Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- Authenticating with public key "imported-openssh-key"
- ┌────────────────────────────────────────────────────────────────────┐
- │ • MobaXterm 10.6 • │
- │ (SSH client, X-server and networking tools) │
- │ │
- │ ➤ SSH session to root@165.227.222.101 │
- │ • SSH compression : ✔ │
- │ • SSH-browser : ✔ │
- │ • X11-forwarding : ✔ (remote display is forwarded through SSH) │
- │ • DISPLAY : ✔ (automatically set on remote server) │
- │ │
- │ ➤ For more info, ctrl+click on help or visit our website │
- └────────────────────────────────────────────────────────────────────┘
- Welcome to Ubuntu 16.04.5 LTS (GNU/Linux 4.4.0-130-generic x86_64)
- * Documentation: https://help.ubuntu.com
- * Management: https://landscape.canonical.com
- * Support: https://ubuntu.com/advantage
- Get cloud support with Ubuntu Advantage Cloud Guest:
- http://www.ubuntu.com/business/services/cloud
- 29 packages can be updated.
- 1 update is a security update.
- *** System restart required ***
- Last login: Thu Aug 16 16:11:09 2018 from 212.170.103.179
- /usr/bin/xauth: file /root/.Xauthority does not exist
- root@node8-new-21:~# apt-get install lynis -y
- Reading package lists... Done
- Building dependency tree
- Reading state information... Done
- The following packages were automatically installed and are no longer required:
- grub-pc-bin linux-headers-4.4.0-103 linux-headers-4.4.0-103-generic linux-headers-4.4.0-104 linux-headers-4.4.0-104-generic linux-headers-4.4.0-108
- linux-headers-4.4.0-108-generic linux-headers-4.4.0-109 linux-headers-4.4.0-109-generic linux-headers-4.4.0-112 linux-headers-4.4.0-112-generic
- linux-headers-4.4.0-116 linux-headers-4.4.0-116-generic linux-headers-4.4.0-119 linux-headers-4.4.0-119-generic linux-headers-4.4.0-121
- linux-headers-4.4.0-121-generic linux-headers-4.4.0-124 linux-headers-4.4.0-124-generic linux-headers-4.4.0-127 linux-headers-4.4.0-127-generic
- linux-headers-4.4.0-128 linux-headers-4.4.0-128-generic linux-headers-4.4.0-133 linux-headers-4.4.0-133-generic linux-image-4.4.0-103-generic
- linux-image-4.4.0-104-generic linux-image-4.4.0-108-generic linux-image-4.4.0-109-generic linux-image-4.4.0-112-generic linux-image-4.4.0-116-generic
- linux-image-4.4.0-119-generic linux-image-4.4.0-121-generic linux-image-4.4.0-124-generic linux-image-4.4.0-127-generic linux-image-4.4.0-128-generic
- linux-image-4.4.0-133-generic
- Use 'apt autoremove' to remove them.
- The following additional packages will be installed:
- menu
- Suggested packages:
- menu-l10n gksu | kde-runtime | ktsuss
- The following NEW packages will be installed:
- lynis menu
- 0 upgraded, 2 newly installed, 0 to remove and 33 not upgraded.
- Need to get 478 kB of archives.
- After this operation, 2,416 kB of additional disk space will be used.
- Get:1 http://nyc2.mirrors.digitalocean.com/ubuntu xenial/universe amd64 lynis all 2.1.1-1 [129 kB]
- Get:2 http://nyc2.mirrors.digitalocean.com/ubuntu xenial-updates/universe amd64 menu amd64 2.1.47ubuntu1.16.04.1 [349 kB]
- Fetched 478 kB in 0s (2,128 kB/s)
- Selecting previously unselected package lynis.
- (Reading database ... 451371 files and directories currently installed.)
- Preparing to unpack .../archives/lynis_2.1.1-1_all.deb ...
- Unpacking lynis (2.1.1-1) ...
- Selecting previously unselected package menu.
- Preparing to unpack .../menu_2.1.47ubuntu1.16.04.1_amd64.deb ...
- Unpacking menu (2.1.47ubuntu1.16.04.1) ...
- Processing triggers for man-db (2.7.5-1) ...
- Processing triggers for mime-support (3.59ubuntu1) ...
- Processing triggers for install-info (6.1.0.dfsg.1-5) ...
- Setting up lynis (2.1.1-1) ...
- Setting up menu (2.1.47ubuntu1.16.04.1) ...
- Processing triggers for menu (2.1.47ubuntu1.16.04.1) ...
- root@node8-new-21:~# lynis audit system
- [ Lynis 2.1.1 ]
- ################################################################################
- Lynis comes with ABSOLUTELY NO WARRANTY. This is free software, and you are
- welcome to redistribute it under the terms of the GNU General Public License.
- See the LICENSE file for details about using this software.
- Copyright 2007-2015 - CISOfy, https://cisofy.com
- Enterprise support and plugins available via CISOfy
- ################################################################################
- [+] Initializing program
- ------------------------------------
- - Detecting OS... [ DONE ]
- ---------------------------------------------------
- Program version: 2.1.1
- Operating system: Linux
- Operating system name: Ubuntu
- Operating system version: 16.04
- Kernel version: 4.4.0
- Hardware platform: x86_64
- Hostname: node8-new-21
- Auditor: [Unknown]
- Profile: /etc/lynis/default.prf
- Log file: /var/log/lynis.log
- Report file: /var/log/lynis-report.dat
- Report version: 1.0
- Plugin directory: /etc/lynis/plugins
- ---------------------------------------------------
- - Checking profile file (/etc/lynis/default.prf)...
- - Program update status... [ WARNING ]
- ===============================================================================
- Lynis update available
- ===============================================================================
- Current version : 211 Latest version : 266
- Please update to the latest version for new features, bug fixes, tests
- and baselines.
- https://cisofy.com/downloads/
- ===============================================================================
- [+] System Tools
- ------------------------------------
- - Scanning available tools...
- - Checking system binaries...
- [+] Plugins (phase 1)
- ------------------------------------
- Note: plugins have more extensive tests, which may take a few minutes to complete
- - Plugin: debian
- [
- [+] Debian Tests
- ------------------------------------
- - Checking for system binaries that are required by Debian Tests...
- - Checking /bin... [ FOUND ]
- - Checking /sbin... [ FOUND ]
- - Checking /usr/bin... [ FOUND ]
- - Checking /usr/sbin... [ FOUND ]
- - Checking /usr/local/bin... [ FOUND ]
- - Checking /usr/local/sbin... [ FOUND ]
- - Authentication:
- - PAM (Pluggable Authentication Modules):
- - libpam-tmpdir [ Not Installed ]
- - libpam-usb [ Not Installed ]
- - File System Checks:
- - DM-Crypt, Cryptsetup & Cryptmount:
- - Checking / on /dev/vda1 [ NOT ENCRYPTED ]
- - Checking /boot/efi on /dev/vda15 [ NOT ENCRYPTED ]
- - Ecryptfs [ NOT INSTALLED ]
- - Software:
- - apt-listbugs [ Not Installed ]
- - apt-listchanges [ Not Installed ]
- - checkrestart [ Not Installed ]
- - debsecan [ Not Installed ]
- - debsums [ Not Installed ]
- - fail2ban [ Not Installed ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- ]
- [+] Boot and services
- ------------------------------------
- - Service Manager [ UNKNOWN ]
- - Checking presence GRUB [ OK ]
- - Checking presence GRUB2 [ FOUND ]
- - Checking for password protection [ WARNING ]
- - Check running services (systemctl) [ DONE ]
- Result: found 23 running services
- - Check enabled services at boot (systemctl) [ DONE ]
- Result: found 35 enabled services
- - Check startup files (permissions) [ OK ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Kernel
- ------------------------------------
- - Checking default run level [ RUNLEVEL 5 ]
- - Checking CPU support (NX/PAE)
- CPU support: PAE and/or NoeXecute supported [ FOUND ]
- - Checking kernel version and release [ DONE ]
- - Checking kernel type [ DONE ]
- - Checking loaded kernel modules [ DONE ]
- Found 50 active modules
- - Checking Linux kernel configuration file [ FOUND ]
- - Checking default I/O kernel scheduler [ FOUND ]
- - Checking for available kernel update [ OK ]
- - Checking core dumps configuration [ DISABLED ]
- - Checking setuid core dumps configuration [ PROTECTED ]
- - Check if reboot is needed [ YES ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Memory and processes
- ------------------------------------
- - Checking /proc/meminfo [ FOUND ]
- - Searching for dead/zombie processes [ OK ]
- - Searching for IO waiting processes [ OK ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Users, Groups and Authentication
- ------------------------------------
- - Search administrator accounts [ OK ]
- - Checking for non-unique UIDs [ OK ]
- - Checking consistency of group files (grpck) [ OK ]
- - Checking non unique group ID's [ OK ]
- - Checking non unique group names [ OK ]
- - Checking password file consistency [ OK ]
- - Query system users (non daemons) [ DONE ]
- - Checking NIS+ authentication support [ NOT ENABLED ]
- - Checking NIS authentication support [ NOT ENABLED ]
- - Checking sudoers file [ FOUND ]
- - Check sudoers file permissions [ OK ]
- - Checking PAM password strength tools [ SUGGESTION ]
- - Checking PAM configuration files (pam.conf) [ FOUND ]
- - Checking PAM configuration files (pam.d) [ FOUND ]
- - Checking PAM modules [ FOUND ]
- - Checking LDAP module in PAM [ NOT FOUND ]
- - Checking accounts without expire date [ OK ]
- - Checking accounts without password [ OK ]
- - Checking user password aging [ DISABLED ]
- - Determining default umask
- - Checking umask (/etc/profile) [ OK ]
- - Checking umask (/etc/login.defs) [ SUGGESTION ]
- - Checking umask (/etc/init.d/rc) [ SUGGESTION ]
- - Checking LDAP authentication support [ NOT ENABLED ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Shells
- ------------------------------------
- - Checking shells from /etc/shells
- Result: found 6 shells (valid shells: 6).
- - Session timeout settings/tools [ NONE ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] File systems
- ------------------------------------
- - Checking mount points
- - Checking /home mount point [ SUGGESTION ]
- - Checking /tmp mount point [ SUGGESTION ]
- - Checking /var mount point [ OK ]
- - Checking LVM volume groups [ NONE ]
- - Querying FFS/UFS mount points (fstab) [ NONE ]
- - Query swap partitions (fstab) [ NONE ]
- - Testing swap partitions [ CHECK NEEDED ]
- - Checking for old files in /tmp [ OK ]
- - Checking /tmp sticky bit [ OK ]
- - ACL support root file system [ ENABLED ]
- - Checking Locate database [ FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Storage
- ------------------------------------
- - Checking usb-storage driver (modprobe config) [ NOT DISABLED ]
- - Checking firewire ohci driver (modprobe config) [ DISABLED ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] NFS
- ------------------------------------
- - Check running NFS daemon [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Name services
- ------------------------------------
- - Checking default DNS search domain [ NONE ]
- - Checking /etc/resolv.conf options [ NONE ]
- - Searching DNS domain name [ UNKNOWN ]
- - Checking nscd status [ NOT FOUND ]
- - Checking BIND status [ NOT FOUND ]
- - Checking PowerDNS status [ NOT FOUND ]
- - Checking ypbind status [ NOT FOUND ]
- - Checking /etc/hosts
- - Checking /etc/hosts (duplicates) [ OK ]
- - Checking /etc/hosts (hostname) [ SUGGESTION ]
- - Checking /etc/hosts (localhost) [ OK ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Ports and packages
- ------------------------------------
- - Searching package managers
- - Searching dpkg package manager [ FOUND ]
- - Querying package manager
- - Query unpurged packages [ FOUND ]
- - Checking security repository in sources.list file [ OK ]
- - Checking APT package database [ OK ]
- - Checking vulnerable packages [ WARNING ]
- - Checking upgradeable packages [ SKIPPED ]
- - Checking package audit tool [ INSTALLED ]
- Found: apt-check
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Networking
- ------------------------------------
- - Checking configured nameservers
- - Testing nameservers
- Nameserver: 67.207.67.2 [ OK ]
- Nameserver: 67.207.67.3 [ OK ]
- - Minimal of 2 responsive nameservers [ OK ]
- - Checking default gateway [ DONE ]
- - Getting listening ports (TCP/UDP) [ DONE ]
- * Found 4 ports
- - Checking promiscuous interfaces [ OK ]
- - Checking waiting connections [ OK ]
- - Checking status DHCP client [ NOT ACTIVE ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Printers and Spools
- ------------------------------------
- - Checking cups daemon [ NOT FOUND ]
- - Checking lp daemon [ NOT RUNNING ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Software: e-mail and messaging
- ------------------------------------
- - Checking Exim status [ NOT FOUND ]
- - Checking Postfix status [ NOT FOUND ]
- - Checking Qmail status [ NOT FOUND ]
- - Checking Sendmail status [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Software: firewalls
- ------------------------------------
- - Checking iptables kernel module [ NOT FOUND ]
- - Checking pflogd status [ NOT FOUND ]
- - Checking pf [ NOT FOUND ]
- - Checking host based firewall [ NOT ACTIVE ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Software: webserver
- ------------------------------------
- - Checking Apache [ NOT FOUND ]
- - Checking nginx [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] SSH Support
- ------------------------------------
- - Checking running SSH daemon [ FOUND ]
- - Searching SSH configuration [ FOUND ]
- - Checking defined SSH options [ DONE ]
- - SSH option: PermitRootLogin [ WARNING ]
- - SSH option: Protocol [ OK ]
- - SSH option: StrictModes [ OK ]
- - SSH option: AllowUsers [ NOT FOUND ]
- - SSH option: AllowGroups [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] SNMP Support
- ------------------------------------
- - Checking running SNMP daemon [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Databases
- ------------------------------------
- - MySQL process status [ NOT FOUND ]
- - PostgreSQL processes status [ NOT FOUND ]
- - Oracle processes status [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] LDAP Services
- ------------------------------------
- - Checking OpenLDAP instance [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] PHP
- ------------------------------------
- - Checking PHP [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Squid Support
- ------------------------------------
- - Checking running Squid daemon [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Logging and files
- ------------------------------------
- - Checking for a running log daemon [ OK ]
- - Checking Syslog-NG status [ NOT FOUND ]
- - Checking systemd journal status [ FOUND ]
- - Checking Metalog status [ NOT FOUND ]
- - Checking RSyslog status [ FOUND ]
- - Checking RFC 3195 daemon status [ NOT FOUND ]
- - Checking minilogd instances [ NOT FOUND ]
- - Checking logrotate presence [ OK ]
- - Checking log directories (static list) [ DONE ]
- - Checking open log files [ DONE ]
- - Checking deleted files in use [ DONE ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Insecure services
- ------------------------------------
- - Checking inetd status [ NOT ACTIVE ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Banners and identification
- ------------------------------------
- - /etc/motd [ NOT FOUND ]
- - /etc/issue [ FOUND ]
- - /etc/issue contents [ WEAK ]
- - /etc/issue.net [ FOUND ]
- - /etc/issue.net contents [ WEAK ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Scheduled tasks
- ------------------------------------
- - Checking crontab/cronjob [ DONE ]
- - Checking atd status [ RUNNING ]
- - Checking at users [ DONE ]
- - Checking at jobs [ NONE ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Accounting
- ------------------------------------
- - Checking accounting information [ NOT FOUND ]
- - Checking sysstat accounting data [ NOT FOUND ]
- - Checking auditd [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Time and Synchronization
- ------------------------------------
- - Checking for a running NTP daemon or client [ WARNING ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Cryptography
- ------------------------------------
- - Checking SSL certificate expiration [ OK ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Virtualization
- ------------------------------------
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Containers
- ------------------------------------
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Security frameworks
- ------------------------------------
- - Checking presence AppArmor [ FOUND ]
- - Checking AppArmor status [ ENABLED ]
- - Checking presence SELinux [ NOT FOUND ]
- - Checking presence grsecurity [ NOT FOUND ]
- - Checking for implemented MAC framework [ OK ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Software: file integrity
- ------------------------------------
- - Checking file integrity tools
- - Checking presence integrity tool [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Software: System tooling
- ------------------------------------
- - Checking automation tooling
- - Automation tooling [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Software: Malware scanners
- ------------------------------------
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] File Permissions
- ------------------------------------
- - Starting file permissions check
- /etc/lilo.conf [ NOT FOUND ]
- /root/.ssh [ OK ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Home directories
- ------------------------------------
- - Checking shell history files [ OK ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Kernel Hardening
- ------------------------------------
- - Comparing sysctl key pairs with scan profile
- - kernel.core_uses_pid (exp: 1) [ DIFFERENT ]
- - kernel.ctrl-alt-del (exp: 0) [ OK ]
- - kernel.kptr_restrict (exp: 1) [ OK ]
- - kernel.sysrq (exp: 0) [ DIFFERENT ]
- - net.ipv4.conf.all.accept_redirects (exp: 0) [ DIFFERENT ]
- - net.ipv4.conf.all.accept_source_route (exp: 0) [ OK ]
- - net.ipv4.conf.all.bootp_relay (exp: 0) [ OK ]
- - net.ipv4.conf.all.forwarding (exp: 0) [ OK ]
- - net.ipv4.conf.all.log_martians (exp: 1) [ DIFFERENT ]
- - net.ipv4.conf.all.mc_forwarding (exp: 0) [ OK ]
- - net.ipv4.conf.all.proxy_arp (exp: 0) [ OK ]
- - net.ipv4.conf.all.rp_filter (exp: 1) [ OK ]
- - net.ipv4.conf.all.send_redirects (exp: 0) [ DIFFERENT ]
- - net.ipv4.conf.default.accept_redirects (exp: 0) [ DIFFERENT ]
- - net.ipv4.conf.default.accept_source_route (exp: 0) [ DIFFERENT ]
- - net.ipv4.conf.default.log_martians (exp: 1) [ DIFFERENT ]
- - net.ipv4.icmp_echo_ignore_broadcasts (exp: 1) [ OK ]
- - net.ipv4.icmp_ignore_bogus_error_responses (exp: 1) [ OK ]
- - net.ipv4.tcp_syncookies (exp: 1) [ OK ]
- - net.ipv4.tcp_timestamps (exp: 0) [ DIFFERENT ]
- - net.ipv6.conf.all.accept_redirects (exp: 0) [ DIFFERENT ]
- - net.ipv6.conf.all.accept_source_route (exp: 0) [ OK ]
- - net.ipv6.conf.default.accept_redirects (exp: 0) [ DIFFERENT ]
- - net.ipv6.conf.default.accept_source_route (exp: 0) [ OK ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Hardening
- ------------------------------------
- - Installed compiler(s) [ NOT FOUND ]
- - Installed malware scanner [ NOT FOUND ]
- [ Press [ENTER] to continue, or [CTRL]+C to stop ]
- [+] Custom Tests
- ------------------------------------
- - Running custom tests... [ NONE ]
- ================================================================================
- -[ Lynis 2.1.1 Results ]-
- Warnings:
- ----------------------------
- - Version of Lynis is very old and should be updated [test:NONE]
- https://cisofy.com/controls/test:NONE/
- - Reboot of system is most likely needed [KRNL-5830]
- https://cisofy.com/controls/KRNL-5830/
- - Found one or more vulnerable packages. [PKGS-7392]
- https://cisofy.com/controls/PKGS-7392/
- - Root can directly login via SSH [SSH-7412]
- https://cisofy.com/controls/SSH-7412/
- Suggestions:
- ----------------------------
- - Install libpam-tmpdir to set $TMP and $TMPDIR for PAM sessions [CUST-0280]
- https://your-domain.example.org/controls/CUST-0280/
- - Install libpam-usb to enable multi-factor authentication for PAM sessions [CUST-0285]
- https://your-domain.example.org/controls/CUST-0285/
- - Install 'ecryptfs-utils' and configure for each user. [CUST-0520]
- https://your-domain.example.org/controls/CUST-0520/
- - Install apt-listbugs to display a list of critical bugs prior to each APT installation. [CUST-0810]
- https://your-domain.example.org/controls/CUST-0810/
- - Install apt-listchanges to display any significant changes prior to any upgrade via APT. [CUST-0811]
- https://your-domain.example.org/controls/CUST-0811/
- - Install debian-goodies so that you can run checkrestart after upgrades to determine which services are using old versions of libraries and need restarting. [CUST-0830]
- https://your-domain.example.org/controls/CUST-0830/
- - Install debsecan to generate lists of vulnerabilities which affect this installation. [CUST-0870]
- https://your-domain.example.org/controls/CUST-0870/
- - Install debsums for the verification of installed package files against MD5 checksums. [CUST-0875]
- https://your-domain.example.org/controls/CUST-0875/
- - Install fail2ban to automatically ban hosts that commit multiple authentication errors. [DEB-0880]
- https://cisofy.com/controls/DEB-0880/
- - Set a password on GRUB bootloader to prevent altering boot configuration (e.g. boot in single user mode without password) [BOOT-5122]
- https://cisofy.com/controls/BOOT-5122/
- - Determine runlevel and services at startup [BOOT-5180]
- https://cisofy.com/controls/BOOT-5180/
- - Install a PAM module for password strength testing like pam_cracklib or pam_passwdqc [AUTH-9262]
- https://cisofy.com/controls/AUTH-9262/
- - Configure password aging limits to enforce password changing on a regular base [AUTH-9286]
- https://cisofy.com/controls/AUTH-9286/
- - Default umask in /etc/login.defs could be more strict like 027 [AUTH-9328]
- https://cisofy.com/controls/AUTH-9328/
- - Default umask in /etc/init.d/rc could be more strict like 027 [AUTH-9328]
- https://cisofy.com/controls/AUTH-9328/
- - To decrease the impact of a full /home file system, place /home on a separated partition [FILE-6310]
- https://cisofy.com/controls/FILE-6310/
- - To decrease the impact of a full /tmp file system, place /tmp on a separated partition [FILE-6310]
- https://cisofy.com/controls/FILE-6310/
- - Check your /etc/fstab file for swap partition mount options [FILE-6336]
- https://cisofy.com/controls/FILE-6336/
- - Disable drivers like USB storage when not used, to prevent unauthorized storage or data theft [STRG-1840]
- https://cisofy.com/controls/STRG-1840/
- - Check DNS configuration for the dns domain name [NAME-4028]
- https://cisofy.com/controls/NAME-4028/
- - Add the IP name and FQDN to /etc/hosts for proper name resolving [NAME-4404]
- https://cisofy.com/controls/NAME-4404/
- - Purge old/removed packages (1 found) with aptitude purge or dpkg --purge command. This will cleanup old configuration files, cron jobs and startup scripts. [PKGS-7346]
- https://cisofy.com/controls/PKGS-7346/
- - Install debsums utility for the verification of packages with known good database. [PKGS-7370]
- https://cisofy.com/controls/PKGS-7370/
- - Update your system with apt-get update, apt-get upgrade, apt-get dist-upgrade and/or unattended-upgrades [PKGS-7392]
- https://cisofy.com/controls/PKGS-7392/
- - Install package apt-show-versions for patch management purposes [PKGS-7394]
- https://cisofy.com/controls/PKGS-7394/
- - Configure a firewall/packet filter to filter incoming and outgoing traffic [FIRE-4590]
- https://cisofy.com/controls/FIRE-4590/
- - Add a legal banner to /etc/issue, to warn unauthorized users [BANN-7126]
- https://cisofy.com/controls/BANN-7126/
- - Add legal banner to /etc/issue.net, to warn unauthorized users [BANN-7130]
- https://cisofy.com/controls/BANN-7130/
- - Enable process accounting [ACCT-9622]
- https://cisofy.com/controls/ACCT-9622/
- - Enable sysstat to collect accounting (no results) [ACCT-9626]
- https://cisofy.com/controls/ACCT-9626/
- - Enable auditd to collect audit information [ACCT-9628]
- https://cisofy.com/controls/ACCT-9628/
- - Use NTP daemon or NTP client to prevent time issues. [TIME-3104]
- https://cisofy.com/controls/TIME-3104/
- - Install a file integrity tool to monitor changes to critical and sensitive files [FINT-4350]
- https://cisofy.com/controls/FINT-4350/
- - Determine if automation tools are present for system management [TOOL-5002]
- https://cisofy.com/controls/TOOL-5002/
- - One or more sysctl values differ from the scan profile and could be tweaked [KRNL-6000]
- https://cisofy.com/controls/KRNL-6000/
- - Harden the system by installing at least one malware scanner, to perform periodic file system scans [HRDN-7230]
- https://cisofy.com/controls/HRDN-7230/
- Follow-up:
- ----------------------------
- - Check the logfile for more details (less /var/log/lynis.log)
- - Read security controls texts (https://cisofy.com)
- - Use --upload to upload data (Lynis Enterprise users)
- ================================================================================
- Lynis security scan details:
- Hardening index : 46 [######### ]
- Tests performed : 189
- Plugins enabled : 1
- Quick overview:
- - Firewall [X] - Malware scanner [X]
- Lynis Modules:
- - Heuristics Check [NA] - Security Audit [V]
- - Compliance Tests [X] - Vulnerability Scan [V]
- Files:
- - Test and debug information : /var/log/lynis.log
- - Report data : /var/log/lynis-report.dat
- ================================================================================
- Notice: Lynis update available
- Current version : 211 Latest version : 266
- ================================================================================
- Tip: Disable all tests which are not relevant or are too strict for the
- purpose of this particular machine. This will remove unwanted suggestions
- and also boost the hardening index. Each test should be properly analyzed
- to see if the related risks can be accepted, before disabling the test.
- ================================================================================
- Lynis 2.1.1
- Auditing, hardening and compliance for BSD, Linux, Mac OS and Unix
- Copyright 2007-2015 - CISOfy, https://cisofy.com
- Enterprise support and plugins available via CISOfy
- ================================================================================
- root@node8-new-21:~# cd /var/log
- root@node8-new-21:/var/log# ls
- alternatives.log apt btmp.1 dpkg.log.2.gz dpkg.log.9.gz lastlog syslog.3.gz wtmp.1
- alternatives.log.1 auth.log cloud-init.log dpkg.log.3.gz fsck lxd syslog.4.gz
- alternatives.log.2.gz auth.log.1 cloud-init-output.log dpkg.log.4.gz kern.log lynis.log syslog.5.gz
- alternatives.log.3.gz auth.log.2.gz dist-upgrade dpkg.log.5.gz kern.log.1 lynis-report.dat syslog.6.gz
- alternatives.log.4.gz auth.log.3.gz dpkg.log dpkg.log.6.gz kern.log.2.gz syslog syslog.7.gz
- alternatives.log.5.gz auth.log.4.gz dpkg.log.1 dpkg.log.7.gz kern.log.3.gz syslog.1 unattended-upgrades
- alternatives.log.6.gz btmp dpkg.log.10.gz dpkg.log.8.gz kern.log.4.gz syslog.2.gz wtmp
- root@node8-new-21:/var/log# ls -la
- total 992
- drwxrwxr-x 7 root syslog 4096 Oct 3 09:02 .
- drwxr-xr-x 13 root root 4096 Dec 8 2017 ..
