API tools faq
paste
Advertisement
Guest User

Untitled

a guest
May 9th, 2018
4,327
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 44.00 KB | None | 0 0
raw download clone embed print report
  1. [alice@fc4 ~]$ python linuxprivchecker.py
  2. =================================================================================================
  3. LINUX PRIVILEGE ESCALATION CHECKER
  4. =================================================================================================
  5.  
  6. [*] GETTING BASIC SYSTEM INFO...
  7.  
  8. [+] Kernel
  9. Linux version 2.6.11-1.1369_FC4 (bhcompile@decompose.build.redhat.com) (gcc version 4.0.0 20050525 (Red Hat 4.0.0-9)) #1 Thu Jun 2 22:55:56 EDT 2005
  10.  
  11. [+] Hostname
  12. fc4.thinc.local
  13.  
  14. [+] Operating System
  15. Fedora Core release 4 (Stentz)
  16. Kernel \r on an \m
  17.  
  18. [*] GETTING NETWORKING INFO...
  19.  
  20. [+] Interfaces
  21. eth0 Link encap:Ethernet HWaddr 00:50:56:89:79:72
  22. inet addr:10.11.1.141 Bcast:10.11.255.255 Mask:255.255.0.0
  23. inet6 addr: fe80::250:56ff:fe89:7972/64 Scope:Link
  24. UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
  25. RX packets:17622 errors:77 dropped:0 overruns:0 frame:0
  26. TX packets:10146 errors:0 dropped:0 overruns:0 carrier:0
  27. collisions:0 txqueuelen:1000
  28. RX bytes:2519052 (2.4 MiB) TX bytes:2918271 (2.7 MiB)
  29. Interrupt:10 Base address:0x2024
  30. lo Link encap:Local Loopback
  31. inet addr:127.0.0.1 Mask:255.0.0.0
  32. inet6 addr: ::1/128 Scope:Host
  33. UP LOOPBACK RUNNING MTU:16436 Metric:1
  34. RX packets:164 errors:0 dropped:0 overruns:0 frame:0
  35. TX packets:164 errors:0 dropped:0 overruns:0 carrier:0
  36. collisions:0 txqueuelen:0
  37. RX bytes:15680 (15.3 KiB) TX bytes:15680 (15.3 KiB)
  38. sit0 Link encap:IPv6-in-IPv4
  39. NOARP MTU:1480 Metric:1
  40. RX packets:0 errors:0 dropped:0 overruns:0 frame:0
  41. TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
  42. collisions:0 txqueuelen:0
  43. RX bytes:0 (0.0 b) TX bytes:0 (0.0 b)
  44.  
  45. [+] Netstat
  46. Active Internet connections (servers and established)
  47. Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
  48. tcp 0 0 0.0.0.0:111 0.0.0.0:* LISTEN -
  49. tcp 0 0 0.0.0.0:10000 0.0.0.0:* LISTEN -
  50. tcp 0 0 127.0.0.1:631 0.0.0.0:* LISTEN -
  51. tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN -
  52. tcp 0 0 :::22 :::* LISTEN -
  53. tcp 0 1500 ::ffff:10.11.1.141:22 ::ffff:10.11.0.146:35858 ESTABLISHED -
  54. udp 0 0 0.0.0.0:10000 0.0.0.0:* -
  55. udp 0 0 0.0.0.0:111 0.0.0.0:* -
  56. udp 0 0 0.0.0.0:631 0.0.0.0:* -
  57.  
  58. [+] Route
  59.  
  60. [*] GETTING FILESYSTEM INFO...
  61.  
  62. [+] Mount results
  63. /dev/mapper/VolGroup00-LogVol00 on / type ext3 (rw)
  64. /dev/proc on /proc type proc (rw)
  65. /dev/sys on /sys type sysfs (rw)
  66. /dev/devpts on /dev/pts type devpts (rw,gid=5,mode=620)
  67. /dev/sda1 on /boot type ext3 (rw)
  68. /dev/shm on /dev/shm type tmpfs (rw)
  69. none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)
  70. sunrpc on /var/lib/nfs/rpc_pipefs type rpc_pipefs (rw)
  71. automount(pid2543) on /net type autofs (rw,fd=4,pgrp=2543,minproto=2,maxproto=4)
  72. automount(pid2530) on /misc type autofs (rw,fd=4,pgrp=2530,minproto=2,maxproto=4)
  73.  
  74. [+] fstab entries
  75. # This file is edited by fstab-sync - see 'man fstab-sync' for details
  76. /dev/VolGroup00/LogVol00 / ext3 defaults 1 1
  77. LABEL=/boot /boot ext3 defaults 1 2
  78. /dev/devpts /dev/pts devpts gid=5,mode=620 0 0
  79. /dev/shm /dev/shm tmpfs defaults 0 0
  80. /dev/proc /proc proc defaults 0 0
  81. /dev/sys /sys sysfs defaults 0 0
  82. /dev/VolGroup00/LogVol01 swap swap defaults 0 0
  83. /dev/fd0 /media/floppy2 auto pamconsole,exec,noauto,managed 0 0
  84. /dev/hda /media/cdrecorder auto pamconsole,exec,noauto,managed 0 0
  85.  
  86. [+] Scheduled cron jobs
  87. -rw-r--r-- 1 root root 0 May 20 2007 /etc/cron.deny
  88. -rw-r--r-- 1 root root 255 Sep 20 2004 /etc/crontab
  89. /etc/cron.d:
  90. total 24
  91. drwxr-xr-x 2 root root 4096 Apr 14 2005 .
  92. drwxr-xr-x 76 root root 12288 May 9 11:48 ..
  93. /etc/cron.daily:
  94. total 124
  95. drwxr-xr-x 2 root root 4096 May 20 2007 .
  96. drwxr-xr-x 76 root root 12288 May 9 11:48 ..
  97. lrwxrwxrwx 1 root root 28 May 20 2007 00-logwatch -> ../log.d/scripts/logwatch.pl
  98. -rwxr-xr-x 1 root root 135 Mar 4 2005 00webalizer
  99. -rwxr-xr-x 1 root root 276 Mar 16 2005 0anacron
  100. -rwxr-xr-x 1 root root 1042 May 13 2005 certwatch
  101. -rwxr-xr-x 1 root root 118 Mar 31 2005 cups
  102. -rwxr-xr-x 1 root root 180 Mar 31 2005 logrotate
  103. -rwxr-xr-x 1 root root 418 Apr 8 2005 makewhatis.cron
  104. -rwxr-xr-x 1 root root 2133 Nov 23 2004 prelink
  105. -rwxr-xr-x 1 root root 104 May 24 2005 rpm
  106. -rwxr-xr-x 1 root root 246 Apr 16 2005 slocate.cron
  107. -rwxr-xr-x 1 root root 100 May 9 2005 tetex.cron
  108. -rwxr-xr-x 1 root root 286 Apr 16 2005 tmpwatch
  109. -rwxr-xr-x 1 root root 158 May 25 2005 yum.cron
  110. /etc/cron.hourly:
  111. total 24
  112. drwxr-xr-x 2 root root 4096 Sep 20 2004 .
  113. drwxr-xr-x 76 root root 12288 May 9 11:48 ..
  114. /etc/cron.monthly:
  115. total 32
  116. drwxr-xr-x 2 root root 4096 May 20 2007 .
  117. drwxr-xr-x 76 root root 12288 May 9 11:48 ..
  118. -rwxr-xr-x 1 root root 278 Mar 16 2005 0anacron
  119. /etc/cron.weekly:
  120. total 48
  121. drwxr-xr-x 2 root root 4096 May 20 2007 .
  122. drwxr-xr-x 76 root root 12288 May 9 11:48 ..
  123. -rwxr-xr-x 1 root root 277 Mar 16 2005 0anacron
  124. -rwxr-xr-x 1 root root 414 Apr 8 2005 makewhatis.cron
  125. -rwxr-xr-x 1 root root 90 May 25 2005 yum.cron
  126.  
  127. [+] Writable cron dirs
  128. lrwxrwxrwx 1 root root 28 May 20 2007 00-logwatch -> ../log.d/scripts/logwatch.pl
  129.  
