bhyve.int.autonlab.org daily security run output
punosevac72 at gmail.com
punosevac72 at gmail.com
Sat Oct 17 03:59:44 EDT 2015
Checking setuid files and devices:
Checking negative group permissions:
Checking for uids of 0:
root 0
toor 0
Checking for passwordless accounts:
Checking login.conf permissions:
bhyve.int.autonlab.org pf denied packets:
+++ /tmp/security.sSRMWZfr 2015-10-17 03:33:36.233484250 -0400
+block return in all [ Evaluations: 95985 Packets: 47449 Bytes: 26023068 States: 0 ]
+block return quick from <bruteforce> to any [ Evaluations: 95986 Packets: 0 Bytes: 0 States: 0 ]
+block return in quick on egress proto tcp from <sshguard> to any port = ssh label "ssh bruteforce" [ Evaluations: 95985 Packets: 0 Bytes: 0 States: 0 ]
+block drop in quick on ! lo0 inet from 127.0.0.0/8 to any [ Evaluations: 95985 Packets: 0 Bytes: 0 States: 0 ]
+block drop in quick from urpf-failed to any [ Evaluations: 87875 Packets: 0 Bytes: 0 States: 0 ]
+block return in on ! lo0 proto tcp from any to any port 6000:6010 [ Evaluations: 87876 Packets: 18 Bytes: 792 States: 0 ]
bhyve.int.autonlab.org login failures:
Oct 16 00:12:41 bhyve su: BAD SU auton to root on /dev/pts/0
bhyve.int.autonlab.org refused connections:
Checking for packages with security vulnerabilities:
php56-5.6.11
pcre-8.37_2
screen-4.3.1_1
libressl-2.2.2
go-1.4.2,1
-- End of security output --
More information about the Autonlab-sysinfo
mailing list