- -rw-r--r-- 1 root root 0 Jul 20 06:25 alternatives.log
- -rw-r--r-- 1 root root 1286 Jul 19 13:41 alternatives.log.1
- -rw-r--r-- 1 root root 134 Jun 14 06:23 alternatives.log.2.gz
- -rw-r--r-- 1 root root 135 May 25 06:41 alternatives.log.3.gz
- -rw-r--r-- 1 root root 134 Apr 18 06:19 alternatives.log.4.gz
- -rw-r--r-- 1 root root 110 Jan 23 2018 alternatives.log.5.gz
- -rw-r--r-- 1 root root 164 Dec 23 2017 alternatives.log.6.gz
- drwxr-xr-x 2 root root 4096 Oct 1 06:25 apt
- -rw-r----- 1 syslog adm 16083 Oct 3 09:02 auth.log
- -rw-r----- 1 syslog adm 59026 Oct 1 06:25 auth.log.1
- -rw-r----- 1 syslog adm 5353 Sep 23 06:25 auth.log.2.gz
- -rw-r----- 1 syslog adm 2193 Sep 17 06:25 auth.log.3.gz
- -rw-r----- 1 syslog adm 3304 Sep 9 06:25 auth.log.4.gz
- -rw-rw---- 1 root utmp 0 Oct 1 06:25 btmp
- -rw-rw---- 1 root utmp 0 Sep 1 06:25 btmp.1
- -rw-r--r-- 1 syslog adm 404526 Jul 19 13:43 cloud-init.log
- -rw-r--r-- 1 root root 12820 Jul 19 13:43 cloud-init-output.log
- drwxr-xr-x 2 root root 4096 Oct 20 2017 dist-upgrade
- -rw-r--r-- 1 root root 8527 Oct 3 09:02 dpkg.log
- -rw-r--r-- 1 root root 16473 Sep 28 06:17 dpkg.log.1
- -rw-r--r-- 1 root root 1899 Dec 26 2017 dpkg.log.10.gz
- -rw-r--r-- 1 root root 1401 Aug 31 06:37 dpkg.log.2.gz
- -rw-r--r-- 1 root root 8625 Jul 19 13:41 dpkg.log.3.gz
- -rw-r--r-- 1 root root 1826 Jun 29 06:54 dpkg.log.4.gz
- -rw-r--r-- 1 root root 1875 May 31 06:22 dpkg.log.5.gz
- -rw-r--r-- 1 root root 1542 Apr 24 06:30 dpkg.log.6.gz
- -rw-r--r-- 1 root root 735 Mar 30 2018 dpkg.log.7.gz
- -rw-r--r-- 1 root root 1746 Feb 27 2018 dpkg.log.8.gz
- -rw-r--r-- 1 root root 2828 Jan 26 2018 dpkg.log.9.gz
- drwxr-xr-x 2 root root 4096 Dec 8 2017 fsck
- -rw-r----- 1 syslog adm 356 Oct 2 15:49 kern.log
- -rw-r----- 1 syslog adm 1424 Sep 26 18:19 kern.log.1
- -rw-r----- 1 syslog adm 647 Sep 22 06:29 kern.log.2.gz
- -rw-r----- 1 syslog adm 251 Sep 10 00:10 kern.log.3.gz
- -rw-r----- 1 syslog adm 508 Sep 7 09:53 kern.log.4.gz
- -rw-rw-r-- 1 root utmp 292000 Oct 3 09:02 lastlog
- drwxr-xr-x 2 root root 4096 Dec 7 2017 lxd
- -rw-r----- 1 root root 248931 Oct 3 09:03 lynis.log
- -rw-r----- 1 root root 34225 Oct 3 09:03 lynis-report.dat
- -rw-r----- 1 syslog adm 2192 Oct 3 09:03 syslog
- -rw-r----- 1 syslog adm 11961 Oct 3 06:25 syslog.1
- -rw-r----- 1 syslog adm 1007 Oct 2 06:25 syslog.2.gz
- -rw-r----- 1 syslog adm 1004 Oct 1 06:25 syslog.3.gz
- -rw-r----- 1 syslog adm 1070 Sep 30 06:25 syslog.4.gz
- -rw-r----- 1 syslog adm 973 Sep 29 06:25 syslog.5.gz
- -rw-r----- 1 syslog adm 1006 Sep 28 06:25 syslog.6.gz
- -rw-r----- 1 syslog adm 1267 Sep 27 06:25 syslog.7.gz
- drwxr-x--- 2 root adm 4096 Oct 1 06:25 unattended-upgrades
- -rw-rw-r-- 1 root utmp 384 Oct 3 09:02 wtmp
- -rw-rw-r-- 1 root utmp 0 Sep 1 06:25 wtmp.1
- root@node8-new-21:/var/log# cat lynis.log
- [09:02:40] ### Starting Lynis 2.1.1 with PID 22058, build date 22 July 2015 ###
- [09:02:40] ===---------------------------------------------------------------===
- [09:02:40] ### Copyright 2007-2015 - CISOfy, https://cisofy.com ###
- [09:02:40] Program version: 2.1.1
- [09:02:40] Operating system: Linux
- [09:02:40] Operating system name: Ubuntu
- [09:02:40] Operating system version: 16.04
- [09:02:40] Kernel version: 4.4.0
- [09:02:40] Kernel version (full): 4.4.0-130-generic
- [09:02:40] Hardware platform: x86_64
- [09:02:40] Hostname: node8-new-21
- [09:02:40] Auditor: [Unknown]
- [09:02:40] Profile: /etc/lynis/default.prf
- [09:02:40] Log file: /var/log/lynis.log
- [09:02:40] Report file: /var/log/lynis-report.dat
- [09:02:40] Report version: 1.0
- [09:02:40] -----------------------------------------------------
- [09:02:40] Include directory: /usr/share/lynis/include
- [09:02:40] Plugin directory: /etc/lynis/plugins
- [09:02:40] ===---------------------------------------------------------------===
- [09:02:40] Checking permissions of /usr/share/lynis/include/profiles
- [09:02:40] File permissions are OK
- [09:02:40] Reading profile/configuration /etc/lynis/default.prf
- [09:02:40] Profile option set: profile_name (with value Default Audit Template)
- [09:02:40] Profile option set: pause_between_tests (with value 0)
- [09:02:40] Profile option set: show_tool_tips (with value 1)
- [09:02:40] Set option to default value: MACHINE_ROLE --> server
- [09:02:40] Set option to default value: NTPD_ROLE --> client
- [09:02:40] ===---------------------------------------------------------------===
- [09:02:40] Test: Checking for program update...
- [09:02:40] Current installed version : 211
- [09:02:40] Latest stable version : 266
- [09:02:40] Minimum required version : 256
- [09:02:40] Result: This version is VERY outdated. Newer Lynis release available!
- [09:02:40] Warning: Version of Lynis is very old and should be updated [test:NONE]
- [09:02:45] ===---------------------------------------------------------------===
- [09:02:45] Checking permissions of /usr/share/lynis/include/binaries
- [09:02:45] File permissions are OK
- [09:02:45] ===---------------------------------------------------------------===
- [09:02:45] Action: Performing tests from category: System Tools
- [09:02:45] Start scanning for available audit binaries and tools...
- [09:02:45] ===---------------------------------------------------------------===
- [09:02:45] Performing test ID FILE-7502 (Check all system binaries)
- [09:02:45] Status: Starting binary scan...
- [09:02:45] Test: Check if directory exists
- [09:02:45] Test: Checking binaries in directory /bin
- [09:02:45] Directory /bin exists. Starting directory scanning...
- [09:02:45] Found known binary: dnsdomainname (DNS domain) - /bin/dnsdomainname
- [09:02:45] Found known binary: domainname (NIS domain) - /bin/domainname
- [09:02:45] Found known binary: egrep (text search) - /bin/egrep
- [09:02:45] Found known binary: grep (text search) - /bin/grep
- [09:02:45] Found known binary: ip (IP configuration) - /bin/ip
- [09:02:45] Found known binary: journalctl (systemd journal) - /bin/journalctl
- [09:02:45] Found known binary: ls (file listing) - /bin/ls
- [09:02:45] Found known binary: lsmod (kernel modules) - /bin/lsmod
- [09:02:45] Found known binary: netstat (network statistics) - /bin/netstat
- [09:02:45] Found known binary: ps (process listing) - /bin/ps
- [09:02:45] Found known binary: readlink (follows symlinks) - /bin/readlink
- [09:02:45] Found known binary: ss (show sockets) - /bin/ss
- [09:02:45] Found known binary: systemctl (client to systemd) - /bin/systemctl
- [09:02:45] Found known binary: zgrep (text search for compressed files) - /bin/zgrep
- [09:02:45] ===---------------------------------------------------------------===
- [09:02:45] Test: Check if directory exists
- [09:02:45] Test: Checking binaries in directory /sbin
- [09:02:45] Directory /sbin exists. Starting directory scanning...
- [09:02:45] Found known binary: getcap (kernel capabilities) - /sbin/getcap
- [09:02:45] Found known binary: ipconfig (IP configuration) - /sbin/ifconfig
- [09:02:45] Found known binary: ip (IP configuration) - /sbin/ip
- [09:02:45] Found known binary: iptables (firewall) - /sbin/iptables
- [09:02:45] Found known binary: lsmod (kernel modules) - /sbin/lsmod
- [09:02:45] Found known binary: lvdisplay (LVM tool) - /sbin/lvdisplay
- [09:02:45] Found known binary: runlevel (system utility) - /sbin/runlevel
- [09:02:45] Found known binary: sysctl (kernel parameters) - /sbin/sysctl
- [09:02:45] Found known binary: tune2fs (file system tool) - /sbin/tune2fs
- [09:02:45] Found known binary: vgdisplay (LVM tool) - /sbin/vgdisplay
- [09:02:45] ===---------------------------------------------------------------===
- [09:02:45] Test: Check if directory exists
- [09:02:45] Test: Checking binaries in directory /usr/bin
- [09:02:45] Directory /usr/bin exists. Starting directory scanning...
- [09:02:45] Found known binary: awk (string tool) - /usr/bin/awk
- [09:02:45] Found known binary: comm (file compare) - /usr/bin/comm
- [09:02:45] Found known binary: curl (browser) - /usr/bin/curl
- [09:02:45] Found known binary: dig (nameservice tool) - /usr/bin/dig
- [09:02:45] Found known binary: dpkg (package management) - /usr/bin/dpkg
- [09:02:45] Found known binary: find (search tool) - /usr/bin/find
- [09:02:46] Found known binary: locate (file database) - /usr/bin/locate
- [09:02:46] Found known binary: lsattr (file attributes) - /usr/bin/lsattr
- [09:02:46] Found known binary: lsof (open files) - /usr/bin/lsof
- [09:02:46] Found known binary: md5sum (hash tool) - /usr/bin/md5sum
- [09:02:46] Found /usr/bin/openssl (version 1.0.2g)
- [09:02:46] Found /usr/bin/perl (version 5.22.1)
- [09:02:46] Found known binary: python (programming language intepreter) - /usr/bin/python
- [09:02:46] Found known binary: sha1/sha1sum/shasum (crypto hashing) - /usr/bin/sha1sum
- [09:02:46] Found known binary: sha1/sha1sum/shasum (crypto hashing) - /usr/bin/shasum
- [09:02:46] Found known binary: ssh-keyscan (scanner for SSH keys) - /usr/bin/ssh-keyscan
- [09:02:46] Found known binary: stat (file information) - /usr/bin/stat
- [09:02:46] Found known binary: timedatectl (timedate client) - /usr/bin/timedatectl
- [09:02:46] Found known binary: vmtoolsd (VMWare tools) - /usr/bin/vmtoolsd
- [09:02:46] Found /usr/bin/wget (version 1.17.1)
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Test: Checking binaries in directory /usr/sbin
- [09:02:46] Directory /usr/sbin exists. Starting directory scanning...
- [09:02:46] Found known binary: aa-status (apparmor component) - /usr/sbin/aa-status
- [09:02:46] Found known binary: grpck (consistency checker) - /usr/sbin/grpck
- [09:02:46] Found known binary: logrotate (log rotation tool) - /usr/sbin/logrotate
- [09:02:46] Found /usr/sbin/sshd (version 7.2,)
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Test: Checking binaries in directory /usr/local/bin
- [09:02:46] Directory /usr/local/bin exists. Starting directory scanning...
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Test: Checking binaries in directory /usr/local/sbin
- [09:02:46] Directory /usr/local/sbin exists. Starting directory scanning...
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/local/libexec does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/libexec does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/sfw/bin does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/sfw/sbin does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/sfw/libexec does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /opt/sfw/bin does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /opt/sfw/sbin does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /opt/sfw/libexec does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/xpg4/bin does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/css/bin does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/ucb does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/X11R6/bin does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/X11R7/bin does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/pkg/bin does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Check if directory exists
- [09:02:46] Result: Directory /usr/pkg/sbin does NOT exist
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Discovered directories: /bin,/sbin,/usr/bin,/usr/sbin,/usr/local/bin,/usr/local/sbin
- [09:02:46] Result: found 1226 binaries
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Test: Determine if this system is a virtual machine
- [09:02:46] Test: trying to guess virtualization technology with systemctl
- [09:02:46] Result: Unknown virtualization type, so most likely system is physical
- [09:02:46] Result: unknown if this system is a virtual machine
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Action: Performing plugin tests
- [09:02:46] Searching plugins...
- [09:02:46] Found plugin file: /etc/lynis/plugins/plugin_debian_phase1
- [09:02:46] Plugin debian is enabled
- [09:02:46] Including plugin file: /etc/lynis/plugins/plugin_debian_phase1 (version: 1.0.0)
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Action: Performing tests from category: Debian Tests
- [09:02:46] ===---------------------------------------------------------------===
- [09:02:46] Performing test ID CUST-0001 (Check for system binaries required by Debian Tests)
- [09:02:46] Status: Starting binary scan...
- [09:02:46] Test: Checking binaries in directory /bin
- [09:02:46] Directory /bin exists. Starting directory scanning...
- [09:02:46] Binary: /bin/bash
- [09:02:46] Binary: /bin/btrfs
- [09:02:46] Binary: /bin/btrfs-calc-size
- [09:02:46] Binary: /bin/btrfs-convert
- [09:02:46] Binary: /bin/btrfs-debug-tree
- [09:02:46] Binary: /bin/btrfs-find-root
- [09:02:46] Binary: /bin/btrfs-image
- [09:02:46] Binary: /bin/btrfs-map-logical
- [09:02:46] Binary: /bin/btrfs-select-super
- [09:02:46] Binary: /bin/btrfs-show-super
- [09:02:46] Binary: /bin/btrfs-zero-log
- [09:02:46] Binary: /bin/btrfsck
- [09:02:46] Binary: /bin/btrfstune
- [09:02:46] Binary: /bin/bunzip2
- [09:02:46] Binary: /bin/busybox
- [09:02:46] Binary: /bin/bzcat
- [09:02:46] Binary: /bin/bzcmp
- [09:02:46] Binary: /bin/bzdiff
- [09:02:46] Binary: /bin/bzegrep
- [09:02:46] Binary: /bin/bzexe
- [09:02:46] Binary: /bin/bzfgrep
- [09:02:46] Binary: /bin/bzgrep
- [09:02:46] Binary: /bin/bzip2
- [09:02:46] Binary: /bin/bzip2recover
- [09:02:46] Binary: /bin/bzless
- [09:02:46] Binary: /bin/bzmore
- [09:02:46] Binary: /bin/cat
- [09:02:46] Binary: /bin/chacl
- [09:02:46] Binary: /bin/chgrp
- [09:02:46] Binary: /bin/chmod
- [09:02:46] Binary: /bin/chown
- [09:02:47] Binary: /bin/chvt
- [09:02:47] Binary: /bin/cp
- [09:02:47] Binary: /bin/cpio
- [09:02:47] Binary: /bin/dash
- [09:02:47] Binary: /bin/date
- [09:02:47] Binary: /bin/dd
- [09:02:47] Binary: /bin/df
- [09:02:47] Binary: /bin/dir
- [09:02:47] Binary: /bin/dmesg
- [09:02:47] Binary: /bin/dnsdomainname
- [09:02:47] Binary: /bin/domainname
- [09:02:47] Binary: /bin/dumpkeys
- [09:02:47] Binary: /bin/echo
- [09:02:47] Binary: /bin/ed
- [09:02:47] Binary: /bin/efibootmgr
- [09:02:47] Binary: /bin/egrep
- [09:02:47] Binary: /bin/false
- [09:02:47] Binary: /bin/fgconsole
- [09:02:47] Binary: /bin/fgrep
- [09:02:47] Binary: /bin/findmnt
- [09:02:47] Binary: /bin/fsck.btrfs
- [09:02:47] Binary: /bin/fuser
- [09:02:47] Binary: /bin/fusermount
- [09:02:47] Binary: /bin/getfacl
- [09:02:47] Binary: /bin/grep
- [09:02:47] Binary: /bin/gunzip
- [09:02:47] Binary: /bin/gzexe
- [09:02:47] Binary: /bin/gzip
- [09:02:47] Binary: /bin/hostname
- [09:02:47] Binary: /bin/ip
- [09:02:47] Binary: /bin/journalctl
- [09:02:47] Binary: /bin/kbd_mode
- [09:02:47] Binary: /bin/kill
- [09:02:47] Binary: /bin/kmod
- [09:02:47] Binary: /bin/less
- [09:02:47] Binary: /bin/lessecho
- [09:02:47] Binary: /bin/lessfile
- [09:02:47] Binary: /bin/lesskey
- [09:02:47] Binary: /bin/lesspipe
- [09:02:47] Binary: /bin/ln
- [09:02:47] Binary: /bin/loadkeys
- [09:02:47] Binary: /bin/login
- [09:02:47] Binary: /bin/loginctl
- [09:02:47] Binary: /bin/lowntfs-3g
- [09:02:47] Binary: /bin/ls
- [09:02:47] Binary: /bin/lsblk
- [09:02:47] Binary: /bin/lsmod
- [09:02:47] Binary: /bin/mkdir
- [09:02:47] Binary: /bin/mkfs.btrfs
- [09:02:47] Binary: /bin/mknod
- [09:02:47] Binary: /bin/mktemp
- [09:02:47] Binary: /bin/more
- [09:02:47] Binary: /bin/mount
- [09:02:47] Fount known binary: mount (File system tool) - /bin/mount
- [09:02:47] Binary: /bin/mountpoint
- [09:02:47] Binary: /bin/mt
- [09:02:47] Binary: /bin/mt-gnu
- [09:02:47] Binary: /bin/mv
- [09:02:47] Binary: /bin/nano
- [09:02:47] Binary: /bin/nc
- [09:02:47] Binary: /bin/nc.openbsd
- [09:02:47] Binary: /bin/netcat
- [09:02:47] Binary: /bin/netstat
- [09:02:47] Binary: /bin/networkctl
- [09:02:47] Binary: /bin/nisdomainname
- [09:02:47] Binary: /bin/ntfs-3g
- [09:02:47] Binary: /bin/ntfs-3g.probe
- [09:02:47] Binary: /bin/ntfs-3g.secaudit
- [09:02:47] Binary: /bin/ntfs-3g.usermap
- [09:02:47] Binary: /bin/ntfscat
- [09:02:47] Binary: /bin/ntfscluster
- [09:02:47] Binary: /bin/ntfscmp
- [09:02:47] Binary: /bin/ntfsfallocate
- [09:02:47] Binary: /bin/ntfsfix
- [09:02:47] Binary: /bin/ntfsinfo
- [09:02:47] Binary: /bin/ntfsls
- [09:02:47] Binary: /bin/ntfsmove
- [09:02:47] Binary: /bin/ntfstruncate
- [09:02:47] Binary: /bin/ntfswipe
- [09:02:47] Binary: /bin/open
- [09:02:47] Binary: /bin/openvt
- [09:02:47] Binary: /bin/pidof
- [09:02:47] Binary: /bin/ping
- [09:02:47] Binary: /bin/ping6
- [09:02:47] Binary: /bin/plymouth
- [09:02:47] Binary: /bin/ps
- [09:02:47] Binary: /bin/pwd
- [09:02:47] Binary: /bin/rbash
- [09:02:47] Binary: /bin/readlink
- [09:02:47] Binary: /bin/red
- [09:02:47] Binary: /bin/rm
- [09:02:47] Binary: /bin/rmdir
- [09:02:47] Binary: /bin/rnano
- [09:02:47] Binary: /bin/run-parts
- [09:02:47] Binary: /bin/sed
- [09:02:47] Binary: /bin/setfacl
- [09:02:47] Binary: /bin/setfont
- [09:02:47] Binary: /bin/setupcon
- [09:02:47] Binary: /bin/sh
- [09:02:47] Binary: /bin/sh.distrib
- [09:02:47] Binary: /bin/sleep
- [09:02:47] Binary: /bin/ss
- [09:02:47] Binary: /bin/static-sh
- [09:02:47] Binary: /bin/stty
- [09:02:47] Binary: /bin/su
- [09:02:47] Binary: /bin/sync
- [09:02:47] Binary: /bin/systemctl
- [09:02:47] Binary: /bin/systemd
- [09:02:47] Binary: /bin/systemd-ask-password
- [09:02:47] Binary: /bin/systemd-escape
- [09:02:47] Binary: /bin/systemd-hwdb
- [09:02:47] Binary: /bin/systemd-inhibit
- [09:02:47] Binary: /bin/systemd-machine-id-setup
- [09:02:47] Binary: /bin/systemd-notify
- [09:02:47] Binary: /bin/systemd-tmpfiles
- [09:02:47] Binary: /bin/systemd-tty-ask-password-agent
- [09:02:47] Binary: /bin/tailf
- [09:02:47] Binary: /bin/tar
- [09:02:47] Binary: /bin/tempfile
- [09:02:47] Binary: /bin/touch
- [09:02:47] Binary: /bin/true
- [09:02:47] Binary: /bin/udevadm
- [09:02:47] Binary: /bin/ulockmgr_server
- [09:02:47] Binary: /bin/umount
- [09:02:47] Binary: /bin/uname
- [09:02:47] Binary: /bin/uncompress
- [09:02:47] Binary: /bin/unicode_start
- [09:02:47] Binary: /bin/vdir
- [09:02:47] Binary: /bin/wdctl
- [09:02:47] Binary: /bin/which
- [09:02:47] Binary: /bin/whiptail
- [09:02:47] Binary: /bin/ypdomainname
- [09:02:47] Binary: /bin/zcat
- [09:02:47] Binary: /bin/zcmp
- [09:02:47] Binary: /bin/zdiff
- [09:02:47] Binary: /bin/zegrep
- [09:02:47] Binary: /bin/zfgrep
- [09:02:47] Binary: /bin/zforce
- [09:02:47] Binary: /bin/zgrep
- [09:02:47] Binary: /bin/zless
- [09:02:47] Binary: /bin/zmore
- [09:02:47] Binary: /bin/znew
- [09:02:47] ===---------------------------------------------------------------===
- [09:02:47] Test: Checking binaries in directory /sbin
- [09:02:47] Directory /sbin exists. Starting directory scanning...
- [09:02:47] Binary: /sbin/MAKEDEV
- [09:02:47] Binary: /sbin/acpi_available
- [09:02:47] Binary: /sbin/agetty
- [09:02:47] Binary: /sbin/apm_available
- [09:02:47] Binary: /sbin/apparmor_parser
- [09:02:47] Binary: /sbin/badblocks
- [09:02:47] Binary: /sbin/blkdiscard
- [09:02:47] Binary: /sbin/blkid
- [09:02:47] Binary: /sbin/blockdev
- [09:02:47] Binary: /sbin/bridge
- [09:02:47] Binary: /sbin/capsh
- [09:02:47] Binary: /sbin/cfdisk
- [09:02:47] Binary: /sbin/cgdisk
- [09:02:47] Binary: /sbin/chcpu
- [09:02:47] Binary: /sbin/cryptdisks_start
- [09:02:47] Binary: /sbin/cryptdisks_stop
- [09:02:47] Binary: /sbin/cryptsetup
- [09:02:47] Found known binary: cryptsetup (Encryption tool) - /sbin/cryptsetup
- [09:02:47] Binary: /sbin/cryptsetup-reencrypt
- [09:02:47] Binary: /sbin/ctrlaltdel
- [09:02:47] Binary: /sbin/debugfs
- [09:02:47] Binary: /sbin/depmod
- [09:02:47] Binary: /sbin/dhclient
- [09:02:47] Binary: /sbin/dhclient-script
- [09:02:47] Binary: /sbin/dmeventd
- [09:02:47] Binary: /sbin/dmsetup
- [09:02:47] Binary: /sbin/dosfsck
- [09:02:47] Binary: /sbin/dosfslabel
- [09:02:47] Binary: /sbin/dumpe2fs
- [09:02:47] Binary: /sbin/e2fsck
- [09:02:47] Binary: /sbin/e2image
- [09:02:47] Binary: /sbin/e2label
- [09:02:47] Binary: /sbin/e2undo
- [09:02:47] Binary: /sbin/ethtool
- [09:02:47] Binary: /sbin/fatlabel
- [09:02:47] Binary: /sbin/fdisk
- [09:02:47] Binary: /sbin/findfs
- [09:02:47] Binary: /sbin/fixparts
- [09:02:47] Binary: /sbin/fsadm
- [09:02:47] Binary: /sbin/fsck
- [09:02:47] Binary: /sbin/fsck.cramfs
- [09:02:47] Binary: /sbin/fsck.ext2
- [09:02:47] Binary: /sbin/fsck.ext3
- [09:02:47] Binary: /sbin/fsck.ext4
- [09:02:47] Binary: /sbin/fsck.ext4dev
- [09:02:47] Binary: /sbin/fsck.fat
- [09:02:47] Binary: /sbin/fsck.minix
- [09:02:47] Binary: /sbin/fsck.msdos
- [09:02:47] Binary: /sbin/fsck.nfs
- [09:02:47] Binary: /sbin/fsck.vfat
- [09:02:47] Binary: /sbin/fsck.xfs
- [09:02:47] Binary: /sbin/fsfreeze
- [09:02:47] Binary: /sbin/fstab-decode
- [09:02:47] Binary: /sbin/fstrim
- [09:02:47] Binary: /sbin/gdisk
- [09:02:47] Binary: /sbin/getcap
- [09:02:47] Binary: /sbin/getpcaps
- [09:02:47] Binary: /sbin/getty
- [09:02:47] Binary: /sbin/halt
- [09:02:47] Binary: /sbin/hdparm
- [09:02:47] Binary: /sbin/hwclock
- [09:02:47] Binary: /sbin/ifconfig
- [09:02:47] Binary: /sbin/ifdown
- [09:02:47] Binary: /sbin/ifenslave
- [09:02:47] Binary: /sbin/ifenslave-2.6
- [09:02:47] Binary: /sbin/ifquery
- [09:02:47] Binary: /sbin/ifup
- [09:02:47] Binary: /sbin/init
- [09:02:47] Binary: /sbin/insmod
- [09:02:47] Binary: /sbin/installkernel
- [09:02:47] Binary: /sbin/ip
- [09:02:47] Binary: /sbin/ip6tables
- [09:02:47] Binary: /sbin/ip6tables-restore
- [09:02:47] Binary: /sbin/ip6tables-save
- [09:02:47] Binary: /sbin/ipmaddr
- [09:02:47] Binary: /sbin/iptables
- [09:02:47] Binary: /sbin/iptables-restore
- [09:02:47] Binary: /sbin/iptables-save
- [09:02:47] Binary: /sbin/iptunnel
- [09:02:47] Binary: /sbin/iscsi-iname
- [09:02:47] Binary: /sbin/iscsi_discovery
- [09:02:47] Binary: /sbin/iscsiadm
- [09:02:47] Binary: /sbin/iscsid
- [09:02:47] Binary: /sbin/iscsistart
- [09:02:47] Binary: /sbin/isosize
- [09:02:47] Binary: /sbin/kbdrate
- [09:02:47] Binary: /sbin/killall5
- [09:02:47] Binary: /sbin/ldconfig
- [09:02:47] Binary: /sbin/ldconfig.real
- [09:02:47] Binary: /sbin/logsave
- [09:02:47] Binary: /sbin/losetup
- [09:02:47] Binary: /sbin/lsmod
- [09:02:47] Binary: /sbin/lvchange
- [09:02:47] Binary: /sbin/lvconvert
- [09:02:47] Binary: /sbin/lvcreate
- [09:02:47] Binary: /sbin/lvdisplay
- [09:02:47] Found known binary: lvdisplay (LVM tool) - /sbin/lvdisplay
- [09:02:47] Binary: /sbin/lvextend
- [09:02:47] Binary: /sbin/lvm
- [09:02:47] Binary: /sbin/lvmchange
- [09:02:47] Binary: /sbin/lvmconf
- [09:02:47] Binary: /sbin/lvmconfig
- [09:02:47] Binary: /sbin/lvmdiskscan
- [09:02:47] Binary: /sbin/lvmdump
- [09:02:47] Binary: /sbin/lvmetad
- [09:02:47] Binary: /sbin/lvmpolld
- [09:02:47] Binary: /sbin/lvmsadc
- [09:02:47] Binary: /sbin/lvmsar
- [09:02:47] Binary: /sbin/lvreduce
- [09:02:47] Binary: /sbin/lvremove
- [09:02:47] Binary: /sbin/lvrename
- [09:02:47] Binary: /sbin/lvresize
- [09:02:47] Binary: /sbin/lvs
- [09:02:47] Binary: /sbin/lvscan
- [09:02:47] Binary: /sbin/mdadm
- [09:02:47] Binary: /sbin/mdmon
- [09:02:47] Binary: /sbin/mii-tool
- [09:02:47] Binary: /sbin/mkdosfs
- [09:02:47] Binary: /sbin/mke2fs
- [09:02:47] Binary: /sbin/mkfs
- [09:02:47] Binary: /sbin/mkfs.bfs
- [09:02:47] Binary: /sbin/mkfs.cramfs
- [09:02:47] Binary: /sbin/mkfs.ext2
- [09:02:47] Binary: /sbin/mkfs.ext3
- [09:02:47] Binary: /sbin/mkfs.ext4
- [09:02:47] Binary: /sbin/mkfs.ext4dev
- [09:02:47] Binary: /sbin/mkfs.fat
- [09:02:47] Binary: /sbin/mkfs.minix
- [09:02:47] Binary: /sbin/mkfs.msdos
- [09:02:47] Binary: /sbin/mkfs.ntfs
- [09:02:47] Binary: /sbin/mkfs.vfat
- [09:02:47] Binary: /sbin/mkfs.xfs
- [09:02:47] Binary: /sbin/mkhomedir_helper
- [09:02:47] Binary: /sbin/mkntfs
- [09:02:47] Binary: /sbin/mkswap
- [09:02:47] Binary: /sbin/modinfo
- [09:02:47] Binary: /sbin/modprobe
- [09:02:47] Binary: /sbin/mount.fuse
- [09:02:47] Binary: /sbin/mount.lowntfs-3g
- [09:02:47] Binary: /sbin/mount.ntfs
- [09:02:47] Binary: /sbin/mount.ntfs-3g
- [09:02:47] Binary: /sbin/mount.vmhgfs
- [09:02:47] Binary: /sbin/nameif
- [09:02:47] Binary: /sbin/ntfsclone
- [09:02:47] Binary: /sbin/ntfscp
- [09:02:47] Binary: /sbin/ntfslabel
- [09:02:47] Binary: /sbin/ntfsresize
- [09:02:47] Binary: /sbin/ntfsundelete
- [09:02:47] Binary: /sbin/on_ac_power
- [09:02:47] Binary: /sbin/pam_extrausers_chkpwd
- [09:02:47] Binary: /sbin/pam_extrausers_update
- [09:02:47] Binary: /sbin/pam_tally
- [09:02:47] Binary: /sbin/pam_tally2
- [09:02:47] Binary: /sbin/parted
- [09:02:47] Binary: /sbin/partprobe
- [09:02:47] Binary: /sbin/pivot_root
- [09:02:47] Binary: /sbin/plipconfig
- [09:02:47] Binary: /sbin/plymouthd
- [09:02:47] Binary: /sbin/poweroff
- [09:02:47] Binary: /sbin/pvchange
- [09:02:47] Binary: /sbin/pvck
- [09:02:47] Binary: /sbin/pvcreate
- [09:02:47] Binary: /sbin/pvdisplay
- [09:02:47] Binary: /sbin/pvmove
- [09:02:47] Binary: /sbin/pvremove
- [09:02:47] Binary: /sbin/pvresize
- [09:02:47] Binary: /sbin/pvs
- [09:02:47] Binary: /sbin/pvscan
- [09:02:47] Binary: /sbin/rarp
- [09:02:47] Binary: /sbin/raw
- [09:02:47] Binary: /sbin/reboot
- [09:02:47] Binary: /sbin/resize2fs
- [09:02:47] Binary: /sbin/resolvconf
- [09:02:47] Binary: /sbin/rmmod
- [09:02:47] Binary: /sbin/route
- [09:02:47] Binary: /sbin/rtacct
- [09:02:47] Binary: /sbin/rtmon
- [09:02:47] Binary: /sbin/runlevel
- [09:02:47] Binary: /sbin/runuser
- [09:02:47] Binary: /sbin/setcap
- [09:02:47] Binary: /sbin/setvtrgb
- [09:02:47] Binary: /sbin/sfdisk
- [09:02:47] Binary: /sbin/sgdisk
- [09:02:47] Binary: /sbin/shadowconfig
- [09:02:47] Binary: /sbin/shutdown
- [09:02:47] Binary: /sbin/slattach
- [09:02:47] Binary: /sbin/start-stop-daemon
- [09:02:47] Binary: /sbin/sulogin
- [09:02:47] Binary: /sbin/swaplabel
- [09:02:47] Binary: /sbin/swapoff
- [09:02:47] Binary: /sbin/swapon
- [09:02:47] Binary: /sbin/switch_root
- [09:02:47] Binary: /sbin/sysctl
- [09:02:47] Binary: /sbin/tc
- [09:02:47] Binary: /sbin/telinit
- [09:02:47] Binary: /sbin/tipc
- [09:02:47] Binary: /sbin/tune2fs
- [09:02:47] Binary: /sbin/udevadm
- [09:02:47] Binary: /sbin/unix_chkpwd
- [09:02:47] Binary: /sbin/unix_update
- [09:02:47] Binary: /sbin/ureadahead
- [09:02:47] Binary: /sbin/vconfig
- [09:02:47] Binary: /sbin/veritysetup
- [09:02:47] Binary: /sbin/vgcfgbackup
- [09:02:47] Binary: /sbin/vgcfgrestore
- [09:02:47] Binary: /sbin/vgchange
- [09:02:47] Binary: /sbin/vgck
- [09:02:47] Binary: /sbin/vgconvert
- [09:02:47] Binary: /sbin/vgcreate
- [09:02:47] Binary: /sbin/vgdisplay
- [09:02:47] Binary: /sbin/vgexport
- [09:02:47] Binary: /sbin/vgextend
- [09:02:47] Binary: /sbin/vgimport
- [09:02:47] Binary: /sbin/vgimportclone
- [09:02:47] Binary: /sbin/vgmerge
- [09:02:47] Binary: /sbin/vgmknodes
- [09:02:47] Binary: /sbin/vgreduce
- [09:02:47] Binary: /sbin/vgremove
- [09:02:47] Binary: /sbin/vgrename
- [09:02:47] Binary: /sbin/vgs
- [09:02:47] Binary: /sbin/vgscan
- [09:02:47] Binary: /sbin/vgsplit
- [09:02:47] Binary: /sbin/wipefs
- [09:02:47] Binary: /sbin/xfs_repair
- [09:02:47] Binary: /sbin/xtables-multi
- [09:02:47] Binary: /sbin/zramctl
- [09:02:47] ===---------------------------------------------------------------===
- [09:02:47] Test: Checking binaries in directory /usr/bin
- [09:02:47] Directory /usr/bin exists. Starting directory scanning...