  130.  
  131. [*] ENUMERATING USER AND ENVIRONMENTAL INFO...
  132.  
  133. [+] Logged in User Activity
  134. 12:31:14 up 1:47, 1 user, load average: 0.00, 0.00, 0.00
  135. USER TTY FROM LOGIN@ IDLE JCPU PCPU WHAT
  136. alice pts/0 10.11.0.146 10:53 0.00s 0.30s 0.01s python linuxpri
  137.  
  138. [+] Sudoers (privileged)
  139.  
  140. [+] All users
  141. root:x:0:0:root:/root:/bin/bash
  142. bin:x:1:1:bin:/bin:/sbin/nologin
  143. daemon:x:2:2:daemon:/sbin:/sbin/nologin
  144. adm:x:3:4:adm:/var/adm:/sbin/nologin
  145. lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
  146. sync:x:5:0:sync:/sbin:/bin/sync
  147. shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
  148. halt:x:7:0:halt:/sbin:/sbin/halt
  149. mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
  150. news:x:9:13:news:/etc/news:
  151. uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
  152. operator:x:11:0:operator:/root:/sbin/nologin
  153. games:x:12:100:games:/usr/games:/sbin/nologin
  154. gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
  155. ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
  156. nobody:x:99:99:Nobody:/:/sbin/nologin
  157. dbus:x:81:81:System message bus:/:/sbin/nologin
  158. vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
  159. rpm:x:37:37::/var/lib/rpm:/sbin/nologin
  160. haldaemon:x:68:68:HAL daemon:/:/sbin/nologin
  161. pcap:x:77:77::/var/arpwatch:/sbin/nologin
  162. nscd:x:28:28:NSCD Daemon:/:/sbin/nologin
  163. named:x:25:25:Named:/var/named:/sbin/nologin
  164. netdump:x:34:34:Network Crash Dump user:/var/crash:/bin/bash
  165. sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
  166. rpc:x:32:32:Portmapper RPC user:/:/sbin/nologin
  167. mailnull:x:47:47::/var/spool/mqueue:/sbin/nologin
  168. smmsp:x:51:51::/var/spool/mqueue:/sbin/nologin
  169. rpcuser:x:29:29:RPC Service User:/var/lib/nfs:/sbin/nologin
  170. nfsnobody:x:65534:65534:Anonymous NFS User:/var/lib/nfs:/sbin/nologin
  171. apache:x:48:48:Apache:/var/www:/sbin/nologin
  172. squid:x:23:23::/var/spool/squid:/sbin/nologin
  173. webalizer:x:67:67:Webalizer:/var/www/usage:/sbin/nologin
  174. xfs:x:43:43:X Font Server:/etc/X11/fs:/sbin/nologin
  175. ntp:x:38:38::/etc/ntp:/sbin/nologin
  176. mysql:x:27:27:MySQL Server:/var/lib/mysql:/bin/bash
  177. bob:x:500:500::/home/bob:/bin/bash
  178. alice:x:501:501::/home/alice:/bin/bash
  179.  
  180. [+] Current User ID
  181. uid=501(alice) gid=501(alice) groups=501(alice) context=user_u:system_r:unconfined_t
  182.  
  183. [+] Super Users Found:
  184. root
  185.  
  186. [+] Environment
  187. HOSTNAME=fc4.thinc.local
  188. SHELL=/bin/bash
  189. TERM=xterm-256color
  190. HISTSIZE=1000
  191. SSH_CLIENT=::ffff:10.11.0.146 35858 22
  192. SSH_TTY=/dev/pts/0
  193. USER=alice
  194. PATH=/usr/kerberos/bin:/usr/local/bin:/bin:/usr/bin:/usr/X11R6/bin:/home/alice/bin
  195. MAIL=/var/spool/mail/alice
  196. _=/bin/env
  197. PWD=/home/alice
  198. INPUTRC=/etc/inputrc
  199. LANG=en_US.UTF-8
  200. HOME=/home/alice
  201. SHLVL=2
  202. LOGNAME=alice
  203. SSH_CONNECTION=::ffff:10.11.0.146 35858 ::ffff:10.11.1.141 22
  204. LESSOPEN=|/usr/bin/lesspipe.sh %s
  205. G_BROKEN_FILENAMES=1
  206.  
  207. [+] Current User
  208. alice
  209.  
  210. [+] Root and current user history (depends on privs)
  211. -rw------- 1 alice alice 41 May 9 11:55 /home/alice/.bash_history
  212.  
  213. [*] ENUMERATING FILE AND DIRECTORY PERMISSIONS/CONTENTS...
  214.  
  215. [+] World Writeable Directories for User/Group 'Root'
  216. drwxrwxrwt 2 root root 4096 Sep 29 2011 /var/tmp
  217. drwxrwxrwt 2 root root 4096 May 20 2007 /var/lib/texmf
  218. drwxrwxrwt 2 root root 4096 May 27 2005 /var/spool/vbox
  219. drwxrwxrwt 2 root root 4096 May 2 2005 /var/spool/samba
  220. drwxrwxrwt 2 root root 4096 May 9 12:28 /tmp
  221. drwxrwxrwt 2 root root 40 Jun 17 2016 /dev/shm
  222.  
  223. [+] World Writeable Directories for Users other than Root
  224.  
  225. [+] World Writable Files
  226. -rw-rw-rw- 1 root root 0 Jun 16 2016 /selinux/member
  227. -rw-rw-rw- 1 root root 0 Jun 16 2016 /selinux/user
  228. -rw-rw-rw- 1 root root 0 Jun 16 2016 /selinux/relabel
  229. -rw-rw-rw- 1 root root 0 Jun 16 2016 /selinux/create
  230. -rw-rw-rw- 1 root root 0 Jun 16 2016 /selinux/access
  231. -rw-rw-rw- 1 root root 0 Jun 16 2016 /selinux/context
  232.  
  233. [+] Checking if root's home folder is accessible
  234.  
