deimos.autonlab.org daily insecurity output
Charlie Root
auton.sysnotify at gmail.com
Thu Nov 14 01:30:24 EST 2024
Running security(8):
Setuid changes:
-r-sr-xr-x 1 root bin 59144 Mar 15 09:36:26 2024 /usr/local/sbin/fping
-r-sr-xr-x 1 root bin 59568 Sep 26 13:41:24 2024 /usr/local/sbin/fping
-r-sr-xr-x 1 root bin 115192 Mar 16 23:27:05 2024 /usr/local/sbin/login_duo
-r-sr-xr-x 1 root bin 115192 Sep 28 05:41:37 2024 /usr/local/sbin/login_duo
======
/etc/group diffs (-OLD +NEW)
======
--- /var/backups/etc_group.current Wed Nov 13 01:30:25 2024
+++ /etc/group Wed Nov 13 01:40:48 2024
@@ -93,5 +93,4 @@
_agentx:*:92:
_shutdown:*:118:
predragp:*:1009:
-_vault:*:772:
_dhcp6leased:*:116:
======
/etc/passwd diffs (-OLD +NEW)
======
--- /var/backups/etc_passwd.current Wed Nov 13 01:30:26 2024
+++ /etc/passwd Wed Nov 13 01:40:36 2024
@@ -72,5 +72,4 @@
_rpki-client:*:70:70:rpki-client user:/nonexistent:/sbin/nologin
_bgplgd:*:71:71:bgplgd Daemon:/nonexistent:/sbin/nologin
predragp:*:1009:1009:Predrag Punosevac:/home/predragp:/bin/ksh
-_vault:*:772:772:Vault Server:/nonexistent:/sbin/nologin
_dhcp6leased:*:116:116:DHCP6Lease Daemon:/var/empty:/sbin/nologin
======
/etc/pwd.db SHA-256 checksums
======
OLD: bc099ab491a35fc45253530ebc82c1c3db5010296c9156e501efe4a977c9c3e7
NEW: 2ff594c614d06ac977216272d4c568b39bb3eeac82a24e45c3678de769a24230
======
/etc/spwd.db SHA-256 checksums
======
OLD: 4c04f4fe2a2f3688108b5aedd32fc6a9f7f3ebd33b0ede594badabdc306fef72
NEW: 5777eb5f5412b5e8cbad8261eafb0d9d2b2c16b663f8a94a82650ff819858d35
======
Package list changes (-OLD +NEW)
======
--- /var/backups/pkglist.current Wed Nov 13 01:30:27 2024
+++ /var/backups/pkglist Thu Nov 14 01:30:24 2024
@@ -1,80 +1,82 @@
arp-scan-1.10.0p1 ARP scanning and fingerprinting tool
bzip2-1.0.8p0 block-sorting file compressor, unencumbered
-cairo-1.18.0 vector graphics library
-collectd-5.12.0p1 system metrics collection engine
-collectd-rrdtool-5.12.0p0 collectd rrdtool plugin
-curl-8.9.0 transfer files with FTP, HTTP, HTTPS, etc.
+cairo-1.18.2p0 vector graphics library
+collectd-5.12.0p2 system metrics collection engine
+collectd-rrdtool-5.12.0p2 collectd rrdtool plugin
+curl-8.10.1 transfer files with FTP, HTTP, HTTPS, etc.
cyrus-sasl-2.1.28 RFC 2222 SASL (Simple Authentication and Security Layer)
detox-1.4.5 utility designed to clean up filenames
dnstop-20220113 pcap-based DNS query monitor
-dos2unix-7.5.1 convert DOS/MAC files to UNIX (line-endings/charset)
-drill-1.8.3p0 DNS debugger
+dos2unix-7.5.2 convert DOS/MAC files to UNIX (line-endings/charset)
+drill-1.8.4 DNS debugger
e2fsprogs-1.46.2p1 utilities to manipulate ext2 filesystems
easy-rsa-3.1.1 small RSA key management package
-fping-5.1 quickly ping N hosts w/o flooding the network
-fribidi-1.0.13 library implementing the Unicode Bidirectional Algorithm
+fping-5.2 quickly ping N hosts w/o flooding the network
+fribidi-1.0.15 library implementing the Unicode Bidirectional Algorithm
gettext-runtime-0.22.5 GNU gettext runtime libraries and programs
-glib2-2.78.6 general-purpose utility library
+glib2-2.80.4 general-purpose utility library
graphite2-1.3.14 rendering for complex writing systems
-harfbuzz-8.3.0 text shaping library
+harfbuzz-9.0.0p0 text shaping library
heimdal-7.8.0 Kerberos 5 implementation
heimdal-libs-7.8.0 Heimdal libraries and headers
hping-3.0.0pre1p2 command-line oriented TCP/IP packet assembler/analyzer
iftop-1.0pre4p4 display bandwidth usage on an interface
intel-firmware-20241029v0 microcode update binaries for Intel CPUs
-iperf-2.0.12p1 tool for measuring maximum TCP and UDP bandwidth
+iperf-2.2.0 tool for measuring maximum TCP and UDP bandwidth
ipmitool-1.8.19p0 manage and configure devices that support IPMI
ldapvi-1.7p7 update LDAP entries with a text editor
-libffi-3.4.4p1 Foreign Function Interface
-libgcrypt-1.10.3p1 crypto library based on code used in GnuPG
-libgpg-error-1.48 error codes for GnuPG related software
+libb2-0.98.1v0 library providing BLAKE2b, BLAKE2s, BLAKE2bp, BLAKE2sp
+libffi-3.4.6 Foreign Function Interface
+libgcrypt-1.11.0p0 crypto library based on code used in GnuPG
