bhyve.int.autonlab.org daily security run output
punosevac72 at gmail.com
punosevac72 at gmail.com
Fri Jul 24 23:01:20 EDT 2015
Checking setuid files and devices:
bhyve.int.autonlab.org setuid diffs:
--- /var/log/setuid.today 2015-07-02 23:01:13.138613028 -0400
+++ /tmp/security.18MisbtA 2015-07-24 23:01:11.587615542 -0400
@@ -1,93 +1,99 @@
- 65 -r-sr-xr-x 1 root wheel 19440 May 14 16:51:21 2015 /bin/rcp
-12380 -r-sr-xr-- 1 root operator 9520 May 14 16:51:47 2015 /sbin/mksnap_ffs
-12436 -r-sr-xr-x 1 root wheel 27616 May 14 16:51:49 2015 /sbin/ping
-12386 -r-sr-xr-x 1 root wheel 36520 May 14 16:51:49 2015 /sbin/ping6
-12379 -r-sr-xr-- 2 root operator 15240 May 14 16:51:49 2015 /sbin/poweroff
-12379 -r-sr-xr-- 2 root operator 15240 May 14 16:51:49 2015 /sbin/shutdown
-11822 -r-sr-xr-x 4 root wheel 27880 May 14 16:52:17 2015 /usr/bin/at
-11822 -r-sr-xr-x 4 root wheel 27880 May 14 16:52:17 2015 /usr/bin/atq
-11822 -r-sr-xr-x 4 root wheel 27880 May 14 16:52:17 2015 /usr/bin/atrm
-11822 -r-sr-xr-x 4 root wheel 27880 May 14 16:52:17 2015 /usr/bin/batch
-11777 -r-xr-sr-x 1 root kmem 12712 May 14 16:52:17 2015 /usr/bin/btsockstat
-11744 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/bin/chfn
-11744 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/bin/chpass
-11744 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/bin/chsh
-11843 -r-sr-xr-x 1 root wheel 32296 May 14 16:52:42 2015 /usr/bin/crontab
-11720 -r-sr-xr-x 1 root wheel 11032 May 14 16:52:24 2015 /usr/bin/lock
-11904 -r-sr-xr-x 1 root wheel 25256 May 14 16:52:24 2015 /usr/bin/login
-11914 -r-sr-sr-x 1 root daemon 32232 May 14 16:52:46 2015 /usr/bin/lpq
-11827 -r-sr-sr-x 1 root daemon 37736 May 14 16:52:46 2015 /usr/bin/lpr
-11902 -r-sr-sr-x 1 root daemon 31960 May 14 16:52:46 2015 /usr/bin/lprm
-11804 -r-xr-sr-x 1 root kmem 144312 May 14 16:52:26 2015 /usr/bin/netstat
-11868 -r-sr-xr-x 1 root wheel 6776 May 14 16:52:27 2015 /usr/bin/opieinfo
-11819 -r-sr-xr-x 1 root wheel 13400 May 14 16:52:27 2015 /usr/bin/opiepasswd
-11840 -r-sr-xr-x 2 root wheel 7928 May 14 16:52:27 2015 /usr/bin/passwd
-11647 -r-sr-xr-x 1 root wheel 15240 May 14 16:52:27 2015 /usr/bin/quota
-11662 -r-sr-xr-x 1 root wheel 15192 May 14 16:52:27 2015 /usr/bin/rlogin
-11707 -r-sr-xr-x 1 root wheel 11168 May 14 16:52:28 2015 /usr/bin/rsh
-11892 -r-sr-xr-x 1 root wheel 17200 May 14 16:52:28 2015 /usr/bin/su
-11728 -r-xr-sr-x 1 root tty 15600 May 14 16:52:33 2015 /usr/bin/wall
-11946 -r-xr-sr-x 1 root tty 11608 May 14 16:52:33 2015 /usr/bin/write
-11744 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/bin/ypchfn
-11744 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/bin/ypchpass
-11744 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/bin/ypchsh
-11840 -r-sr-xr-x 2 root wheel 7928 May 14 16:52:27 2015 /usr/bin/yppasswd
- 55 -r-sr-xr-x 1 root wheel 19440 May 14 16:51:21 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/bin/rcp
-12372 -r-sr-xr-- 1 root operator 9520 May 14 16:51:47 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/mksnap_ffs
-12428 -r-sr-xr-x 1 root wheel 27616 May 14 16:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/ping
-12378 -r-sr-xr-x 1 root wheel 36520 May 14 16:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/ping6
-12371 -r-sr-xr-- 2 root operator 15240 May 14 16:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/poweroff
-12371 -r-sr-xr-- 2 root operator 15240 May 14 16:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/shutdown
-11814 -r-sr-xr-x 4 root wheel 27880 May 14 16:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/at
-11814 -r-sr-xr-x 4 root wheel 27880 May 14 16:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/atq
-11814 -r-sr-xr-x 4 root wheel 27880 May 14 16:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/atrm
