deimos.autonlab.org daily insecurity output

Charlie Root auton.sysnotify at gmail.com
Thu May 30 01:35:46 EDT 2019 

Running security(8):

======
/etc/hostname.ix1 SHA-256 checksums
======
OLD: 19d66393bf48731cf5582803119d21c34fd94c4d16f1a2ac0a98420bdd1354c1
NEW: 25723da35b90de6b6a0aa727b7f1c3941ac5e37dd270fed55899e3b979659e0b

======
/etc/motd diffs (-OLD  +NEW)
======
--- /var/backups/etc_motd.current	Wed May  8 01:30:06 2019
+++ /etc/motd	Wed May 29 10:23:26 2019
@@ -1,4 +1,4 @@
-OpenBSD 6.5 (GENERIC.MP) #0: Wed Apr 24 23:38:54 CEST 2019
+OpenBSD 6.5 (GENERIC.MP) #1: Mon May 27 18:27:59 CEST 2019
 
 Welcome to OpenBSD: The proactively secure Unix-like operating system.
 


======
/etc/ntpd.conf diffs (-OLD  +NEW)
======
--- /var/backups/etc_ntpd.conf.current	Thu May  9 01:35:50 2019
+++ /etc/ntpd.conf	Wed May 29 22:39:18 2019
@@ -4,7 +4,7 @@
 
 listen on 127.0.0.1
 listen on 10.8.0.1
-listen on 192.168.6.250
+listen on 192.168.6.253
 
 servers pool.ntp.org
 sensor *


======
/etc/pf.conf diffs (-OLD  +NEW)
======
--- /var/backups/etc_pf.conf.current	Thu May 16 01:35:42 2019
+++ /etc/pf.conf	Wed May 29 23:05:00 2019
@@ -62,4 +62,19 @@
 pass inet proto tcp from {$auton_lan, $auton_vpn} to any port $tcp_services_int
 pass inet proto udp from {$auton_lan, $auton_vpn} to any port $udp_services_int
 
+# Needed for IPMI
 pass on em1
+
+# Expose sftp server to the World
+pass in on egress inet proto tcp to (egress) port {ssh} rdr-to $upload
+pass on $int_if proto tcp from any to any port {ssh}
+
+# Expose Monit to entire world.
+pass in on egress inet proto tcp to (egress) port {80} rdr-to $monit port 8080
+pass in on egress inet proto tcp to (egress) port {8080} rdr-to $monit
+pass on $int_if proto tcp from any to any port {8080}
+
+# Foxconn data collection
+pass in on egress inet proto tcp from 128.2.176.157 to (egress) port {873} rdr-to $foxconn
+pass on $int_if proto tcp from any to any port {873}
+


======
/etc/snmpd.conf SHA-256 checksums
======
OLD: e44e9db53174e42ebfe0d64e0a83b8e9ea3741ff0ff5f784a613fd55a9a49550
NEW: a4cf2546ed991a67e9e304ca580873669b90e570e9872ed975c06cb566cf41aa

======
/var/unbound/etc/unbound.conf diffs (-OLD  +NEW)
======
--- /var/backups/var_unbound_etc_unbound.conf.current	Thu May 16 01:35:42 2019
+++ /var/unbound/etc/unbound.conf	Wed May 29 13:19:58 2019
@@ -2,7 +2,7 @@
 
 server:
 	interface: 127.0.0.1
-	interface: 192.168.6.250
+	interface: 192.168.6.253
 	interface: 10.8.0.1
 	#interface: 127.0.0.1 at 5353	# listen on alternative port
 	interface: ::1

More information about the Autonlab-sysinfo mailing list