+libgpg-error-1.50 error codes for GnuPG related software
libiconv-1.17 character set conversion library
-libldns-1.8.3p0 DNS library modelled after Net::DNS
+libldns-1.8.4 DNS library modelled after Net::DNS
libssh2-1.11.0 library implementing the SSH2 protocol
libstatgrab-0.91p5 system statistics gathering library
-libxml-2.12.9 XML parsing library
-libyajl-2.1.0 small JSON library written in ANSI C
-login_duo-2.0.3 two-factor authentication for unix systems
+libxml-2.13.3p0 XML parsing library
+libyajl-2.1.0p0 small JSON library written in ANSI C
+login_duo-2.0.3p0 two-factor authentication for unix systems
lua-5.3.6 powerful, light-weight programming language (version 5.3.6)
-lynx-2.8.9rel1p1 text web browser
-lz4-1.9.4 fast BSD-licensed data compression
+lynx-2.9.2 text web browser
+lz4-1.10.0 fast BSD-licensed data compression
lzo2-2.10p2 portable speedy lossless data compression library
-mac-vendor-20240303 MAC address vendor list
+mac-vendor-20240806 MAC address vendor list
monit-5.33.0 monitoring and managing daemons utility
moreutils-0.69 miscellaneous unix tools
netperf-2.7.0p4 network performance benchmark
-nghttp2-1.58.0 library for HTTP/2
-nghttp3-1.2.0 implementation of HTTP/3
-nginx-1.24.0p0 robust and small HTTP server and mail proxy server
-ngtcp2-1.3.0 implementation of the RFC 9000 QUIC protocol
-nmap-7.91p5 scan ports and fingerprint stack of network hosts
-openldap-client-2.6.7v0 LDAP client library and tools
-openvpn-2.6.9p0 easy-to-use, robust, and highly configurable VPN
+nghttp2-1.63.0 library for HTTP/2
+nghttp3-1.5.0 implementation of HTTP/3
+nginx-1.26.2 robust and small HTTP server and mail proxy server
+ngtcp2-1.7.0 implementation of the RFC 9000 QUIC protocol
+nmap-7.92 scan ports and fingerprint stack of network hosts
+openldap-client-2.6.8v0 LDAP client library and tools
+openvpn-2.6.12 easy-to-use, robust, and highly configurable VPN
p5-IO-Tty-1.20 provide an interface to create pseudo ttys
p5-IPC-Run-20231003.0 run a subprocess
p5-Time-Duration-1.21p0v0 module for rounded or exact english expression of durations
p5-Time-TimeDate-2.33 library for parsing and formatting dates and times
-pango-1.52.1 library for layout and rendering of text
+pango-1.54.0 library for layout and rendering of text
pcre-8.45 perl-compatible regular expression library
pcre2-10.37p2 perl-compatible regular expression library, version 2
pftop-0.7p19 curses-based real time state and rule display for pf
png-1.6.43 library for manipulating PNG images
popt-1.16p2 getopt(3)-like library with a number of enhancements
-python-3.10.14 interpreted object-oriented programming language
-python-3.9.19 interpreted object-oriented programming language
-quirks-7.14 exceptions to pkg_add rules
+py3-packaging-24.1 core utilities for Python packaging
+python-3.11.10p1 interpreted object-oriented programming language
+quirks-7.50 exceptions to pkg_add rules
rrdtool-1.8.0p1 system to store and display time-series data
rrdupdate-1.8.0p1 lightweight update-only tool for rrdtool
-rsync-3.2.7p1 mirroring/synchronization over low bandwidth links
+rsync-3.3.0p2 mirroring/synchronization over low bandwidth links
scrypt-1.3.2 command-line encryption using scrypt key derivation function
-smartmontools-7.4 control and monitor storage systems using SMART
+smartmontools-7.4p0 control and monitor storage systems using SMART
sqlite3-3.44.2 embedded SQL implementation
sshguard-2.4.3 protect against brute force attacks on sshd and others
-sysclean-3.8 list obsolete files between OpenBSD upgrades
+sysclean-3.9 list obsolete files between OpenBSD upgrades
tcptrace-6.6.7p2 TCP dump file analysis tool
trafshow-3.1p2 full screen visualization of network traffic
updatedb-0p0 pkg_add speed up cache
vmm-firmware-1.16.3p0 firmware binary images for vmm(4) driver
vnstat-2.11v0 network traffic monitor
xplot-0.90.7.1p0 fast tool to graph and visualize lots of data
-xz-5.4.5 library and tools for XZ and LZMA compressed files
+xz-5.6.2 library and tools for XZ and LZMA compressed files
+zstd-1.5.6 zstandard fast real-time compression algorithm
More information about the Autonlab-sysinfo
mailing list