  235. [+] SUID/SGID Files and Directories
  236. -rwxr-sr-x 1 root root 11373 May 25 2005 /sbin/netreport
  237. -r-sr-xr-x 1 root root 49547 May 2 2005 /sbin/unix_chkpwd
  238. -r-s--x--x 1 root root 19930 May 2 2005 /sbin/pam_timestamp_check
  239. -r-sr-xr-x 1 root root 297264 May 2 2005 /sbin/pwdb_chkpwd
  240. -r-s--x--- 1 root apache 11260 May 23 2005 /usr/sbin/suexec
  241. -rws--x--x 1 root root 35960 May 11 2005 /usr/sbin/userhelper
  242. -rwsr-xr-x 1 root root 6996 May 27 2005 /usr/sbin/userisdnctl
  243. -rwsr-xr-x 1 root root 15646 May 25 2005 /usr/sbin/usernetctl
  244. -rwxr-sr-x 1 root lock 15372 Mar 5 2005 /usr/sbin/lockdev
  245. -rwxr-sr-x 1 root utmp 17359 Mar 3 2005 /usr/sbin/utempter
  246. -rwxr-sr-x 1 root smmsp 774264 May 6 2005 /usr/sbin/sendmail.sendmail
  247. -rwxr-sr-x 1 root slocate 40336 Apr 16 2005 /usr/bin/slocate
  248. -rwsr-xr-x 1 root root 18392 Mar 5 2005 /usr/bin/rcp
  249. ---s--x--x 2 root root 108964 Apr 12 2005 /usr/bin/sudo
  250. -rwsr-xr-x 1 root root 123141 May 23 2005 /usr/bin/gpasswd
  251. -rwsr-xr-x 1 root root 105073 May 23 2005 /usr/bin/chage
  252. -rwsr-xr-x 1 root root 12344 Mar 5 2005 /usr/bin/rlogin
  253. -rws--x--x 1 root root 19924 May 4 2005 /usr/bin/chsh
  254. -rwxr-sr-x 1 root mail 14616 Mar 18 2005 /usr/bin/lockfile
  255. -rwxr-sr-x 1 root tty 10852 May 4 2005 /usr/bin/write
  256. -r-s--x--x 1 root root 18852 Mar 7 2005 /usr/bin/passwd
  257. -rwxr-sr-x 1 root screen 352020 May 27 2005 /usr/bin/screen
  258. -rwsr-xr-x 1 root root 8852 Mar 5 2005 /usr/bin/rsh
  259. -rwsr-xr-x 1 root root 44088 Apr 8 2005 /usr/bin/at
  260. -rwsr-xr-x 1 root root 19519 Mar 31 2005 /usr/bin/lppasswd
  261. -rwsr-xr-x 1 root root 73474 May 23 2005 /usr/bin/newgrp
  262. -rwsr-xr-x 1 root root 79060 Apr 14 2005 /usr/bin/crontab
  263. -rws--x--x 1 root root 18056 May 4 2005 /usr/bin/chfn
  264. -r-xr-sr-x 1 root tty 9752 Apr 27 2005 /usr/bin/wall
  265. -rwxr-sr-x 1 root nobody 67572 May 16 2005 /usr/bin/ssh-agent
  266. ---s--x--x 2 root root 108964 Apr 12 2005 /usr/bin/sudoedit
  267. -r-sr-xr-x 1 root root 9532 Feb 26 2015 /usr/lib/vmware-tools/bin32/vmware-user-suid-wrapper
  268. -r-sr-xr-x 1 root root 10224 Feb 26 2015 /usr/lib/vmware-tools/bin64/vmware-user-suid-wrapper
  269. -rws--x--x 1 root root 425662 May 16 2005 /usr/libexec/openssh/ssh-keysign
  270. drwxr-sr-x 111 root root 4096 May 20 2007 /usr/libexec/webmin
  271. -rwsr-xr-x 1 root root 24004 Mar 4 2005 /bin/traceroute
  272. -rwsr-xr-x 1 root root 31308 Apr 7 2005 /bin/ping6
  273. -rwsr-xr-x 1 root root 59740 May 25 2005 /bin/su
  274. -rwsr-xr-x 1 root root 35616 Apr 7 2005 /bin/ping
  275. -rwsr-xr-x 1 root root 75240 May 4 2005 /bin/umount
  276. -rwsr-xr-x 1 root root 14304 Apr 7 2005 /bin/traceroute6
  277. -rwsr-xr-x 1 root root 100324 May 4 2005 /bin/mount
  278.  
  279. [+] Logs containing keyword 'password'
  280.  
  281. [+] Config files containing keyword 'password'
  282. /etc/pear.conf:a:20:{s:13:"master_server";s:12:"pear.php.net";s:10:"http_proxy";s:0:"";s:7:"php_dir";s:15:"/usr/share/pear";s:7:"ext_dir";s:20:"/usr/lib/php/modules";s:7:"doc_dir";s:19:"/usr/share/pear/doc";s:7:"bin_dir";s:8:"/usr/bin";s:8:"data_dir";s:20:"/usr/share/pear/data";s:8:"test_dir";s:20:"/usr/share/pear/test";s:9:"cache_dir";s:15:"/tmp/pear/cache";s:7:"php_bin";s:12:"/usr/bin/php";s:8:"username";s:0:"";s:8:"password";s:0:"";s:7:"verbose";i:1;s:15:"preferred_state";s:6:"stable";s:5:"umask";i:18;s:9:"cache_ttl";i:3600;s:8:"sig_type";s:3:"gpg";s:7:"sig_bin";s:12:"/usr/bin/gpg";s:9:"sig_keyid";s:0:"";s:10:"sig_keydir";s:13:"/etc/pearkeys";}
  283. /etc/lftp.conf:## This can be e.g. TIS-FWTK or rftpd. User and password are optional.
  284. /etc/httpd/conf.d/ssl.conf:# Note that no password is obtained from the user. Every entry in the user
  285. /etc/httpd/conf.d/ssl.conf:# file needs this password: `xxj31ZMTZzkVA'.
  286. /etc/cups/cupsd.conf.save:# and Deny lines, or by requiring a username and password.
  287. /etc/cups/cupsd.conf.save:# and Deny lines, or by requiring a username and password.
  288. /etc/cups/cupsd.conf.save:# and Deny lines, or by requiring a username and password.
  289. /etc/cups/cupsd.conf.save:# and Deny lines, or by requiring a username and password.
  290. /etc/cups/cupsd.conf.save:# and Deny lines, or by requiring a username and password.
  291. /etc/cups/cupsd.conf.save:## Require a username and password (Basic authentication)
  292. /etc/cups/cupsd.conf.save:## Require a username and password (Digest/MD5 authentication)
  293. /etc/ltrace.conf:; pwd.h
  294. /etc/webmin/module.infos.cache:passwd longdesc=Change the password of any user on the system.
  295. /etc/webmin/module.infos.cache:change-user longdesc=Allows the current Webmin user to change his language, theme and possibly password.
  296. /etc/webmin/module.infos.cache:passwd passwd=Change the passwords of Unix users.
  297. /etc/webmin/module.infos.cache:cluster-passwd longdesc=Change passwords on multiple systems in a Webmin cluster at once.
  298. /etc/samba/smb.conf:# Use password server option only with security = server
  299. /etc/samba/smb.conf:; password server = <NT-Server-Name>
  300. /etc/samba/smb.conf:# Password Level allows matching of _n_ characters of the password for
  301. /etc/samba/smb.conf:; password level = 8
  302. /etc/samba/smb.conf:# You may wish to use password encryption. Please read
  303. /etc/samba/smb.conf:; encrypt passwords = yes
  304. /etc/samba/smb.conf:# The following are needed to allow password changing from Windows to
  305. /etc/samba/smb.conf:# update the Linux system password also.
  306. /etc/samba/smb.conf:# NOTE: Use these with 'encrypt passwords' and 'smb passwd file' above.
  307. /etc/samba/smb.conf:# the encrypted SMB passwords. They allow the Unix password
  308. /etc/samba/smb.conf:# to be kept in sync with the SMB password.
  309. /etc/samba/smb.conf:; unix password sync = Yes
  310. /etc/samba/smb.conf:; passwd chat = *New*UNIX*password* %n\n *ReType*new*UNIX*password* %n\n *passwd:*all*authentication*tokens*updated*successfully*
  311. /etc/ldap.conf:# Search the root DSE for the password policy (works
  312. /etc/ldap.conf:# If you are using XAD, you can set pam_password
  313. /etc/ldap.conf:# Do not hash the password at all; presume
  314. /etc/ldap.conf:#pam_password clear
  315. /etc/ldap.conf:# Hash password locally; required for University of
  316. /etc/ldap.conf:#pam_password crypt
  317. /etc/ldap.conf:# Remove old password first, then update in
  318. /etc/ldap.conf:#pam_password nds
  319. /etc/ldap.conf:#pam_password racf
  320. /etc/ldap.conf:# Update Active Directory password, by
  321. /etc/ldap.conf:# creating Unicode password and updating
  322. /etc/ldap.conf:#pam_password ad
  323. /etc/ldap.conf:# Use the OpenLDAP password change
  324. /etc/ldap.conf:# extended operation to update the password.
  325. /etc/ldap.conf:#pam_password exop
  326. /etc/ldap.conf:# Redirect users to a URL or somesuch on password
  327. /etc/ldap.conf:#pam_password_prohibit_message Please visit http://internal to change your password.
  328. /etc/ldap.conf:#pam_password ad
  329. /etc/ldap.conf:#nss_map_attribute shadowLastChange pwdLastSet
  330. /etc/ldap.conf:#pam_password ad
  331. /etc/ldap.conf:#nss_map_attribute shadowLastChange pwdLastSet
  332. /etc/ldap.conf:#pam_password ad
  333. /etc/ldap.conf:# configure --enable-authpassword is no longer supported
  334. /etc/ldap.conf:#nss_map_attribute userPassword passwordChar
  335. /etc/ldap.conf:#pam_password clear
  336. /etc/ldap.conf:# at present and does not support password policy control
  337. /etc/ldap.conf:pam_password md5
  338. /etc/log.d/conf/services/pam_pwdb.conf:# $Id: pam_pwdb.conf,v 1.10 2005/02/24 17:05:20 kirk Exp $
  339. /etc/log.d/conf/services/pam_pwdb.conf:Title = "PAM_pwdb"
  340. /etc/log.d/conf/services/pam_pwdb.conf:# Only give lines pertaining to the PAM_pwdb service...
