deimos.autonlab.org daily insecurity output

Charlie Root auton.sysnotify at gmail.com
Fri Jul 12 01:30:23 EDT 2024 

Running security(8):

======
/etc/adduser.conf diffs (-OLD  +NEW)
======
--- /dev/null	Fri Jul 12 01:30:20 2024
+++ /etc/adduser.conf	Thu Jul 11 15:34:40 2024
@@ -0,0 +1,67 @@
+#
+# /etc/adduser.conf - automatic generated by adduser(8)
+#
+# Note: adduser reads *and* writes this file.
+#	You may change values, but don't add new things before the
+#	line ``## DO NOT DELETE THIS LINE!''
+#	Also, unquoted strings may cause warnings
+#
+
+# verbose = [0-2]
+verbose = 1
+
+# Get new password for new users
+# defaultpasswd =  yes | no
+defaultpasswd = "yes"
+
+# Default encryption method for user passwords
+# Methods are all those listed in login.conf(5)
+encryptionmethod = "auto"
+
+# copy dotfiles from this dir ("/etc/skel" or "no")
+dotdir = "/etc/skel"
+
+# send message to user? ("yes" or "no")
+send_message = "no"
+
+# send this file to new user ("/etc/adduser.message")
+message_file = "/etc/adduser.message"
+
+# config file for adduser ("/etc/adduser.conf")
+config = "/etc/adduser.conf"
+
+# logfile ("/var/log/adduser" or "no")
+logfile = "/var/log/adduser"
+
+# default HOME directory ("/home")
+home = "/home"
+
+# List of directories where shells located
+# path = ('/bin', '/usr/bin', '/usr/local/bin')
+path = ('/bin', '/usr/bin', '/usr/local/bin')
+
+# common shell list, first element has higher priority
+# shellpref = ('bash', 'tcsh', 'ksh', 'csh', 'sh')
+shellpref = ('csh', 'sh', 'bash', 'tcsh', 'ksh', 'nologin')
+
+# defaultshell if not empty ("bash")
+defaultshell = "ksh"
+
+# defaultgroup ('USER' for same as username or any other valid group)
+defaultgroup = "USER"
+
+# new users get this uid
+uid_start = 1000
+uid_end = 2147483647
+
+# default login.conf(5) login class
+defaultclass = "staff"
+
+# login classes available from login.conf(5)
+# login_classes = ('default', 'daemon', 'staff')
+login_classes = ('default', 'daemon', 'staff', 'authpf', 'pbuild', 'bgpd', 'unbound', 'vmd', 'xenodm')
+
+## DO NOT DELETE THIS LINE!
+## your own variables, see /etc/adduser.message
+
+## end


======
/etc/group diffs (-OLD  +NEW)
======
--- /var/backups/etc_group.current	Tue Jan 16 01:30:20 2024
+++ /etc/group	Thu Jul 11 15:36:01 2024
@@ -92,3 +92,4 @@
 _bgplgd:*:71:
 _agentx:*:92:
 _shutdown:*:118:
+predragp:*:1009:


======
/etc/passwd diffs (-OLD  +NEW)
======
--- /var/backups/etc_passwd.current	Tue Jan 16 01:30:20 2024
+++ /etc/passwd	Thu Jul 11 15:36:01 2024
@@ -71,3 +71,4 @@
 _rsync:*:669:669:rsync Daemon:/var/empty:/sbin/nologin
 _rpki-client:*:70:70:rpki-client user:/nonexistent:/sbin/nologin
 _bgplgd:*:71:71:bgplgd Daemon:/nonexistent:/sbin/nologin
+predragp:*:1009:1009:Predrag Punosevac:/home/predragp:/bin/ksh


======
/etc/pf.conf diffs (-OLD  +NEW)
======
--- /var/backups/etc_pf.conf.current	Thu Jul 11 01:30:22 2024
+++ /etc/pf.conf	Thu Jul 11 14:01:54 2024
@@ -22,8 +22,8 @@
 udp_services = "{domain, ntp}"
 udp_services_int = "{domain, ntp, snmp, syslog, 111, 2049, 25826}"
 openvpn = "{1194}"
-tcp_kerberos = "{kerberos}"
-udp_kerberos = "{kerberos}"
+tcp_kerberos = "{kerberos, kpasswd}"
+udp_kerberos = "{kerberos, kpasswd}"
 
 # options
 set block-policy return


======
/etc/pwd.db SHA-256 checksums
======
OLD: 7dba6bffd55412b9820f9206d2b0f027e073aa73d294bb63eb8a4b2394230c44
NEW: 88622becc2c491de8291a6942a01a1289664b0d50d3d7f9a7fe5c5bcb7add48b

======
/etc/rc.conf.local diffs (-OLD  +NEW)
======
--- /var/backups/etc_rc.conf.local.current	Thu Jul 11 01:30:22 2024
+++ /etc/rc.conf.local	Thu Jul 11 15:29:31 2024
@@ -1,5 +1,5 @@
 ldapd_flags=
-pkg_scripts=sshguard collectd smartd kdc kadmind
+pkg_scripts=sshguard collectd smartd kdc kadmind kpasswdd
 sensorsd_flags=
 snmpd_flags=
 syslogd_flags="-h"


======
/etc/spwd.db SHA-256 checksums
======
OLD: 835505b04c80be345f1f4b503ac7281d7b0923e948eba01ea96c87ca838c8253
NEW: 19568d1e314de0975edcbc876f6351443d089d9f0b078428621d6c34d08c5797

More information about the Autonlab-sysinfo mailing list