- [09:02:47] Binary: /usr/bin/2to3
- [09:02:47] Binary: /usr/bin/2to3-2.7
- [09:02:47] Binary: /usr/bin/2to3-3.5
- [09:02:47] Binary: /usr/bin/NF
- [09:02:47] Binary: /usr/bin/[
- [09:02:47] Binary: /usr/bin/aa-enabled
- [09:02:47] Binary: /usr/bin/acpi_listen
- [09:02:47] Binary: /usr/bin/add-apt-repository
- [09:02:47] Binary: /usr/bin/addpart
- [09:02:47] Binary: /usr/bin/apport-bug
- [09:02:47] Binary: /usr/bin/apport-cli
- [09:02:47] Binary: /usr/bin/apport-collect
- [09:02:47] Binary: /usr/bin/apport-unpack
- [09:02:47] Binary: /usr/bin/apropos
- [09:02:47] Binary: /usr/bin/apt
- [09:02:47] Binary: /usr/bin/apt-add-repository
- [09:02:47] Binary: /usr/bin/apt-cache
- [09:02:47] Binary: /usr/bin/apt-cdrom
- [09:02:47] Binary: /usr/bin/apt-config
- [09:02:47] Binary: /usr/bin/apt-extracttemplates
- [09:02:47] Binary: /usr/bin/apt-ftparchive
- [09:02:47] Binary: /usr/bin/apt-get
- [09:02:47] Binary: /usr/bin/apt-key
- [09:02:47] Binary: /usr/bin/apt-mark
- [09:02:47] Binary: /usr/bin/apt-sortpkgs
- [09:02:47] Binary: /usr/bin/arch
- [09:02:47] Binary: /usr/bin/at
- [09:02:47] Binary: /usr/bin/atq
- [09:02:47] Binary: /usr/bin/atrm
- [09:02:47] Binary: /usr/bin/awk
- [09:02:47] Binary: /usr/bin/base32
- [09:02:47] Binary: /usr/bin/base64
- [09:02:47] Binary: /usr/bin/basename
- [09:02:47] Binary: /usr/bin/bashbug
- [09:02:47] Binary: /usr/bin/batch
- [09:02:47] Binary: /usr/bin/bootctl
- [09:02:47] Binary: /usr/bin/bsd-from
- [09:02:47] Binary: /usr/bin/bsd-write
- [09:02:47] Binary: /usr/bin/busctl
- [09:02:47] Binary: /usr/bin/byobu
- [09:02:47] Binary: /usr/bin/byobu-config
- [09:02:47] Binary: /usr/bin/byobu-ctrl-a
- [09:02:47] Binary: /usr/bin/byobu-disable
- [09:02:47] Binary: /usr/bin/byobu-disable-prompt
- [09:02:47] Binary: /usr/bin/byobu-enable
- [09:02:47] Binary: /usr/bin/byobu-enable-prompt
- [09:02:47] Binary: /usr/bin/byobu-export
- [09:02:47] Binary: /usr/bin/byobu-janitor
- [09:02:47] Binary: /usr/bin/byobu-keybindings
- [09:02:47] Binary: /usr/bin/byobu-launch
- [09:02:47] Binary: /usr/bin/byobu-launcher
- [09:02:47] Binary: /usr/bin/byobu-launcher-install
- [09:02:47] Binary: /usr/bin/byobu-launcher-uninstall
- [09:02:47] Binary: /usr/bin/byobu-layout
- [09:02:47] Binary: /usr/bin/byobu-prompt
- [09:02:47] Binary: /usr/bin/byobu-quiet
- [09:02:47] Binary: /usr/bin/byobu-reconnect-sockets
- [09:02:47] Binary: /usr/bin/byobu-screen
- [09:02:47] Binary: /usr/bin/byobu-select-backend
- [09:02:47] Binary: /usr/bin/byobu-select-profile
- [09:02:47] Binary: /usr/bin/byobu-select-session
- [09:02:47] Binary: /usr/bin/byobu-shell
- [09:02:47] Binary: /usr/bin/byobu-silent
- [09:02:47] Binary: /usr/bin/byobu-status
- [09:02:47] Binary: /usr/bin/byobu-status-detail
- [09:02:47] Binary: /usr/bin/byobu-tmux
- [09:02:47] Binary: /usr/bin/byobu-ugraph
- [09:02:47] Binary: /usr/bin/byobu-ulevel
- [09:02:47] Binary: /usr/bin/c2ph
- [09:02:47] Binary: /usr/bin/c_rehash
- [09:02:47] Binary: /usr/bin/cal
- [09:02:47] Binary: /usr/bin/calendar
- [09:02:47] Binary: /usr/bin/captoinfo
- [09:02:47] Binary: /usr/bin/catchsegv
- [09:02:47] Binary: /usr/bin/catman
- [09:02:47] Binary: /usr/bin/cautious-launcher
- [09:02:47] Binary: /usr/bin/chacl
- [09:02:47] Binary: /usr/bin/chage
- [09:02:47] Binary: /usr/bin/chardet3
- [09:02:47] Binary: /usr/bin/chardetect3
- [09:02:47] Binary: /usr/bin/chattr
- [09:02:47] Binary: /usr/bin/chcon
- [09:02:47] Binary: /usr/bin/check-language-support
- [09:02:47] Binary: /usr/bin/chfn
- [09:02:47] Binary: /usr/bin/chrt
- [09:02:47] Binary: /usr/bin/chsh
- [09:02:47] Binary: /usr/bin/ckbcomp
- [09:02:47] Binary: /usr/bin/cksum
- [09:02:47] Binary: /usr/bin/clear
- [09:02:47] Binary: /usr/bin/clear_console
- [09:02:47] Binary: /usr/bin/cloud-init
- [09:02:47] Binary: /usr/bin/cloud-init-per
- [09:02:47] Binary: /usr/bin/cmp
- [09:02:47] Binary: /usr/bin/codepage
- [09:02:47] Binary: /usr/bin/col
- [09:02:47] Binary: /usr/bin/col1
- [09:02:47] Binary: /usr/bin/col2
- [09:02:47] Binary: /usr/bin/col3
- [09:02:47] Binary: /usr/bin/col4
- [09:02:47] Binary: /usr/bin/col5
- [09:02:47] Binary: /usr/bin/col6
- [09:02:47] Binary: /usr/bin/col7
- [09:02:47] Binary: /usr/bin/col8
- [09:02:47] Binary: /usr/bin/col9
- [09:02:47] Binary: /usr/bin/colcrt
- [09:02:47] Binary: /usr/bin/colrm
- [09:02:47] Binary: /usr/bin/column
- [09:02:47] Binary: /usr/bin/comm
- [09:02:47] Binary: /usr/bin/compose
- [09:02:47] Binary: /usr/bin/corelist
- [09:02:47] Binary: /usr/bin/cpan
- [09:02:47] Binary: /usr/bin/cpan5.22-x86_64-linux-gnu
- [09:02:47] Binary: /usr/bin/crontab
- [09:02:47] Binary: /usr/bin/csplit
- [09:02:47] Binary: /usr/bin/ctail
- [09:02:47] Binary: /usr/bin/ctstat
- [09:02:47] Binary: /usr/bin/curl
- [09:02:47] Binary: /usr/bin/cut
- [09:02:47] Binary: /usr/bin/dbus-cleanup-sockets
- [09:02:47] Binary: /usr/bin/dbus-daemon
- [09:02:47] Binary: /usr/bin/dbus-monitor
- [09:02:47] Binary: /usr/bin/dbus-run-session
- [09:02:47] Binary: /usr/bin/dbus-send
- [09:02:47] Binary: /usr/bin/dbus-update-activation-environment
- [09:02:47] Binary: /usr/bin/dbus-uuidgen
- [09:02:47] Binary: /usr/bin/deallocvt
- [09:02:47] Binary: /usr/bin/deb-systemd-helper
- [09:02:47] Binary: /usr/bin/deb-systemd-invoke
- [09:02:47] Binary: /usr/bin/debconf
- [09:02:47] Binary: /usr/bin/debconf-apt-progress
- [09:02:47] Binary: /usr/bin/debconf-communicate
- [09:02:47] Binary: /usr/bin/debconf-copydb
- [09:02:47] Binary: /usr/bin/debconf-escape
- [09:02:47] Binary: /usr/bin/debconf-set-selections
- [09:02:47] Binary: /usr/bin/debconf-show
- [09:02:47] Binary: /usr/bin/delpart
- [09:02:47] Binary: /usr/bin/dh_bash-completion
- [09:02:47] Binary: /usr/bin/dh_installxmlcatalogs
- [09:02:47] Binary: /usr/bin/dh_pypy
- [09:02:47] Binary: /usr/bin/dh_python2
- [09:02:47] Binary: /usr/bin/dh_python3
- [09:02:47] Binary: /usr/bin/diff
- [09:02:47] Binary: /usr/bin/diff3
- [09:02:47] Binary: /usr/bin/dig
- [09:02:47] Binary: /usr/bin/dircolors
- [09:02:47] Binary: /usr/bin/dirname
- [09:02:47] Binary: /usr/bin/do-release-upgrade
- [09:02:47] Binary: /usr/bin/dpkg
- [09:02:47] Binary: /usr/bin/dpkg-deb
- [09:02:47] Binary: /usr/bin/dpkg-divert
- [09:02:47] Binary: /usr/bin/dpkg-maintscript-helper
- [09:02:47] Binary: /usr/bin/dpkg-query
- [09:02:47] Binary: /usr/bin/dpkg-split
- [09:02:47] Binary: /usr/bin/dpkg-statoverride
- [09:02:47] Binary: /usr/bin/dpkg-trigger
- [09:02:47] Binary: /usr/bin/du
- [09:02:47] Binary: /usr/bin/dumpkeys
- [09:02:47] Binary: /usr/bin/eatmydata
- [09:02:47] Binary: /usr/bin/ec2metadata
- [09:02:47] Binary: /usr/bin/edit
- [09:02:47] Binary: /usr/bin/editor
- [09:02:47] Binary: /usr/bin/eject
- [09:02:47] Binary: /usr/bin/enc2xs
- [09:02:47] Binary: /usr/bin/encguess
- [09:02:47] Binary: /usr/bin/env
- [09:02:47] Binary: /usr/bin/envsubst
- [09:02:47] Binary: /usr/bin/eqn
- [09:02:47] Binary: /usr/bin/ex
- [09:02:47] Binary: /usr/bin/expand
- [09:02:47] Binary: /usr/bin/expiry
- [09:02:47] Binary: /usr/bin/expr
- [09:02:47] Binary: /usr/bin/factor
- [09:02:47] Binary: /usr/bin/faillog
- [09:02:47] Binary: /usr/bin/fallocate
- [09:02:47] Binary: /usr/bin/file
- [09:02:47] Binary: /usr/bin/file-rename
- [09:02:47] Binary: /usr/bin/find
- [09:02:47] Binary: /usr/bin/flock
- [09:02:47] Binary: /usr/bin/fmt
- [09:02:47] Binary: /usr/bin/fold
- [09:02:47] Binary: /usr/bin/forever
- [09:02:47] Binary: /usr/bin/free
- [09:02:47] Binary: /usr/bin/from
- [09:02:47] Binary: /usr/bin/ftp
- [09:02:47] Binary: /usr/bin/gawk
- [09:02:47] Binary: /usr/bin/geqn
- [09:02:47] Binary: /usr/bin/getconf
- [09:02:47] Binary: /usr/bin/getent
- [09:02:47] Binary: /usr/bin/getfacl
- [09:02:47] Binary: /usr/bin/getkeycodes
- [09:02:47] Binary: /usr/bin/getopt
- [09:02:47] Binary: /usr/bin/gettext
- [09:02:47] Binary: /usr/bin/gettext.sh
- [09:02:47] Binary: /usr/bin/ginstall-info
- [09:02:47] Binary: /usr/bin/git
- [09:02:47] Binary: /usr/bin/git-receive-pack
- [09:02:47] Binary: /usr/bin/git-shell
- [09:02:47] Binary: /usr/bin/git-upload-archive
- [09:02:47] Binary: /usr/bin/git-upload-pack
- [09:02:47] Binary: /usr/bin/gitlab-ci-multi-runner
- [09:02:47] Binary: /usr/bin/gitlab-runner
- [09:02:47] Binary: /usr/bin/gpasswd
- [09:02:47] Binary: /usr/bin/gpg
- [09:02:47] Binary: /usr/bin/gpg-zip
- [09:02:47] Binary: /usr/bin/gpgsplit
- [09:02:47] Binary: /usr/bin/gpgv
- [09:02:47] Binary: /usr/bin/gpic
- [09:02:47] Binary: /usr/bin/groff
- [09:02:47] Binary: /usr/bin/grog
- [09:02:47] Binary: /usr/bin/grops
- [09:02:47] Binary: /usr/bin/grotty
- [09:02:47] Binary: /usr/bin/groups
- [09:02:47] Binary: /usr/bin/growpart
- [09:02:47] Binary: /usr/bin/grub-editenv
- [09:02:47] Binary: /usr/bin/grub-file
- [09:02:47] Binary: /usr/bin/grub-fstest
- [09:02:47] Binary: /usr/bin/grub-glue-efi
- [09:02:47] Binary: /usr/bin/grub-kbdcomp
- [09:02:47] Binary: /usr/bin/grub-menulst2cfg
- [09:02:47] Binary: /usr/bin/grub-mkfont
- [09:02:47] Binary: /usr/bin/grub-mkimage
- [09:02:47] Binary: /usr/bin/grub-mklayout
- [09:02:47] Binary: /usr/bin/grub-mknetdir
- [09:02:47] Binary: /usr/bin/grub-mkpasswd-pbkdf2
- [09:02:47] Binary: /usr/bin/grub-mkrelpath
- [09:02:47] Binary: /usr/bin/grub-mkrescue
- [09:02:47] Binary: /usr/bin/grub-mkstandalone
- [09:02:47] Binary: /usr/bin/grub-mount
- [09:02:47] Binary: /usr/bin/grub-render-label
- [09:02:47] Binary: /usr/bin/grub-script-check
- [09:02:47] Binary: /usr/bin/grub-syslinux2cfg
- [09:02:47] Binary: /usr/bin/gtbl
- [09:02:47] Binary: /usr/bin/h2ph
- [09:02:47] Binary: /usr/bin/h2xs
- [09:02:47] Binary: /usr/bin/hd
- [09:02:47] Binary: /usr/bin/head
- [09:02:47] Binary: /usr/bin/helpztags
- [09:02:47] Binary: /usr/bin/hexdump
- [09:02:47] Binary: /usr/bin/host
- [09:02:47] Binary: /usr/bin/hostid
- [09:02:47] Binary: /usr/bin/hostnamectl
- [09:02:47] Binary: /usr/bin/i386
- [09:02:47] Binary: /usr/bin/iconv
- [09:02:47] Binary: /usr/bin/id
- [09:02:47] Binary: /usr/bin/igawk
- [09:02:47] Binary: /usr/bin/info
- [09:02:47] Binary: /usr/bin/infobrowser
- [09:02:47] Binary: /usr/bin/infocmp
- [09:02:47] Binary: /usr/bin/infotocap
- [09:02:47] Binary: /usr/bin/install
- [09:02:47] Binary: /usr/bin/install-info
- [09:02:47] Binary: /usr/bin/install-menu
- [09:02:47] Binary: /usr/bin/instmodsh
- [09:02:47] Binary: /usr/bin/ionice
- [09:02:47] Binary: /usr/bin/ipcmk
- [09:02:47] Binary: /usr/bin/ipcrm
- [09:02:47] Binary: /usr/bin/ipcs
- [09:02:47] Binary: /usr/bin/iptables-xml
- [09:02:47] Binary: /usr/bin/ischroot
- [09:02:47] Binary: /usr/bin/iscsiadm
- [09:02:47] Binary: /usr/bin/join
- [09:02:47] Binary: /usr/bin/json_pp
- [09:02:47] Binary: /usr/bin/jsondiff
- [09:02:47] Binary: /usr/bin/jsonpatch
- [09:02:47] Binary: /usr/bin/jsonpointer
- [09:02:47] Binary: /usr/bin/jwt3
- [09:02:47] Binary: /usr/bin/kbdinfo
- [09:02:47] Binary: /usr/bin/keep-one-running
- [09:02:47] Binary: /usr/bin/killall
- [09:02:47] Binary: /usr/bin/kmodsign
- [09:02:47] Binary: /usr/bin/last
- [09:02:47] Binary: /usr/bin/lastb
- [09:02:47] Binary: /usr/bin/lastlog
- [09:02:47] Binary: /usr/bin/lcf
- [09:02:47] Binary: /usr/bin/ldd
- [09:02:47] Binary: /usr/bin/less
- [09:02:47] Binary: /usr/bin/lessecho
- [09:02:47] Binary: /usr/bin/lessfile
- [09:02:47] Binary: /usr/bin/lesskey
- [09:02:47] Binary: /usr/bin/lesspipe
- [09:02:47] Binary: /usr/bin/lexgrog
- [09:02:47] Binary: /usr/bin/libnetcfg
- [09:02:47] Binary: /usr/bin/line
- [09:02:47] Binary: /usr/bin/link
- [09:02:47] Binary: /usr/bin/linux-boot-prober
- [09:02:47] Binary: /usr/bin/linux-check-removal
- [09:02:47] Binary: /usr/bin/linux-update-symlinks
- [09:02:47] Binary: /usr/bin/linux-version
- [09:02:47] Binary: /usr/bin/linux32
- [09:02:47] Binary: /usr/bin/linux64
- [09:02:47] Binary: /usr/bin/lnstat
- [09:02:47] Binary: /usr/bin/loadkeys
- [09:02:47] Binary: /usr/bin/loadunimap
- [09:02:47] Binary: /usr/bin/locale
- [09:02:47] Binary: /usr/bin/localectl
- [09:02:47] Binary: /usr/bin/localedef
- [09:02:47] Binary: /usr/bin/locate
- [09:02:47] Binary: /usr/bin/logger
- [09:02:47] Binary: /usr/bin/logname
- [09:02:47] Binary: /usr/bin/look
- [09:02:47] Binary: /usr/bin/lorder
- [09:02:47] Binary: /usr/bin/lsattr
- [09:02:47] Binary: /usr/bin/lsb_release
- [09:02:47] Binary: /usr/bin/lscpu
- [09:02:47] Binary: /usr/bin/lshw
- [09:02:47] Binary: /usr/bin/lsinitramfs
- [09:02:47] Binary: /usr/bin/lsipc
- [09:02:47] Binary: /usr/bin/lslocks
- [09:02:47] Binary: /usr/bin/lslogins
- [09:02:47] Binary: /usr/bin/lsof
- [09:02:47] Binary: /usr/bin/lspci
- [09:02:47] Binary: /usr/bin/lspgpot
- [09:02:47] Binary: /usr/bin/lsusb
- [09:02:47] Binary: /usr/bin/ltrace
- [09:02:47] Binary: /usr/bin/lxc
- [09:02:47] Binary: /usr/bin/lxcfs
- [09:02:47] Binary: /usr/bin/lxd
- [09:02:47] Binary: /usr/bin/lzcat
- [09:02:47] Binary: /usr/bin/lzcmp
- [09:02:47] Binary: /usr/bin/lzdiff
- [09:02:47] Binary: /usr/bin/lzegrep
- [09:02:47] Binary: /usr/bin/lzfgrep
- [09:02:47] Binary: /usr/bin/lzgrep
- [09:02:47] Binary: /usr/bin/lzless
- [09:02:47] Binary: /usr/bin/lzma
- [09:02:47] Binary: /usr/bin/lzmainfo
- [09:02:47] Binary: /usr/bin/lzmore
- [09:02:47] Binary: /usr/bin/man
- [09:02:47] Binary: /usr/bin/mandb
- [09:02:47] Binary: /usr/bin/manifest
- [09:02:47] Binary: /usr/bin/manpath
- [09:02:47] Binary: /usr/bin/mapscrn
- [09:02:47] Binary: /usr/bin/mawk
- [09:02:47] Binary: /usr/bin/mcookie
- [09:02:47] Binary: /usr/bin/md5sum
- [09:02:47] Binary: /usr/bin/md5sum.textutils
- [09:02:47] Binary: /usr/bin/mesg
- [09:02:47] Binary: /usr/bin/mk_modmap
- [09:02:47] Binary: /usr/bin/mkfifo
- [09:02:47] Binary: /usr/bin/mksquashfs
- [09:02:47] Binary: /usr/bin/mlocate
- [09:02:47] Binary: /usr/bin/mokutil
- [09:02:47] Binary: /usr/bin/mtr
- [09:02:47] Binary: /usr/bin/namei
- [09:02:47] Binary: /usr/bin/nawk
- [09:02:47] Binary: /usr/bin/ncal
- [09:02:47] Binary: /usr/bin/neqn
- [09:02:47] Binary: /usr/bin/netkit-ftp
- [09:02:47] Binary: /usr/bin/newgidmap
- [09:02:47] Binary: /usr/bin/newgrp
- [09:02:47] Binary: /usr/bin/newuidmap
- [09:02:47] Binary: /usr/bin/ngettext
- [09:02:47] Binary: /usr/bin/nice
- [09:02:47] Binary: /usr/bin/nl
- [09:02:47] Binary: /usr/bin/node
- [09:02:47] Binary: /usr/bin/nodejs
- [09:02:47] Binary: /usr/bin/nodemon
- [09:02:47] Binary: /usr/bin/nohup
- [09:02:47] Binary: /usr/bin/npm
- [09:02:47] Binary: /usr/bin/nproc
- [09:02:48] Binary: /usr/bin/npx
- [09:02:48] Binary: /usr/bin/nroff
- [09:02:48] Binary: /usr/bin/nsenter
- [09:02:48] Binary: /usr/bin/nslookup
- [09:02:48] Binary: /usr/bin/nstat
- [09:02:48] Binary: /usr/bin/nsupdate
- [09:02:48] Binary: /usr/bin/ntfsdecrypt
- [09:02:48] Binary: /usr/bin/numfmt
- [09:02:48] Binary: /usr/bin/od
- [09:02:48] Binary: /usr/bin/on_ac_power
- [09:02:48] Binary: /usr/bin/openssl
- [09:02:48] Binary: /usr/bin/os-prober
- [09:02:48] Binary: /usr/bin/pager
- [09:02:48] Binary: /usr/bin/partx
- [09:02:48] Binary: /usr/bin/passwd
- [09:02:48] Binary: /usr/bin/paste
- [09:02:48] Binary: /usr/bin/pastebinit
- [09:02:48] Binary: /usr/bin/patch
- [09:02:48] Binary: /usr/bin/pathchk
- [09:02:48] Binary: /usr/bin/pbget
- [09:02:48] Binary: /usr/bin/pbput
- [09:02:48] Binary: /usr/bin/pbputs
- [09:02:48] Binary: /usr/bin/pcimodules
- [09:02:48] Binary: /usr/bin/pdb
- [09:02:48] Binary: /usr/bin/pdb2.7
- [09:02:48] Binary: /usr/bin/pdb3
- [09:02:48] Binary: /usr/bin/pdb3.5
- [09:02:48] Binary: /usr/bin/peekfd
- [09:02:48] Binary: /usr/bin/perl
- [09:02:48] Binary: /usr/bin/perl5.22-x86_64-linux-gnu
- [09:02:48] Binary: /usr/bin/perl5.22.1
- [09:02:48] Binary: /usr/bin/perlbug
- [09:02:48] Binary: /usr/bin/perldoc
- [09:02:48] Binary: /usr/bin/perlivp
- [09:02:48] Binary: /usr/bin/perlthanks
- [09:02:48] Binary: /usr/bin/pftp
- [09:02:48] Binary: /usr/bin/pg
- [09:02:48] Binary: /usr/bin/pgrep
- [09:02:48] Binary: /usr/bin/pic
- [09:02:48] Binary: /usr/bin/pico
- [09:02:48] Binary: /usr/bin/piconv
- [09:02:48] Binary: /usr/bin/pinky
- [09:02:48] Binary: /usr/bin/pkaction
- [09:02:48] Binary: /usr/bin/pkcheck
- [09:02:48] Binary: /usr/bin/pkexec
- [09:02:48] Binary: /usr/bin/pkill
- [09:02:48] Binary: /usr/bin/pkttyagent
- [09:02:48] Binary: /usr/bin/pl2pm
- [09:02:48] Binary: /usr/bin/pldd
- [09:02:48] Binary: /usr/bin/pmap
- [09:02:48] Binary: /usr/bin/pod2html
- [09:02:48] Binary: /usr/bin/pod2man
- [09:02:48] Binary: /usr/bin/pod2text
- [09:02:48] Binary: /usr/bin/pod2usage
- [09:02:48] Binary: /usr/bin/podchecker
- [09:02:48] Binary: /usr/bin/podselect
- [09:02:48] Binary: /usr/bin/pollinate
- [09:02:48] Binary: /usr/bin/pr
- [09:02:48] Binary: /usr/bin/preconv
- [09:02:48] Binary: /usr/bin/prename
- [09:02:48] Binary: /usr/bin/print
- [09:02:48] Binary: /usr/bin/printenv
- [09:02:48] Binary: /usr/bin/printerbanner
- [09:02:48] Binary: /usr/bin/printf
- [09:02:48] Binary: /usr/bin/prlimit
- [09:02:48] Binary: /usr/bin/prove
- [09:02:48] Binary: /usr/bin/prtstat
- [09:02:48] Binary: /usr/bin/psfaddtable
- [09:02:48] Binary: /usr/bin/psfgettable
- [09:02:48] Binary: /usr/bin/psfstriptable
- [09:02:48] Binary: /usr/bin/psfxtable
- [09:02:48] Binary: /usr/bin/pstree
- [09:02:48] Binary: /usr/bin/pstree.x11
- [09:02:48] Binary: /usr/bin/pstruct
- [09:02:48] Binary: /usr/bin/ptar
- [09:02:48] Binary: /usr/bin/ptardiff
- [09:02:48] Binary: /usr/bin/ptargrep
- [09:02:48] Binary: /usr/bin/ptx
- [09:02:48] Binary: /usr/bin/purge-old-kernels
- [09:02:48] Binary: /usr/bin/pwdx
- [09:02:48] Binary: /usr/bin/py3clean
- [09:02:48] Binary: /usr/bin/py3compile
- [09:02:48] Binary: /usr/bin/py3versions
- [09:02:48] Binary: /usr/bin/pybuild
- [09:02:48] Binary: /usr/bin/pyclean
- [09:02:48] Binary: /usr/bin/pycompile
- [09:02:48] Binary: /usr/bin/pydoc
- [09:02:48] Binary: /usr/bin/pydoc2.7
- [09:02:48] Binary: /usr/bin/pydoc3
- [09:02:48] Binary: /usr/bin/pydoc3.5
- [09:02:48] Binary: /usr/bin/pygettext
- [09:02:48] Binary: /usr/bin/pygettext2.7
- [09:02:48] Binary: /usr/bin/pygettext3
- [09:02:48] Binary: /usr/bin/pygettext3.5
- [09:02:48] Binary: /usr/bin/python
- [09:02:48] Binary: /usr/bin/python2
- [09:02:48] Binary: /usr/bin/python2.7
- [09:02:48] Binary: /usr/bin/python3
- [09:02:48] Binary: /usr/bin/python3-jsondiff
- [09:02:48] Binary: /usr/bin/python3-jsonpatch
- [09:02:48] Binary: /usr/bin/python3-jsonpointer
- [09:02:48] Binary: /usr/bin/python3.5
- [09:02:48] Binary: /usr/bin/python3.5m
- [09:02:48] Binary: /usr/bin/python3m
- [09:02:48] Binary: /usr/bin/pyversions
- [09:02:48] Binary: /usr/bin/rcp
- [09:02:48] Binary: /usr/bin/realpath
- [09:02:48] Binary: /usr/bin/rename
- [09:02:48] Binary: /usr/bin/rename.ul
- [09:02:48] Binary: /usr/bin/renice
- [09:02:48] Binary: /usr/bin/reset
- [09:02:48] Binary: /usr/bin/resizecons
- [09:02:48] Binary: /usr/bin/resizepart
- [09:02:48] Binary: /usr/bin/rev
- [09:02:48] Binary: /usr/bin/rgrep
- [09:02:48] Binary: /usr/bin/rlogin
- [09:02:48] Binary: /usr/bin/routef
- [09:02:48] Binary: /usr/bin/routel
- [09:02:48] Binary: /usr/bin/rsh