  341. /etc/log.d/conf/services/pam_pwdb.conf:*OnlyService = pam_pwdb
  342. /etc/log.d/conf/logwatch.conf:#Service = pam_pwdb # PAM_pwdb messages - usually quite a bit
  343. /etc/log.d/logwatch.conf:#Service = pam_pwdb # PAM_pwdb messages - usually quite a bit
  344. /etc/squid/squid.conf.default:# login=user:password | PASS | *:password
  345. /etc/squid/squid.conf.default:# use 'login=user:password' if this is a personal/workgroup
  346. /etc/squid/squid.conf.default:# password to the peer. USE WITH CAUTION
  347. /etc/squid/squid.conf.default:# use 'login=*:password' to pass the username to the
  348. /etc/squid/squid.conf.default:# upstream cache, but with a fixed password. This is meant
  349. /etc/squid/squid.conf.default:# the login=username:password option above.
  350. /etc/squid/squid.conf.default:# If you want the anonymous login password to be more informative
  351. /etc/squid/squid.conf.default:# reads a line containing "username password" and replies "OK" or
  352. /etc/squid/squid.conf.default:# backlog of usercode/password verifications, slowing it down. When
  353. /etc/squid/squid.conf.default:# password verifications are done via a (slow) network you are likely to
  354. /etc/squid/squid.conf.default:# will see when prompted their username and password).
  355. /etc/squid/squid.conf.default:# username:password pair is valid for - in other words how often the
  356. /etc/squid/squid.conf.default:# revalidation with short lived passwords. Note that setting this high
  357. /etc/squid/squid.conf.default:# using an one-time password system (such as SecureID). If you are using
  358. /etc/squid/squid.conf.default:# when prompted their username and password).
  359. /etc/squid/squid.conf.default:# # to check username/password combinations (see
  360. /etc/squid/squid.conf.default:#acl password proxy_auth REQUIRED
  361. /etc/squid/squid.conf.default:# user's default group ID (taken from the password file) and
  362. /etc/squid/squid.conf.default:# Specify passwords for cachemgr operations.
  363. /etc/squid/squid.conf.default:# Usage: cachemgr_passwd password action action ...
  364. /etc/squid/squid.conf.default:# valid password, others can be performed if not listed here.
  365. /etc/squid/squid.conf.default:# To disable an action, set the password to "disable".
  366. /etc/squid/squid.conf.default:# To allow performing an action without a password, set the
  367. /etc/squid/squid.conf.default:# password to "none".
  368. /etc/squid/squid.conf.default:# Use the keyword "all" to set the same password for all actions.
  369. /etc/pki/tls/openssl.cnf:# input_password = secret
  370. /etc/pki/tls/openssl.cnf:# output_password = secret
  371. /etc/pki/tls/openssl.cnf:challengePassword = A challenge password
  372. /etc/pwdb.conf:# This is the configuration file for the pwdb library
  373. /etc/my.cnf:# Default to using old password format for compatibility with mysql 3.x
  374. /etc/my.cnf:old_passwords=1
  375. Binary file /etc/prelink.cache matches
  376.  
  377. [+] Shadow File (Privileged)
  378.  
  379. [*] ENUMERATING PROCESSES AND APPLICATIONS...
  380.  
  381. [+] Installed Packages
  382. 4Suite-1.0-8.b1
  383. acl-2.2.23-8
  384. acpid-1.0.4-1
  385. alchemist-1.0.36-1
  386. alsa-lib-1.0.9rc4-2
  387. alsa-utils-1.0.9rc2-2
  388. anacron-2.3-34
  389. apmd-3.2.2-3
  390. apr-0.9.6-3
  391. apr-util-0.9.6-2
  392. aspell-0.50.5-6
  393. aspell-en-0.51-12
  394. at-3.1.8-77_FC4
  395. atk-1.9.1-1
  396. attr-2.4.16-5
  397. audiofile-0.2.6-2
  398. audit-0.8.2-1
  399. audit-libs-0.8.2-1
  400. authconfig-4.6.12-1
  401. authconfig-gtk-4.6.12-1
  402. autoconf-2.59-5
  403. autofs-4.1.4-5
  404. automake14-1.4p6-12
  405. automake15-1.5-13
  406. automake16-1.6.3-5
  407. automake17-1.7.9-6
  408. automake-1.9.5-1
  409. basesystem-8.0-5
  410. bash-3.0-31
  411. bc-1.06-18
  412. beecrypt-4.1.2-8
  413. bind-9.3.1-4
  414. bind-libs-9.3.1-4
  415. bind-utils-9.3.1-4
  416. binutils-2.15.94.0.2.2-2
  417. bison-2.0-6
  418. bluez-hcidump-1.18-1
  419. bluez-libs-2.15-1
  420. bluez-pin-0.24-2
  421. bluez-utils-2.15-7
  422. boost-1.32.0-6
  423. boost-devel-1.32.0-6
  424. byacc-1.9-29
  425. bzip2-1.0.2-16
  426. bzip2-devel-1.0.2-16
  427. bzip2-libs-1.0.2-16
  428. caching-nameserver-7.3-3
  429. cadaver-0.22.2-2
  430. checkpolicy-1.23.1-1
  431. chkconfig-1.3.20-1
  432. chkfontpath-1.10.0-4
  433. ckermit-8.0.211-1
  434. comps-4-0.20050606
  435. comps-extras-10.3-1
  436. coreutils-5.2.1-48
  437. cpio-2.6-7
  438. cpp-4.0.0-8
  439. cpuspeed-1.2.1-1.21
  440. cracklib-2.8.2-1
  441. cracklib-dicts-2.8.2-1
  442. crash-3.10-13
  443. crontabs-1.10-7
  444. crypto-utils-2.2-5
  445. cscope-15.5-12
  446. ctags-5.5.4-3
  447. cups-1.1.23-15
  448. cups-libs-1.1.23-15
  449. curl-7.13.1-3
  450. curl-devel-7.13.1-3
  451. cvs-1.11.19-8
  452. cyrus-sasl-2.1.20-5
  453. cyrus-sasl-devel-2.1.20-5
  454. cyrus-sasl-md5-2.1.20-5
  455. cyrus-sasl-plain-2.1.20-5
  456. db4-4.3.27-3
  457. db4-devel-4.3.27-3
  458. db4-utils-4.3.27-3
  459. dbus-0.33-3
  460. dbus-devel-0.33-3
  461. dbus-glib-0.33-3
  462. dbus-python-0.33-3
  463. desktop-file-utils-0.10-1
  464. device-mapper-1.01.02-1.0
  465. dhclient-3.0.2-12
  466. dhcpv6_client-0.10-13
  467. dialog-1.0.20050306-1
  468. diffstat-1.38-2
  469. diffutils-2.8.1-15
  470. diskdumputils-1.0.1-6
  471. distcache-1.4.5-7
  472. dmraid-1.0.0.rc8-FC4_5
  473. dos2unix-3.1-24
  474. dosfstools-2.10-3
  475. doxygen-1.4.2-1