-11814 -r-sr-xr-x 4 root wheel 27880 May 14 16:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/batch
-11769 -r-xr-sr-x 1 root kmem 12712 May 14 16:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/btsockstat
-11736 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chfn
-11736 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chpass
-11736 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chsh
-11835 -r-sr-xr-x 1 root wheel 32296 May 14 16:52:42 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/crontab
-11712 -r-sr-xr-x 1 root wheel 11032 May 14 16:52:24 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lock
-11896 -r-sr-xr-x 1 root wheel 25256 May 14 16:52:24 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/login
-11906 -r-sr-sr-x 1 root daemon 32232 May 14 16:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lpq
-11819 -r-sr-sr-x 1 root daemon 37736 May 14 16:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lpr
-11894 -r-sr-sr-x 1 root daemon 31960 May 14 16:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lprm
-11796 -r-xr-sr-x 1 root kmem 144312 May 14 16:52:26 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/netstat
-11860 -r-sr-xr-x 1 root wheel 6776 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/opieinfo
-11811 -r-sr-xr-x 1 root wheel 13400 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/opiepasswd
-11832 -r-sr-xr-x 2 root wheel 7928 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/passwd
-11639 -r-sr-xr-x 1 root wheel 15240 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/quota
-11654 -r-sr-xr-x 1 root wheel 15192 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/rlogin
-11699 -r-sr-xr-x 1 root wheel 11168 May 14 16:52:28 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/rsh
-11884 -r-sr-xr-x 1 root wheel 17200 May 14 16:52:28 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/su
-11720 -r-xr-sr-x 1 root tty 15600 May 14 16:52:33 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/wall
-11938 -r-xr-sr-x 1 root tty 11608 May 14 16:52:33 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/write
-11736 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchfn
-11736 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchpass
-11736 -r-sr-xr-x 6 root wheel 21768 May 14 16:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchsh
-11832 -r-sr-xr-x 2 root wheel 7928 May 14 16:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/yppasswd
- 187 -r-xr-sr-x 1 root smmsp 696232 May 14 16:52:51 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/sendmail/sendmail
- 101 -r-sr-xr-x 1 root wheel 38568 May 14 16:51:54 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/ssh-keysign
- 107 -r-sr-xr-x 1 root wheel 5592 May 14 16:51:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/ulog-helper
- 542 -r-sr-sr-x 2 root authpf 23744 May 14 16:52:37 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/authpf
- 542 -r-sr-sr-x 2 root authpf 23744 May 14 16:52:37 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/authpf-noip
- 474 -r-xr-sr-x 1 root daemon 54656 May 14 16:52:45 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/lpc
- 566 -r-sr-xr-- 1 root network 415680 May 14 16:52:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/ppp
- 541 -r-sr-xr-x 1 root wheel 20560 May 14 16:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/timedc
- 487 -r-sr-xr-x 1 root wheel 28032 May 14 16:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/traceroute
- 576 -r-sr-xr-x 1 root wheel 23592 May 14 16:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/traceroute6
- 558 -r-xr-sr-x 1 root kmem 11144 May 14 16:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/trpt
