:26 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/netstat
-11860 -r-sr-xr-x  1 root  wheel       6776 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/opieinfo
-11811 -r-sr-xr-x  1 root  wheel      13400 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/opiepasswd
-11832 -r-sr-xr-x  2 root  wheel       7928 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/passwd
-11639 -r-sr-xr-x  1 root  wheel      15240 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/quota
-11654 -r-sr-xr-x  1 root  wheel      15192 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/rlogin
-11699 -r-sr-xr-x  1 root  wheel      11168 May 14 16:52:28 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/rsh
-11884 -r-sr-xr-x  1 root  wheel      17200 May 14 16:52:28 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/su
-11720 -r-xr-sr-x  1 root  tty        15600 May 14 16:52:33 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/wall
-11938 -r-xr-sr-x  1 root  tty        11608 May 14 16:52:33 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/write
-11736 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchfn
-11736 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchpass
-11736 -r-sr-xr-x  6 root  wheel      21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchsh
-11832 -r-sr-xr-x  2 root  wheel       7928 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/yppasswd
-  187 -r-xr-sr-x  1 root  smmsp     696232 May 14 16:52:51 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/sendmail/sendmail
-  101 -r-sr-xr-x  1 root  wheel      38568 May 14 16:51:54 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/ssh-keysign
-  107 -r-sr-xr-x  1 root  wheel       5592 May 14 16:51:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/ulog-helper
-  542 -r-sr-sr-x  2 root  authpf     23744 May 14 16:52:37 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/authpf
-  542 -r-sr-sr-x  2 root  authpf     23744 May 14 16:52:37 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/authpf-noip
-  474 -r-xr-sr-x  1 root  daemon     54656 May 14 16:52:45 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/lpc
-  566 -r-sr-xr--  1 root  network   415680 May 14 16:52:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/ppp
-  541 -r-sr-xr-x  1 root  wheel      20560 May 14 16:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/timedc
-  487 -r-sr-xr-x  1 root  wheel      28032 May 14 16:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/traceroute
-  576 -r-sr-xr-x  1 root  wheel      23592 May 14 16:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/traceroute6
-  558 -r-xr-sr-x  1 root  kmem       11144 May 14 16:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/trpt
-  195 -r-xr-sr-x  1 root  smmsp     696232 May 14 16:52:51 2015 /usr/libexec/sendmail/sendmail
-  109 -r-sr-xr-x  1 root  wheel      38568 May 14 16:51:54 2015 /usr/libexec/ssh-keysign
-  115 -r-sr-xr-x  1 root  wheel       5592 May 14 16:51:19 2015 /usr/libexec/ulog-helper
-32068 -rwsr-xr-x  1 root  wheel     401136 May  5 08:31:14 2015 /usr/local/bin/screen
-32139 -rwsr-xr-x  1 root  wheel     103736 May  4 22:20:22 2015 /usr/local/bin/sudo
-25031 -rwsr-x--x  1 root  wheel       7304 May  4 18:44:01 2015 /usr/local/sbin/jailme
-  550 -r-sr-sr-x  2 root  authpf     23744 May 14 16:52:37 2015 /usr/sbin/authpf
-  550 -r-sr-sr-x  2 root  authpf     23744 May 14 16:52:37 2015 /usr/sbin/authpf-noip
-  482 -r-xr-sr-x  1 root  daemon     54656 May 14 16:52:45 2015 /usr/sbin/lpc
-  574 -r-sr-xr--  1 root  network   415680 May 14 16:52:49 2015 /usr/sbin/ppp
-  549 -r-sr-xr-x  1 root  wheel      20560 May 14 16:52:52 2015 /usr/sbin/timedc
-  495 -r-sr-xr-x  1 root  wheel      28032 May 14 16:52:52 2015 /usr/sbin/traceroute
-  584 -r-sr-xr-x  1 root  wheel      23592 May 14 16:52:52 2015 /usr/sbin/traceroute6
-  566 -r-xr-sr-x  1 root  kmem       11144 May 14 16:52:52 2015 /usr/sbin/trpt
+   65 -r-sr-xr-x  1 root  wheel      19440 May 14 12:51:21 2015 /bin/rcp
+12380 -r-sr-xr--  1 root  operator    9520 May 14 12:51:47 2015 /sbin/mksnap_ffs
+12436 -r-sr-xr-x  1 root  wheel      27616 May 14 12:51:49 2015 /sbin/ping
+12386 -r-sr-xr-x  1 root  wheel      36520 May 14 12:51:49 2015 /sbin/ping6
+12379 -r-sr-xr--  2 root  operator   15240 May 14 12:51:49 2015 /sbin/poweroff
+12379 -r-sr-xr--  2 root  operator   15240 May 14 12:51:49 2015 /sbin/shutdown