- [09:02:48] Binary: /usr/bin/rsync
- [09:02:48] Binary: /usr/bin/rtstat
- [09:02:48] Binary: /usr/bin/run-mailcap
- [09:02:48] Binary: /usr/bin/run-one
- [09:02:48] Binary: /usr/bin/run-one-constantly
- [09:02:48] Binary: /usr/bin/run-one-until-failure
- [09:02:48] Binary: /usr/bin/run-one-until-success
- [09:02:48] Binary: /usr/bin/run-this-one
- [09:02:48] Binary: /usr/bin/runcon
- [09:02:48] Binary: /usr/bin/rview
- [09:02:48] Binary: /usr/bin/rvim
- [09:02:48] Binary: /usr/bin/savelog
- [09:02:48] Binary: /usr/bin/sbattach
- [09:02:48] Binary: /usr/bin/sbkeysync
- [09:02:48] Binary: /usr/bin/sbsiglist
- [09:02:48] Binary: /usr/bin/sbsign
- [09:02:48] Binary: /usr/bin/sbvarsign
- [09:02:48] Binary: /usr/bin/sbverify
- [09:02:48] Binary: /usr/bin/scp
- [09:02:48] Binary: /usr/bin/screen
- [09:02:48] Binary: /usr/bin/screendump
- [09:02:48] Binary: /usr/bin/script
- [09:02:48] Binary: /usr/bin/scriptreplay
- [09:02:48] Binary: /usr/bin/sdiff
- [09:02:48] Binary: /usr/bin/see
- [09:02:48] Binary: /usr/bin/select-editor
- [09:02:48] Binary: /usr/bin/sensible-browser
- [09:02:48] Binary: /usr/bin/sensible-editor
- [09:02:48] Binary: /usr/bin/sensible-pager
- [09:02:48] Binary: /usr/bin/seq
- [09:02:48] Binary: /usr/bin/setarch
- [09:02:48] Binary: /usr/bin/setfacl
- [09:02:48] Binary: /usr/bin/setkeycodes
- [09:02:48] Binary: /usr/bin/setleds
- [09:02:48] Binary: /usr/bin/setlogcons
- [09:02:48] Binary: /usr/bin/setmetamode
- [09:02:48] Binary: /usr/bin/setpci
- [09:02:48] Binary: /usr/bin/setsid
- [09:02:48] Binary: /usr/bin/setterm
- [09:02:48] Binary: /usr/bin/sftp
- [09:02:48] Binary: /usr/bin/sg
- [09:02:48] Binary: /usr/bin/sha1sum
- [09:02:48] Binary: /usr/bin/sha224sum
- [09:02:48] Binary: /usr/bin/sha256sum
- [09:02:48] Binary: /usr/bin/sha384sum
- [09:02:48] Binary: /usr/bin/sha512sum
- [09:02:48] Binary: /usr/bin/shasum
- [09:02:48] Binary: /usr/bin/showconsolefont
- [09:02:48] Binary: /usr/bin/showkey
- [09:02:48] Binary: /usr/bin/shred
- [09:02:48] Binary: /usr/bin/shuf
- [09:02:48] Binary: /usr/bin/skill
- [09:02:48] Binary: /usr/bin/slabtop
- [09:02:48] Binary: /usr/bin/slogin
- [09:02:48] Binary: /usr/bin/snap
- [09:02:48] Binary: /usr/bin/snapctl
- [09:02:48] Binary: /usr/bin/snapfuse
- [09:02:48] Binary: /usr/bin/snice
- [09:02:48] Binary: /usr/bin/soelim
- [09:02:48] Binary: /usr/bin/sort
- [09:02:48] Binary: /usr/bin/sosreport
- [09:02:48] Binary: /usr/bin/splain
- [09:02:48] Binary: /usr/bin/split
- [09:02:48] Binary: /usr/bin/splitfont
- [09:02:48] Binary: /usr/bin/ssh
- [09:02:48] Binary: /usr/bin/ssh-add
- [09:02:48] Binary: /usr/bin/ssh-agent
- [09:02:48] Binary: /usr/bin/ssh-argv0
- [09:02:48] Binary: /usr/bin/ssh-copy-id
- [09:02:48] Binary: /usr/bin/ssh-import-id
- [09:02:48] Binary: /usr/bin/ssh-import-id-gh
- [09:02:48] Binary: /usr/bin/ssh-import-id-lp
- [09:02:48] Binary: /usr/bin/ssh-keygen
- [09:02:48] Binary: /usr/bin/ssh-keyscan
- [09:02:48] Binary: /usr/bin/stat
- [09:02:48] Binary: /usr/bin/stdbuf
- [09:02:48] Binary: /usr/bin/strace
- [09:02:48] Binary: /usr/bin/su-to-root
- [09:02:48] Binary: /usr/bin/sudo
- [09:02:48] Binary: /usr/bin/sudoedit
- [09:02:48] Binary: /usr/bin/sudoreplay
- [09:02:48] Binary: /usr/bin/sum
- [09:02:48] Binary: /usr/bin/systemd-analyze
- [09:02:48] Binary: /usr/bin/systemd-cat
- [09:02:48] Binary: /usr/bin/systemd-cgls
- [09:02:48] Binary: /usr/bin/systemd-cgtop
- [09:02:48] Binary: /usr/bin/systemd-delta
- [09:02:48] Binary: /usr/bin/systemd-detect-virt
- [09:02:48] Binary: /usr/bin/systemd-path
- [09:02:48] Binary: /usr/bin/systemd-resolve
- [09:02:48] Binary: /usr/bin/systemd-run
- [09:02:48] Binary: /usr/bin/systemd-stdio-bridge
- [09:02:48] Binary: /usr/bin/tabs
- [09:02:48] Binary: /usr/bin/tac
- [09:02:48] Binary: /usr/bin/tail
- [09:02:48] Binary: /usr/bin/taskset
- [09:02:48] Binary: /usr/bin/tbl
- [09:02:48] Binary: /usr/bin/tee
- [09:02:48] Binary: /usr/bin/telnet
- [09:02:48] Binary: /usr/bin/telnet.netkit
- [09:02:48] Binary: /usr/bin/test
- [09:02:48] Binary: /usr/bin/tic
- [09:02:48] Binary: /usr/bin/time
- [09:02:48] Binary: /usr/bin/timedatectl
- [09:02:48] Binary: /usr/bin/timeout
- [09:02:48] Binary: /usr/bin/tload
- [09:02:48] Binary: /usr/bin/tmux
- [09:02:48] Binary: /usr/bin/toe
- [09:02:48] Binary: /usr/bin/top
- [09:02:48] Binary: /usr/bin/touch
- [09:02:48] Binary: /usr/bin/tput
- [09:02:48] Binary: /usr/bin/tr
- [09:02:48] Binary: /usr/bin/tracepath
- [09:02:48] Binary: /usr/bin/tracepath6
- [09:02:48] Binary: /usr/bin/traceroute6
- [09:02:48] Binary: /usr/bin/traceroute6.iputils
- [09:02:48] Binary: /usr/bin/troff
- [09:02:48] Binary: /usr/bin/truncate
- [09:02:48] Binary: /usr/bin/tset
- [09:02:48] Binary: /usr/bin/tsort
- [09:02:48] Binary: /usr/bin/tty
- [09:02:48] Binary: /usr/bin/tzselect
- [09:02:48] Binary: /usr/bin/ubuntu-bug
- [09:02:48] Binary: /usr/bin/ubuntu-core-launcher
- [09:02:48] Binary: /usr/bin/ubuntu-support-status
- [09:02:48] Binary: /usr/bin/ucf
- [09:02:48] Binary: /usr/bin/ucfq
- [09:02:48] Binary: /usr/bin/ucfr
- [09:02:48] Binary: /usr/bin/ul
- [09:02:48] Binary: /usr/bin/unattended-upgrade
- [09:02:48] Binary: /usr/bin/unattended-upgrades
- [09:02:48] Binary: /usr/bin/unexpand
- [09:02:48] Binary: /usr/bin/unicode_stop
- [09:02:48] Binary: /usr/bin/uniq
- [09:02:48] Binary: /usr/bin/unlink
- [09:02:48] Binary: /usr/bin/unlzma
- [09:02:48] Binary: /usr/bin/unshare
- [09:02:48] Binary: /usr/bin/unsquashfs
- [09:02:48] Binary: /usr/bin/unxz
- [09:02:48] Binary: /usr/bin/update-alternatives
- [09:02:48] Binary: /usr/bin/update-menus
- [09:02:48] Binary: /usr/bin/update-mime-database
- [09:02:48] Binary: /usr/bin/update-mime-database.real
- [09:02:48] Binary: /usr/bin/updatedb
- [09:02:48] Binary: /usr/bin/updatedb.mlocate
- [09:02:48] Binary: /usr/bin/uptime
- [09:02:48] Binary: /usr/bin/usb-devices
- [09:02:48] Binary: /usr/bin/usbhid-dump
- [09:02:48] Binary: /usr/bin/users
- [09:02:48] Binary: /usr/bin/utmpdump
- [09:02:48] Binary: /usr/bin/uuidgen
- [09:02:48] Binary: /usr/bin/vcs-run
- [09:02:48] Binary: /usr/bin/vi
- [09:02:48] Binary: /usr/bin/view
- [09:02:48] Binary: /usr/bin/vigpg
- [09:02:48] Binary: /usr/bin/vim
- [09:02:48] Binary: /usr/bin/vim.basic
- [09:02:48] Binary: /usr/bin/vim.tiny
- [09:02:48] Binary: /usr/bin/vimdiff
- [09:02:48] Binary: /usr/bin/vimtutor
- [09:02:48] Binary: /usr/bin/vmhgfs-fuse
- [09:02:48] Binary: /usr/bin/vmstat
- [09:02:48] Binary: /usr/bin/vmtoolsd
- [09:02:48] Binary: /usr/bin/vmware-checkvm
- [09:02:48] Binary: /usr/bin/vmware-guestproxycerttool
- [09:02:48] Binary: /usr/bin/vmware-hgfsclient
- [09:02:48] Binary: /usr/bin/vmware-namespace-cmd
- [09:02:48] Binary: /usr/bin/vmware-rpctool
- [09:02:48] Binary: /usr/bin/vmware-toolbox-cmd
- [09:02:48] Binary: /usr/bin/vmware-vmblock-fuse
- [09:02:48] Binary: /usr/bin/vmware-xferlogs
- [09:02:48] Binary: /usr/bin/volname
- [09:02:48] Binary: /usr/bin/w
- [09:02:48] Binary: /usr/bin/w.procps
- [09:02:48] Binary: /usr/bin/wall
- [09:02:48] Binary: /usr/bin/watch
- [09:02:48] Binary: /usr/bin/wc
- [09:02:48] Binary: /usr/bin/wget
- [09:02:48] Binary: /usr/bin/whatis
- [09:02:48] Binary: /usr/bin/whereis
- [09:02:48] Binary: /usr/bin/which
- [09:02:48] Binary: /usr/bin/who
- [09:02:48] Binary: /usr/bin/whoami
- [09:02:48] Binary: /usr/bin/wifi-status
- [09:02:48] Binary: /usr/bin/write
- [09:02:48] Binary: /usr/bin/x86_64
- [09:02:48] Binary: /usr/bin/xargs
- [09:02:48] Binary: /usr/bin/xauth
- [09:02:48] Binary: /usr/bin/xdg-user-dir
- [09:02:48] Binary: /usr/bin/xdg-user-dirs-update
- [09:02:48] Binary: /usr/bin/xsubpp
- [09:02:48] Binary: /usr/bin/xxd
- [09:02:48] Binary: /usr/bin/xz
- [09:02:48] Binary: /usr/bin/xzcat
- [09:02:48] Binary: /usr/bin/xzcmp
- [09:02:48] Binary: /usr/bin/xzdiff
- [09:02:48] Binary: /usr/bin/xzegrep
- [09:02:48] Binary: /usr/bin/xzfgrep
- [09:02:48] Binary: /usr/bin/xzgrep
- [09:02:48] Binary: /usr/bin/xzless
- [09:02:48] Binary: /usr/bin/xzmore
- [09:02:48] Binary: /usr/bin/yes
- [09:02:48] Binary: /usr/bin/zdump
- [09:02:48] Binary: /usr/bin/zipdetails
- [09:02:48] ===---------------------------------------------------------------===
- [09:02:48] Test: Checking binaries in directory /usr/sbin
- [09:02:48] Directory /usr/sbin exists. Starting directory scanning...
- [09:02:48] Binary: /usr/sbin/aa-exec
- [09:02:48] Binary: /usr/sbin/aa-remove-unknown
- [09:02:48] Binary: /usr/sbin/aa-status
- [09:02:48] Binary: /usr/sbin/accessdb
- [09:02:48] Binary: /usr/sbin/acpid
- [09:02:48] Binary: /usr/sbin/add-shell
- [09:02:48] Binary: /usr/sbin/addgroup
- [09:02:48] Binary: /usr/sbin/adduser
- [09:02:48] Binary: /usr/sbin/apparmor_status
- [09:02:48] Binary: /usr/sbin/arp
- [09:02:48] Binary: /usr/sbin/arpd
- [09:02:48] Binary: /usr/sbin/atd
- [09:02:48] Binary: /usr/sbin/bcache-super-show
- [09:02:48] Binary: /usr/sbin/biosdecode
- [09:02:48] Binary: /usr/sbin/chgpasswd
- [09:02:48] Binary: /usr/sbin/chpasswd
- [09:02:48] Binary: /usr/sbin/chroot
- [09:02:48] Binary: /usr/sbin/cpgr
- [09:02:48] Binary: /usr/sbin/cppw
- [09:02:48] Binary: /usr/sbin/cron
- [09:02:48] Binary: /usr/sbin/cryptdisks_start
- [09:02:48] Binary: /usr/sbin/cryptdisks_stop
- [09:02:48] Binary: /usr/sbin/delgroup
- [09:02:48] Binary: /usr/sbin/deluser
- [09:02:48] Binary: /usr/sbin/dmidecode
- [09:02:48] Binary: /usr/sbin/dnsmasq
- [09:02:48] Binary: /usr/sbin/dpkg-divert
- [09:02:48] Binary: /usr/sbin/dpkg-preconfigure
- [09:02:48] Binary: /usr/sbin/dpkg-reconfigure
- [09:02:48] Binary: /usr/sbin/dpkg-statoverride
- [09:02:48] Binary: /usr/sbin/e2freefrag
- [09:02:48] Binary: /usr/sbin/e4defrag
- [09:02:48] Binary: /usr/sbin/fdformat
- [09:02:48] Binary: /usr/sbin/filefrag
- [09:02:48] Binary: /usr/sbin/genl
- [09:02:48] Binary: /usr/sbin/groupadd
- [09:02:48] Binary: /usr/sbin/groupdel
- [09:02:48] Binary: /usr/sbin/groupmod
- [09:02:48] Binary: /usr/sbin/grpck
- [09:02:48] Binary: /usr/sbin/grpconv
- [09:02:48] Binary: /usr/sbin/grpunconv
- [09:02:48] Binary: /usr/sbin/grub-install
- [09:02:48] Binary: /usr/sbin/grub-macbless
- [09:02:48] Binary: /usr/sbin/grub-mkconfig
- [09:02:48] Binary: /usr/sbin/grub-mkdevicemap
- [09:02:48] Binary: /usr/sbin/grub-probe
- [09:02:48] Binary: /usr/sbin/grub-reboot
- [09:02:48] Binary: /usr/sbin/grub-set-default
- [09:02:48] Binary: /usr/sbin/grub-set-default-legacy-ec2
- [09:02:48] Binary: /usr/sbin/grub-set-default.real
- [09:02:48] Binary: /usr/sbin/iconvconfig
- [09:02:48] Binary: /usr/sbin/install-menu
- [09:02:48] Binary: /usr/sbin/install-sgmlcatalog
- [09:02:48] Binary: /usr/sbin/invoke-rc.d
- [09:02:48] Binary: /usr/sbin/ip6tables-apply
- [09:02:48] Binary: /usr/sbin/iptables-apply
- [09:02:48] Binary: /usr/sbin/irqbalance
- [09:02:48] Binary: /usr/sbin/iscsi-iname
- [09:02:48] Binary: /usr/sbin/iscsi_discovery
- [09:02:48] Binary: /usr/sbin/iscsid
- [09:02:48] Binary: /usr/sbin/iscsistart
- [09:02:48] Binary: /usr/sbin/ldattach
- [09:02:48] Binary: /usr/sbin/locale-gen
- [09:02:48] Binary: /usr/sbin/logrotate
- [09:02:48] Binary: /usr/sbin/luksformat
- [09:02:48] Binary: /usr/sbin/lynis
- [09:02:48] Binary: /usr/sbin/make-bcache
- [09:02:48] Binary: /usr/sbin/mkinitramfs
- [09:02:48] Binary: /usr/sbin/mklost+found
- [09:02:48] Binary: /usr/sbin/newusers
- [09:02:48] Binary: /usr/sbin/nfnl_osf
- [09:02:48] Binary: /usr/sbin/nologin
- [09:02:48] Binary: /usr/sbin/overlayroot-chroot
- [09:02:48] Binary: /usr/sbin/ownership
- [09:02:48] Binary: /usr/sbin/pam-auth-update
- [09:02:48] Binary: /usr/sbin/pam_getenv
- [09:02:48] Binary: /usr/sbin/pam_timestamp_check
- [09:02:48] Binary: /usr/sbin/popcon-largest-unused
- [09:02:48] Binary: /usr/sbin/popularity-contest
- [09:02:48] Binary: /usr/sbin/pwck
- [09:02:48] Binary: /usr/sbin/pwconv
- [09:02:48] Binary: /usr/sbin/pwunconv
- [09:02:48] Binary: /usr/sbin/readprofile
- [09:02:48] Binary: /usr/sbin/remove-shell
- [09:02:48] Binary: /usr/sbin/rmt
- [09:02:48] Binary: /usr/sbin/rmt-tar
- [09:02:48] Binary: /usr/sbin/rsyslogd
- [09:02:48] Binary: /usr/sbin/rtcwake
- [09:02:48] Binary: /usr/sbin/safe_finger
- [09:02:48] Binary: /usr/sbin/service
- [09:02:48] Binary: /usr/sbin/setvesablank
- [09:02:48] Binary: /usr/sbin/sshd
- [09:02:48] Binary: /usr/sbin/su-to-root
- [09:02:48] Binary: /usr/sbin/tarcat
- [09:02:48] Binary: /usr/sbin/tcpd
- [09:02:48] Binary: /usr/sbin/tcpdchk
- [09:02:48] Binary: /usr/sbin/tcpdmatch
- [09:02:48] Binary: /usr/sbin/tcpdump
- [09:02:48] Binary: /usr/sbin/try-from
- [09:02:48] Binary: /usr/sbin/tunelp
- [09:02:48] Binary: /usr/sbin/tzconfig
- [09:02:48] Binary: /usr/sbin/ufw
- [09:02:48] Binary: /usr/sbin/update-alternatives
- [09:02:48] Binary: /usr/sbin/update-ca-certificates
- [09:02:48] Binary: /usr/sbin/update-catalog
- [09:02:48] Binary: /usr/sbin/update-grub
- [09:02:48] Binary: /usr/sbin/update-grub-legacy-ec2
- [09:02:48] Binary: /usr/sbin/update-grub2
- [09:02:48] Binary: /usr/sbin/update-info-dir
- [09:02:48] Binary: /usr/sbin/update-initramfs
- [09:02:48] Binary: /usr/sbin/update-locale
- [09:02:48] Binary: /usr/sbin/update-mime
- [09:02:48] Binary: /usr/sbin/update-passwd
- [09:02:48] Binary: /usr/sbin/update-pciids
- [09:02:48] Binary: /usr/sbin/update-rc.d
- [09:02:48] Binary: /usr/sbin/update-secureboot-policy
- [09:02:48] Binary: /usr/sbin/update-usbids
- [09:02:48] Binary: /usr/sbin/update-xmlcatalog
- [09:02:48] Binary: /usr/sbin/useradd
- [09:02:48] Binary: /usr/sbin/userdel
- [09:02:48] Binary: /usr/sbin/usermod
- [09:02:48] Binary: /usr/sbin/uuidd
- [09:02:48] Binary: /usr/sbin/validlocale
- [09:02:48] Binary: /usr/sbin/vcstime
- [09:02:48] Binary: /usr/sbin/vigr
- [09:02:48] Binary: /usr/sbin/vipw
- [09:02:48] Binary: /usr/sbin/visudo
- [09:02:48] Binary: /usr/sbin/vpddecode
- [09:02:48] Binary: /usr/sbin/xfs_admin
- [09:02:48] Binary: /usr/sbin/xfs_bmap
- [09:02:48] Binary: /usr/sbin/xfs_copy
- [09:02:48] Binary: /usr/sbin/xfs_db
- [09:02:48] Binary: /usr/sbin/xfs_estimate
- [09:02:48] Binary: /usr/sbin/xfs_freeze
- [09:02:48] Binary: /usr/sbin/xfs_fsr
- [09:02:48] Binary: /usr/sbin/xfs_growfs
- [09:02:48] Binary: /usr/sbin/xfs_info
- [09:02:48] Binary: /usr/sbin/xfs_io
- [09:02:48] Binary: /usr/sbin/xfs_logprint
- [09:02:48] Binary: /usr/sbin/xfs_mdrestore
- [09:02:48] Binary: /usr/sbin/xfs_metadump
- [09:02:48] Binary: /usr/sbin/xfs_mkfile
- [09:02:48] Binary: /usr/sbin/xfs_ncheck
- [09:02:48] Binary: /usr/sbin/xfs_quota
- [09:02:48] Binary: /usr/sbin/xfs_rtcp
- [09:02:48] Binary: /usr/sbin/zerofree
- [09:02:48] Binary: /usr/sbin/zic
- [09:02:48] ===---------------------------------------------------------------===
- [09:02:48] Test: Checking binaries in directory /usr/local/bin
- [09:02:48] Directory /usr/local/bin exists. Starting directory scanning...
- [09:02:48] ===---------------------------------------------------------------===
- [09:02:48] Test: Checking binaries in directory /usr/local/sbin
- [09:02:48] Directory /usr/local/sbin exists. Starting directory scanning...
- [09:02:48] ===---------------------------------------------------------------===
- [09:02:48] Discovered directories: /bin, /sbin, /usr/bin, /usr/sbin, /usr/local/bin, /usr/local/sbin
- [09:02:48] CUST-0001 Result: found 1226 binaries
- [09:02:48] Status: Starting Authentication checks...
- [09:02:48] Status: Checking if libpam-tmpdir is installed and enabled...
- [09:02:48] ===---------------------------------------------------------------===
- [09:02:48] Performing test ID CUST-0280 (Checking if libpam-tmpdir is installed and enabled.)
- [09:02:49] - libpam-tmpdir is not installed.
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 2), current: 0, total: 2
- [09:02:49] Suggestion: Install libpam-tmpdir to set $TMP and $TMPDIR for PAM sessions [CUST-0280]
- [09:02:49] Status: Checking if libpam-usb is installed and enabled...
- [09:02:49] ===---------------------------------------------------------------===
- [09:02:49] Performing test ID CUST-0285 (Checking if libpam-usb is installed and enabled.)
- [09:02:49] - libpam-usb is not installed.
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 10), current: 0, total: 12
- [09:02:49] Suggestion: Install libpam-usb to enable multi-factor authentication for PAM sessions [CUST-0285]
- [09:02:49] Status: Starting file system checks...
- [09:02:49] Status: Starting file system checks for dm-crypt, cryptsetup & cryptmount...
- [09:02:49] ===---------------------------------------------------------------===
- [09:02:49] Performing test ID CUST-0510 (Checking if LVM volume groups or file systems are stored on encrypted partitions)
- [09:02:49] Test: Checking file system mount points
- [09:02:49] Result: found one or more file system mount points
- [09:02:49] Testing file system mount point: /dev/vda1
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 1), current: 0, total: 13
- [09:02:49] Testing file system mount point: /dev/vda15
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 1), current: 0, total: 14
- [09:02:49] ===---------------------------------------------------------------===
- [09:02:49] Skipped test CUST-0520 (Checking for Ecryptfs)
- [09:02:49] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:02:49] Suggestion: Install 'ecryptfs-utils' and configure for each user. [CUST-0520]
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 2), current: 0, total: 16
- [09:02:49] Status: Starting Software checks...
- [09:02:49] ===---------------------------------------------------------------===
- [09:02:49] Performing test ID CUST-0810 (Checking for apt-listbugs)
- [09:02:49] - apt-listbugs is not installed.
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 2), current: 0, total: 18
- [09:02:49] Suggestion: Install apt-listbugs to display a list of critical bugs prior to each APT installation. [CUST-0810]
- [09:02:49] ===---------------------------------------------------------------===
- [09:02:49] Performing test ID CUST-0811 (Checking for apt-listchanges)
- [09:02:49] - apt-listchanges is not installed.
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 2), current: 0, total: 20
- [09:02:49] Suggestion: Install apt-listchanges to display any significant changes prior to any upgrade via APT. [CUST-0811]
- [09:02:49] ===---------------------------------------------------------------===
- [09:02:49] Performing test ID CUST-0830 (Verifying that checkrestart is installed.)
- [09:02:49] - checkrestart is not installed.
- [09:02:49] Suggestion: Install debian-goodies so that you can run checkrestart after upgrades to determine which services are using old versions of libraries and need restarting. [CUST-0830]
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 1), current: 0, total: 21
- [09:02:49] ===---------------------------------------------------------------===
- [09:02:49] Performing test ID CUST-0870 (Checking for debsecan)
- [09:02:49] - debsecan is not installed.