- 195 -r-xr-sr-x 1 root smmsp 696232 May 14 16:52:51 2015 /usr/libexec/sendmail/sendmail
- 109 -r-sr-xr-x 1 root wheel 38568 May 14 16:51:54 2015 /usr/libexec/ssh-keysign
- 115 -r-sr-xr-x 1 root wheel 5592 May 14 16:51:19 2015 /usr/libexec/ulog-helper
-32068 -rwsr-xr-x 1 root wheel 401136 May 5 08:31:14 2015 /usr/local/bin/screen
-32139 -rwsr-xr-x 1 root wheel 103736 May 4 22:20:22 2015 /usr/local/bin/sudo
-25031 -rwsr-x--x 1 root wheel 7304 May 4 18:44:01 2015 /usr/local/sbin/jailme
- 550 -r-sr-sr-x 2 root authpf 23744 May 14 16:52:37 2015 /usr/sbin/authpf
- 550 -r-sr-sr-x 2 root authpf 23744 May 14 16:52:37 2015 /usr/sbin/authpf-noip
- 482 -r-xr-sr-x 1 root daemon 54656 May 14 16:52:45 2015 /usr/sbin/lpc
- 574 -r-sr-xr-- 1 root network 415680 May 14 16:52:49 2015 /usr/sbin/ppp
- 549 -r-sr-xr-x 1 root wheel 20560 May 14 16:52:52 2015 /usr/sbin/timedc
- 495 -r-sr-xr-x 1 root wheel 28032 May 14 16:52:52 2015 /usr/sbin/traceroute
- 584 -r-sr-xr-x 1 root wheel 23592 May 14 16:52:52 2015 /usr/sbin/traceroute6
- 566 -r-xr-sr-x 1 root kmem 11144 May 14 16:52:52 2015 /usr/sbin/trpt
+ 65 -r-sr-xr-x 1 root wheel 19440 May 14 12:51:21 2015 /bin/rcp
+12380 -r-sr-xr-- 1 root operator 9520 May 14 12:51:47 2015 /sbin/mksnap_ffs
+12436 -r-sr-xr-x 1 root wheel 27616 May 14 12:51:49 2015 /sbin/ping
+12386 -r-sr-xr-x 1 root wheel 36520 May 14 12:51:49 2015 /sbin/ping6
+12379 -r-sr-xr-- 2 root operator 15240 May 14 12:51:49 2015 /sbin/poweroff
+12379 -r-sr-xr-- 2 root operator 15240 May 14 12:51:49 2015 /sbin/shutdown
+11822 -r-sr-xr-x 4 root wheel 27880 May 14 12:52:17 2015 /usr/bin/at
+11822 -r-sr-xr-x 4 root wheel 27880 May 14 12:52:17 2015 /usr/bin/atq
+11822 -r-sr-xr-x 4 root wheel 27880 May 14 12:52:17 2015 /usr/bin/atrm
+11822 -r-sr-xr-x 4 root wheel 27880 May 14 12:52:17 2015 /usr/bin/batch
+11777 -r-xr-sr-x 1 root kmem 12712 May 14 12:52:17 2015 /usr/bin/btsockstat
+11744 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/bin/chfn
+11744 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/bin/chpass
+11744 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/bin/chsh
+11843 -r-sr-xr-x 1 root wheel 32296 May 14 12:52:42 2015 /usr/bin/crontab
+11720 -r-sr-xr-x 1 root wheel 11032 May 14 12:52:24 2015 /usr/bin/lock
+11904 -r-sr-xr-x 1 root wheel 25256 May 14 12:52:24 2015 /usr/bin/login
+11914 -r-sr-sr-x 1 root daemon 32232 May 14 12:52:46 2015 /usr/bin/lpq
+11827 -r-sr-sr-x 1 root daemon 37736 May 14 12:52:46 2015 /usr/bin/lpr
+11902 -r-sr-sr-x 1 root daemon 31960 May 14 12:52:46 2015 /usr/bin/lprm
+11804 -r-xr-sr-x 1 root kmem 144312 May 14 12:52:26 2015 /usr/bin/netstat
+11868 -r-sr-xr-x 1 root wheel 6776 May 14 12:52:27 2015 /usr/bin/opieinfo
+11819 -r-sr-xr-x 1 root wheel 13400 May 14 12:52:27 2015 /usr/bin/opiepasswd
+11840 -r-sr-xr-x 2 root wheel 7928 May 14 12:52:27 2015 /usr/bin/passwd
+11647 -r-sr-xr-x 1 root wheel 15240 May 14 12:52:27 2015 /usr/bin/quota
+11662 -r-sr-xr-x 1 root wheel 15192 May 14 12:52:27 2015 /usr/bin/rlogin
+11707 -r-sr-xr-x 1 root wheel 11168 May 14 12:52:28 2015 /usr/bin/rsh
+11892 -r-sr-xr-x 1 root wheel 17200 May 14 12:52:28 2015 /usr/bin/su
+11728 -r-xr-sr-x 1 root tty 15600 May 14 12:52:33 2015 /usr/bin/wall
+11946 -r-xr-sr-x 1 root tty 11608 May 14 12:52:33 2015 /usr/bin/write
+11744 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/bin/ypchfn
+11744 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/bin/ypchpass
+11744 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/bin/ypchsh
+11840 -r-sr-xr-x 2 root wheel 7928 May 14 12:52:27 2015 /usr/bin/yppasswd
+ 55 -r-sr-xr-x 1 root wheel 19440 May 14 12:51:21 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/bin/rcp
+12372 -r-sr-xr-- 1 root operator 9520 May 14 12:51:47 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/mksnap_ffs