+11822 -r-sr-xr-x  4 root  wheel      27880 May 14 12:52:17 2015 /usr/bin/at
+11822 -r-sr-xr-x  4 root  wheel      27880 May 14 12:52:17 2015 /usr/bin/atq
+11822 -r-sr-xr-x  4 root  wheel      27880 May 14 12:52:17 2015 /usr/bin/atrm
+11822 -r-sr-xr-x  4 root  wheel      27880 May 14 12:52:17 2015 /usr/bin/batch
+11777 -r-xr-sr-x  1 root  kmem       12712 May 14 12:52:17 2015 /usr/bin/btsockstat
+11744 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/bin/chfn
+11744 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/bin/chpass
+11744 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/bin/chsh
+11843 -r-sr-xr-x  1 root  wheel      32296 May 14 12:52:42 2015 /usr/bin/crontab
+11720 -r-sr-xr-x  1 root  wheel      11032 May 14 12:52:24 2015 /usr/bin/lock
+11904 -r-sr-xr-x  1 root  wheel      25256 May 14 12:52:24 2015 /usr/bin/login
+11914 -r-sr-sr-x  1 root  daemon     32232 May 14 12:52:46 2015 /usr/bin/lpq
+11827 -r-sr-sr-x  1 root  daemon     37736 May 14 12:52:46 2015 /usr/bin/lpr
+11902 -r-sr-sr-x  1 root  daemon     31960 May 14 12:52:46 2015 /usr/bin/lprm
+11804 -r-xr-sr-x  1 root  kmem      144312 May 14 12:52:26 2015 /usr/bin/netstat
+11868 -r-sr-xr-x  1 root  wheel       6776 May 14 12:52:27 2015 /usr/bin/opieinfo
+11819 -r-sr-xr-x  1 root  wheel      13400 May 14 12:52:27 2015 /usr/bin/opiepasswd
+11840 -r-sr-xr-x  2 root  wheel       7928 May 14 12:52:27 2015 /usr/bin/passwd
+11647 -r-sr-xr-x  1 root  wheel      15240 May 14 12:52:27 2015 /usr/bin/quota
+11662 -r-sr-xr-x  1 root  wheel      15192 May 14 12:52:27 2015 /usr/bin/rlogin
+11707 -r-sr-xr-x  1 root  wheel      11168 May 14 12:52:28 2015 /usr/bin/rsh
+11892 -r-sr-xr-x  1 root  wheel      17200 May 14 12:52:28 2015 /usr/bin/su
+11728 -r-xr-sr-x  1 root  tty        15600 May 14 12:52:33 2015 /usr/bin/wall
+11946 -r-xr-sr-x  1 root  tty        11608 May 14 12:52:33 2015 /usr/bin/write
+11744 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/bin/ypchfn
+11744 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/bin/ypchpass
+11744 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/bin/ypchsh
+11840 -r-sr-xr-x  2 root  wheel       7928 May 14 12:52:27 2015 /usr/bin/yppasswd
+   55 -r-sr-xr-x  1 root  wheel      19440 May 14 12:51:21 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/bin/rcp
+12372 -r-sr-xr--  1 root  operator    9520 May 14 12:51:47 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/mksnap_ffs
+12428 -r-sr-xr-x  1 root  wheel      27616 May 14 12:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/ping
+12378 -r-sr-xr-x  1 root  wheel      36520 May 14 12:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/ping6
+12371 -r-sr-xr--  2 root  operator   15240 May 14 12:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/poweroff
+12371 -r-sr-xr--  2 root  operator   15240 May 14 12:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/shutdown
+11814 -r-sr-xr-x  4 root  wheel      27880 May 14 12:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/at
+11814 -r-sr-xr-x  4 root  wheel      27880 May 14 12:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/atq
+11814 -r-sr-xr-x  4 root  wheel      27880 May 14 12:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/atrm
+11814 -r-sr-xr-x  4 root  wheel      27880 May 14 12:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/batch
+11769 -r-xr-sr-x  1 root  kmem       12712 May 14 12:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/btsockstat
+11736 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chfn
+11736 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chpass
+11736 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chsh
+11835 -r-sr-xr-x  1 root  wheel      32296 May 14 12:52:42 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/crontab
+11712 -r-sr-xr-x  1 root  wheel      11032 May 14 12:52:24 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lock
+11896 -r-sr-xr-x  1 root  wheel      25256 May 14 12:52:24 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/login
+11906 -r-sr-sr-x  1 root  daemon     32232 May 14 12:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lpq
+11819 -r-sr-sr-x  1 root  daemon     37736 May 14 12:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lpr
+11894 -r-sr-sr-x  1 root  daemon     31960 May 14 12:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lprm
+11796 -r-xr-sr-x  1 root  kmem      144312 May 14 12:52:26 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/netstat