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 2), current: 0, total: 23
- [09:02:49] Suggestion: Install debsecan to generate lists of vulnerabilities which affect this installation. [CUST-0870]
- [09:02:49] ===---------------------------------------------------------------===
- [09:02:49] Performing test ID CUST-0875 (Checking for debsums)
- [09:02:49] - debsums is not installed.
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 2), current: 0, total: 25
- [09:02:49] Suggestion: Install debsums for the verification of installed package files against MD5 checksums. [CUST-0875]
- [09:02:49] ===---------------------------------------------------------------===
- [09:02:49] Performing test ID DEB-0880 (Checking for fail2ban)
- [09:02:49] - fail2ban is not installed.
- [09:02:49] Hardening: assigned 0 hardening points (max for this item: 2), current: 0, total: 27
- [09:02:49] Suggestion: Install fail2ban to automatically ban hosts that commit multiple authentication errors. [DEB-0880]
- [09:02:49] ===---------------------------------------------------------------===
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Result: debian plugin (phase 1) finished
- [09:02:54] --
- [09:02:54] Result: Found 1 plugins of which 1 are enabled
- [09:02:54] Result: Plugins finished
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Result: Found HostID: a793589d06f0ea19d0fe206ba16290ef4f5dab2f
- [09:02:54] Info: found valid HostID a793589d06f0ea19d0fe206ba16290ef4f5dab2f
- [09:02:54] Info: no machine ID found
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Info: perform tests from all categories
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Action: Performing tests from category: Boot and services
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Skipped test BOOT-5102 (Check for AIX boot device)
- [09:02:54] Reason to skip: Incorrect guest OS (AIX only)
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Performing test ID BOOT-5104 (Determine service manager)
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Performing test ID BOOT-5121 (Check for GRUB boot loader presence)
- [09:02:54] Test: Checking for presence GRUB conf file (/boot/grub/grub.conf or /boot/grub/menu.lst)
- [09:02:54] Result: found GRUB2 configuration file (/boot/grub/grub.cfg)
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Performing test ID BOOT-5122 (Check for GRUB boot password)
- [09:02:54] Found file /boot/grub/grub.cfg, proceeding with tests.
- [09:02:54] Test: testing if we can access /boot/grub/grub.cfg
- [09:02:54] Result: file is owned by our current user ID (0), checking if it is readable
- [09:02:54] Result: file /boot/grub/grub.cfg is readable (or directory accessible).
- [09:02:54] Result: Didn't find hashed password line in GRUB boot file!
- [09:02:54] Suggestion: Set a password on GRUB bootloader to prevent altering boot configuration (e.g. boot in single user mode without password) [BOOT-5122]
- [09:02:54] Hardening: assigned 0 hardening points (max for this item: 2), current: 0, total: 29
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Skipped test BOOT-5124 (Check for FreeBSD boot loader presence)
- [09:02:54] Reason to skip: Incorrect guest OS (FreeBSD only)
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Skipped test BOOT-5126 (Check for NetBSD boot loader presence)
- [09:02:54] Reason to skip: Incorrect guest OS (NetBSD only)
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Performing test ID BOOT-5139 (Check for LILO boot loader presence)
- [09:02:54] Test: checking for presence LILO configuration file
- [09:02:54] Result: LILO configuration file not found
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Performing test ID BOOT-5142 (Check SPARC Improved boot loader (SILO))
- [09:02:54] Result: no SILO configuration file found.
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Performing test ID BOOT-5155 (Check for YABOOT boot loader configuration file)
- [09:02:54] Test: Check for /etc/yaboot.conf
- [09:02:54] Result: no YABOOT configuration file found.
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Skipped test BOOT-5159 (Check for OpenBSD boot loader presence)
- [09:02:54] Reason to skip: Incorrect guest OS (OpenBSD only)
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Skipped test BOOT-5165 (Check for FreeBSD boot services)
- [09:02:54] Reason to skip: Incorrect guest OS (FreeBSD only)
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Performing test ID BOOT-5177 (Check for Linux boot and running services)
- [09:02:54] Test: checking presence systemctl binary
- [09:02:54] Result: systemctl binary found, trying that to discover information
- [09:02:54] Searching for running services (systemctl services only)
- [09:02:54] Found running service: accounts-daemon
- [09:02:54] Found running service: acpid
- [09:02:54] Found running service: atd
- [09:02:54] Found running service: cron
- [09:02:54] Found running service: dbus
- [09:02:54] Found running service: do-agent
- [09:02:54] Found running service: getty@tty1
- [09:02:54] Found running service: gitlab-runner
- [09:02:54] Found running service: iscsid
- [09:02:54] Found running service: lvm2-lvmetad
- [09:02:54] Found running service: lxcfs
- [09:02:54] Found running service: mdadm
- [09:02:54] Found running service: polkitd
- [09:02:54] Found running service: rsyslog
- [09:02:54] Found running service: serial-getty@ttyS0
- [09:02:54] Found running service: snapd
- [09:02:54] Found running service: ssh
- [09:02:54] Found running service: systemd-journald
- [09:02:54] Found running service: systemd-logind
- [09:02:54] Found running service: systemd-timesyncd
- [09:02:54] Found running service: systemd-udevd
- [09:02:54] Found running service: user@0
- [09:02:54] Found running service: user@999
- [09:02:54] Note: Run systemctl --full --type=service to see all services
- [09:02:54] Result: Found 23 enabled services
- [09:02:54] Searching for enabled services (systemctl services only)
- [09:02:54] Found enabled service at boot: accounts-daemon
- [09:02:54] Found enabled service at boot: atd
- [09:02:54] Found enabled service at boot: autovt@
- [09:02:54] Found enabled service at boot: cloud-config
- [09:02:54] Found enabled service at boot: cloud-final
- [09:02:54] Found enabled service at boot: cloud-init-local
- [09:02:54] Found enabled service at boot: cloud-init
- [09:02:54] Found enabled service at boot: cron
- [09:02:54] Found enabled service at boot: do-agent
- [09:02:54] Found enabled service at boot: friendly-recovery
- [09:02:54] Found enabled service at boot: getty@
- [09:02:54] Found enabled service at boot: gitlab-runner
- [09:02:54] Found enabled service at boot: iscsi
- [09:02:54] Found enabled service at boot: iscsid
- [09:02:54] Found enabled service at boot: lvm2-monitor
- [09:02:54] Found enabled service at boot: lxcfs
- [09:02:54] Found enabled service at boot: lxd-containers
- [09:02:54] Found enabled service at boot: networking
- [09:02:54] Found enabled service at boot: open-iscsi
- [09:02:54] Found enabled service at boot: open-vm-tools
- [09:02:54] Found enabled service at boot: pollinate
- [09:02:54] Found enabled service at boot: resolvconf
- [09:02:54] Found enabled service at boot: rsyslog
- [09:02:54] Found enabled service at boot: snapd
- [09:02:54] Found enabled service at boot: snapd
- [09:02:54] Found enabled service at boot: snapd
- [09:02:54] Found enabled service at boot: snapd
- [09:02:54] Found enabled service at boot: snapd
- [09:02:54] Found enabled service at boot: ssh
- [09:02:54] Found enabled service at boot: sshd
- [09:02:54] Found enabled service at boot: syslog
- [09:02:54] Found enabled service at boot: systemd-timesyncd
- [09:02:54] Found enabled service at boot: ufw
- [09:02:54] Found enabled service at boot: unattended-upgrades
- [09:02:54] Found enabled service at boot: ureadahead
- [09:02:54] Note: Run systemctl list-unit-files --type=service to see all services
- [09:02:54] Result: Found 35 running services
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Performing test ID BOOT-5180 (Check for Linux boot services (Debian style))
- [09:02:54] Suggestion: Determine runlevel and services at startup [BOOT-5180]
- [09:02:54] ===---------------------------------------------------------------===
- [09:02:54] Performing test ID BOOT-5184 (Check permissions for boot files/scripts)
- [09:02:54] Result: checking /etc/init.d scripts for writable bit
- [09:02:54] Test: checking if directory /etc/init.d exists
- [09:02:54] Result: directory /etc/init.d found
- [09:02:54] Test: checking for available files in directory
- [09:02:54] Result: found files in directory, checking permissions now
- [09:02:54] Test: checking permissions of file /etc/init.d/checkroot-bootclean.sh
- [09:02:54] Result: good, file /etc/init.d/checkroot-bootclean.sh not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/rsyslog
- [09:02:54] Result: good, file /etc/init.d/rsyslog not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/halt
- [09:02:54] Result: good, file /etc/init.d/halt not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/resolvconf
- [09:02:54] Result: good, file /etc/init.d/resolvconf not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/killprocs
- [09:02:54] Result: good, file /etc/init.d/killprocs not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/procps
- [09:02:54] Result: good, file /etc/init.d/procps not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/ufw
- [09:02:54] Result: good, file /etc/init.d/ufw not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/mdadm
- [09:02:54] Result: good, file /etc/init.d/mdadm not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/checkroot.sh
- [09:02:54] Result: good, file /etc/init.d/checkroot.sh not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/uuidd
- [09:02:54] Result: good, file /etc/init.d/uuidd not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/console-setup
- [09:02:54] Result: good, file /etc/init.d/console-setup not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/lvm2
- [09:02:54] Result: good, file /etc/init.d/lvm2 not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/dbus
- [09:02:54] Result: good, file /etc/init.d/dbus not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/umountnfs.sh
- [09:02:54] Result: good, file /etc/init.d/umountnfs.sh not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/cryptdisks
- [09:02:54] Result: good, file /etc/init.d/cryptdisks not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/rc
- [09:02:54] Result: good, file /etc/init.d/rc not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/rc.local
- [09:02:54] Result: good, file /etc/init.d/rc.local not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/plymouth-log
- [09:02:54] Result: good, file /etc/init.d/plymouth-log not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/keyboard-setup.dpkg-bak
- [09:02:54] Result: good, file /etc/init.d/keyboard-setup.dpkg-bak not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/hostname.sh
- [09:02:54] Result: good, file /etc/init.d/hostname.sh not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/udev
- [09:02:54] Result: good, file /etc/init.d/udev not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/rsync
- [09:02:54] Result: good, file /etc/init.d/rsync not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/ssh
- [09:02:54] Result: good, file /etc/init.d/ssh not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/networking
- [09:02:54] Result: good, file /etc/init.d/networking not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/iscsid
- [09:02:54] Result: good, file /etc/init.d/iscsid not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/mountdevsubfs.sh
- [09:02:54] Result: good, file /etc/init.d/mountdevsubfs.sh not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/.depend.boot
- [09:02:54] Result: good, file /etc/init.d/.depend.boot not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/.depend.start
- [09:02:54] Result: good, file /etc/init.d/.depend.start not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/unattended-upgrades
- [09:02:54] Result: good, file /etc/init.d/unattended-upgrades not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/acpid
- [09:02:54] Result: good, file /etc/init.d/acpid not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/checkfs.sh
- [09:02:54] Result: good, file /etc/init.d/checkfs.sh not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/skeleton
- [09:02:54] Result: good, file /etc/init.d/skeleton not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/kmod
- [09:02:54] Result: good, file /etc/init.d/kmod not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/grub-common
- [09:02:54] Result: good, file /etc/init.d/grub-common not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/mdadm-waitidle
- [09:02:54] Result: good, file /etc/init.d/mdadm-waitidle not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/irqbalance
- [09:02:54] Result: good, file /etc/init.d/irqbalance not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/cryptdisks-early
- [09:02:54] Result: good, file /etc/init.d/cryptdisks-early not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/hwclock.sh
- [09:02:54] Result: good, file /etc/init.d/hwclock.sh not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/mountall.sh
- [09:02:54] Result: good, file /etc/init.d/mountall.sh not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/.depend.stop
- [09:02:54] Result: good, file /etc/init.d/.depend.stop not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/screen-cleanup
- [09:02:54] Result: good, file /etc/init.d/screen-cleanup not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/apport
- [09:02:54] Result: good, file /etc/init.d/apport not world writable
- [09:02:54] Test: checking permissions of file /etc/init.d/ondemand
- [09:02:55] Result: good, file /etc/init.d/ondemand not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/apparmor
- [09:02:55] Result: good, file /etc/init.d/apparmor not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/mountall-bootclean.sh
- [09:02:55] Result: good, file /etc/init.d/mountall-bootclean.sh not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/rcS
- [09:02:55] Result: good, file /etc/init.d/rcS not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/reboot
- [09:02:55] Result: good, file /etc/init.d/reboot not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/cron
- [09:02:55] Result: good, file /etc/init.d/cron not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/lvm2-lvmetad
- [09:02:55] Result: good, file /etc/init.d/lvm2-lvmetad not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/single
- [09:02:55] Result: good, file /etc/init.d/single not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/mountnfs.sh
- [09:02:55] Result: good, file /etc/init.d/mountnfs.sh not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/umountroot
- [09:02:55] Result: good, file /etc/init.d/umountroot not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/lxcfs
- [09:02:55] Result: good, file /etc/init.d/lxcfs not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/lxd
- [09:02:55] Result: good, file /etc/init.d/lxd not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/umountfs
- [09:02:55] Result: good, file /etc/init.d/umountfs not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/atd
- [09:02:55] Result: good, file /etc/init.d/atd not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/sendsigs
- [09:02:55] Result: good, file /etc/init.d/sendsigs not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/mountnfs-bootclean.sh
- [09:02:55] Result: good, file /etc/init.d/mountnfs-bootclean.sh not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/mountkernfs.sh
- [09:02:55] Result: good, file /etc/init.d/mountkernfs.sh not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/bootmisc.sh
- [09:02:55] Result: good, file /etc/init.d/bootmisc.sh not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/plymouth
- [09:02:55] Result: good, file /etc/init.d/plymouth not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/open-iscsi
- [09:02:55] Result: good, file /etc/init.d/open-iscsi not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/README
- [09:02:55] Result: good, file /etc/init.d/README not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/urandom
- [09:02:55] Result: good, file /etc/init.d/urandom not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/lvm2-lvmpolld
- [09:02:55] Result: good, file /etc/init.d/lvm2-lvmpolld not world writable
- [09:02:55] Test: checking permissions of file /etc/init.d/open-vm-tools
- [09:02:55] Result: good, file /etc/init.d/open-vm-tools not world writable
- [09:02:55] Test: checking if directory /etc/rc.d exists
- [09:02:55] Result: directory /etc/rc.d not found. Skipping..
- [09:02:55] Test: checking if directory /etc/rcS.d exists
- [09:02:55] Result: directory /etc/rcS.d found
- [09:02:55] Test: checking for available files in directory
- [09:02:55] Result: found files in directory, checking permissions now
- [09:02:55] Test: checking permissions of file /etc/rcS.d/README
- [09:02:55] Result: good, file /etc/rcS.d/README not world writable
- [09:02:55] Test: Checking /etc/rc0.d scripts for writable bit
- [09:02:55] Result: good, file /etc/rc0.d/README not world writable
- [09:02:55] Test: Checking /etc/rc1.d scripts for writable bit
- [09:02:55] Result: good, file /etc/rc1.d/README not world writable
- [09:02:55] Test: Checking /etc/rc2.d scripts for writable bit
- [09:02:55] Result: good, file /etc/rc2.d/README not world writable
- [09:02:55] Test: Checking /etc/rc3.d scripts for writable bit
- [09:02:55] Result: good, file /etc/rc3.d/README not world writable
- [09:02:55] Test: Checking /etc/rc4.d scripts for writable bit
- [09:02:55] Result: good, file /etc/rc4.d/README not world writable
- [09:02:55] Test: Checking /etc/rc5.d scripts for writable bit
- [09:02:55] Result: good, file /etc/rc5.d/README not world writable
- [09:02:55] Test: Checking /etc/rc6.d scripts for writable bit
- [09:02:55] Result: good, file /etc/rc6.d/README not world writable
- [09:02:55] Test: Checking /etc/rc.local file for writable bit
- [09:02:55] Result: good, file /etc/rc.local not world writable
- [09:02:55] Hardening: assigned 3 hardening points (max for this item: 3), current: 3, total: 32
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID BOOT-5202 (Check uptime of system)
- [09:02:55] Uptime (in seconds): 6549567
- [09:02:55] Uptime (in days): 75
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID BOOT-5260 (Check single user mode for systemd)
- [09:02:55] Test: Searching /usr/lib/systemd/system/rescue.service
- [09:02:55] Result: file /usr/lib/systemd/system/rescue.service does not exist
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Action: Performing tests from category: Kernel
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID KRNL-5622 (Determine Linux default run level)
- [09:02:55] Test: Checking for systemd default.target
- [09:02:55] Result: no systemd found, so trying inittab
- [09:02:55] Test: Checking /etc/inittab
- [09:02:55] Result: file /etc/inittab not found
- [09:02:55] Test: Checking run level with who -r, for Debian based systems
- [09:02:55] Result: Found default run level '5'
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID KRNL-5677 (Check CPU options and support)
- [09:02:55] Test: Checking /proc/cpuinfo
- [09:02:55] Result: found /proc/cpuinfo
- [09:02:55] Test: Checking CPU options (XD/NX/PAE)
- [09:02:55] PAE: Yes
- [09:02:55] NX: Yes
- [09:02:55] Result: PAE or No eXecute option(s) both found
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID KRNL-5695 (Determine Linux kernel version and release number)
- [09:02:55] Result: found kernel release 4.4.0-130-generic
- [09:02:55] Result: found kernel version #156-Ubuntu SMP Thu Jun 14 08:53:28 UTC 2018
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID KRNL-5723 (Determining if Linux kernel is monolithic)
- [09:02:55] Test: checking if kernel is monolithic or modular
- [09:02:55] Result: Found modular kernel
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID KRNL-5726 (Checking Linux loaded kernel modules)
- [09:02:55] Loaded modules according lsmod:
- [09:02:55] Loaded module: ablk_helper
- [09:02:55] Loaded module: aes_x86_64
- [09:02:55] Loaded module: aesni_intel
- [09:02:55] Loaded module: async_memcpy
- [09:02:55] Loaded module: async_pq
- [09:02:55] Loaded module: async_raid6_recov
- [09:02:55] Loaded module: async_tx
- [09:02:55] Loaded module: async_xor
- [09:02:55] Loaded module: autofs4
- [09:02:55] Loaded module: btrfs
- [09:02:55] Loaded module: crc32_pclmul
- [09:02:55] Loaded module: crct10dif_pclmul
- [09:02:55] Loaded module: cryptd
- [09:02:55] Loaded module: floppy
- [09:02:55] Loaded module: gf128mul
- [09:02:55] Loaded module: ghash_clmulni_intel
- [09:02:55] Loaded module: glue_helper
- [09:02:55] Loaded module: ib_addr
- [09:02:55] Loaded module: ib_cm
- [09:02:55] Loaded module: ib_core
- [09:02:55] Loaded module: ib_iser
- [09:02:55] Loaded module: ib_mad
- [09:02:55] Loaded module: ib_sa
- [09:02:55] Loaded module: input_leds
- [09:02:55] Loaded module: irqbypass
- [09:02:55] Loaded module: iscsi_tcp
- [09:02:55] Loaded module: iw_cm
- [09:02:55] Loaded module: joydev
- [09:02:55] Loaded module: kvm
- [09:02:55] Loaded module: kvm_intel
- [09:02:55] Loaded module: libcrc32c
- [09:02:55] Loaded module: libiscsi
- [09:02:55] Loaded module: libiscsi_tcp
- [09:02:55] Loaded module: linear
- [09:02:55] Loaded module: lrw
- [09:02:55] Loaded module: msdos
- [09:02:55] Loaded module: multipath
- [09:02:55] Loaded module: psmouse
- [09:02:55] Loaded module: raid0
- [09:02:55] Loaded module: raid1
- [09:02:55] Loaded module: raid10
- [09:02:55] Loaded module: raid456
- [09:02:55] Loaded module: raid6_pq
- [09:02:55] Loaded module: rdma_cm
- [09:02:55] Loaded module: scsi_transport_iscsi
- [09:02:55] Loaded module: serio_raw
- [09:02:55] Loaded module: ufs
- [09:02:55] Loaded module: virtio_scsi
- [09:02:55] Loaded module: xfs
- [09:02:55] Loaded module: xor
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID KRNL-5728 (Checking Linux kernel config)
- [09:02:55] Result: found config (/boot/config-4.4.0-130-generic)
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID KRNL-5730 (Checking disk I/O kernel scheduler)
- [09:02:55] Test: Checking the default I/O kernel scheduler
- [09:02:55] Result: found IO scheduler 'deadline'
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Skipped test KRNL-5745 (Checking FreeBSD loaded kernel modules)
- [09:02:55] Reason to skip: Incorrect guest OS (FreeBSD only)
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Skipped test KRNL-5770 (Checking active kernel modules)
- [09:02:55] Reason to skip: Incorrect guest OS (Solaris only)
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID KRNL-5788 (Checking availability new Linux kernel)
- [09:02:55] Test: Searching apt-cache, to determine if a newer kernel is available
- [09:02:55] Result: found /usr/bin/apt-cache
- [09:02:55] Test: checking readlink location of /vmlinuz
- [09:02:55] Output: readlink reported file /boot/vmlinuz-4.4.0-137-generic
- [09:02:55] Test: checking package from dpkg -S
- [09:02:55] Output: dpkg -S reported package linux-image-4.4.0-137-generic
- [09:02:55] Test: Using apt-cache policy to determine if there is an update available
- [09:02:55] Kernel installed: 4.4.0-137.163
- [09:02:55] Kernel candidate: 4.4.0-137.163
- [09:02:55] Result: no kernel update available
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID KRNL-5820 (Checking core dumps configuration)
- [09:02:55] Test: Checking presence /etc/security/limits.conf
- [09:02:55] Result: file /etc/security/limits.conf exists
- [09:02:55] Test: Checking if core dumps are disabled in /etc/security/limits.conf
- [09:02:55] Result: core dumps (soft and hard) are both disabled
- [09:02:55] Hardening: assigned 3 hardening points (max for this item: 3), current: 6, total: 35
- [09:02:55] Test: Checking sysctl value of fs.suid_dumpable
- [09:02:55] Result: sysctl key fs.suid_dumpable not found
- [09:02:55] Result: programs can dump core dump, but only readable by root (value 2, for debugging with file protection)
- [09:02:55] Hardening: assigned 1 hardening points (max for this item: 1), current: 7, total: 36
- [09:02:55] ===---------------------------------------------------------------===
- [09:02:55] Performing test ID KRNL-5830 (Checking if system is running on the latest kernel)
- [09:02:55] Test: Checking presence /var/run/reboot-required.pkgs
- [09:02:55] Result: file /var/run/reboot-required.pkgs exists
- [09:02:55] Result: reboot is needed, related to 6 packages
- [09:02:55] Package: linux-image-4.4.0-133-generic
- [09:02:55] Package: linux-base
- [09:02:55] Package: linux-image-4.4.0-134-generic
- [09:02:55] Package: linux-base
- [09:02:55] Package: linux-image-4.4.0-137-generic
- [09:02:55] Package: linux-base
- [09:02:55] Result: /boot exists, performing more tests from here
- [09:02:55] Result: /boot/vmlinuz not on disk, trying to find /boot/vmlinuz*
- [09:02:55] Result: using 4.4.0.130 as my kernel version (stripped)
- [09:02:55] Result: Found 4.4.0.103
- [09:02:55] Result: Found 4.4.0.104
- [09:02:55] Result: Found 4.4.0.108
- [09:02:55] Result: Found 4.4.0.109
- [09:02:55] Result: Found 4.4.0.112
- [09:02:55] Result: Found 4.4.0.116
- [09:02:55] Result: Found 4.4.0.119
- [09:02:55] Result: Found 4.4.0.121
- [09:02:55] Result: Found 4.4.0.124
- [09:02:55] Result: Found 4.4.0.127
- [09:02:55] Result: Found 4.4.0.128
- [09:02:55] Result: Found 4.4.0.130 (= our kernel)
- [09:02:55] Result: found a kernel (4.4.0.133) later than running one (4.4.0.130)
- [09:02:55] Result: Found 4.4.0.133
- [09:02:55] Result: found a kernel (4.4.0.134) later than running one (4.4.0.130)
- [09:02:55] Result: Found 4.4.0.134
- [09:02:55] Result: found a kernel (4.4.0.137) later than running one (4.4.0.130)
- [09:02:55] Result: Found 4.4.0.137
- [09:02:55] Warning: Reboot of system is most likely needed [KRNL-5830]
- [09:02:55] Hardening: assigned 0 hardening points (max for this item: 5), current: 7, total: 41
- [09:02:56] ===---------------------------------------------------------------===
- [09:02:56] Action: Performing tests from category: Memory and processes
- [09:02:56] ===---------------------------------------------------------------===
- [09:02:56] Performing test ID PROC-3602 (Checking /proc/meminfo for memory details)
- [09:02:56] Result: found /proc/meminfo
- [09:02:56] Result: Found 3080404 kB memory
- [09:02:56] ===---------------------------------------------------------------===
- [09:02:56] Skipped test PROC-3604 (Query prtconf for memory details)
- [09:02:56] Reason to skip: Incorrect guest OS (Solaris only)
- [09:02:56] ===---------------------------------------------------------------===
- [09:02:56] Performing test ID PROC-3612 (Check dead or zombie processes)
- [09:02:56] Result: no zombie processes found
- [09:02:56] ===---------------------------------------------------------------===
- [09:02:56] Performing test ID PROC-3614 (Check heavy IO waiting based processes)
- [09:02:56] Result: No processes were waiting for IO requests to be handled first
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Action: Performing tests from category: Users, Groups and Authentication
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9204 (Check users with an UID of zero)
- [09:02:58] Test: Searching accounts with UID 0
- [09:02:58] Result: No accounts found with UID 0 other than root.
