ubnt1.auton-rec.org daily insecurity output
Charlie Root
auton.sysnotify at gmail.com
Sun Aug 14 01:30:21 EDT 2022
Running security(8):
======
/etc/group diffs (-OLD +NEW)
======
--- /var/backups/etc_group.current Fri Aug 12 01:30:10 2022
+++ /etc/group Sat Aug 13 14:17:33 2022
@@ -83,3 +83,6 @@
nogroup:*:32766:
nobody:*:32767:
auton:*:1000:
+_collectd:*:652:
+_rrdcached:*:726:
+_rsync:*:669:
======
/etc/mail/aliases diffs (-OLD +NEW)
======
--- /var/backups/etc_mail_aliases.current Fri Aug 12 01:30:11 2022
+++ /etc/mail/aliases Sat Aug 13 14:27:58 2022
@@ -97,3 +97,5 @@
# news: usenet
# webmaster: root
# ftp: root
+
+root: sysinfo at autonlab.org
======
/etc/mail/smtpd.conf diffs (-OLD +NEW)
======
--- /var/backups/etc_mail_smtpd.conf.current Fri Aug 12 01:30:11 2022
+++ /etc/mail/smtpd.conf Sat Aug 13 14:38:10 2022
@@ -1,21 +1,22 @@
-# $OpenBSD: smtpd.conf,v 1.14 2019/11/26 20:14:38 gilles Exp $
+# $OpenBSD: smtpd.conf,v 1.11 2018/06/04 21:10:58 jmc Exp $
# This is the smtpd server system-wide configuration file.
# See smtpd.conf(5) for more information.
table aliases file:/etc/mail/aliases
+table secrets file:/etc/mail/secrets
-listen on socket
-
# To accept external mail, replace with: listen on all
#
listen on lo0
-action "local_mail" mbox alias <aliases>
-action "outbound" relay
+action "local" mbox alias <aliases>
+# action "relay" relay
+action "relay" relay host smtp+tls://charlie@smtp.gmail.com:587 \
+ auth <secrets>
# Uncomment the following to accept external mail for domain "example.org"
#
-# match from any for domain "example.org" action "local_mail"
-match from local for local action "local_mail"
-match from local for any action "outbound"
+# match from any for domain "example.org" action "local"
+match for local action "local"
+match for any action "relay"
======
/etc/passwd diffs (-OLD +NEW)
======
--- /var/backups/etc_passwd.current Fri Aug 12 01:30:11 2022
+++ /etc/passwd Sat Aug 13 14:17:33 2022
@@ -64,3 +64,6 @@
_slaacd:*:115:115:SLAAC Daemon:/var/empty:/sbin/nologin
nobody:*:32767:32767:Unprivileged user:/nonexistent:/sbin/nologin
auton:*:1000:1000:Admin:/home/auton:/bin/ksh
+_collectd:*:652:652:Collectd Daemon:/var/empty:/sbin/nologin
+_rrdcached:*:726:726:rrdcached user:/nonexistent:/sbin/nologin
+_rsync:*:669:669:rsync Daemon:/var/empty:/sbin/nologin
======
/etc/pwd.db SHA-256 checksums
======
OLD: 80feb384f0e2bfe81f62538c993a17e9a0e3d357e5ee8faeb27b8b8f0e4c341e
NEW: 6ee3d37f55b050103ebbb02770ae1a58af42598f419d8298055e37f9a47c9d2a
======
/etc/rc.conf.local diffs (-OLD +NEW)
======
--- /var/backups/etc_rc.conf.local.current Fri Aug 12 01:30:11 2022
+++ /etc/rc.conf.local Sat Aug 13 14:21:55 2022
@@ -1,4 +1,5 @@
+accounting=YES
dhcpd_flags="igc1"
ntpd_flags=" -s"
-pkg_scripts=sshguard
+pkg_scripts=sshguard smartd
unbound_flags=
======
/etc/spwd.db SHA-256 checksums
======
OLD: 85f32c54e08939f7043135c13c21b92dc99b4ef37787471b015b30af69ca90a4
NEW: 42d2b92026d4f8a6c26739db334863ac2cb1489483f0cd2d7622fc53ce0d875f
======
/etc/usermgmt.conf diffs (-OLD +NEW)
======
--- /dev/null Sun Aug 14 01:30:20 2022
+++ /etc/usermgmt.conf Sat Aug 13 14:16:58 2022
@@ -0,0 +1,8 @@
+group =uid
+base_dir /home
+skel_dir /etc/skel
+shell /bin/ksh
+class
+inactive Null (unset)
+expire Null (unset)
+preserve false
======
/var/cron/tabs/root diffs (-OLD +NEW)
======
--- /var/backups/var_cron_tabs_root.current Fri Aug 12 01:30:12 2022
+++ /var/cron/tabs/root Sat Aug 13 14:30:59 2022
@@ -1,7 +1,7 @@
-# $OpenBSD: crontab,v 1.28 2020/04/18 17:22:43 jmc Exp $
+# DO NOT EDIT THIS FILE - edit the master and reinstall.