+11860 -r-sr-xr-x  1 root  wheel       6776 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/opieinfo
+11811 -r-sr-xr-x  1 root  wheel      13400 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/opiepasswd
+11832 -r-sr-xr-x  2 root  wheel       7928 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/passwd
+11639 -r-sr-xr-x  1 root  wheel      15240 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/quota
+11654 -r-sr-xr-x  1 root  wheel      15192 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/rlogin
+11699 -r-sr-xr-x  1 root  wheel      11168 May 14 12:52:28 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/rsh
+11884 -r-sr-xr-x  1 root  wheel      17200 May 14 12:52:28 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/su
+11720 -r-xr-sr-x  1 root  tty        15600 May 14 12:52:33 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/wall
+11938 -r-xr-sr-x  1 root  tty        11608 May 14 12:52:33 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/write
+11736 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchfn
+11736 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchpass
+11736 -r-sr-xr-x  6 root  wheel      21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchsh
+11832 -r-sr-xr-x  2 root  wheel       7928 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/yppasswd
+  187 -r-xr-sr-x  1 root  smmsp     696232 May 14 12:52:51 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/sendmail/sendmail
+  101 -r-sr-xr-x  1 root  wheel      38568 May 14 12:51:54 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/ssh-keysign
+  107 -r-sr-xr-x  1 root  wheel       5592 May 14 12:51:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/ulog-helper
+  542 -r-sr-sr-x  2 root  authpf     23744 May 14 12:52:37 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/authpf
+  542 -r-sr-sr-x  2 root  authpf     23744 May 14 12:52:37 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/authpf-noip
+  474 -r-xr-sr-x  1 root  daemon     54656 May 14 12:52:45 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/lpc
+  566 -r-sr-xr--  1 root  network   415680 May 14 12:52:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/ppp
+  541 -r-sr-xr-x  1 root  wheel      20560 May 14 12:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/timedc
+  487 -r-sr-xr-x  1 root  wheel      28032 May 14 12:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/traceroute
+  576 -r-sr-xr-x  1 root  wheel      23592 May 14 12:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/traceroute6
+  558 -r-xr-sr-x  1 root  kmem       11144 May 14 12:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/trpt
+  195 -r-xr-sr-x  1 root  smmsp     696232 May 14 12:52:51 2015 /usr/libexec/sendmail/sendmail
+  109 -r-sr-xr-x  1 root  wheel      38568 May 14 12:51:54 2015 /usr/libexec/ssh-keysign
+  115 -r-sr-xr-x  1 root  wheel       5592 May 14 12:51:19 2015 /usr/libexec/ulog-helper
+70123 -rwsr-xr-x  1 root  wheel      11464 May  4 14:52:42 2015 /usr/local/bin/otp
+32068 -rwsr-xr-x  1 root  wheel     401136 May  5 04:31:14 2015 /usr/local/bin/screen
+70130 -rwsr-xr-x  1 root  wheel      15880 May  4 14:52:43 2015 /usr/local/bin/su
+32139 -rwsr-xr-x  1 root  wheel     103736 May  4 18:20:22 2015 /usr/local/bin/sudo
+72722 -r-xr-sr-x  1 root  mail       61240 May  5 08:09:23 2015 /usr/local/libexec/dma
+72723 -r-sr-xr-x  1 root  mail        7224 May  5 08:09:23 2015 /usr/local/libexec/dma-mbox-create
+25031 -rwsr-x--x  1 root  wheel       7304 May  4 14:44:01 2015 /usr/local/sbin/jailme
+74112 -rwxr-sr-x  1 root  kmem      127656 May  4 19:32:43 2015 /usr/local/sbin/lsof
+74027 -r-sr-xr-x  1 root  wheel      32152 May  5 10:07:04 2015 /usr/local/sbin/traceroute
+  550 -r-sr-sr-x  2 root  authpf     23744 May 14 12:52:37 2015 /usr/sbin/authpf
+  550 -r-sr-sr-x  2 root  authpf     23744 May 14 12:52:37 2015 /usr/sbin/authpf-noip
+  482 -r-xr-sr-x  1 root  daemon     54656 May 14 12:52:45 2015 /usr/sbin/lpc
+  574 -r-sr-xr--  1 root  network   415680 May 14 12:52:49 2015 /usr/sbin/ppp
+  549 -r-sr-xr-x  1 root  wheel      20560 May 14 12:52:52 2015 /usr/sbin/timedc
+  495 -r-sr-xr-x  1 root  wheel      28032 May 14 12:52:52 2015 /usr/sbin/traceroute
+  584 -r-sr-xr-x  1 root  wheel      23592 May 14 12:52:52 2015 /usr/sbin/traceroute6
+  566 -r-xr-sr-x  1 root  kmem       11144 May 14 12:52:52 2015 /usr/sbin/trpt