  476. dump-0.4b40-2
  477. e2fsprogs-1.37-4
  478. e2fsprogs-devel-1.37-4
  479. ed-0.2-38
  480. eject-2.0.13-15
  481. elfutils-0.108-1
  482. elfutils-libelf-0.108-1
  483. elinks-0.10.3-3
  484. esound-0.2.35-5
  485. ethtool-3-1
  486. expat-1.95.8-6
  487. expat-devel-1.95.8-6
  488. fbset-2.1-20
  489. fedora-logos-1.1.31-1
  490. fedora-release-4-2
  491. fetchmail-6.2.5-7
  492. file-4.13-4
  493. filesystem-2.3.4-1
  494. findutils-4.2.20-1
  495. finger-0.17-28
  496. flex-2.5.4a-34
  497. fontconfig-2.2.3-13
  498. foomatic-3.0.2-19
  499. freeglut-2.2.0-16
  500. freetype-2.1.9-2
  501. ftp-0.17-26
  502. gail-1.8.3-2
  503. gamin-0.1.0-1.1
  504. gawk-3.1.4-5
  505. gcc-4.0.0-8
  506. gcc-c++-4.0.0-8
  507. gcc-gfortran-4.0.0-8
  508. GConf2-2.10.0-4
  509. gd-2.0.33-2
  510. gdb-6.3.0.0-1.21
  511. gdbm-1.8.0-25
  512. gdbm-devel-1.8.0-25
  513. gettext-0.14.3-1
  514. ghostscript-7.07-40
  515. ghostscript-fonts-5.50-13
  516. glib-1.2.10-16
  517. glib2-2.6.4-1
  518. glib2-devel-2.6.4-1
  519. glibc-2.3.5-10
  520. glibc-common-2.3.5-10
  521. glibc-devel-2.3.5-10
  522. glibc-headers-2.3.5-10
  523. glibc-kernheaders-2.4-9.1.94
  524. gmp-4.1.4-6
  525. gmp-devel-4.1.4-6
  526. gnome-keyring-0.4.2-1
  527. gnome-mime-data-2.4.2-1
  528. gnome-python2-2.10.0-1
  529. gnome-python2-bonobo-2.10.0-1
  530. gnome-python2-canvas-2.10.0-1
  531. gnome-python2-extras-2.10.0-2.1
  532. gnome-python2-gnomevfs-2.10.0-1
  533. gnome-python2-gtkhtml2-2.10.0-2.1
  534. gnome-vfs2-2.10.0-5
  535. gnupg-1.4.1-3
  536. gpm-1.20.1-71
  537. gpm-devel-1.20.1-71
  538. grep-2.5.1-48
  539. groff-1.18.1.1-5
  540. grub-0.95-13
  541. gtk2-2.6.7-4
  542. gtkhtml2-2.6.3-1
  543. gzip-1.3.5-6
  544. hal-0.5.2-2
  545. hardlink-1.0-1.13
  546. hdparm-5.9-1
  547. hesiod-3.0.2-31
  548. hesiod-devel-3.0.2-31
  549. hotplug-2004_09_23-7
  550. howl-0.9.8-3
  551. howl-libs-0.9.8-3
  552. htmlview-3.0.0-11
  553. httpd-2.0.54-10
  554. httpd-manual-2.0.54-10
  555. hwdata-0.158-1
  556. indent-2.2.9-8
  557. info-4.8-4
  558. initscripts-8.11.1-1
  559. iproute-2.6.11-1
  560. ipsec-tools-0.5-4
  561. iptables-1.3.0-2
  562. iptstate-1.4-1.1
  563. iputils-20020927-22
  564. irda-utils-0.9.16-7
  565. isdn4k-utils-3.2-28
  566. jpackage-utils-1.6.3-1jpp_1rh
  567. jwhois-3.2.2-14
  568. kbd-1.12-10
  569. kernel-2.6.11-1.1369_FC4
  570. kernel-devel-2.6.11-1.1369_FC4
  571. krb5-devel-1.4-3
  572. krb5-libs-1.4-3
  573. krb5-workstation-1.4-3
  574. krbafs-1.2.2-7
  575. krbafs-devel-1.2.2-7
  576. ksh-20050202-1
  577. kudzu-1.1.116.2-2
  578. kudzu-devel-1.1.116.2-2
  579. less-382-7
  580. lftp-3.1.3-1
  581. lha-1.14i-19
  582. libacl-2.2.23-8
  583. libacl-devel-2.2.23-8
  584. libart_lgpl-2.3.17-2
  585. libattr-2.4.16-5
  586. libattr-devel-2.4.16-5
  587. libbonobo-2.8.1-1
  588. libbonoboui-2.8.1-4
  589. libcap-1.10-22
  590. libcap-devel-1.10-22
  591. libdbi-0.7.2-2
  592. libdbi-dbd-mysql-0.7.1-3
  593. libdbi-drivers-0.7.1-3
  594. libgcc-4.0.0-8
  595. libgcrypt-1.2.1-1
  596. libgfortran-4.0.0-8
  597. libglade2-2.5.1-2
  598. libgnome-2.10.0-3
  599. libgnomecanvas-2.10.0-1
  600. libgnomeui-2.10.0-1
  601. libgpg-error-1.0-2
  602. libIDL-0.8.5-2
  603. libidn-0.5.15-1
  604. libidn-devel-0.5.15-1
  605. libjpeg-6b-34
  606. libmng-1.0.9-1
  607. libogg-1.1.2-2
  608. libogg-devel-1.1.2-2
  609. libpcap-0.8.3-12
  610. libpng-1.2.8-2
  611. libselinux-1.23.10-2
  612. libselinux-devel-1.23.10-2
  613. libsepol-1.5.9-2
  614. libstdc++-4.0.0-8
  615. libstdc++-devel-4.0.0-8
  616. libtermcap-2.0.8-41
  617. libtermcap-devel-2.0.8-41
  618. libtiff-3.7.1-6
  619. libtool-1.5.16.multilib2-1
  620. libtool-ltdl-1.5.16.multilib2-1
  621. libusb-0.1.10a-1
  622. libusb-devel-0.1.10a-1
  623. libuser-0.53.7-1
  624. libuser-devel-0.53.7-1
  625. libvorbis-1.1.0-2
  626. libvorbis-devel-1.1.0-2
  627. libwnck-2.10.0-3
  628. libwvstreams-3.75.0-5
  629. libxml2-2.6.19-1
  630. libxml2-devel-2.6.19-1
  631. libxml2-python-2.6.19-1
  632. libxslt-1.1.14-2
  633. lockdev-1.0.1-7
  634. lockdev-devel-1.0.1-7
  635. logrotate-3.7.1-10
  636. logwatch-6.0.1-2
  637. lrzsz-0.12.20-21
  638. lsof-4.74-7
  639. ltrace-0.3.36-3
  640. lvm2-2.01.08-2.1
  641. m4-1.4.3-1
  642. mailcap-2.1.19-1
  643. mailx-8.1.1-44
  644. make-3.80-7
  645. MAKEDEV-3.19-1
  646. man-1.5p-4
  647. man-pages-1.67-7
  648. mdadm-1.11.0-4.fc4
  649. mgetty-1.1.33-1
  650. mingetty-1.07-5
  651. minicom-2.00.0-21
  652. mkbootdisk-1.5.2-5
  653. mkinitrd-4.2.15-1
  654. mktemp-1.5-23
  655. mod_perl-2.0.0-0.rc5.3
  656. mod_python-3.1.4-2
  657. mod_ssl-2.0.54-10
  658. module-init-tools-3.1-3
  659. mpage-2.5.4-5
  660. mtools-3.9.9-13
  661. mtr-0.69-3
  662. mutt-1.4.2.1-2
  663. mx-2.0.6-2
  664. MyODBC-2.50.39-24
  665. mysql-4.1.11-2
  666. mysqlclient10-3.23.58-6
  667. mysql-devel-4.1.11-2
  668. MySQL-python-1.2.0-1
  669. mysql-server-4.1.11-2
  670. nano-1.3.5-0.20050302
  671. nc-1.78-2
  672. ncurses-5.4-17
  673. ncurses-devel-5.4-17
  674. neon-0.24.7-6
  675. neon-devel-0.24.7-6
  676. netdump-0.7.7-6
  677. net-tools-1.60-52
  678. NetworkManager-0.4-15.cvs20050404
  679. newt-0.51.6-7
  680. newt-devel-0.51.6-7
  681. newt-perl-1.08-8
  682. nfs-utils-1.0.7-8
  683. nmap-3.81-3
  684. nscd-2.3.5-10
  685. nss_db-2.2-31
  686. nss_ldap-234-4
  687. ntp-4.2.0.a.20040617-8
  688. ntsysv-1.3.20-1
  689. numactl-0.6.4-1.18
  690. open-1.4-24
  691. openldap-2.2.23-5
  692. openldap-clients-2.2.23-5
  693. openldap-devel-2.2.23-5