+# (/tmp/crontab.W1pJ03gytL installed on Sat Aug 13 14:30:59 2022)
+# (Cron version V5.0)
#
-# /var/cron/tabs/root - root's crontab
-#
SHELL=/bin/sh
PATH=/bin:/sbin:/usr/bin:/usr/sbin
HOME=/var/log
@@ -20,3 +20,5 @@
#~ * * * * /usr/libexec/spamd-setup
#~ * * * * -ns rpki-client -v && bgpctl reload
+# Added by Predrag Punosevac
+40 1 * * * 40 1 * * * /root/mtree.sh
======
Package list changes (-OLD +NEW)
======
--- /var/backups/pkglist.current Fri Aug 12 01:30:12 2022
+++ /var/backups/pkglist Sun Aug 14 01:30:21 2022
@@ -1,7 +1,65 @@
+ansible-5.5.0 radically simple IT automation
+ansible-core-2.12.4 radically simple IT automation
+bzip2-1.0.8p0 block-sorting file compressor, unencumbered
+cairo-1.17.6 vector graphics library
+collectd-5.8.1p0 system metrics collection engine
+collectd-rrdtool-5.8.1p2 collectd rrdtool plugin
+curl-7.84.0 transfer files with FTP, HTTP, HTTPS, etc.
+detox-1.2.0 utility designed to clean up filenames
+dnstop-20180521 pcap-based DNS query monitor
+dos2unix-7.4.2 convert DOS/MAC files to UNIX (line-endings/charset)
fping-5.1 quickly ping N hosts w/o flooding the network
+fribidi-1.0.11 library implementing the Unicode Bidirectional Algorithm
+gettext-runtime-0.21p1 GNU gettext runtime libraries and programs
+glib2-2.70.5 general-purpose utility library
+graphite2-1.3.14 rendering for complex writing systems
+harfbuzz-4.2.0 text shaping library
intel-firmware-20220207v0 microcode update binaries for Intel CPUs
inteldrm-firmware-20211027 firmware binary images for inteldrm(4) driver
+ipmitool-1.8.18pl20220331 manage and configure devices that support IPMI
+libffi-3.3p1 Foreign Function Interface
+libgcrypt-1.10.1 crypto library based on code used in GnuPG
+libgpg-error-1.44 error codes for GnuPG related software
+libiconv-1.16p0 character set conversion library
+libstatgrab-0.91p5 system statistics gathering library
+libxml-2.9.13p1 XML parsing library
+libyajl-2.1.0 small JSON library written in ANSI C
+libyaml-0.2.2 YAML 1.1 parser and emitter written in C
login_duo-1.12.0 two-factor authentication for unix systems
+lzo2-2.10p2 portable speedy lossless data compression library
+monit-5.32.0 monitoring and managing daemons utility
+moreutils-0.65 miscellaneous unix tools
+nghttp2-1.47.0 library for HTTP/2
+p5-IO-Tty-1.16 provide an interface to create pseudo ttys
+p5-IPC-Run-20200505.0 run a subprocess
+p5-Time-Duration-1.21p0v0 module for rounded or exact english expression of durations
+p5-Time-TimeDate-2.33 library for parsing and formatting dates and times
+pango-1.50.6 library for layout and rendering of text
+pciutils-3.6.4 PCI bus configuration register access tools
+pcre-8.44 perl-compatible regular expression library
+pftop-0.7p19 curses-based real time state and rule display for pf
+pkglocatedb-1.5 database of packages for use with locate(1)
+png-1.6.37 library for manipulating PNG images
+py3-MarkupSafe-2.1.1 implements an XML/HTML/XHTML markup safe string
+py3-cffi-1.13.2p4 Foreign Function Interface for Python calling C code
+py3-cparser-2.19p2 C parser in pure Python
+py3-cryptography-36.0.1 cryptographic recipes and primitives for Python
+py3-jinja2-3.0.3 fast, optionally sandboxed, Python template engine
+py3-packaging-20.9p1 core utilities for Python packages
+py3-parsing-2.4.0p2 Python parsing module
+py3-resolvelib-0.5.5p0 resolve abstract dependencies into concrete ones
+py3-setuptools-57.4.0p0v0 simplified packaging system for Python modules
+py3-yaml-5.4.1p0 YAML parser and emitter in Python
+python-3.8.13p0 interpreted object-oriented programming language
+python-3.9.13 interpreted object-oriented programming language
quirks-5.5 exceptions to pkg_add rules
+rrdtool-1.7.2p1 system to store and display time-series data
+rrdupdate-1.7.2p1 lightweight update-only tool for rrdtool
+rsync-3.2.3p1 mirroring/synchronization over low bandwidth links
+smartmontools-7.3 control and monitor storage systems using SMART
+sqlite3-3.38.3 embedded SQL implementation
sshguard-2.4.2 protect against brute force attacks on sshd and others
+sysclean-3.2 list obsolete files between OpenBSD upgrades
+trafshow-3.1p2 full screen visualization of network traffic
vmm-firmware-1.14.0p0 firmware binary images for vmm(4) driver
+xz-5.2.5p1 LZMA compression and decompression tools
More information about the Autonlab-sysinfo
mailing list