Checking negative group permissions:

Checking for uids of 0:
root 0
toor 0

Checking for passwordless accounts:

Checking login.conf permissions:

warden.int.autonlab.org pf denied packets:
+++ /tmp/security.FwAd0j2d	2015-07-24 23:01:08.906239272 -0400
+block return in all [ Evaluations: 111 Packets: 24 Bytes: 7416 States: 0 ]
+block return quick from <bruteforce> to any [ Evaluations: 111 Packets: 0 Bytes: 0 States: 0 ]
+block return in quick on egress proto tcp from <sshguard> to any port = ssh label "ssh bruteforce" [ Evaluations: 111 Packets: 0 Bytes: 0 States: 0 ]
+block drop in quick on ! lo0 inet from 127.0.0.0/8 to any [ Evaluations: 111 Packets: 0 Bytes: 0 States: 0 ]
+block drop in quick from urpf-failed to any [ Evaluations: 93 Packets: 0 Bytes: 0 States: 0 ]
+block return in on ! lo0 proto tcp from any to any port 6000:6010 [ Evaluations: 93 Packets: 0 Bytes: 0 States: 0 ]

warden.int.autonlab.org kernel log messages:
+++ /tmp/security.zFTNSoHM	2015-07-24 23:01:08.940240022 -0400
+pflog0: promiscuous mode enabled

warden.int.autonlab.org login failures:

warden.int.autonlab.org refused connections:

Checking for packages with security vulnerabilities:
Database fetched: Thu Jul 23 23:01:37 EDT 2015
libxml2-2.9.2_2
php55-5.5.24
curl-7.42.1
pcre-8.35_2
libressl-2.1.6
php55-gd-5.5.24
ruby-2.0.0.645,1

-- End of security output --
