phobos.autonlab.org daily insecurity output

Charlie Root auton.sysnotify at gmail.com
Fri May 10 01:35:52 EDT 2019 

Running security(8):

======
/etc/daily.local diffs (-OLD  +NEW)
======
--- /dev/null	Fri May 10 01:35:51 2019
+++ /etc/daily.local	Thu May  9 00:09:07 2019
@@ -0,0 +1 @@
+ROOTBACKUP=1


======
/etc/fstab diffs (-OLD  +NEW)
======
--- /var/backups/etc_fstab.current	Wed May  8 01:30:06 2019
+++ /etc/fstab	Thu May  9 00:12:27 2019
@@ -8,3 +8,6 @@
 5f6d35aa15d3aeec.k /usr/obj ffs rw,nodev,nosuid 1 2
 5f6d35aa15d3aeec.j /usr/src ffs rw,nodev,nosuid 1 2
 5f6d35aa15d3aeec.e /var ffs rw,nodev,nosuid 1 2
+
+7bcfded206b6c407.a /altroot ffs xx 0 0
+7bcfded206b6c407.e /altvar ffs rw,nodev,nosuid 0 0


======
/etc/hostname.ix0 SHA-256 checksums
======
OLD: 906d353190bfea705e88219bff8688dd1f77f1518569a769cc97494ad12fb4df
NEW: 1b0021f712d883df993f8ceebadc7d45438da7ea392082cb4001d3e5942362b5

======
/etc/hostname.ix1 new SHA-256 checksum
======
NEW: bb651a8fec1bce5c05f42785825e83618b88971efbc763a9be461585ee95171c

======
/etc/mail/aliases diffs (-OLD  +NEW)
======
--- /var/backups/etc_mail_aliases.current	Wed May  8 01:30:06 2019
+++ /etc/mail/aliases	Thu May  9 14:37:59 2019
@@ -98,3 +98,5 @@
 # news:		usenet
 # webmaster:	root
 # ftp:		root
+
+root:		sysinfo at autonlab.org


======
/etc/mail/smtpd.conf diffs (-OLD  +NEW)
======
--- /var/backups/etc_mail_smtpd.conf.current	Wed May  8 01:30:06 2019
+++ /etc/mail/smtpd.conf	Thu May  9 14:53:50 2019
@@ -4,13 +4,16 @@
 # See smtpd.conf(5) for more information.
 
 table aliases file:/etc/mail/aliases
+table secrets file:/etc/mail/secrets
 
 # To accept external mail, replace with: listen on all
 #
 listen on lo0
 
 action "local" mbox alias <aliases>
-action "relay" relay
+# action "relay" relay
+action "relay" relay host smtp+tls://charlie@smtp.gmail.com:587 \
+	auth <secrets>
 
 # Uncomment the following to accept external mail for domain "example.org"
 #


======
/etc/ntpd.conf diffs (-OLD  +NEW)
======
--- /var/backups/etc_ntpd.conf.current	Wed May  8 01:30:06 2019
+++ /etc/ntpd.conf	Wed May  8 23:58:37 2019
@@ -2,6 +2,10 @@
 #
 # See ntpd.conf(5) and /etc/examples/ntpd.conf
 
+listen on 127.0.0.1
+listen on 10.8.0.1
+listen on 192.168.6.254
+
 servers pool.ntp.org
 sensor *
 constraints from "https://www.google.com"


======
/etc/pf.conf diffs (-OLD  +NEW)
======
--- /var/backups/etc_pf.conf.current	Wed May  8 01:30:06 2019
+++ /etc/pf.conf	Thu May  9 00:58:15 2019
@@ -61,22 +61,3 @@
 
 pass inet proto tcp from {$auton_lan, $auton_vpn} to any port $tcp_services_int
 pass inet proto udp from {$auton_lan, $auton_vpn} to any port $udp_services_int
-
-
-
-# Used for Collectd proxy
-pass in on $vpn_if inet proto udp from any to any port {25826}
-
-# Expose sftp server to the World
-pass in on egress inet proto tcp to (egress) port {ssh} rdr-to $upload
-pass on $int_if proto tcp from any to any port {ssh}
-
-# Expose Monit to entire world.
-pass in on egress inet proto tcp to (egress) port {80} rdr-to $monit port 8080
-pass in on egress inet proto tcp to (egress) port {8080} rdr-to $monit
-pass on $int_if proto tcp from any to any port {8080}
-
-
-# Foxconn data collection
-pass in on egress inet proto tcp from 128.2.176.157 to (egress) port {873} rdr-to $foxconn
-pass on $int_if proto tcp from any to any port {873}


======
/etc/rc.conf.local diffs (-OLD  +NEW)
======
--- /var/backups/etc_rc.conf.local.current	Wed May  8 01:30:06 2019
+++ /etc/rc.conf.local	Wed May  8 23:52:12 2019
@@ -1,4 +1,4 @@
-pkg_scripts=sshguard
+pkg_scripts=sshguard monit collectd smartd
 sensorsd_flags=
 snmpd_flags=
 syslogd_flags="-h"


