bhyve.int.autonlab.org daily security run output
punosevac72 at gmail.com
punosevac72 at gmail.com
Sun Jul 26 03:02:05 EDT 2015
Checking setuid files and devices:
Checking negative group permissions:
Checking for uids of 0:
root 0
toor 0
Checking for passwordless accounts:
Checking login.conf permissions:
bhyve.int.autonlab.org pf denied packets:
+++ /tmp/security.sKJngPzU 2015-07-26 03:02:05.584301146 -0400
+block return in all [ Evaluations: 73959 Packets: 44531 Bytes: 25402680 States: 0 ]
+block return quick from <bruteforce> to any [ Evaluations: 73959 Packets: 0 Bytes: 0 States: 0 ]
+block return in quick on egress proto tcp from <sshguard> to any port = ssh label "ssh bruteforce" [ Evaluations: 73959 Packets: 0 Bytes: 0 States: 0 ]
+block drop in quick on ! lo0 inet from 127.0.0.0/8 to any [ Evaluations: 73959 Packets: 0 Bytes: 0 States: 0 ]
+block drop in quick from urpf-failed to any [ Evaluations: 66396 Packets: 0 Bytes: 0 States: 0 ]
+block return in on ! lo0 proto tcp from any to any port 6000:6010 [ Evaluations: 66396 Packets: 0 Bytes: 0 States: 0 ]
bhyve.int.autonlab.org login failures:
Jul 25 01:00:47 bhyve sshd[79893]: Invalid user auton-local from 10.8.0.30
Jul 25 01:00:47 bhyve sshd[79893]: input_userauth_request: invalid user auton-local [preauth]
Jul 25 01:00:47 bhyve sshd[79893]: Postponed keyboard-interactive for invalid user auton-local from 10.8.0.30 port 40315 ssh2 [preauth]
bhyve.int.autonlab.org refused connections:
Checking for packages with security vulnerabilities:
Database fetched: Sat Jul 25 00:15:15 EDT 2015
libxml2-2.9.2_2
php55-5.5.24
curl-7.42.1
pcre-8.35_2
libressl-2.1.6
php55-gd-5.5.24
ruby-2.0.0.645,1
-- End of security output --
More information about the Autonlab-sysinfo
mailing list