+12428 -r-sr-xr-x 1 root wheel 27616 May 14 12:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/ping
+12378 -r-sr-xr-x 1 root wheel 36520 May 14 12:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/ping6
+12371 -r-sr-xr-- 2 root operator 15240 May 14 12:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/poweroff
+12371 -r-sr-xr-- 2 root operator 15240 May 14 12:51:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/sbin/shutdown
+11814 -r-sr-xr-x 4 root wheel 27880 May 14 12:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/at
+11814 -r-sr-xr-x 4 root wheel 27880 May 14 12:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/atq
+11814 -r-sr-xr-x 4 root wheel 27880 May 14 12:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/atrm
+11814 -r-sr-xr-x 4 root wheel 27880 May 14 12:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/batch
+11769 -r-xr-sr-x 1 root kmem 12712 May 14 12:52:17 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/btsockstat
+11736 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chfn
+11736 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chpass
+11736 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/chsh
+11835 -r-sr-xr-x 1 root wheel 32296 May 14 12:52:42 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/crontab
+11712 -r-sr-xr-x 1 root wheel 11032 May 14 12:52:24 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lock
+11896 -r-sr-xr-x 1 root wheel 25256 May 14 12:52:24 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/login
+11906 -r-sr-sr-x 1 root daemon 32232 May 14 12:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lpq
+11819 -r-sr-sr-x 1 root daemon 37736 May 14 12:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lpr
+11894 -r-sr-sr-x 1 root daemon 31960 May 14 12:52:46 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/lprm
+11796 -r-xr-sr-x 1 root kmem 144312 May 14 12:52:26 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/netstat
+11860 -r-sr-xr-x 1 root wheel 6776 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/opieinfo
+11811 -r-sr-xr-x 1 root wheel 13400 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/opiepasswd
+11832 -r-sr-xr-x 2 root wheel 7928 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/passwd
+11639 -r-sr-xr-x 1 root wheel 15240 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/quota
+11654 -r-sr-xr-x 1 root wheel 15192 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/rlogin
+11699 -r-sr-xr-x 1 root wheel 11168 May 14 12:52:28 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/rsh
+11884 -r-sr-xr-x 1 root wheel 17200 May 14 12:52:28 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/su
+11720 -r-xr-sr-x 1 root tty 15600 May 14 12:52:33 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/wall
+11938 -r-xr-sr-x 1 root tty 11608 May 14 12:52:33 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/write
+11736 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchfn
+11736 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchpass
+11736 -r-sr-xr-x 6 root wheel 21768 May 14 12:52:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/ypchsh
+11832 -r-sr-xr-x 2 root wheel 7928 May 14 12:52:27 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/bin/yppasswd
+ 187 -r-xr-sr-x 1 root smmsp 696232 May 14 12:52:51 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/sendmail/sendmail
+ 101 -r-sr-xr-x 1 root wheel 38568 May 14 12:51:54 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/ssh-keysign
+ 107 -r-sr-xr-x 1 root wheel 5592 May 14 12:51:19 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/libexec/ulog-helper
+ 542 -r-sr-sr-x 2 root authpf 23744 May 14 12:52:37 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/authpf