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9208 (Check non-unique accounts in passwd file)
- [09:02:58] Test: Checking for non-unique accounts
- [09:02:58] Result: all accounts found in /etc/passwd are unique
- [09:02:58] Remarks: Non unique UIDs can riskful for the system or part of a configuration mistake
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Skipped test AUTH-9212 (Test group file)
- [09:02:58] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9216 (Check group and shadow group files)
- [09:02:58] Test: Checking for grpck binary
- [09:02:58] Result: grpck binary didn't find any errors in the group files
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Skipped test AUTH-9218 (Check harmful login shells)
- [09:02:58] Reason to skip: Incorrect guest OS (FreeBSD only)
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9222 (Check for non unique groups)
- [09:02:58] Test: Checking for non unique group ID's in /etc/group
- [09:02:58] Result: All group ID's are unique
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9226 (Check non unique group names)
- [09:02:58] Test: Checking for non unique group names in /etc/group
- [09:02:58] Result: All group names are unique
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9228 (Check password file consistency)
- [09:02:58] Test: Checking password file consistency (pwck)
- [09:02:58] Result: pwck check didn't find any problems
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Skipped test AUTH-9230 (Check password file consistency)
- [09:02:58] Reason to skip: Incorrect guest OS (Solaris only)
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9234 (Query user accounts)
- [09:02:58] Test: Read system users (including root user) from /etc/passwd
- [09:02:58] Linux real users output (ID = 0, or 500+, but not 65534):
- [09:02:58] Real user: root,0
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9240 (Query NIS+ authentication support)
- [09:02:58] Result: NIS+ authentication not enabled
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9242 (Query NIS authentication support)
- [09:02:58] Result: NIS authentication not enabled
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9250 (Checking sudoers file)
- [09:02:58] Test: checking presence /etc/sudoers
- [09:02:58] Result: found file (/etc/sudoers)
- [09:02:58] Test: checking presence /usr/local/etc/sudoers
- [09:02:58] Result: file /usr/local/etc/sudoers not found
- [09:02:58] Test: checking presence /usr/pkg/etc/sudoers
- [09:02:58] Result: file /usr/pkg/etc/sudoers not found
- [09:02:58] Result: sudoers file found (/etc/sudoers)
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9252 (Check sudoers file)
- [09:02:58] Test: checking sudoers file (/etc/sudoers) permissions
- [09:02:58] Result: Found file permissions: r--r-----
- [09:02:58] Result: file /etc/sudoers has correct permissions
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Skipped test AUTH-9254 (Solaris passwordless accounts)
- [09:02:58] Reason to skip: Incorrect guest OS (Solaris only)
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9262 (Checking presence password strength testing tools (PAM))
- [09:02:58] Searching cracklib PAM module
- [09:02:58] Result: pam_cracklib.so NOT found (crack library PAM)
- [09:02:58] Hardening: assigned 1 hardening points (max for this item: 3), current: 8, total: 44
- [09:02:58] Searching passwdqc PAM module
- [09:02:58] Result: pam_passwdqc.so NOT found (passwd quality control PAM)
- [09:02:58] Hardening: assigned 1 hardening points (max for this item: 3), current: 9, total: 47
- [09:02:58] Result: no PAM modules for password strength testing found
- [09:02:58] Suggestion: Install a PAM module for password strength testing like pam_cracklib or pam_passwdqc [AUTH-9262]
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9264 (Checking presence pam.conf)
- [09:02:58] Test: Checking file /etc/pam.conf
- [09:02:58] Result: file /etc/pam.conf exists
- [09:02:58] Test: searching PAM configuration files
- [09:02:58] Result: File has no configuration options defined (empty, or only filled with comments and empty lines)
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9266 (Checking presence pam.d files)
- [09:02:58] Test: Checking directory /etc/pam.d
- [09:02:58] Result: directory /etc/pam.d exists
- [09:02:58] Test: searching PAM configuration files
- [09:02:58] Found file: /etc/pam.d/atd
- [09:02:58] Found file: /etc/pam.d/chfn
- [09:02:58] Found file: /etc/pam.d/chpasswd
- [09:02:58] Found file: /etc/pam.d/chsh
- [09:02:58] Found file: /etc/pam.d/common-account
- [09:02:58] Found file: /etc/pam.d/common-auth
- [09:02:58] Found file: /etc/pam.d/common-password
- [09:02:58] Found file: /etc/pam.d/common-session
- [09:02:58] Found file: /etc/pam.d/common-session-noninteractive
- [09:02:58] Found file: /etc/pam.d/cron
- [09:02:58] Found file: /etc/pam.d/login
- [09:02:58] Found file: /etc/pam.d/newusers
- [09:02:58] Found file: /etc/pam.d/other
- [09:02:58] Found file: /etc/pam.d/passwd
- [09:02:58] Found file: /etc/pam.d/polkit-1
- [09:02:58] Found file: /etc/pam.d/runuser
- [09:02:58] Found file: /etc/pam.d/runuser-l
- [09:02:58] Found file: /etc/pam.d/sshd
- [09:02:58] Found file: /etc/pam.d/su
- [09:02:58] Found file: /etc/pam.d/sudo
- [09:02:58] Found file: /etc/pam.d/systemd-user
- [09:02:58] Found file: /etc/pam.d/vmtoolsd
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9268 (Checking presence pam.d files)
- [09:02:58] Test: Searching pam modules
- [09:02:58] Test: Checking /lib/i386-linux-gnu/security
- [09:02:58] Result: directory /lib/i386-linux-gnu/security could not be found or is a symlink to another directory
- [09:02:58] Test: Checking /lib/security
- [09:02:58] Result: directory /lib/security could not be found or is a symlink to another directory
- [09:02:58] Test: Checking /lib/x86_64-linux-gnu/security
- [09:02:58] Result: directory /lib/x86_64-linux-gnu/security exists
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_access.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_debug.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_deny.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_echo.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_env.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_exec.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_extrausers.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_faildelay.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_filter.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_ftp.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_group.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_issue.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_keyinit.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_lastlog.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_limits.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_listfile.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_localuser.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_loginuid.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_mail.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_mkhomedir.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_motd.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_namespace.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_nologin.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_permit.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_pwhistory.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_rhosts.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_rootok.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_securetty.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_selinux.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_sepermit.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_shells.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_stress.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_succeed_if.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_systemd.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_tally.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_tally2.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_time.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_timestamp.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_tty_audit.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_umask.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_unix.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_userdb.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_warn.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_wheel.so
- [09:02:58] Found file: /lib/x86_64-linux-gnu/security/pam_xauth.so
- [09:02:58] Test: Checking /lib64/security
- [09:02:58] Result: directory /lib64/security could not be found or is a symlink to another directory
- [09:02:58] Test: Checking /usr/lib/security
- [09:02:58] Result: directory /usr/lib/security could not be found or is a symlink to another directory
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9278 (Checking LDAP pam status)
- [09:02:58] Test: checking presence /etc/pam.d/common-auth
- [09:02:58] Result: file /etc/pam.d/common-auth exists
- [09:02:58] Test: checking presence LDAP module
- [09:02:58] Result: LDAP module not found
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9282 (Checking password protected account without expire date)
- [09:02:58] Test: Checking Linux version and password expire date status
- [09:02:58] Result: all accounts seem to have an expire date
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9283 (Checking accounts without password)
- [09:02:58] Test: Checking passwordless accounts
- [09:02:58] Result: all accounts seem to have a password
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9286 (Checking user password aging)
- [09:02:58] Test: Checking PASS_MAX_DAYS option in /etc/login.defs
- [09:02:58] Result: password aging limits are not configured
- [09:02:58] Suggestion: Configure password aging limits to enforce password changing on a regular base [AUTH-9286]
- [09:02:58] Hardening: assigned 0 hardening points (max for this item: 1), current: 9, total: 48
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Skipped test AUTH-9304 (Check single user login configuration)
- [09:02:58] Reason to skip: Incorrect guest OS (Solaris only)
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Skipped test AUTH-9306 (Check single boot authentication)
- [09:02:58] Reason to skip: Incorrect guest OS (HP-UX only)
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9308 (Check single user login configuration)
- [09:02:58] Test: Searching /etc/inittab
- [09:02:58] Result: file /etc/inittab does not exist
- [09:02:58] Test: Searching /etc/sysconfig/init
- [09:02:58] Result: file /etc/inittab does not exist
- [09:02:58] Result: No inittab or init file found, unsure if system is protected
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9328 (Default umask values)
- [09:02:58] Test: Checking /etc/profile
- [09:02:58] Result: file /etc/profile exists
- [09:02:58] Test: Checking umask value in /etc/profile
- [09:02:58] Result: found several umask values configured in /etc/profile
- [09:02:58] Hardening: assigned 1 hardening points (max for this item: 2), current: 10, total: 50
- [09:02:58] Hardening: assigned 2 hardening points (max for this item: 2), current: 12, total: 52
- [09:02:58] Test: Checking umask entries in /etc/passwd (pam_umask)
- [09:02:58] Result: file /etc/passwd exists
- [09:02:58] Test: Checking umask value in /etc/profile
- [09:02:58] Manual: one or more manual actions are required for further testing of this control/plugin
- [09:02:58] Test: Checking /etc/login.defs
- [09:02:58] Result: file /etc/profile exists
- [09:02:58] Test: Checking umask value in /etc/login.defs
- [09:02:58] Result: found umask 022, which could be improved
- [09:02:58] Suggestion: Default umask in /etc/login.defs could be more strict like 027 [AUTH-9328]
- [09:02:58] Hardening: assigned 0 hardening points (max for this item: 2), current: 12, total: 54
- [09:02:58] Test: Checking /etc/init.d/functions
- [09:02:58] Result: file /etc/init.d/functions does not exist
- [09:02:58] Test: Checking /etc/init.d/rc
- [09:02:58] Result: file /etc/init.d/rc exists
- [09:02:58] Test: Checking UMASK value in /etc/init.d/rc
- [09:02:58] Result: found umask 022, which could be improved
- [09:02:58] Suggestion: Default umask in /etc/init.d/rc could be more strict like 027 [AUTH-9328]
- [09:02:58] Hardening: assigned 0 hardening points (max for this item: 2), current: 12, total: 56
- [09:02:58] Test: Checking /etc/init.d/rcS
- [09:02:58] Result: file /etc/init.d/rcS exists
- [09:02:58] Test: Checking if script runs another script.
- [09:02:58] Result: exec line present in file, setting of umask not needed in this script
- [09:02:58] Output: /etc/init.d/rc
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Skipped test AUTH-9340 (Solaris account locking)
- [09:02:58] Reason to skip: Incorrect guest OS (Solaris only)
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Performing test ID AUTH-9402 (Query LDAP authentication support)
- [09:02:58] Result: LDAP authentication not enabled
- [09:02:58] ===---------------------------------------------------------------===
- [09:02:58] Skipped test AUTH-9406 (Query LDAP servers in client configuration)
- [09:02:58] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:02:59] ===---------------------------------------------------------------===
- [09:02:59] Action: Performing tests from category: Shells
- [09:02:59] ===---------------------------------------------------------------===
- [09:02:59] Skipped test SHLL-6202 (Check console TTYs)
- [09:02:59] Reason to skip: Incorrect guest OS (FreeBSD only)
- [09:02:59] ===---------------------------------------------------------------===
- [09:02:59] Performing test ID SHLL-6211 (Checking available and valid shells)
- [09:02:59] Test: Searching for /etc/shells
- [09:02:59] Result: Found /etc/shells file
- [09:02:59] Test: Reading available shells from /etc/shells
- [09:02:59] Found installed shell: /bin/sh
- [09:02:59] Found installed shell: /bin/dash
- [09:02:59] Found installed shell: /bin/bash
- [09:02:59] Found installed shell: /bin/rbash
- [09:02:59] Found installed shell: /usr/bin/tmux
- [09:02:59] Found installed shell: /usr/bin/screen
- [09:02:59] ===---------------------------------------------------------------===
- [09:02:59] Performing test ID SHLL-6220 (Checking available and valid shells)
- [09:02:59] Test: Search for session timeout tools or settings in shell
- [09:02:59] IsRunning: process 'timeoutd' not found
- [09:02:59] IsRunning: process 'autolog' not found
- [09:02:59] Result: could not find TMOUT setting in /etc/profile
- [09:02:59] Result: could not find export, readonly or typeset -r in /etc/profile
- [09:02:59] Result: could not find TMOUT setting in /etc/profile.d/*.sh
- [09:02:59] Result: could not find export, readonly or typeset -r in /etc/profile
- [09:02:59] Hardening: assigned 1 hardening points (max for this item: 3), current: 13, total: 59
- [09:02:59] ===---------------------------------------------------------------===
- [09:02:59] Performing test ID SHLL-6290 (Perform Shellshock vulnerability tests)
- [09:02:59] Test: Check if bash is in the list of shells.
- [09:02:59] Test: checking for bash shell in /etc/shells
- [09:02:59] Result: command revealed /bin/bash as output
- [09:02:59] Result: found /bin/bash as a valid shell
- [09:02:59] Test: Check for first exploit (CVE-2014-6271)
- [09:02:59] Result: Not vulnerable to original shellshock (CVE-2014-6271)
- [09:02:59] Test: Check for CVE-2014-6278
- [09:02:59] Result: Not vulnerable to CVE-2014-6278
- [09:02:59] Test: Check for taviso bug CVE-2014-7169
- [09:02:59] Result: Not vulnerable to taviso bug (CVE-2014-7169)
- [09:02:59] Test: Check for CVE-2014-7186
- [09:02:59] Result: Not vulnerable to CVE-2014-7186
- [09:02:59] Test: Check for CVE-2014-7187
- [09:02:59] Result: Not vulnerable to CVE-2014-7187
- [09:02:59] Test: Check for bug Exploit #3 - shellshocker.net (no CVE)
- [09:02:59] Result: Not vulnerable to exploit #3 on shellshocker.net (no CVE)
- [09:02:59] Hardening: assigned 5 hardening points (max for this item: 5), current: 18, total: 64
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Action: Performing tests from category: File systems
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6310 (Checking /tmp, /home and /var directory)
- [09:03:01] Test: Checking if /home is mounted separately or mounted on / file system
- [09:03:01] Result: directory /home exists
- [09:03:01] Result: /home not found in mount list. Directory most likely stored on / file system
- [09:03:01] Suggestion: To decrease the impact of a full /home file system, place /home on a separated partition [FILE-6310]
- [09:03:01] Hardening: assigned 9 hardening points (max for this item: 10), current: 27, total: 74
- [09:03:01] Test: Checking if /tmp is mounted separately or mounted on / file system
- [09:03:01] Result: directory /tmp exists
- [09:03:01] Result: /tmp not found in mount list. Directory most likely stored on / file system
- [09:03:01] Suggestion: To decrease the impact of a full /tmp file system, place /tmp on a separated partition [FILE-6310]
- [09:03:01] Hardening: assigned 9 hardening points (max for this item: 10), current: 36, total: 84
- [09:03:01] Test: Checking if /var is mounted separately or mounted on / file system
- [09:03:01] Result: directory /var exists
- [09:03:01] Result: found /var as a separated mount point
- [09:03:01] Hardening: assigned 10 hardening points (max for this item: 10), current: 46, total: 94
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6311 (Checking LVM volume groups)
- [09:03:01] Test: Checking for LVM volume groups
- [09:03:01] Result: no LVM volume groups found
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Skipped test FILE-6312 (Checking LVM volumes)
- [09:03:01] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6323 (Checking EXT file systems)
- [09:03:01] Test: Checking for Linux EXT file systems
- [09:03:01] Result: found one or more EXT file systems
- [09:03:01] File system: / (type: ext4)
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6329 (Checking FFS/UFS file systems)
- [09:03:01] Test: Query /etc/fstab for available FFS/UFS mount points
- [09:03:01] Result: unable to find any single mount point (FFS/UFS)
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Skipped test FILE-6330 (Checking ZFS file systems)
- [09:03:01] Reason to skip: Incorrect guest OS (FreeBSD only)
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6332 (Checking swap partitions)
- [09:03:01] Test: query swap partitions from /etc/fstab file
- [09:03:01] Result: no swap partitions found in /etc/fstab
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6336 (Checking swap mount options)
- [09:03:01] Test: check swap partitions with incorrect mount options
- [09:03:01] Result: possible incorrect mount options used for mounting swap partition ()
- [09:03:01] Suggestion: Check your /etc/fstab file for swap partition mount options [FILE-6336]
- [09:03:01] Notes: usually swap partition have 'sw' or 'swap' in the options field (4th)
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6354 (Searching for old files in /tmp)
- [09:03:01] Test: Searching for old files in /tmp
- [09:03:01] Result: no files found in /tmp which are older than 3 months
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6362 (Checking /tmp sticky bit)
- [09:03:01] Result: Sticky bit (t) found on /tmp directory
- [09:03:01] Hardening: assigned 3 hardening points (max for this item: 3), current: 49, total: 97
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6368 (Checking ACL support on root file system)
- [09:03:01] Test: Checking acl option on root file system
- [09:03:01] Result: mount point probably mounted with defaults
- [09:03:01] Test: Checking device which holds root file system
- [09:03:01] Result: found /dev/vda1
- [09:03:01] Test: Checking default options on /dev/vda1
- [09:03:01] Result: found ACL option in default mount options
- [09:03:01] Result: ACL option enabled on root file system
- [09:03:01] Hardening: assigned 3 hardening points (max for this item: 3), current: 52, total: 100
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6372 (Checking / mount options)
- [09:03:01] Result: no mount point / or expected options found
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6374 (Checking /boot mount options)
- [09:03:01] Result: no mount point /boot or expected options found
- [09:03:01] ===---------------------------------------------------------------===
- [09:03:01] Performing test ID FILE-6410 (Checking Locate database)
- [09:03:01] Test: Checking locate database
- [09:03:01] Result: locate database found (/var/lib/mlocate/mlocate.db)
- [09:03:01] Result: file /var/lib/locatedb not found
- [09:03:01] Result: file /var/lib/slocate/slocate.db not found
- [09:03:01] Result: file /var/cache/locate/locatedb not found
- [09:03:01] Result: file /var/db/locate.database not found
- [09:03:02] ===---------------------------------------------------------------===
- [09:03:02] Action: Performing tests from category: Storage
- [09:03:02] ===---------------------------------------------------------------===
- [09:03:02] Performing test ID STRG-1840 (Check if USB storage is disabled)
- [09:03:02] Test: Checking USB storage driver in directory /etc/modprobe.d and configuration file /etc/modprobe.conf
- [09:03:02] Result: usb-storage driver is not explicitly disabled
- [09:03:02] Suggestion: Disable drivers like USB storage when not used, to prevent unauthorized storage or data theft [STRG-1840]
- [09:03:02] Hardening: assigned 2 hardening points (max for this item: 3), current: 54, total: 103
- [09:03:02] ===---------------------------------------------------------------===
- [09:03:02] Performing test ID STRG-1846 (Check if firewire storage is disabled)
- [09:03:02] Test: Checking firewire storage driver in directory /etc/modprobe.d and configuration file /etc/modprobe.conf
- [09:03:02] Result: found firewire ohci driver in disabled state
- [09:03:02] Result: firewire ohci driver is disabled
- [09:03:02] Hardening: assigned 3 hardening points (max for this item: 3), current: 57, total: 106
- [09:03:03] ===---------------------------------------------------------------===
- [09:03:03] Action: Performing tests from category: NFS
- [09:03:03] ===---------------------------------------------------------------===
- [09:03:03] Skipped test STRG-1902 (Check rpcinfo registered programs)
- [09:03:03] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:03] ===---------------------------------------------------------------===
- [09:03:03] Skipped test STRG-1904 (Check nfs rpc)
- [09:03:03] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:03] ===---------------------------------------------------------------===
- [09:03:03] Skipped test STRG-1906 (Check nfs rpc)
- [09:03:03] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:03] ===---------------------------------------------------------------===
- [09:03:03] Performing test ID STRG-1920 (Checking NFS daemon)
- [09:03:03] Test: Checking running NFS daemon
- [09:03:03] Output: NFS daemon is not running
- [09:03:03] ===---------------------------------------------------------------===
- [09:03:03] Skipped test STRG-1926 (Checking NFS exports)
- [09:03:03] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:03] ===---------------------------------------------------------------===
- [09:03:03] Skipped test STRG-1928 (Checking empty /etc/exports)
- [09:03:03] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:03] ===---------------------------------------------------------------===
- [09:03:03] Skipped test STRG-1930 (Check client access to nfs share)
- [09:03:03] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Action: Performing tests from category: Name services
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4016 (Check /etc/resolv.conf default domain)
- [09:03:04] Test: check /etc/resolv.conf for default domain
- [09:03:04] Result: /etc/resolv.conf found
- [09:03:04] Result: no default domain found
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4018 (Check /etc/resolv.conf search domains)
- [09:03:04] Test: check /etc/resolv.conf for search domains
- [09:03:04] Result: /etc/resolv.conf found
- [09:03:04] Result: no search domains found, default domain is being used
- [09:03:04] Result: found 0 line(s) with a search statement (expecting less than 2 lines)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4020 (Check non default options)
- [09:03:04] Test: check /etc/resolv.conf for non default options
- [09:03:04] Result: /etc/resolv.conf found
- [09:03:04] Result: no specific other options configured in /etc/resolv.conf
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Skipped test NAME-4024 (Solaris uname -n output)
- [09:03:04] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Skipped test NAME-4026 (Check /etc/nodename)
- [09:03:04] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4028 (Check domain name)
- [09:03:04] Test: Checking if dnsdomainname command is available
- [09:03:04] Result: dnsdomainname command returned no value
- [09:03:04] Result: using domain name from FQDN hostname
- [09:03:04] Suggestion: Check DNS configuration for the dns domain name [NAME-4028]
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4032 (Check nscd status)
- [09:03:04] Test: checking nscd status
- [09:03:04] IsRunning: process 'nscd' not found
- [09:03:04] Result: nscd is not running
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4202 (Check BIND status)
- [09:03:04] Test: Checking for running BIND instance
- [09:03:04] IsRunning: process 'named' not found
- [09:03:04] Result: BIND not running
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Skipped test NAME-4204 (Search BIND configuration file)
- [09:03:04] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Skipped test NAME-4206 (Check BIND configuration consistency)
- [09:03:04] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Skipped test NAME-4210 (Check DNS banner)
- [09:03:04] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4230 (Check PowerDNS status)
- [09:03:04] Test: Checking for running PowerDNS instance
- [09:03:04] IsRunning: process 'pdns_server' not found
- [09:03:04] Result: PowerDNS not running
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Skipped test NAME-4232 (Search PowerDNS configuration file)
- [09:03:04] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Skipped test NAME-4236 (Check PowerDNS backends)
- [09:03:04] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Skipped test NAME-4238 (Check PowerDNS authoritive status)
- [09:03:04] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4304 (Check NIS ypbind status)
- [09:03:04] Test: Checking status of ypbind daemon
- [09:03:04] IsRunning: process 'ypbind' not found
- [09:03:04] Result: ypbind is not active
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Skipped test NAME-4306 (Check NIS domain)
- [09:03:04] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4402 (Check duplicate line in /etc/hosts)
- [09:03:04] Test: check duplicate line in /etc/hosts
- [09:03:04] Result: OK, no duplicate lines found
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4404 (Check /etc/hosts contains an entry for this server name)
- [09:03:04] Test: Check /etc/hosts contains an entry for this server name
- [09:03:04] Result: No entry found for node8-new-21 in /etc/hosts
- [09:03:04] Suggestion: Add the IP name and FQDN to /etc/hosts for proper name resolving [NAME-4404]
- [09:03:04] Risk: No entry for the server name [hostname] in /etc/hosts may cause unexpected performance problems for local connections
- [09:03:04] ===---------------------------------------------------------------===
- [09:03:04] Performing test ID NAME-4406 (Check server hostname mapping)
- [09:03:04] Test: Check server hostname not locally mapped in /etc/hosts
- [09:03:04] Result: this server hostname is not mapped to a local address
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Action: Performing tests from category: Ports and packages
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Skipped test PKGS-7301 (Query NetBSD pkg)
- [09:03:05] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Skipped test PKGS-7302 (Query FreeBSD/NetBSD pkg_info)
- [09:03:05] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Skipped test PKGS-7304 (Querying Gentoo packages)
- [09:03:05] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:05] Result: emerge can NOT be found on this system