  694. openssh-4.0p1-3
  695. openssh-clients-4.0p1-3
  696. openssh-server-4.0p1-3
  697. openssl-0.9.7f-7
  698. openssl-devel-0.9.7f-7
  699. oprofile-0.8.2-4
  700. ORBit2-2.12.1-3
  701. pam-0.79-8
  702. pam_ccreds-1-6
  703. pam-devel-0.79-8
  704. pam_krb5-2.1.7-3
  705. pam_passwdqc-0.7.6-1
  706. pam_smb-1.1.7-6
  707. pango-1.8.1-2
  708. parted-1.6.22-2
  709. passwd-0.69-2
  710. patch-2.5.4-24
  711. patchutils-0.2.30-4
  712. pax-3.0-11
  713. pciutils-2.1.99.test8-10
  714. pciutils-devel-2.1.99.test8-10
  715. pcmcia-cs-3.2.8-4.12
  716. pcre-5.0-4
  717. perl-5.8.6-15
  718. perl-BSD-Resource-1.24-3
  719. perl-Compress-Zlib-1.34-2
  720. perl-Convert-ASN1-0.19-1
  721. perl-Crypt-SSLeay-0.51-6
  722. perl-DateManip-5.42a-4
  723. perl-DBD-MySQL-2.9007-1
  724. perl-DBI-1.48-4
  725. perl-Filter-1.30-7
  726. perl-HTML-Parser-3.45-1
  727. perl-HTML-Tagset-3.04-1
  728. perl-LDAP-0.33-1
  729. perl-libwww-perl-5.803-2
  730. perl-libxml-enno-1.02-31
  731. perl-libxml-perl-0.08-1
  732. perl-Parse-Yapp-1.05-33
  733. perl-URI-1.35-2
  734. perl-XML-Dumper-0.71-4
  735. perl-XML-Encoding-1.01-27
  736. perl-XML-Grove-0.46alpha-27
  737. perl-XML-LibXML-1.58-2
  738. perl-XML-LibXML-Common-0.13-8
  739. perl-XML-NamespaceSupport-1.08-7
  740. perl-XML-Parser-2.34-6
  741. perl-XML-SAX-0.12-7
  742. perl-XML-Twig-3.17-1
  743. php-5.0.4-10
  744. php-ldap-5.0.4-10
  745. php-pear-5.0.4-10
  746. pinfo-0.6.8-11
  747. pkgconfig-0.15.0-6
  748. pm-utils-0.01-1
  749. pnm2ppa-1.04-13
  750. policycoreutils-1.23.10-2
  751. popt-1.10.1-21
  752. portmap-4.0-65
  753. ppp-2.4.2-7
  754. prelink-0.3.4-3
  755. procmail-3.22-16
  756. procps-3.2.5-6
  757. psacct-6.3.2-37
  758. psmisc-21.5-4
  759. pstack-1.2-4
  760. pygtk2-2.6.0-2
  761. pygtk2-libglade-2.6.0-2
  762. pyOpenSSL-0.6-1.p24.4
  763. pyorbit-2.0.1-4
  764. python-2.4.1-2
  765. python-devel-2.4.1-2
  766. python-elementtree-1.2.6-4
  767. python-ldap-2.0.6-4
  768. python-sqlite-1.1.6-1
  769. python-urlgrabber-2.9.6-1
  770. pyxf86config-0.3.19-4
  771. PyXML-0.8.4-3
  772. qt-3.3.4-14
  773. quota-3.12-6
  774. rcs-5.7-28
  775. rdate-1.4-4
  776. rdist-6.1.5-40
  777. readline-5.0-3
  778. readline-devel-5.0-3
  779. redhat-lsb-1.3-10
  780. redhat-menus-3.8-1
  781. redhat-rpm-config-8.0.34-1
  782. rhnlib-1.8-6.p24.1
  783. rhpl-0.167-1
  784. rmt-0.4b40-2
  785. rootfiles-8.1-1
  786. rpm-4.4.1-21
  787. rpm-build-4.4.1-21
  788. rpm-devel-4.4.1-21
  789. rpm-libs-4.4.1-21
  790. rpm-python-4.4.1-21
  791. rp-pppoe-3.5-27
  792. rsh-0.17-29
  793. rsync-2.6.4-3
  794. samba-3.0.14a-2
  795. samba-client-3.0.14a-2
  796. samba-common-3.0.14a-2
  797. schedutils-1.4.0-4
  798. screen-4.0.2-9
  799. sed-4.1.4-1
  800. selinux-policy-targeted-1.23.16-6
  801. sendmail-8.13.4-2
  802. setarch-1.7-3
  803. setools-2.1.0-5
  804. setserial-2.17-19
  805. setup-2.5.44-1
  806. setuptool-1.17.1-1
  807. shadow-utils-4.0.7-9
  808. shared-mime-info-0.16-3
  809. slang-1.4.9-17
  810. slang-devel-1.4.9-17
  811. slocate-2.7-22
  812. slrn-0.9.8.1-4
  813. sox-12.17.7-3
  814. specspo-9.0.92-1.3
  815. sqlite-3.1.2-3
  816. sqlite-devel-3.1.2-3
  817. squid-2.5.STABLE9-7
  818. startup-notification-0.8-2
  819. statserial-1.1-38
  820. strace-4.5.11-1
  821. stunnel-4.08-2
  822. sudo-1.6.8p8-1
  823. swig-1.3.24-2
  824. symlinks-1.2-24
  825. sysklogd-1.4.1-30
  826. syslinux-3.08-2
  827. sysreport-1.4.1-2
  828. system-config-date-1.7.18-1
  829. system-config-httpd-1.3.2-2
  830. system-config-keyboard-1.2.6-2
  831. system-config-language-1.1.9-2
  832. system-config-lvm-0.9.32-1.0
  833. system-config-mouse-1.2.11-1
  834. system-config-network-1.3.26-1
  835. system-config-network-tui-1.3.26-1
  836. system-config-nfs-1.3.10-1
  837. system-config-packages-1.2.25-1
  838. system-config-printer-0.6.131-1
  839. system-config-printer-gui-0.6.131-1
  840. system-config-rootpassword-1.1.7-2
  841. system-config-samba-1.2.31-1
  842. system-config-securitylevel-1.5.8-1
  843. system-config-securitylevel-tui-1.5.8-1
  844. system-config-services-0.8.25-1
  845. system-config-soundcard-1.2.11-5
  846. system-config-users-1.2.38-1
  847. SysVinit-2.85-39
  848. talk-0.17-29
  849. tar-1.15.1-5
  850. tcl-8.4.9-3
  851. tcpdump-3.8.2-12
  852. tcp_wrappers-7.6-39
  853. tcsh-6.14-1
  854. telnet-0.17-35
  855. termcap-5.4-4
  856. tetex-3.0-4
  857. tetex-fonts-3.0-4
  858. texinfo-4.8-4
  859. time-1.7-27
  860. tmpwatch-2.9.3-1
  861. traceroute-1.4a12-26
  862. ttmkfdir-3.0.9-16
  863. tux-3.2.18-4
  864. tzdata-2005i-2
  865. udev-058-1
  866. unix2dos-2.2-26
  867. unixODBC-2.2.11-1
  868. unzip-5.51-10
  869. up2date-4.4.23-4
  870. urw-fonts-2.3-1
  871. usermode-1.80-1
  872. usermode-gtk-1.80-1
  873. utempter-0.5.5-6
  874. util-linux-2.12p-9.3
  875. valgrind-2.4.0-2
  876. valgrind-callgrind-0.9.11-1
  877. vconfig-1.8-7
  878. vim-minimal-6.3.071-3
  879. vixie-cron-4.1-33
  880. webalizer-2.01_10-28
  881. webmin-1.280-1
  882. wget-1.9.1-22
  883. which-2.16-6
  884. wireless-tools-28-0.pre4.3
  885. words-3.0-7
  886. wvdial-1.54.0-5
  887. xdelta-1.1.3-16
  888. xorg-x11-font-utils-6.8.2-31
  889. xorg-x11-libs-6.8.2-31
  890. xorg-x11-Mesa-libGL-6.8.2-31
  891. xorg-x11-Mesa-libGLU-6.8.2-31
  892. xorg-x11-xauth-6.8.2-31
  893. xorg-x11-xfs-6.8.2-31
  894. ypbind-1.17.2-5
  895. yp-tools-2.8-8
  896. yum-2.3.2-7
  897. zip-2.3-30
  898. zlib-1.2.2.2-3
  899. zlib-devel-1.2.2.2-3
  900. zsh-4.2.1-2
  901.  