======
/etc/sensorsd.conf diffs (-OLD  +NEW)
======
--- /dev/null	Fri May 10 01:35:52 2019
+++ /etc/sensorsd.conf	Wed May  8 23:35:00 2019
@@ -0,0 +1,49 @@
+# $OpenBSD: sensorsd.conf,v 1.1 2014/07/11 21:20:10 deraadt Exp $
+
+#
+# Sample sensorsd.conf file. See sensorsd.conf(5) for details.
+#
+
+# +5 voltage (volts)
+#hw.sensors.lm0.volt3:low=4.8V:high=5.2V
+
+# +12 voltage (volts)
+#hw.sensors.lm0.volt4:low=11.5V:high=12.5V
+
+# Chipset temperature (degrees Celsius)
+#hw.sensors.lm0.temp0:high=50C
+
+# CPU temperature (degrees Celsius)
+#hw.sensors.lm0.temp1:high=60C
+
+# CPU fan (RPM)
+#hw.sensors.lm0.fan1:low=3000
+
+# ignore certain indicators on ipmi(4)
+#hw.sensors.ipmi0.indicator1:istatus
+
+# Warn if any temperature sensor is over 70 degC.
+# This entry will match only those temperature sensors
+# that don't have their own entry.
+#temp:high=70C
+
+
+# By default, sensorsd(8) reports status changes of all sensors that
+# keep their state. Uncomment the following lines if you want to
+# suppress reports about status changes of specific sensor types.
+
+#temp:istatus
+#fan:istatus
+#volt:istatus
+#acvolt:istatus
+#resistance:istatus
+#power:istatus
+#current:istatus
+#watthour:istatus
+#amphour:istatus
+#indicator:istatus
+#raw:istatus
+#percentage:istatus
+#illuminance:istatus
+#drive:istatus
+#timedelta:istatus


======
/etc/snmpd.conf new SHA-256 checksum
======
NEW: 9ffd17abbf8df93883e47eaec812ee608bb885c1581f77786a96c4514dfb884c

======
/var/cron/tabs/root diffs (-OLD  +NEW)
======
--- /var/backups/var_cron_tabs_root.current	Wed May  8 01:30:07 2019
+++ /var/cron/tabs/root	Thu May  9 00:15:03 2019
@@ -1,7 +1,7 @@
-#	$OpenBSD: crontab,v 1.22 2016/09/04 09:37:26 tb Exp $
+# DO NOT EDIT THIS FILE - edit the master and reinstall.
+# (/tmp/crontab.E3veqIARO2 installed on Thu May  9 00:15:03 2019)
+# (Cron version V5.0)
 #
-# /var/cron/tabs/root - root's crontab
-#
 SHELL=/bin/sh
 PATH=/bin:/sbin:/usr/bin:/usr/sbin
 HOME=/var/log
@@ -18,3 +18,6 @@
 30	3	*	*	6	/bin/sh /etc/weekly
 30	5	1	*	*	/bin/sh /etc/monthly
 #0	*	*	*	*	sleep $((RANDOM \% 2048)) && /usr/libexec/spamd-setup
+
+# Backup /var. Note daily script is backing up root as altroot.
+55	1	*	*	*	cd /var; dump 0f - . | (cd /altvar; restore -rf - )


======
/var/unbound/etc/unbound.conf diffs (-OLD  +NEW)
======
--- /var/backups/var_unbound_etc_unbound.conf.current	Wed May  8 01:30:07 2019
+++ /var/unbound/etc/unbound.conf	Wed May  8 22:59:20 2019
@@ -2,7 +2,8 @@
 
 server:
 	interface: 127.0.0.1
-	interface: 192.168.6.253
+	interface: 192.168.6.254
+	#interface: 10.8.0.1
 	#interface: 127.0.0.1 at 5353	# listen on alternative port
 	interface: ::1
 	do-ip6: no
@@ -16,6 +17,7 @@
 	access-control: 0.0.0.0/0 refuse
 	access-control: 127.0.0.0/8 allow
 	access-control: 192.168.6.0/24 allow
+	access-control: 10.8.0.0/24 allow
 	access-control: ::0/0 refuse
 	access-control: ::1 allow
 


======
sd1 diffs (-OLD  +NEW)
======
--- /dev/null	Fri May 10 01:35:52 2019
+++ /var/backups/disklabel.sd1	Fri May 10 01:35:52 2019
@@ -0,0 +1,21 @@
+# /dev/rsd1c:
+type: SCSI
+disk: SCSI disk
+label: Cruzer Fit
+duid: 7bcfded206b6c407
+flags:
+bytes/sector: 512
+sectors/track: 63
+tracks/cylinder: 255
+sectors/cylinder: 16065
+cylinders: 1945
+total sectors: 31260672
+boundstart: 64
+boundend: 31246425
+drivedata: 0 
+
+16 partitions:
+#                size           offset  fstype [fsize bsize   cpg]
+  a:          2104448               64  4.2BSD   2048 16384 12958 
+  c:         31260672                0  unused                    
+  e:         20980864          2104512  4.2BSD   2048 16384 12958 # /altvar

More information about the Autonlab-sysinfo mailing list