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Skipped test PKGS-7306 (Querying Solaris packages)
- [09:03:05] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:05] Result: pkginfo can NOT be found on this system
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Skipped test PKGS-7308 (Checking package list with RPM)
- [09:03:05] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:05] Result: RPM binary NOT found on this system, test skipped
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Skipped test PKGS-7310 (Checking package list with pacman)
- [09:03:05] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Skipped test PKGS-7312 (Checking available updates for pacman based system)
- [09:03:05] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:05] Result: pacman binary NOT found on this system, test skipped
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Skipped test PKGS-7314 (Checking pacman configuration options)
- [09:03:05] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Skipped test PKGS-7328 (Querying Zypper for installed packages)
- [09:03:05] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Skipped test PKGS-7330 (Querying Zypper for vulnerable packages)
- [09:03:05] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:05] ===---------------------------------------------------------------===
- [09:03:05] Performing test ID PKGS-7345 (Querying dpkg)
- [09:03:05] Result: Found dpkg binary
- [09:03:05] Test: Querying dpkg -l to get package list
- [09:03:05] Output:
- [09:03:05] Found package: accountsservice (version: 0.6.40-2ubuntu11.3)
- [09:03:05] Found package: acl (version: 2.2.52-3)
- [09:03:05] Found package: acpid (version: 1:2.0.26-1ubuntu2)
- [09:03:05] Found package: adduser (version: 3.113+nmu3ubuntu4)
- [09:03:05] Found package: apparmor (version: 2.10.95-0ubuntu2.9)
- [09:03:05] Found package: apport (version: 2.20.1-0ubuntu2.18)
- [09:03:05] Found package: apport-symptoms (version: 0.20)
- [09:03:05] Found package: apt (version: 1.2.27)
- [09:03:05] Found package: apt-transport-https (version: 1.2.27)
- [09:03:05] Found package: apt-utils (version: 1.2.27)
- [09:03:05] Found package: at (version: 3.1.18-2ubuntu1)
- [09:03:05] Found package: base-files (version: 9.4ubuntu4.7)
- [09:03:05] Found package: base-passwd (version: 3.5.39)
- [09:03:05] Found package: bash (version: 4.3-14ubuntu1.2)
- [09:03:05] Found package: bash-completion (version: 1:2.1-4.2ubuntu1.1)
- [09:03:05] Found package: bcache-tools (version: 1.0.8-2)
- [09:03:05] Found package: bind9-host (version: 1:9.10.3.dfsg.P4-8ubuntu1.11)
- [09:03:05] Found package: bsdmainutils (version: 9.0.6ubuntu3)
- [09:03:05] Found package: bsdutils (version: 1:2.27.1-6ubuntu3.4)
- [09:03:05] Found package: btrfs-tools (version: 4.4-1ubuntu1)
- [09:03:05] Found package: busybox-initramfs (version: 1:1.22.0-15ubuntu1)
- [09:03:05] Found package: busybox-static (version: 1:1.22.0-15ubuntu1)
- [09:03:05] Found package: byobu (version: 5.106-0ubuntu1)
- [09:03:05] Found package: bzip2 (version: 1.0.6-8)
- [09:03:05] Found package: ca-certificates (version: 20170717~16.04.1)
- [09:03:05] Found package: cloud-guest-utils (version: 0.27-0ubuntu25.1)
- [09:03:05] Found package: cloud-init (version: 18.2-4-g05926e48-0ubuntu1~16.04.2)
- [09:03:05] Found package: cloud-initramfs-copymods (version: 0.27ubuntu1.5)
- [09:03:05] Found package: cloud-initramfs-dyn-netconf (version: 0.27ubuntu1.5)
- [09:03:05] Found package: command-not-found (version: 0.3ubuntu16.04.2)
- [09:03:05] Found package: command-not-found-data (version: 0.3ubuntu16.04.2)
- [09:03:05] Found package: console-setup (version: 1.108ubuntu15.4)
- [09:03:05] Found package: console-setup-linux (version: 1.108ubuntu15.4)
- [09:03:05] Found package: coreutils (version: 8.25-2ubuntu3~16.04)
- [09:03:05] Found package: cpio (version: 2.11+dfsg-5ubuntu1)
- [09:03:05] Found package: cron (version: 3.0pl1-128ubuntu2)
- [09:03:05] Found package: cryptsetup (version: 2:1.6.6-5ubuntu2.1)
- [09:03:05] Found package: cryptsetup-bin (version: 2:1.6.6-5ubuntu2.1)
- [09:03:05] Found package: curl (version: 7.47.0-1ubuntu2.9)
- [09:03:05] Found package: dash (version: 0.5.8-2.1ubuntu2)
- [09:03:05] Found package: dbus (version: 1.10.6-1ubuntu3.3)
- [09:03:05] Found package: debconf (version: 1.5.58ubuntu1)
- [09:03:05] Found package: debconf-i18n (version: 1.5.58ubuntu1)
- [09:03:05] Found package: debianutils (version: 4.7)
- [09:03:05] Found package: dh-python (version: 2.20151103ubuntu1.1)
- [09:03:05] Found package: diffutils (version: 1:3.3-3)
- [09:03:05] Found package: distro-info-data (version: 0.28ubuntu0.8)
- [09:03:05] Found package: dmeventd (version: 2:1.02.110-1ubuntu10)
- [09:03:05] Found package: dmidecode (version: 3.0-2ubuntu0.1)
- [09:03:05] Found package: dmsetup (version: 2:1.02.110-1ubuntu10)
- [09:03:05] Found package: dns-root-data (version: 2018013001~16.04.1)
- [09:03:05] Found package: dnsmasq-base (version: 2.75-1ubuntu0.16.04.5)
- [09:03:05] Found package: dnsutils (version: 1:9.10.3.dfsg.P4-8ubuntu1.11)
- [09:03:05] Found package: do-agent (version: 0.5.1)
- [09:03:05] Found package: dosfstools (version: 3.0.28-2ubuntu0.1)
- [09:03:05] Found package: dpkg (version: 1.18.4ubuntu1.4)
- [09:03:05] Found package: e2fslibs:amd64 (version: 1.42.13-1ubuntu1)
- [09:03:06] Found package: e2fsprogs (version: 1.42.13-1ubuntu1)
- [09:03:06] Found package: eatmydata (version: 105-3)
- [09:03:06] Found package: ed (version: 1.10-2)
- [09:03:06] Found package: efibootmgr (version: 0.12-4)
- [09:03:06] Found package: eject (version: 2.1.5+deb1+cvs20081104-13.1ubuntu0.16.04.1)
- [09:03:06] Found package: ethtool (version: 1:4.5-1)
- [09:03:06] Found package: file (version: 1:5.25-2ubuntu1.1)
- [09:03:06] Found package: findutils (version: 4.6.0+git+20160126-2)
- [09:03:06] Found package: fonts-ubuntu-font-family-console (version: 1:0.83-0ubuntu2)
- [09:03:06] Found package: friendly-recovery (version: 0.2.31ubuntu1)
- [09:03:06] Found package: ftp (version: 0.17-33)
- [09:03:06] Found package: fuse (version: 2.9.4-1ubuntu3.1)
- [09:03:06] Found package: gawk (version: 1:4.1.3+dfsg-0.1)
- [09:03:06] Found package: gcc-5-base:amd64 (version: 5.4.0-6ubuntu1~16.04.10)
- [09:03:06] Found package: gcc-6-base:amd64 (version: 6.0.1-0ubuntu1)
- [09:03:06] Found package: gdisk (version: 1.0.1-1build1)
- [09:03:06] Found package: geoip-database (version: 20160408-1)
- [09:03:06] Found package: gettext-base (version: 0.19.7-2ubuntu3)
- [09:03:06] Found package: gir1.2-glib-2.0:amd64 (version: 1.46.0-3ubuntu1)
- [09:03:06] Found package: git (version: 1:2.7.4-0ubuntu1.4)
- [09:03:06] Found package: git-man (version: 1:2.7.4-0ubuntu1.4)
- [09:03:06] Found package: gitlab-runner (version: 11.0.2)
- [09:03:06] Found package: gnupg (version: 1.4.20-1ubuntu3.3)
- [09:03:06] Found package: gpgv (version: 1.4.20-1ubuntu3.3)
- [09:03:06] Found package: grep (version: 2.25-1~16.04.1)
- [09:03:06] Found package: groff-base (version: 1.22.3-7)
- [09:03:06] Found package: grub-common (version: 2.02~beta2-36ubuntu3.18)
- [09:03:06] Found package: grub-efi-amd64 (version: 2.02~beta2-36ubuntu3.18)
- [09:03:06] Found package: grub-efi-amd64-bin (version: 2.02~beta2-36ubuntu3.18)
- [09:03:06] Found package: grub-efi-amd64-signed (version: 1.66.18+2.02~beta2-36ubuntu3.18)
- [09:03:06] Found package: grub-legacy-ec2 (version: 18.2-4-g05926e48-0ubuntu1~16.04.2)
- [09:03:06] Found package: grub-pc-bin (version: 2.02~beta2-36ubuntu3.18)
- [09:03:06] Found package: grub2-common (version: 2.02~beta2-36ubuntu3.18)
- [09:03:06] Found package: gzip (version: 1.6-4ubuntu1)
- [09:03:06] Found package: hdparm (version: 9.48+ds-1ubuntu0.1)
- [09:03:06] Found package: hostname (version: 3.16ubuntu2)
- [09:03:06] Found package: ifenslave (version: 2.7ubuntu1)
- [09:03:06] Found package: ifupdown (version: 0.8.10ubuntu1.4)
- [09:03:06] Found package: info (version: 6.1.0.dfsg.1-5)
- [09:03:06] Found package: init (version: 1.29ubuntu4)
- [09:03:06] Found package: init-system-helpers (version: 1.29ubuntu4)
- [09:03:06] Found package: initramfs-tools (version: 0.122ubuntu8.11)
- [09:03:06] Found package: initramfs-tools-bin (version: 0.122ubuntu8.11)
- [09:03:06] Found package: initramfs-tools-core (version: 0.122ubuntu8.11)
- [09:03:06] Found package: initscripts (version: 2.88dsf-59.3ubuntu2)
- [09:03:06] Found package: insserv (version: 1.14.0-5ubuntu3)
- [09:03:06] Found package: install-info (version: 6.1.0.dfsg.1-5)
- [09:03:06] Found package: iproute2 (version: 4.3.0-1ubuntu3.16.04.3)
- [09:03:06] Found package: iptables (version: 1.6.0-2ubuntu3)
- [09:03:06] Found package: iputils-ping (version: 3:20121221-5ubuntu2)
- [09:03:06] Found package: iputils-tracepath (version: 3:20121221-5ubuntu2)
- [09:03:06] Found package: irqbalance (version: 1.1.0-2ubuntu1)
- [09:03:06] Found package: isc-dhcp-client (version: 4.3.3-5ubuntu12.10)
- [09:03:06] Found package: isc-dhcp-common (version: 4.3.3-5ubuntu12.10)
- [09:03:06] Found package: iso-codes (version: 3.65-1)
- [09:03:06] Found package: kbd (version: 1.15.5-1ubuntu5)
- [09:03:06] Found package: keyboard-configuration (version: 1.108ubuntu15.4)
- [09:03:06] Found package: klibc-utils (version: 2.0.4-8ubuntu1.16.04.4)
- [09:03:06] Found package: kmod (version: 22-1ubuntu5)
- [09:03:06] Found package: krb5-locales (version: 1.13.2+dfsg-5ubuntu2)
- [09:03:06] Found package: language-selector-common (version: 0.165.4)
- [09:03:06] Found package: less (version: 481-2.1ubuntu0.2)
- [09:03:06] Found package: libaccountsservice0:amd64 (version: 0.6.40-2ubuntu11.3)
- [09:03:06] Found package: libacl1:amd64 (version: 2.2.52-3)
- [09:03:06] Found package: libapparmor-perl (version: 2.10.95-0ubuntu2.9)
- [09:03:06] Found package: libapparmor1:amd64 (version: 2.10.95-0ubuntu2.9)
- [09:03:06] Found package: libapt-inst2.0:amd64 (version: 1.2.27)
- [09:03:06] Found package: libapt-pkg5.0:amd64 (version: 1.2.27)
- [09:03:06] Found package: libasn1-8-heimdal:amd64 (version: 1.7~git20150920+dfsg-4ubuntu1.16.04.1)
- [09:03:06] Found package: libasprintf0v5:amd64 (version: 0.19.7-2ubuntu3)
- [09:03:06] Found package: libatm1:amd64 (version: 1:2.5.1-1.5)
- [09:03:06] Found package: libattr1:amd64 (version: 1:2.4.47-2)
- [09:03:06] Found package: libaudit-common (version: 1:2.4.5-1ubuntu2.1)
- [09:03:06] Found package: libaudit1:amd64 (version: 1:2.4.5-1ubuntu2.1)
- [09:03:06] Found package: libbind9-140:amd64 (version: 1:9.10.3.dfsg.P4-8ubuntu1.11)
- [09:03:06] Found package: libblkid1:amd64 (version: 2.27.1-6ubuntu3.4)
- [09:03:06] Found package: libbsd0:amd64 (version: 0.8.2-1)
- [09:03:06] Found package: libbz2-1.0:amd64 (version: 1.0.6-8)
- [09:03:06] Found package: libc-bin (version: 2.23-0ubuntu10)
- [09:03:06] Found package: libc6:amd64 (version: 2.23-0ubuntu10)
- [09:03:06] Found package: libcap-ng0:amd64 (version: 0.7.7-1)
- [09:03:06] Found package: libcap2-bin (version: 1:2.24-12)
- [09:03:06] Found package: libcap2:amd64 (version: 1:2.24-12)
- [09:03:06] Found package: libcomerr2:amd64 (version: 1.42.13-1ubuntu1)
- [09:03:06] Found package: libcryptsetup4:amd64 (version: 2:1.6.6-5ubuntu2.1)
- [09:03:06] Found package: libcurl3-gnutls:amd64 (version: 7.47.0-1ubuntu2.9)
- [09:03:06] Found package: libdb5.3:amd64 (version: 5.3.28-11ubuntu0.1)
- [09:03:06] Found package: libdbus-1-3:amd64 (version: 1.10.6-1ubuntu3.3)
- [09:03:06] Found package: libdbus-glib-1-2:amd64 (version: 0.106-1)
- [09:03:06] Found package: libdebconfclient0:amd64 (version: 0.198ubuntu1)
- [09:03:06] Found package: libdevmapper-event1.02.1:amd64 (version: 2:1.02.110-1ubuntu10)
- [09:03:06] Found package: libdevmapper1.02.1:amd64 (version: 2:1.02.110-1ubuntu10)
- [09:03:06] Found package: libdns-export162 (version: 1:9.10.3.dfsg.P4-8ubuntu1.11)
- [09:03:06] Found package: libdns162:amd64 (version: 1:9.10.3.dfsg.P4-8ubuntu1.11)
- [09:03:06] Found package: libdrm2:amd64 (version: 2.4.76-1~ubuntu16.04.1)
- [09:03:06] Found package: libdumbnet1:amd64 (version: 1.12-7)
- [09:03:06] Found package: libeatmydata1:amd64 (version: 105-3)
- [09:03:06] Found package: libedit2:amd64 (version: 3.1-20150325-1ubuntu2)
- [09:03:06] Found package: libefivar0:amd64 (version: 0.23-2)
- [09:03:06] Found package: libelf1:amd64 (version: 0.165-3ubuntu1.1)
- [09:03:06] Found package: liberror-perl (version: 0.17-1.2)
- [09:03:06] Found package: libestr0 (version: 0.1.10-1)
- [09:03:06] Found package: libevent-2.0-5:amd64 (version: 2.0.21-stable-2ubuntu0.16.04.1)
- [09:03:06] Found package: libexpat1:amd64 (version: 2.1.0-7ubuntu0.16.04.3)
- [09:03:06] Found package: libfdisk1:amd64 (version: 2.27.1-6ubuntu3.4)
- [09:03:06] Found package: libffi6:amd64 (version: 3.2.1-4)
- [09:03:06] Found package: libfreetype6:amd64 (version: 2.6.1-0.1ubuntu2.3)
- [09:03:06] Found package: libfribidi0:amd64 (version: 0.19.7-1)
- [09:03:06] Found package: libfuse2:amd64 (version: 2.9.4-1ubuntu3.1)
- [09:03:06] Found package: libgcc1:amd64 (version: 1:6.0.1-0ubuntu1)
- [09:03:06] Found package: libgcrypt20:amd64 (version: 1.6.5-2ubuntu0.5)
- [09:03:06] Found package: libgdbm3:amd64 (version: 1.8.3-13.1)
- [09:03:06] Found package: libgeoip1:amd64 (version: 1.6.9-1)
- [09:03:06] Found package: libgirepository-1.0-1:amd64 (version: 1.46.0-3ubuntu1)
- [09:03:06] Found package: libglib2.0-0:amd64 (version: 2.48.2-0ubuntu4.1)
- [09:03:06] Found package: libglib2.0-data (version: 2.48.2-0ubuntu4.1)
- [09:03:06] Found package: libgmp10:amd64 (version: 2:6.1.0+dfsg-2)
- [09:03:06] Found package: libgnutls-openssl27:amd64 (version: 3.4.10-4ubuntu1.4)
- [09:03:06] Found package: libgnutls30:amd64 (version: 3.4.10-4ubuntu1.4)
- [09:03:06] Found package: libgpg-error0:amd64 (version: 1.21-2ubuntu1)
- [09:03:06] Found package: libgpm2:amd64 (version: 1.20.4-6.1)
- [09:03:06] Found package: libgssapi-krb5-2:amd64 (version: 1.13.2+dfsg-5ubuntu2)
- [09:03:06] Found package: libgssapi3-heimdal:amd64 (version: 1.7~git20150920+dfsg-4ubuntu1.16.04.1)
- [09:03:06] Found package: libhcrypto4-heimdal:amd64 (version: 1.7~git20150920+dfsg-4ubuntu1.16.04.1)
- [09:03:06] Found package: libheimbase1-heimdal:amd64 (version: 1.7~git20150920+dfsg-4ubuntu1.16.04.1)
- [09:03:06] Found package: libheimntlm0-heimdal:amd64 (version: 1.7~git20150920+dfsg-4ubuntu1.16.04.1)
- [09:03:06] Found package: libhogweed4:amd64 (version: 3.2-1ubuntu0.16.04.1)
- [09:03:06] Found package: libhx509-5-heimdal:amd64 (version: 1.7~git20150920+dfsg-4ubuntu1.16.04.1)
- [09:03:06] Found package: libicu55:amd64 (version: 55.1-7ubuntu0.4)
- [09:03:06] Found package: libidn11:amd64 (version: 1.32-3ubuntu1.2)
- [09:03:06] Found package: libisc-export160 (version: 1:9.10.3.dfsg.P4-8ubuntu1.11)
- [09:03:06] Found package: libisc160:amd64 (version: 1:9.10.3.dfsg.P4-8ubuntu1.11)
- [09:03:06] Found package: libisccc140:amd64 (version: 1:9.10.3.dfsg.P4-8ubuntu1.11)
- [09:03:06] Found package: libisccfg140:amd64 (version: 1:9.10.3.dfsg.P4-8ubuntu1.11)
- [09:03:06] Found package: libjson-c2:amd64 (version: 0.11-4ubuntu2)
- [09:03:06] Found package: libk5crypto3:amd64 (version: 1.13.2+dfsg-5ubuntu2)
- [09:03:06] Found package: libkeyutils1:amd64 (version: 1.5.9-8ubuntu1)
- [09:03:06] Found package: libklibc (version: 2.0.4-8ubuntu1.16.04.4)
- [09:03:06] Found package: libkmod2:amd64 (version: 22-1ubuntu5)
- [09:03:06] Found package: libkrb5-26-heimdal:amd64 (version: 1.7~git20150920+dfsg-4ubuntu1.16.04.1)
- [09:03:06] Found package: libkrb5-3:amd64 (version: 1.13.2+dfsg-5ubuntu2)
- [09:03:06] Found package: libkrb5support0:amd64 (version: 1.13.2+dfsg-5ubuntu2)
- [09:03:06] Found package: libldap-2.4-2:amd64 (version: 2.4.42+dfsg-2ubuntu3.3)
- [09:03:06] Found package: liblocale-gettext-perl (version: 1.07-1build1)
- [09:03:06] Found package: liblvm2app2.2:amd64 (version: 2.02.133-1ubuntu10)
- [09:03:06] Found package: liblvm2cmd2.02:amd64 (version: 2.02.133-1ubuntu10)
- [09:03:06] Found package: liblwres141:amd64 (version: 1:9.10.3.dfsg.P4-8ubuntu1.11)
- [09:03:06] Found package: liblxc1 (version: 2.0.8-0ubuntu1~16.04.2)
- [09:03:06] Found package: liblz4-1:amd64 (version: 0.0~r131-2ubuntu2)
- [09:03:06] Found package: liblzma5:amd64 (version: 5.1.1alpha+20120614-2ubuntu2)
- [09:03:06] Found package: liblzo2-2:amd64 (version: 2.08-1.2)
- [09:03:06] Found package: libmagic1:amd64 (version: 1:5.25-2ubuntu1.1)
- [09:03:06] Found package: libmnl0:amd64 (version: 1.0.3-5)
- [09:03:06] Found package: libmount1:amd64 (version: 2.27.1-6ubuntu3.4)
- [09:03:06] Found package: libmpdec2:amd64 (version: 2.4.2-1)
- [09:03:06] Found package: libmpfr4:amd64 (version: 3.1.4-1)
- [09:03:06] Found package: libmspack0:amd64 (version: 0.5-1ubuntu0.16.04.2)
- [09:03:06] Found package: libncurses5:amd64 (version: 6.0+20160213-1ubuntu1)
- [09:03:06] Found package: libncursesw5:amd64 (version: 6.0+20160213-1ubuntu1)
- [09:03:06] Found package: libnetfilter-conntrack3:amd64 (version: 1.0.5-1)
- [09:03:06] Found package: libnettle6:amd64 (version: 3.2-1ubuntu0.16.04.1)
- [09:03:06] Found package: libnewt0.52:amd64 (version: 0.52.18-1ubuntu2)
- [09:03:06] Found package: libnfnetlink0:amd64 (version: 1.0.1-3)
- [09:03:06] Found package: libnih1:amd64 (version: 1.0.3-4.3ubuntu1)
- [09:03:06] Found package: libnuma1:amd64 (version: 2.0.11-1ubuntu1.1)
- [09:03:06] Found package: libp11-kit0:amd64 (version: 0.23.2-5~ubuntu16.04.1)
- [09:03:06] Found package: libpam-modules-bin (version: 1.1.8-3.2ubuntu2.1)
- [09:03:06] Found package: libpam-modules:amd64 (version: 1.1.8-3.2ubuntu2.1)
- [09:03:06] Found package: libpam-runtime (version: 1.1.8-3.2ubuntu2.1)
- [09:03:06] Found package: libpam-systemd:amd64 (version: 229-4ubuntu21.2)
- [09:03:06] Found package: libpam0g:amd64 (version: 1.1.8-3.2ubuntu2.1)
- [09:03:06] Found package: libparted2:amd64 (version: 3.2-15ubuntu0.1)
- [09:03:06] Found package: libpcap0.8:amd64 (version: 1.7.4-2)
- [09:03:06] Found package: libpci3:amd64 (version: 1:3.3.1-1.1ubuntu1.2)
- [09:03:06] Found package: libpcre3:amd64 (version: 2:8.38-3.1)
- [09:03:06] Found package: libperl5.22:amd64 (version: 5.22.1-9ubuntu0.5)
- [09:03:06] Found package: libpipeline1:amd64 (version: 1.4.1-2)
- [09:03:06] Found package: libplymouth4:amd64 (version: 0.9.2-3ubuntu13.5)
- [09:03:06] Found package: libpng12-0:amd64 (version: 1.2.54-1ubuntu1.1)
- [09:03:06] Found package: libpolkit-agent-1-0:amd64 (version: 0.105-14.1ubuntu0.1)
- [09:03:06] Found package: libpolkit-backend-1-0:amd64 (version: 0.105-14.1ubuntu0.1)
- [09:03:06] Found package: libpolkit-gobject-1-0:amd64 (version: 0.105-14.1ubuntu0.1)
- [09:03:06] Found package: libpopt0:amd64 (version: 1.16-10)
- [09:03:06] Found package: libprocps4:amd64 (version: 2:3.3.10-4ubuntu2.4)
- [09:03:06] Found package: libpython-stdlib:amd64 (version: 2.7.12-1~16.04)
- [09:03:06] Found package: libpython2.7-minimal:amd64 (version: 2.7.12-1ubuntu0~16.04.3)
- [09:03:06] Found package: libpython2.7-stdlib:amd64 (version: 2.7.12-1ubuntu0~16.04.3)
- [09:03:06] Found package: libpython3-stdlib:amd64 (version: 3.5.1-3)
- [09:03:06] Found package: libpython3.5-minimal:amd64 (version: 3.5.2-2ubuntu0~16.04.4)
- [09:03:06] Found package: libpython3.5-stdlib:amd64 (version: 3.5.2-2ubuntu0~16.04.4)
- [09:03:06] Found package: libpython3.5:amd64 (version: 3.5.2-2ubuntu0~16.04.4)
- [09:03:06] Found package: libreadline5:amd64 (version: 5.2+dfsg-3build1)
- [09:03:06] Found package: libreadline6:amd64 (version: 6.3-8ubuntu2)
- [09:03:06] Found package: libroken18-heimdal:amd64 (version: 1.7~git20150920+dfsg-4ubuntu1.16.04.1)
- [09:03:06] Found package: librtmp1:amd64 (version: 2.4+20151223.gitfa8646d-1ubuntu0.1)
- [09:03:06] Found package: libsasl2-2:amd64 (version: 2.1.26.dfsg1-14build1)
- [09:03:06] Found package: libsasl2-modules-db:amd64 (version: 2.1.26.dfsg1-14build1)
- [09:03:06] Found package: libsasl2-modules:amd64 (version: 2.1.26.dfsg1-14build1)
- [09:03:06] Found package: libseccomp2:amd64 (version: 2.3.1-2.1ubuntu2~16.04.1)
- [09:03:06] Found package: libselinux1:amd64 (version: 2.4-3build2)
- [09:03:06] Found package: libsemanage-common (version: 2.3-1build3)
- [09:03:06] Found package: libsemanage1:amd64 (version: 2.3-1build3)
- [09:03:06] Found package: libsepol1:amd64 (version: 2.4-2)
- [09:03:06] Found package: libsigsegv2:amd64 (version: 2.10-4)
- [09:03:06] Found package: libslang2:amd64 (version: 2.3.0-2ubuntu1)
- [09:03:06] Found package: libsmartcols1:amd64 (version: 2.27.1-6ubuntu3.4)
- [09:03:06] Found package: libsqlite3-0:amd64 (version: 3.11.0-1ubuntu1)
- [09:03:06] Found package: libss2:amd64 (version: 1.42.13-1ubuntu1)
- [09:03:06] Found package: libssl1.0.0:amd64 (version: 1.0.2g-1ubuntu4.13)
- [09:03:06] Found package: libstdc++6:amd64 (version: 5.4.0-6ubuntu1~16.04.10)
- [09:03:06] Found package: libsystemd0:amd64 (version: 229-4ubuntu21.2)
- [09:03:06] Found package: libtasn1-6:amd64 (version: 4.7-3ubuntu0.16.04.3)
- [09:03:06] Found package: libtext-charwidth-perl (version: 0.04-7build5)
- [09:03:06] Found package: libtext-iconv-perl (version: 1.7-5build4)
- [09:03:06] Found package: libtext-wrapi18n-perl (version: 0.06-7.1)
- [09:03:06] Found package: libtinfo5:amd64 (version: 6.0+20160213-1ubuntu1)
- [09:03:06] Found package: libudev1:amd64 (version: 229-4ubuntu21.2)
- [09:03:06] Found package: libusb-0.1-4:amd64 (version: 2:0.1.12-28)
- [09:03:06] Found package: libusb-1.0-0:amd64 (version: 2:1.0.20-1)
- [09:03:06] Found package: libustr-1.0-1:amd64 (version: 1.0.4-5)
- [09:03:06] Found package: libutempter0:amd64 (version: 1.1.6-3)
- [09:03:06] Found package: libuuid1:amd64 (version: 2.27.1-6ubuntu3.4)
- [09:03:06] Found package: libwind0-heimdal:amd64 (version: 1.7~git20150920+dfsg-4ubuntu1.16.04.1)
- [09:03:06] Found package: libwrap0:amd64 (version: 7.6.q-25)
- [09:03:06] Found package: libx11-6:amd64 (version: 2:1.6.3-1ubuntu2.1)
- [09:03:06] Found package: libx11-data (version: 2:1.6.3-1ubuntu2.1)
- [09:03:06] Found package: libxau6:amd64 (version: 1:1.0.8-1)
- [09:03:06] Found package: libxcb1:amd64 (version: 1.11.1-1ubuntu1)
- [09:03:06] Found package: libxdmcp6:amd64 (version: 1:1.1.2-1.1)
- [09:03:06] Found package: libxext6:amd64 (version: 2:1.3.3-1)
- [09:03:06] Found package: libxml2:amd64 (version: 2.9.3+dfsg1-1ubuntu0.6)
- [09:03:06] Found package: libxmuu1:amd64 (version: 2:1.1.2-2)
- [09:03:06] Found package: libxtables11:amd64 (version: 1.6.0-2ubuntu3)
- [09:03:06] Found package: libyaml-0-2:amd64 (version: 0.1.6-3)
- [09:03:06] Found package: linux-base (version: 4.5ubuntu1~16.04.1)
- [09:03:06] Found package: linux-headers-4.4.0-103 (version: 4.4.0-103.126)
- [09:03:06] Found package: linux-headers-4.4.0-103-generic (version: 4.4.0-103.126)
- [09:03:06] Found package: linux-headers-4.4.0-104 (version: 4.4.0-104.127)
- [09:03:06] Found package: linux-headers-4.4.0-104-generic (version: 4.4.0-104.127)
- [09:03:06] Found package: linux-headers-4.4.0-108 (version: 4.4.0-108.131)
- [09:03:06] Found package: linux-headers-4.4.0-108-generic (version: 4.4.0-108.131)
- [09:03:06] Found package: linux-headers-4.4.0-109 (version: 4.4.0-109.132)
- [09:03:06] Found package: linux-headers-4.4.0-109-generic (version: 4.4.0-109.132)
- [09:03:06] Found package: linux-headers-4.4.0-112 (version: 4.4.0-112.135)
- [09:03:06] Found package: linux-headers-4.4.0-112-generic (version: 4.4.0-112.135)
- [09:03:06] Found package: linux-headers-4.4.0-116 (version: 4.4.0-116.140)
- [09:03:06] Found package: linux-headers-4.4.0-116-generic (version: 4.4.0-116.140)
- [09:03:06] Found package: linux-headers-4.4.0-119 (version: 4.4.0-119.143)
- [09:03:06] Found package: linux-headers-4.4.0-119-generic (version: 4.4.0-119.143)
- [09:03:06] Found package: linux-headers-4.4.0-121 (version: 4.4.0-121.145)
- [09:03:06] Found package: linux-headers-4.4.0-121-generic (version: 4.4.0-121.145)
- [09:03:06] Found package: linux-headers-4.4.0-124 (version: 4.4.0-124.148)
- [09:03:06] Found package: linux-headers-4.4.0-124-generic (version: 4.4.0-124.148)
- [09:03:06] Found package: linux-headers-4.4.0-127 (version: 4.4.0-127.153)
- [09:03:06] Found package: linux-headers-4.4.0-127-generic (version: 4.4.0-127.153)
- [09:03:06] Found package: linux-headers-4.4.0-128 (version: 4.4.0-128.154)
- [09:03:06] Found package: linux-headers-4.4.0-128-generic (version: 4.4.0-128.154)
- [09:03:06] Found package: linux-headers-4.4.0-130 (version: 4.4.0-130.156)
- [09:03:06] Found package: linux-headers-4.4.0-130-generic (version: 4.4.0-130.156)
- [09:03:06] Found package: linux-headers-4.4.0-133 (version: 4.4.0-133.159)
- [09:03:06] Found package: linux-headers-4.4.0-133-generic (version: 4.4.0-133.159)
- [09:03:06] Found package: linux-headers-4.4.0-134 (version: 4.4.0-134.160)
- [09:03:06] Found package: linux-headers-4.4.0-134-generic (version: 4.4.0-134.160)
- [09:03:06] Found package: linux-headers-4.4.0-137 (version: 4.4.0-137.163)
- [09:03:06] Found package: linux-headers-4.4.0-137-generic (version: 4.4.0-137.163)
- [09:03:06] Found package: linux-headers-generic (version: 4.4.0.137.143)
- [09:03:06] Found package: linux-headers-virtual (version: 4.4.0.137.143)
- [09:03:07] Found package: linux-image-4.4.0-103-generic (version: 4.4.0-103.126)
- [09:03:07] Found package: linux-image-4.4.0-104-generic (version: 4.4.0-104.127)
- [09:03:07] Found package: linux-image-4.4.0-108-generic (version: 4.4.0-108.131)
- [09:03:07] Found package: linux-image-4.4.0-109-generic (version: 4.4.0-109.132)
- [09:03:07] Found package: linux-image-4.4.0-112-generic (version: 4.4.0-112.135)
- [09:03:07] Found package: linux-image-4.4.0-116-generic (version: 4.4.0-116.140)
- [09:03:07] Found package: linux-image-4.4.0-119-generic (version: 4.4.0-119.143)
- [09:03:07] Found package: linux-image-4.4.0-121-generic (version: 4.4.0-121.145)
- [09:03:07] Found package: linux-image-4.4.0-124-generic (version: 4.4.0-124.148)
- [09:03:07] Found package: linux-image-4.4.0-127-generic (version: 4.4.0-127.153)
- [09:03:07] Found package: linux-image-4.4.0-128-generic (version: 4.4.0-128.154)
- [09:03:07] Found package: linux-image-4.4.0-130-generic (version: 4.4.0-130.156)
- [09:03:07] Found package: linux-image-4.4.0-133-generic (version: 4.4.0-133.159)
- [09:03:07] Found package: linux-image-4.4.0-134-generic (version: 4.4.0-134.160)
- [09:03:07] Found package: linux-image-4.4.0-137-generic (version: 4.4.0-137.163)
- [09:03:07] Found package: linux-image-virtual (version: 4.4.0.137.143)
- [09:03:07] Found package: linux-virtual (version: 4.4.0.137.143)
- [09:03:07] Found package: locales (version: 2.23-0ubuntu10)
- [09:03:07] Found package: login (version: 1:4.2-3.1ubuntu5.3)
- [09:03:07] Found package: logrotate (version: 3.8.7-2ubuntu2.16.04.2)
- [09:03:07] Found package: lsb-base (version: 9.20160110ubuntu0.2)
- [09:03:07] Found package: lsb-release (version: 9.20160110ubuntu0.2)
- [09:03:07] Found package: lshw (version: 02.17-1.1ubuntu3.5)
- [09:03:07] Found package: lsof (version: 4.89+dfsg-0.1)
- [09:03:07] Found package: ltrace (version: 0.7.3-5.1ubuntu4)
- [09:03:07] Found package: lvm2 (version: 2.02.133-1ubuntu10)
- [09:03:07] Found package: lxc-common (version: 2.0.8-0ubuntu1~16.04.2)
- [09:03:07] Found package: lxcfs (version: 2.0.8-0ubuntu1~16.04.2)
- [09:03:07] Found package: lxd (version: 2.0.11-0ubuntu1~16.04.4)
- [09:03:07] Found package: lxd-client (version: 2.0.11-0ubuntu1~16.04.4)
- [09:03:07] Found package: lynis (version: 2.1.1-1)
- [09:03:07] Found package: makedev (version: 2.3.1-93ubuntu2~ubuntu16.04.1)
- [09:03:07] Found package: man-db (version: 2.7.5-1)
- [09:03:07] Found package: manpages (version: 4.04-2)
- [09:03:07] Found package: mawk (version: 1.3.3-17ubuntu2)
- [09:03:07] Found package: mdadm (version: 3.3-2ubuntu7.6)
- [09:03:07] Found package: menu (version: 2.1.47ubuntu1.16.04.1)
- [09:03:07] Found package: mime-support (version: 3.59ubuntu1)
- [09:03:07] Found package: mlocate (version: 0.26-1ubuntu2)
- [09:03:07] Found package: mokutil (version: 0.3.0-0ubuntu3)
- [09:03:07] Found package: mount (version: 2.27.1-6ubuntu3.4)
- [09:03:07] Found package: mtr-tiny (version: 0.86-1ubuntu0.1)
- [09:03:07] Found package: multiarch-support (version: 2.23-0ubuntu10)
- [09:03:07] Found package: nano (version: 2.5.3-2ubuntu2)
- [09:03:07] Found package: ncurses-base (version: 6.0+20160213-1ubuntu1)
- [09:03:07] Found package: ncurses-bin (version: 6.0+20160213-1ubuntu1)
- [09:03:07] Found package: ncurses-term (version: 6.0+20160213-1ubuntu1)
- [09:03:07] Found package: net-tools (version: 1.60-26ubuntu1)
- [09:03:07] Found package: netbase (version: 5.3)
- [09:03:07] Found package: netcat-openbsd (version: 1.105-7ubuntu1)
- [09:03:07] Found package: nodejs (version: 8.11.3-1nodesource1)
- [09:03:07] Found package: ntfs-3g (version: 1:2015.3.14AR.1-1ubuntu0.1)