  902. [+] Current processes
  903. USER PID START TIME COMMAND
  904. root 1 10:43 0:01 init
  905. root 2 10:43 0:00 [ksoftirqd/0]
  906. root 3 10:43 0:00 [watchdog/0]
  907. root 4 10:43 0:00 [events/0]
  908. root 5 10:43 0:00 [khelper]
  909. root 6 10:43 0:00 [kthread]
  910. root 8 10:43 0:00 [kacpid]
  911. root 165 10:43 0:00 [kblockd/0]
  912. root 168 10:43 0:00 [khubd]
  913. root 219 10:43 0:00 [pdflush]
  914. root 220 10:43 0:00 [pdflush]
  915. root 222 10:43 0:00 [aio/0]
  916. root 221 10:43 0:00 [kswapd0]
  917. root 373 10:43 0:00 [kseriod]
  918. root 533 10:43 0:00 [scsi_eh_0]
  919. root 549 10:43 0:00 [kmirrord/0]
  920. root 559 10:43 0:00 [kjournald]
  921. root 1272 10:43 0:00 udevd
  922. root 1306 10:43 0:00 [shpchpd_event]
  923. root 1434 10:43 0:00 [kjournald]
  924. root 1649 10:43 0:00 [vmmemctl]
  925. root 2026 10:43 0:00 /usr/sbin/vmtoolsd
  926. root 2283 10:43 0:00 syslogd
  927. root 2285 10:43 0:00 klogd
  928. rpc 2301 10:43 0:00 portmap
  929. root 2330 10:43 0:00 auditd
  930. root 2334 10:43 0:00 [kauditd]
  931. root 2357 10:43 0:00 rpc.idmapd
  932. root 2530 10:43 0:00 /usr/sbin/automount
  933. root 2543 10:43 0:00 /usr/sbin/automount
  934. root 2551 10:43 0:00 nifd
  935. root 2562 10:43 0:00 /usr/sbin/acpid
  936. root 2569 10:43 0:00 /usr/bin/perl
  937. root 2653 10:43 0:00 /usr/sbin/sshd
  938. root 2669 10:43 0:00 sendmail:
  939. smmsp 2675 10:43 0:00 sendmail:
  940. root 2683 10:43 0:00 gpm
  941. root 2690 10:43 0:00 crond
  942. xfs 2736 10:43 0:00 xfs
  943. root 2749 10:43 0:00 /usr/sbin/atd
  944. dbus 2756 10:43 0:00 dbus-daemon
  945. root 2767 10:43 0:00 hald
  946. root 2773 10:43 0:00 hald-addon-acpi
  947. root 2789 10:43 0:00 hald-addon-storage
  948. root 2795 10:43 0:00 /sbin/mingetty
  949. root 2796 10:43 0:00 /sbin/mingetty
  950. root 2797 10:43 0:00 /sbin/mingetty
  951. root 2798 10:43 0:00 /sbin/mingetty
  952. root 2799 10:43 0:00 /sbin/mingetty
  953. root 2800 10:43 0:00 /sbin/mingetty
  954. root 3419 10:52 0:00 sshd:
  955. alice 3422 10:53 0:00 sshd:
  956. alice 3423 10:53 0:00 -bash
  957. root 4662 11:48 0:00 cupsd
  958. alice 31312 12:31 0:00 python
  959. alice 31460 12:31 0:00 /bin/sh
  960. alice 31461 12:31 0:00 ps
  961. alice 31462 12:31 0:00 /bin/sh
  962.  
  963. [+] Apache Version and Modules
  964.  
  965. [+] Apache Config File
  966.  
  967. [+] Sudo Version (Check out http://www.exploit-db.com/search/?action=search&filter_page=1&filter_description=sudo)
  968. Sudo version 1.6.8p8
  969.  
  970. [*] IDENTIFYING PROCESSES AND PACKAGES RUNNING AS ROOT OR OTHER SUPERUSER...
  971.  
  972. root 2530 10:43 0:00 /usr/sbin/automount
  973. root 2551 10:43 0:00 nifd
  974. root 2690 10:43 0:00 crond
  975. root 533 10:43 0:00 [scsi_eh_0]
  976. root 373 10:43 0:00 [kseriod]
  977. root 1 10:43 0:01 init
  978. Possible Related Packages:
  979. initscripts-8.11.1-1
  980. mkinitrd-4.2.15-1
  981. module-init-tools-3.1-3
  982. SysVinit-2.85-39
  983. root 2683 10:43 0:00 gpm
  984. Possible Related Packages:
  985. gpm-1.20.1-71
  986. gpm-devel-1.20.1-71
  987. root 1434 10:43 0:00 [kjournald]
  988. root 2357 10:43 0:00 rpc.idmapd
  989. root 2749 10:43 0:00 /usr/sbin/atd
  990. root 2334 10:43 0:00 [kauditd]
  991. root 2799 10:43 0:00 /sbin/mingetty
  992. Possible Related Packages:
  993. mingetty-1.07-5
  994. root 3 10:43 0:00 [watchdog/0]
  995. root 2653 10:43 0:00 /usr/sbin/sshd
  996. root 2798 10:43 0:00 /sbin/mingetty
  997. Possible Related Packages:
  998. mingetty-1.07-5
  999. root 2569 10:43 0:00 /usr/bin/perl
  1000. Possible Related Packages:
  1001. mod_perl-2.0.0-0.rc5.3
  1002. newt-perl-1.08-8
  1003. perl-5.8.6-15
  1004. perl-BSD-Resource-1.24-3
  1005. perl-Compress-Zlib-1.34-2
  1006. perl-Convert-ASN1-0.19-1
  1007. perl-Crypt-SSLeay-0.51-6
  1008. perl-DateManip-5.42a-4
  1009. perl-DBD-MySQL-2.9007-1
  1010. perl-DBI-1.48-4
  1011. perl-Filter-1.30-7
  1012. perl-HTML-Parser-3.45-1
  1013. perl-HTML-Tagset-3.04-1
  1014. perl-LDAP-0.33-1
  1015. perl-libwww-perl-5.803-2
  1016. perl-libxml-enno-1.02-31
  1017. perl-libxml-perl-0.08-1
  1018. perl-Parse-Yapp-1.05-33
  1019. perl-URI-1.35-2
  1020. perl-XML-Dumper-0.71-4
  1021. perl-XML-Encoding-1.01-27
  1022. perl-XML-Grove-0.46alpha-27
  1023. perl-XML-LibXML-1.58-2
  1024. perl-XML-LibXML-Common-0.13-8
  1025. perl-XML-NamespaceSupport-1.08-7
  1026. perl-XML-Parser-2.34-6
  1027. perl-XML-SAX-0.12-7
  1028. perl-XML-Twig-3.17-1
  1029. root 2789 10:43 0:00 hald-addon-storage
  1030. root 1649 10:43 0:00 [vmmemctl]
  1031. root 2796 10:43 0:00 /sbin/mingetty
  1032. Possible Related Packages:
  1033. mingetty-1.07-5
  1034. root 2283 10:43 0:00 syslogd
  1035. root 4662 11:48 0:00 cupsd
  1036. root 2285 10:43 0:00 klogd
  1037. Possible Related Packages:
  1038. sysklogd-1.4.1-30
  1039. root 4 10:43 0:00 [events/0]
  1040. root 2767 10:43 0:00 hald
  1041. root 549 10:43 0:00 [kmirrord/0]
  1042. root 2795 10:43 0:00 /sbin/mingetty
  1043. Possible Related Packages:
  1044. mingetty-1.07-5
  1045. root 6 10:43 0:00 [kthread]
  1046. root 2330 10:43 0:00 auditd
  1047. root 1272 10:43 0:00 udevd
  1048. root 5 10:43 0:00 [khelper]
  1049. root 2669 10:43 0:00 sendmail:
  1050. root 2562 10:43 0:00 /usr/sbin/acpid
  1051. Possible Related Packages:
  1052. acpid-1.0.4-1
  1053. root 221 10:43 0:00 [kswapd0]
  1054. root 3419 10:52 0:00 sshd:
  1055. root 168 10:43 0:00 [khubd]
  1056. root 1306 10:43 0:00 [shpchpd_event]
  1057. root 8 10:43 0:00 [kacpid]
  1058. root 2773 10:43 0:00 hald-addon-acpi
  1059. root 2 10:43 0:00 [ksoftirqd/0]
  1060. root 559 10:43 0:00 [kjournald]
  1061. root 222 10:43 0:00 [aio/0]
  1062. root 219 10:43 0:00 [pdflush]
  1063. root 2026 10:43 0:00 /usr/sbin/vmtoolsd
  1064. root 2543 10:43 0:00 /usr/sbin/automount
  1065. root 2797 10:43 0:00 /sbin/mingetty
  1066. Possible Related Packages:
  1067. mingetty-1.07-5
  1068. root 2800 10:43 0:00 /sbin/mingetty
  1069. Possible Related Packages:
  1070. mingetty-1.07-5
  1071. root 165 10:43 0:00 [kblockd/0]
  1072. root 220 10:43 0:00 [pdflush]
  1073.  