+ 542 -r-sr-sr-x 2 root authpf 23744 May 14 12:52:37 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/authpf-noip
+ 474 -r-xr-sr-x 1 root daemon 54656 May 14 12:52:45 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/lpc
+ 566 -r-sr-xr-- 1 root network 415680 May 14 12:52:49 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/ppp
+ 541 -r-sr-xr-x 1 root wheel 20560 May 14 12:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/timedc
+ 487 -r-sr-xr-x 1 root wheel 28032 May 14 12:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/traceroute
+ 576 -r-sr-xr-x 1 root wheel 23592 May 14 12:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/traceroute6
+ 558 -r-xr-sr-x 1 root kmem 11144 May 14 12:52:52 2015 /usr/jails/.warden-template-10.1-RELEASE-amd64/usr/sbin/trpt
+ 195 -r-xr-sr-x 1 root smmsp 696232 May 14 12:52:51 2015 /usr/libexec/sendmail/sendmail
+ 109 -r-sr-xr-x 1 root wheel 38568 May 14 12:51:54 2015 /usr/libexec/ssh-keysign
+ 115 -r-sr-xr-x 1 root wheel 5592 May 14 12:51:19 2015 /usr/libexec/ulog-helper
+70138 -rwsr-xr-x 1 root wheel 11464 May 4 14:52:42 2015 /usr/local/bin/otp
+32068 -rwsr-xr-x 1 root wheel 401136 May 5 04:31:14 2015 /usr/local/bin/screen
+70145 -rwsr-xr-x 1 root wheel 15880 May 4 14:52:43 2015 /usr/local/bin/su
+32139 -rwsr-xr-x 1 root wheel 103736 May 4 18:20:22 2015 /usr/local/bin/sudo
+72693 -r-xr-sr-x 1 root mail 61240 May 5 08:09:23 2015 /usr/local/libexec/dma
+72694 -r-sr-xr-x 1 root mail 7224 May 5 08:09:23 2015 /usr/local/libexec/dma-mbox-create
+25031 -rwsr-x--x 1 root wheel 7304 May 4 14:44:01 2015 /usr/local/sbin/jailme
+74112 -rwxr-sr-x 1 root kmem 127656 May 4 19:32:43 2015 /usr/local/sbin/lsof
+74027 -r-sr-xr-x 1 root wheel 32152 May 5 10:07:04 2015 /usr/local/sbin/traceroute
+ 550 -r-sr-sr-x 2 root authpf 23744 May 14 12:52:37 2015 /usr/sbin/authpf
+ 550 -r-sr-sr-x 2 root authpf 23744 May 14 12:52:37 2015 /usr/sbin/authpf-noip
+ 482 -r-xr-sr-x 1 root daemon 54656 May 14 12:52:45 2015 /usr/sbin/lpc
+ 574 -r-sr-xr-- 1 root network 415680 May 14 12:52:49 2015 /usr/sbin/ppp
+ 549 -r-sr-xr-x 1 root wheel 20560 May 14 12:52:52 2015 /usr/sbin/timedc
+ 495 -r-sr-xr-x 1 root wheel 28032 May 14 12:52:52 2015 /usr/sbin/traceroute
+ 584 -r-sr-xr-x 1 root wheel 23592 May 14 12:52:52 2015 /usr/sbin/traceroute6
+ 566 -r-xr-sr-x 1 root kmem 11144 May 14 12:52:52 2015 /usr/sbin/trpt
Checking negative group permissions:
Checking for uids of 0:
root 0
toor 0
Checking for passwordless accounts:
Checking login.conf permissions:
bhyve.int.autonlab.org pf denied packets:
+++ /tmp/security.2eWekKBa 2015-07-24 23:01:17.159615045 -0400
+block return in all [ Evaluations: 140 Packets: 46 Bytes: 19016 States: 0 ]
+block return quick from <bruteforce> to any [ Evaluations: 140 Packets: 0 Bytes: 0 States: 0 ]
+block return in quick on egress proto tcp from <sshguard> to any port = ssh label "ssh bruteforce" [ Evaluations: 140 Packets: 0 Bytes: 0 States: 0 ]
+block drop in quick on ! lo0 inet from 127.0.0.0/8 to any [ Evaluations: 140 Packets: 0 Bytes: 0 States: 0 ]
+block drop in quick from urpf-failed to any [ Evaluations: 115 Packets: 0 Bytes: 0 States: 0 ]
+block return in on ! lo0 proto tcp from any to any port 6000:6010 [ Evaluations: 115 Packets: 0 Bytes: 0 States: 0 ]
bhyve.int.autonlab.org kernel log messages:
+++ /tmp/security.ofALuHX8 2015-07-24 23:01:17.193613682 -0400
+pid 79887 (nvi), uid 0: exited on signal 6
+pflog0: promiscuous mode enabled
bhyve.int.autonlab.org login failures:
bhyve.int.autonlab.org refused connections:
Checking for packages with security vulnerabilities:
pkg: http://vuxml.freebsd.org/freebsd/vuln.xml.bz2: Connection reset by peer
pkg: cannot fetch vulnxml file
-- End of security output --
More information about the Autonlab-sysinfo
mailing list