  1074. [*] ENUMERATING INSTALLED LANGUAGES/TOOLS FOR SPLOIT BUILDING...
  1075.  
  1076. [+] Installed Tools
  1077. /bin/awk
  1078. /usr/bin/perl
  1079. /usr/bin/python
  1080. /usr/bin/gcc
  1081. /usr/bin/cc
  1082. /bin/vi
  1083. /usr/bin/nmap
  1084. /usr/bin/find
  1085. /usr/bin/nc
  1086. /usr/bin/wget
  1087. /usr/kerberos/bin/ftp
  1088.  
  1089. [+] Related Shell Escape Sequences...
  1090.  
  1091. nmap--> --interactive
  1092. vi--> :!bash
  1093. vi--> :set shell=/bin/bash:shell
  1094. awk--> awk 'BEGIN {system("/bin/bash")}'
  1095. find--> find / -exec /usr/bin/awk 'BEGIN {system("/bin/bash")}' \;
  1096. perl--> perl -e 'exec "/bin/bash";'
  1097.  
  1098. [*] FINDING RELEVENT PRIVILEGE ESCALATION EXPLOITS...
  1099.  
  1100. Note: Exploits relying on a compile/scripting language not detected on this system are marked with a '**' but should still be tested!
  1101.  
  1102. The following exploits are ranked higher in probability of success because this script detected a related running process, OS, or mounted file system
  1103. - 2.6 UDEV < 141 Local Privilege Escalation Exploit || http://www.exploit-db.com/exploits/8572 || Language=c
  1104. - 2.6 UDEV Local Privilege Escalation Exploit || http://www.exploit-db.com/exploits/8478 || Language=c
  1105.  
  1106. The following exploits are applicable to this kernel version and should be investigated as well
  1107. - < 2.6.19 udp_sendmsg Local Root Exploit || http://www.exploit-db.com/exploits/9575 || Language=c
  1108. - Kernel ia32syscall Emulation Privilege Escalation || http://www.exploit-db.com/exploits/15023 || Language=c
  1109. - < 2.6.29 exit_notify() Local Privilege Escalation Exploit || http://www.exploit-db.com/exploits/8369 || Language=c
  1110. - 2.4.1-2.4.37 and 2.6.1-2.6.32-rc5 Pipe.c Privelege Escalation || http://www.exploit-db.com/exploits/9844 || Language=python
  1111. - < 2.6.36-rc1 CAN BCM Privilege Escalation Exploit || http://www.exploit-db.com/exploits/14814 || Language=c
  1112. - 2.6 < 2.6.19 (32bit) ip_append_data() ring0 Root Exploit || http://www.exploit-db.com/exploits/9542 || Language=c
  1113. - Linux Kernel < 2.6.22 ftruncate()/open() Local Exploit || http://www.exploit-db.com/exploits/6851 || Language=c
  1114. - 2.x sock_sendpage() Local Root Exploit 2 || http://www.exploit-db.com/exploits/9436 || Language=c
  1115. - open-time Capability file_ns_capable() - Privilege Escalation Vulnerability || http://www.exploit-db.com/exploits/25307 || Language=c
  1116. - < 2.6.11.5 BLUETOOTH Stack Local Root Exploit || http://www.exploit-db.com/exploits/4756 || Language=c
  1117. - 2.4/2.6 sock_sendpage() ring0 Root Exploit (simple ver) || http://www.exploit-db.com/exploits/9479 || Language=c
  1118. - <= 2.6.17.4 (proc) Local Root Exploit || http://www.exploit-db.com/exploits/2013 || Language=c
  1119. - 2.6 UDEV < 141 Local Privilege Escalation Exploit || http://www.exploit-db.com/exploits/8572 || Language=c
  1120. - Linux Kernel <=2.6.28.3 set_selection() UTF-8 Off By One Local Exploit || http://www.exploit-db.com/exploits/9083 || Language=c
  1121. - 2.4/2.6 sock_sendpage() Local Root Exploit [2] || http://www.exploit-db.com/exploits/9598 || Language=c
  1122. - < 2.6.19 udp_sendmsg Local Root Exploit (x86/x64) || http://www.exploit-db.com/exploits/9574 || Language=c
  1123. - <= 2.6.11 (CPL 0) Local Root Exploit (k-rad3.c) || http://www.exploit-db.com/exploits/1397 || Language=c
  1124. - open-time Capability file_ns_capable() Privilege Escalation || http://www.exploit-db.com/exploits/25450 || Language=c
  1125. - CAP_SYS_ADMIN to Root Exploit 2 (32 and 64-bit) || http://www.exploit-db.com/exploits/15944 || Language=c
  1126. - Linux RDS Protocol Local Privilege Escalation || http://www.exploit-db.com/exploits/15285 || Language=c
  1127. - 2.6.x ptrace_attach Local Privilege Escalation Exploit || http://www.exploit-db.com/exploits/8673 || Language=c
  1128. - 2.x sock_sendpage() Local Ring0 Root Exploit || http://www.exploit-db.com/exploits/9435 || Language=c
  1129. - 2.4/2.6 bluez Local Root Privilege Escalation Exploit (update) || http://www.exploit-db.com/exploits/926 || Language=c
  1130. - CAP_SYS_ADMIN to root Exploit || http://www.exploit-db.com/exploits/15916 || Language=c
  1131. - 2.4/2.6 sock_sendpage() Local Root Exploit (ppc) || http://www.exploit-db.com/exploits/9545 || Language=c
  1132. - 2.6 UDEV Local Privilege Escalation Exploit || http://www.exploit-db.com/exploits/8478 || Language=c
  1133. - MySQL 4.x/5.0 User-Defined Function Local Privilege Escalation Exploit || http://www.exploit-db.com/exploits/1518 || Language=c
  1134. - < 2.6.36.2 Econet Privilege Escalation Exploit || http://www.exploit-db.com/exploits/17787 || Language=c
  1135. - Sendpage Local Privilege Escalation || http://www.exploit-db.com/exploits/19933 || Language=ruby**
  1136. - < 2.6.37-rc2 ACPI custom_method Privilege Escalation || http://www.exploit-db.com/exploits/15774 || Language=c
  1137. - 'pipe.c' Local Privilege Escalation Vulnerability || http://www.exploit-db.com/exploits/10018 || Language=sh
  1138. - 2.4/2.6 sock_sendpage() Local Root Exploit [3] || http://www.exploit-db.com/exploits/9641 || Language=c
  1139. - <= 2.6.37 Local Privilege Escalation || http://www.exploit-db.com/exploits/15704 || Language=c
  1140. - 2.4.x / 2.6.x uselib() Local Privilege Escalation Exploit || http://www.exploit-db.com/exploits/895 || Language=c
  1141.  
  1142. Finished
  1143. =================================================================================================
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!