- [09:03:07] Found package: open-iscsi (version: 2.0.873+git0.3b4b4500-14ubuntu3.4)
- [09:03:07] Found package: open-vm-tools (version: 2:10.0.7-3227872-5ubuntu1~16.04.1)
- [09:03:07] Found package: openssh-client (version: 1:7.2p2-4ubuntu2.4)
- [09:03:07] Found package: openssh-server (version: 1:7.2p2-4ubuntu2.4)
- [09:03:07] Found package: openssh-sftp-server (version: 1:7.2p2-4ubuntu2.4)
- [09:03:07] Found package: openssl (version: 1.0.2g-1ubuntu4.13)
- [09:03:07] Found package: os-prober (version: 1.70ubuntu3.3)
- [09:03:07] Found package: overlayroot (version: 0.27ubuntu1.5)
- [09:03:07] Found package: parted (version: 3.2-15ubuntu0.1)
- [09:03:07] Found package: passwd (version: 1:4.2-3.1ubuntu5.3)
- [09:03:07] Found package: pastebinit (version: 1.5-1)
- [09:03:07] Found package: patch (version: 2.7.5-1ubuntu0.16.04.1)
- [09:03:07] Found package: pciutils (version: 1:3.3.1-1.1ubuntu1.2)
- [09:03:07] Found package: perl (version: 5.22.1-9ubuntu0.5)
- [09:03:07] Found package: perl-base (version: 5.22.1-9ubuntu0.5)
- [09:03:07] Found package: perl-modules-5.22 (version: 5.22.1-9ubuntu0.5)
- [09:03:07] Found package: plymouth (version: 0.9.2-3ubuntu13.5)
- [09:03:07] Found package: plymouth-theme-ubuntu-text (version: 0.9.2-3ubuntu13.5)
- [09:03:07] Found package: policykit-1 (version: 0.105-14.1ubuntu0.1)
- [09:03:07] Found package: pollinate (version: 4.33-0ubuntu1~16.04.1)
- [09:03:07] Found package: popularity-contest (version: 1.64ubuntu2)
- [09:03:07] Found package: powermgmt-base (version: 1.31+nmu1)
- [09:03:07] Found package: procps (version: 2:3.3.10-4ubuntu2.4)
- [09:03:07] Found package: psmisc (version: 22.21-2.1build1)
- [09:03:07] Found package: python (version: 2.7.12-1~16.04)
- [09:03:07] Found package: python-apt-common (version: 1.1.0~beta1ubuntu0.16.04.2)
- [09:03:07] Found package: python-minimal (version: 2.7.12-1~16.04)
- [09:03:07] Found package: python2.7 (version: 2.7.12-1ubuntu0~16.04.3)
- [09:03:07] Found package: python2.7-minimal (version: 2.7.12-1ubuntu0~16.04.3)
- [09:03:07] Found package: python3 (version: 3.5.1-3)
- [09:03:07] Found package: python3-apport (version: 2.20.1-0ubuntu2.18)
- [09:03:07] Found package: python3-apt (version: 1.1.0~beta1ubuntu0.16.04.2)
- [09:03:07] Found package: python3-blinker (version: 1.3.dfsg2-1build1)
- [09:03:07] Found package: python3-cffi-backend (version: 1.5.2-1ubuntu1)
- [09:03:07] Found package: python3-chardet (version: 2.3.0-2)
- [09:03:07] Found package: python3-commandnotfound (version: 0.3ubuntu16.04.2)
- [09:03:07] Found package: python3-configobj (version: 5.0.6-2)
- [09:03:07] Found package: python3-cryptography (version: 1.2.3-1ubuntu0.1)
- [09:03:07] Found package: python3-dbus (version: 1.2.0-3)
- [09:03:07] Found package: python3-debian (version: 0.1.27ubuntu2)
- [09:03:07] Found package: python3-distupgrade (version: 1:16.04.25)
- [09:03:07] Found package: python3-gdbm:amd64 (version: 3.5.1-1)
- [09:03:07] Found package: python3-gi (version: 3.20.0-0ubuntu1)
- [09:03:07] Found package: python3-idna (version: 2.0-3)
- [09:03:07] Found package: python3-jinja2 (version: 2.8-1)
- [09:03:07] Found package: python3-json-pointer (version: 1.9-3)
- [09:03:07] Found package: python3-jsonpatch (version: 1.19-3)
- [09:03:07] Found package: python3-jwt (version: 1.3.0-1ubuntu0.1)
- [09:03:07] Found package: python3-markupsafe (version: 0.23-2build2)
- [09:03:07] Found package: python3-minimal (version: 3.5.1-3)
- [09:03:07] Found package: python3-newt (version: 0.52.18-1ubuntu2)
- [09:03:07] Found package: python3-oauthlib (version: 1.0.3-1)
- [09:03:07] Found package: python3-pkg-resources (version: 20.7.0-1)
- [09:03:07] Found package: python3-prettytable (version: 0.7.2-3)
- [09:03:07] Found package: python3-problem-report (version: 2.20.1-0ubuntu2.18)
- [09:03:07] Found package: python3-pyasn1 (version: 0.1.9-1)
- [09:03:07] Found package: python3-pycurl (version: 7.43.0-1ubuntu1)
- [09:03:07] Found package: python3-requests (version: 2.9.1-3)
- [09:03:07] Found package: python3-serial (version: 3.0.1-1)
- [09:03:07] Found package: python3-six (version: 1.10.0-3)
- [09:03:07] Found package: python3-software-properties (version: 0.96.20.7)
- [09:03:07] Found package: python3-systemd (version: 231-2build1)
- [09:03:07] Found package: python3-update-manager (version: 1:16.04.13)
- [09:03:07] Found package: python3-urllib3 (version: 1.13.1-2ubuntu0.16.04.1)
- [09:03:07] Found package: python3-yaml (version: 3.11-3build1)
- [09:03:07] Found package: python3.5 (version: 3.5.2-2ubuntu0~16.04.4)
- [09:03:07] Found package: python3.5-minimal (version: 3.5.2-2ubuntu0~16.04.4)
- [09:03:07] Found package: readline-common (version: 6.3-8ubuntu2)
- [09:03:07] Found package: rename (version: 0.20-4)
- [09:03:07] Found package: resolvconf (version: 1.78ubuntu6)
- [09:03:07] Found package: rsync (version: 3.1.1-3ubuntu1.2)
- [09:03:07] Found package: rsyslog (version: 8.16.0-1ubuntu3)
- [09:03:07] Found package: run-one (version: 1.17-0ubuntu1)
- [09:03:07] Found package: sbsigntool (version: 0.6-0ubuntu10.1)
- [09:03:07] Found package: screen (version: 4.3.1-2build1)
- [09:03:07] Found package: secureboot-db (version: 1.1)
- [09:03:07] Found package: sed (version: 4.2.2-7)
- [09:03:07] Found package: sensible-utils (version: 0.0.9ubuntu0.16.04.1)
- [09:03:07] Found package: sgml-base (version: 1.26+nmu4ubuntu1)
- [09:03:07] Found package: shared-mime-info (version: 1.5-2ubuntu0.1)
- [09:03:07] Found package: shim (version: 13-0ubuntu2)
- [09:03:07] Found package: shim-signed (version: 1.33.1~16.04.1+13-0ubuntu2)
- [09:03:07] Found package: snapd (version: 2.33.1ubuntu2)
- [09:03:07] Found package: software-properties-common (version: 0.96.20.7)
- [09:03:07] Found package: sosreport (version: 3.5-1~ubuntu16.04.3)
- [09:03:07] Found package: squashfs-tools (version: 1:4.3-3ubuntu2.16.04.2)
- [09:03:07] Found package: ssh-import-id (version: 5.5-0ubuntu1)
- [09:03:07] Found package: strace (version: 4.11-1ubuntu3)
- [09:03:07] Found package: sudo (version: 1.8.16-0ubuntu1.5)
- [09:03:07] Found package: systemd (version: 229-4ubuntu21.2)
- [09:03:07] Found package: systemd-sysv (version: 229-4ubuntu21.2)
- [09:03:07] Found package: sysv-rc (version: 2.88dsf-59.3ubuntu2)
- [09:03:07] Found package: sysvinit-utils (version: 2.88dsf-59.3ubuntu2)
- [09:03:07] Found package: tar (version: 1.28-2.1ubuntu0.1)
- [09:03:07] Found package: tcpd (version: 7.6.q-25)
- [09:03:07] Found package: tcpdump (version: 4.9.2-0ubuntu0.16.04.1)
- [09:03:07] Found package: telnet (version: 0.17-40)
- [09:03:07] Found package: time (version: 1.7-25.1)
- [09:03:07] Found package: tmux (version: 2.1-3build1)
- [09:03:07] Found package: tzdata (version: 2018e-0ubuntu0.16.04)
- [09:03:07] Found package: ubuntu-cloudimage-keyring (version: 2013.11.11)
- [09:03:07] Found package: ubuntu-core-launcher (version: 2.33.1ubuntu2)
- [09:03:07] Found package: ubuntu-keyring (version: 2012.05.19)
- [09:03:07] Found package: ubuntu-minimal (version: 1.361.1)
- [09:03:07] Found package: ubuntu-release-upgrader-core (version: 1:16.04.25)
- [09:03:07] Found package: ubuntu-server (version: 1.361.1)
- [09:03:07] Found package: ubuntu-standard (version: 1.361.1)
- [09:03:07] Found package: ucf (version: 3.0036)
- [09:03:07] Found package: udev (version: 229-4ubuntu21.2)
- [09:03:07] Found package: ufw (version: 0.35-0ubuntu2)
- [09:03:07] Found package: uidmap (version: 1:4.2-3.1ubuntu5.3)
- [09:03:07] Found package: unattended-upgrades (version: 0.90ubuntu0.9)
- [09:03:07] Found package: update-manager-core (version: 1:16.04.13)
- [09:03:07] Found package: update-notifier-common (version: 3.168.9)
- [09:03:07] Found package: ureadahead (version: 0.100.0-19)
- [09:03:07] Found package: usbutils (version: 1:007-4)
- [09:03:07] Found package: util-linux (version: 2.27.1-6ubuntu3.4)
- [09:03:07] Found package: uuid-runtime (version: 2.27.1-6ubuntu3.4)
- [09:03:07] Found package: vim (version: 2:7.4.1689-3ubuntu1.2)
- [09:03:07] Found package: vim-common (version: 2:7.4.1689-3ubuntu1.2)
- [09:03:07] Found package: vim-runtime (version: 2:7.4.1689-3ubuntu1.2)
- [09:03:07] Found package: vim-tiny (version: 2:7.4.1689-3ubuntu1.2)
- [09:03:07] Found package: vlan (version: 1.9-3.2ubuntu1.16.04.5)
- [09:03:07] Found package: wget (version: 1.17.1-1ubuntu1.4)
- [09:03:07] Found package: whiptail (version: 0.52.18-1ubuntu2)
- [09:03:07] Found package: xauth (version: 1:1.0.9-1ubuntu2)
- [09:03:07] Found package: xdg-user-dirs (version: 0.15-2ubuntu6.16.04.1)
- [09:03:07] Found package: xfsprogs (version: 4.3.0+nmu1ubuntu1.1)
- [09:03:07] Found package: xkb-data (version: 2.16-1ubuntu1)
- [09:03:07] Found package: xml-core (version: 0.13+nmu2)
- [09:03:07] Found package: xz-utils (version: 5.1.1alpha+20120614-2ubuntu2)
- [09:03:07] Found package: zerofree (version: 1.0.3-1)
- [09:03:07] Found package: zlib1g:amd64 (version: 1:1.2.8.dfsg-2ubuntu4.1)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Performing test ID PKGS-7346 (Search unpurged packages on system)
- [09:03:07] Test: Querying dpkg -l to get unpurged packages
- [09:03:07] Result: found one or more packages with left over configuration files, cron jobs etc
- [09:03:07] Output:
- [09:03:07] Found unpurged package: grub-pc
- [09:03:07] Suggestion: Purge old/removed packages (1 found) with aptitude purge or dpkg --purge command. This will cleanup old configuration files, cron jobs and startup scripts. [PKGS-7346]
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Skipped test PKGS-7348 (Check for old distfiles)
- [09:03:07] Reason to skip: Incorrect guest OS (FreeBSD only)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Skipped test PKGS-7366 (Checking for debsecan utility)
- [09:03:07] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Performing test ID PKGS-7370 (Checking for debsums utility)
- [09:03:07] Result: debsums utility is not installed.
- [09:03:07] Hardening: assigned 0 hardening points (max for this item: 2), current: 57, total: 108
- [09:03:07] Suggestion: Install debsums utility for the verification of packages with known good database. [PKGS-7370]
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Skipped test PKGS-7378 (Query portmaster for port upgrades)
- [09:03:07] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Skipped test PKGS-7381 (Check for vulnerable NetBSD packages)
- [09:03:07] Reason to skip: Incorrect guest OS (NetBSD only)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Skipped test PKGS-7381 (Check for vulnerable FreeBSD packages)
- [09:03:07] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Skipped test PKGS-7382 (Check for vulnerable FreeBSD packages)
- [09:03:07] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Skipped test PKGS-7383 (Check for YUM package Update management)
- [09:03:07] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Skipped test PKGS-7384 (Check for YUM utils package)
- [09:03:07] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Skipped test PKGS-7386 (Check for YUM security package)
- [09:03:07] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Skipped test PKGS-7387 (Check for GPG signing in YUM security package)
- [09:03:07] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Performing test ID PKGS-7388 (Check security repository in Debian/ubuntu apt sources.list file)
- [09:03:07] Searching for security.debian.org/security.ubuntu.com or security repositories in /etc/apt/sources.list file
- [09:03:07] Result: Found security repository in /etc/apt/sources.list
- [09:03:07] Output: deb http://security.ubuntu.com/ubuntu xenial-security main restricted
- [09:03:07] Output: deb-src http://security.ubuntu.com/ubuntu xenial-security main restricted
- [09:03:07] Output: deb http://security.ubuntu.com/ubuntu xenial-security universe
- [09:03:07] Output: deb-src http://security.ubuntu.com/ubuntu xenial-security universe
- [09:03:07] Output: deb http://security.ubuntu.com/ubuntu xenial-security multiverse
- [09:03:07] Output: deb-src http://security.ubuntu.com/ubuntu xenial-security multiverse
- [09:03:07] Searching for security.debian.org/security.ubuntu.com or security repositories in /etc/apt/sources.list.d directory
- [09:03:07] Result: security repository was found
- [09:03:07] Hardening: assigned 3 hardening points (max for this item: 3), current: 60, total: 111
- [09:03:07] ===---------------------------------------------------------------===
- [09:03:07] Performing test ID PKGS-7390 (Check Ubuntu database consistency)
- [09:03:07] Test: Package database consistency by running apt-get check
- [09:03:08] Result: package database seems to be consistent.
- [09:03:08] ===---------------------------------------------------------------===
- [09:03:08] Performing test ID PKGS-7392 (Check for Debian/Ubuntu security updates)
- [09:03:08] Action: updating repository with apt-get
- [09:03:11] Result: apt-get finished
- [09:03:11] Test: Checking if /usr/lib/update-notifier/apt-check exists
- [09:03:11] Result: found /usr/lib/update-notifier/apt-check
- [09:03:11] Test: checking if any of the updates contain security updates
- [09:03:12] Result: found 1 security updates via apt-check
- [09:03:12] Hardening: assigned 0 hardening points (max for this item: 25), current: 60, total: 136
- [09:03:13] Warning: Found one or more vulnerable packages. [PKGS-7392]
- [09:03:13] Suggestion: Update your system with apt-get update, apt-get upgrade, apt-get dist-upgrade and/or unattended-upgrades [PKGS-7392]
- [09:03:13] ===---------------------------------------------------------------===
- [09:03:13] Skipped test PKGS-7393 (Check for Gentoo vulnerable packages)
- [09:03:13] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:13] ===---------------------------------------------------------------===
- [09:03:13] Performing test ID PKGS-7394 (Check for Ubuntu updates)
- [09:03:13] Test: checking /usr/bin/apt-show-versions
- [09:03:13] Result: /usr/bin/apt-show-versions not found
- [09:03:13] Suggestion: Install package apt-show-versions for patch management purposes [PKGS-7394]
- [09:03:13] ===---------------------------------------------------------------===
- [09:03:13] Performing test ID PKGS-7398 (Check for package audit tool)
- [09:03:13] Test: checking for package audit tool
- [09:03:13] Result: found package audit tool: apt-check
- [09:03:13] ===---------------------------------------------------------------===
- [09:03:13] Performing test ID PKGS-7410 (Count installed kernel packages)
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Action: Performing tests from category: Networking
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Performing test ID NETW-2704 (Basic nameserver configuration tests)
- [09:03:15] Test: Checking /etc/resolv.conf file
- [09:03:15] Result: Found /etc/resolv.conf file
- [09:03:15] Test: Querying nameservers
- [09:03:15] Found nameserver: 67.207.67.2
- [09:03:15] Nameserver 67.207.67.2 seems to respond to queries from this host.
- [09:03:15] Found nameserver: 67.207.67.3
- [09:03:15] Nameserver 67.207.67.3 seems to respond to queries from this host.
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Performing test ID NETW-2705 (Check availability two nameservers)
- [09:03:15] Result: found at least 2 responsive nameservers
- [09:03:15] Hardening: assigned 3 hardening points (max for this item: 3), current: 63, total: 139
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Performing test ID NETW-3001 (Find default gateway (route))
- [09:03:15] Test: Searching default gateway(s)
- [09:03:15] Result: Found default gateway 165.227.208.1
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Skipped test NETW-3004 (Search available network interfaces on FreeBSD and others)
- [09:03:15] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Performing test ID NETW-3006 (Get network MAC addresses)
- [09:03:15] Found MAC address: ce:4f:e2:7f:f5:ed
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Performing test ID NETW-3008 (Get network IP addresses)
- [09:03:15] Found IPv4 address: 165.227.222.101
- [09:03:15] Found IPv4 address: 127.0.0.1
- [09:03:15] Found IPv6 address: fe80::cc4f:e2ff:fe7f:f5ed/64
- [09:03:15] Found IPv6 address: ::1/128
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Performing test ID NETW-3012 (Check listening ports)
- [09:03:15] Test: Retrieving sockstat information to find listening ports
- [09:03:15] Found listening info: 0.0.0.0:22|tcp|sshd|
- [09:03:15] Found listening info: 127.0.0.1:6010|tcp|0|
- [09:03:15] Found listening info: :::22|tcp6|sshd|
- [09:03:15] Found listening info: ::1:6010|tcp6|0|
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Skipped test NETW-3014 (Checking promiscuous interfaces (BSD))
- [09:03:15] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Performing test ID NETW-3015 (Checking promiscuous interfaces (Linux))
- [09:03:15] Test: Checking promiscuous interfaces (Linux)
- [09:03:15] Result: No promiscuous interfaces found
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Performing test ID NETW-3028 (Checking connections in WAIT state)
- [09:03:15] Test: Using netstat for check for connections in WAIT state
- [09:03:15] Result: currently 8 connections are in a waiting state (max configured: 5000).
- [09:03:15] Result: 8 connections are in WAIT state
- [09:03:15] ===---------------------------------------------------------------===
- [09:03:15] Performing test ID NETW-3030 (Checking DHCP client status)
- [09:03:15] IsRunning: process 'dhclient' not found
- [09:03:16] ===---------------------------------------------------------------===
- [09:03:16] Action: Performing tests from category: Printers and Spools
- [09:03:16] ===---------------------------------------------------------------===
- [09:03:16] Skipped test PRNT-2302 (Check for available accounting information)
- [09:03:16] Reason to skip: Incorrect guest OS (FreeBSD only)
- [09:03:16] ===---------------------------------------------------------------===
- [09:03:16] Performing test ID PRNT-2304 (Check cupsd status)
- [09:03:16] Test: Checking cupsd status
- [09:03:16] IsRunning: process 'cupsd' not found
- [09:03:16] Result: cups daemon not running, cups daemon tests skipped
- [09:03:16] ===---------------------------------------------------------------===
- [09:03:16] Skipped test PRNT-2306 (Check CUPSd configuration file)
- [09:03:16] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:16] ===---------------------------------------------------------------===
- [09:03:16] Skipped test PRNT-2307 (Check CUPSd configuration file permissions)
- [09:03:16] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:16] ===---------------------------------------------------------------===
- [09:03:16] Skipped test PRNT-2308 (Check CUPSd network configuration)
- [09:03:16] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:16] ===---------------------------------------------------------------===
- [09:03:16] Performing test ID PRNT-2314 (Check lpd status)
- [09:03:16] Test: Checking lpd status
- [09:03:16] IsRunning: process 'lpd' not found
- [09:03:16] Result: lp daemon not running
- [09:03:16] Hardening: assigned 4 hardening points (max for this item: 4), current: 67, total: 143
- [09:03:16] ===---------------------------------------------------------------===
- [09:03:16] Skipped test PRNT-2316 (Checking /etc/qconfig file)
- [09:03:16] Reason to skip: Incorrect guest OS (AIX only)
- [09:03:16] ===---------------------------------------------------------------===
- [09:03:16] Skipped test PRNT-2418 (Checking qdaemon printer spooler status)
- [09:03:16] Reason to skip: Incorrect guest OS (AIX only)
- [09:03:16] ===---------------------------------------------------------------===
- [09:03:16] Skipped test PRNT-2420 (Checking old print jobs)
- [09:03:16] Reason to skip: Incorrect guest OS (AIX only)
- [09:03:17] ===---------------------------------------------------------------===
- [09:03:17] Action: Performing tests from category: Software: e-mail and messaging
- [09:03:17] ===---------------------------------------------------------------===
- [09:03:17] Performing test ID MAIL-8802 (Check Exim status)
- [09:03:17] Test: check Exim status
- [09:03:17] IsRunning: process 'exim' not found
- [09:03:17] Result: no running Exim processes found
- [09:03:17] ===---------------------------------------------------------------===
- [09:03:17] Performing test ID MAIL-8814 (Check postfix process status)
- [09:03:17] Test: check Postfix status
- [09:03:17] Result: no running Postfix processes found
- [09:03:17] ===---------------------------------------------------------------===
- [09:03:18] Skipped test MAIL-8816 (Check Postfix configuration)
- [09:03:18] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:18] ===---------------------------------------------------------------===
- [09:03:18] Skipped test MAIL-8818 (Check Postfix configuration: banner)
- [09:03:18] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:18] ===---------------------------------------------------------------===
- [09:03:18] Skipped test MAIL-8838 (Check dovecot process)
- [09:03:18] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:18] ===---------------------------------------------------------------===
- [09:03:18] Performing test ID MAIL-8860 (Check Qmail status)
- [09:03:18] Test: check Qmail status
- [09:03:18] IsRunning: process 'qmail-smtpd' not found
- [09:03:18] Result: no running Qmail processes found
- [09:03:18] ===---------------------------------------------------------------===
- [09:03:18] Performing test ID MAIL-8880 (Check Sendmail status)
- [09:03:18] Test: check sendmail status
- [09:03:18] IsRunning: process 'sendmail' not found
- [09:03:18] Result: no running Sendmail processes found
- [09:03:18] ===---------------------------------------------------------------===
- [09:03:18] Skipped test MAIL-8920 (Check OpenSMTPD status)
- [09:03:18] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:19] ===---------------------------------------------------------------===
- [09:03:19] Action: Performing tests from category: Software: firewalls
- [09:03:19] ===---------------------------------------------------------------===
- [09:03:19] Performing test ID FIRE-4511 (Check iptables kernel module)
- [09:03:19] Result: found kernel configuration file (/boot/config-4.4.0-130-generic)
- [09:03:19] Result: no iptables found in Linux kernel config file
- [09:03:19] ===---------------------------------------------------------------===
- [09:03:19] Skipped test FIRE-4512 (Check iptables for empty ruleset)
- [09:03:19] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:19] ===---------------------------------------------------------------===
- [09:03:19] Skipped test FIRE-4513 (Check iptables for unused rules)
- [09:03:19] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:19] ===---------------------------------------------------------------===
- [09:03:19] Performing test ID FIRE-4518 (Check pf firewall components)
- [09:03:19] Test: checking pf status via pfctl
- [09:03:19] Test: searching for pf kernel module
- [09:03:19] Result: no kldstat binary, skipping this part
- [09:03:19] IsRunning: process 'pflogd' not found
- [09:03:19] Result: pflog daemon not found in process list
- [09:03:19] Result: pf not running on this system
- [09:03:19] ===---------------------------------------------------------------===
- [09:03:19] Skipped test FIRE-4520 (Check pf configuration consistency)
- [09:03:19] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:19] ===---------------------------------------------------------------===
- [09:03:19] Performing test ID FIRE-4524 (Check for CSF presence)
- [09:03:19] Test: check /etc/csf/csf.conf
- [09:03:19] Result: /etc/csf/csf.conf does NOT exist
- [09:03:19] ===---------------------------------------------------------------===
- [09:03:19] Skipped test FIRE-4526 (Check ipf status)
- [09:03:19] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:19] ===---------------------------------------------------------------===
- [09:03:19] Performing test ID FIRE-4590 (Check firewall status)
- [09:03:19] Result: no host based firewall/packet filter found or configured
- [09:03:19] Suggestion: Configure a firewall/packet filter to filter incoming and outgoing traffic [FIRE-4590]
- [09:03:19] Hardening: assigned 0 hardening points (max for this item: 5), current: 67, total: 148
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Action: Performing tests from category: Software: webserver
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Performing test ID HTTP-6622 (Checking Apache presence)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6624 (Testing main Apache configuration file)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6626 (Testing other Apache configuration file)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6632 (Determining all available Apache modules)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6640 (Determining existence of specific Apache modules)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6641 (Determining existence of specific Apache modules)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6642 (Determining existence of specific Apache modules)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6643 (Determining existence of specific Apache modules)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Performing test ID HTTP-6702 (Check nginx process)
- [09:03:20] Test: searching running nginx process
- [09:03:20] Result: no running nginx process found
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6704 (Check nginx configuration file)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6706 (Check for additional nginx configuration files)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6708 (Check discovered nginx configuration settings)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6710 (Check nginx SSL configuration settings)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6712 (Check nginx access logging)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6714 (Check for missing error logs in nginx)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6716 (Check for debug mode on error log in nginx)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:20] ===---------------------------------------------------------------===
- [09:03:20] Skipped test HTTP-6720 (Check Nginx log files)
- [09:03:20] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:22] ===---------------------------------------------------------------===
- [09:03:22] Action: Performing tests from category: SSH Support
- [09:03:22] ===---------------------------------------------------------------===
- [09:03:22] Performing test ID SSH-7402 (Check for running SSH daemon)
- [09:03:22] Test: Searching for a SSH daemon
- [09:03:22] IsRunning: process 'sshd' found ( 1362 ? Ss 0:00 /usr/sbin/sshd -D
- 21320 ? Ss 0:00 sshd: root@pts/0
- 21322 ? Ss 0:00 sshd: root@notty)
- [09:03:22] ===---------------------------------------------------------------===
- [09:03:22] Performing test ID SSH-7404 (Check SSH daemon file location)
- [09:03:22] Test: searching for sshd_config file
- [09:03:22] Result: /etc/ssh/sshd_config exists
- [09:03:22] Test: testing if we can access /etc/ssh/sshd_config
- [09:03:22] Result: file is owned by our current user ID (0), checking if it is readable
- [09:03:22] Result: file /etc/ssh/sshd_config is readable (or directory accessible).
- [09:03:22] Result: using last found configuration file: /etc/ssh/sshd_config
- [09:03:22] ===---------------------------------------------------------------===
- [09:03:22] Performing test ID SSH-7408 (Check SSH defined options)
- [09:03:22] Test: Checking all specific defined options in /etc/ssh/sshd_config
- [09:03:22] Found SSH option: Port 22
- [09:03:22] Found SSH option: Protocol 2
- [09:03:22] Found SSH option: HostKey /etc/ssh/ssh_host_rsa_key
- [09:03:22] Found SSH option: HostKey /etc/ssh/ssh_host_dsa_key
- [09:03:22] Found SSH option: HostKey /etc/ssh/ssh_host_ecdsa_key
- [09:03:22] Found SSH option: HostKey /etc/ssh/ssh_host_ed25519_key
- [09:03:22] Found SSH option: UsePrivilegeSeparation yes
- [09:03:22] Found SSH option: KeyRegenerationInterval 3600
- [09:03:22] Found SSH option: ServerKeyBits 1024
- [09:03:22] Found SSH option: SyslogFacility AUTH
- [09:03:22] Found SSH option: LogLevel INFO
- [09:03:22] Found SSH option: LoginGraceTime 120
- [09:03:22] Found SSH option: PermitRootLogin yes
- [09:03:22] Found SSH option: StrictModes yes
- [09:03:22] Found SSH option: RSAAuthentication yes
- [09:03:22] Found SSH option: PubkeyAuthentication yes
- [09:03:22] Found SSH option: IgnoreRhosts yes
- [09:03:22] Found SSH option: RhostsRSAAuthentication no
- [09:03:22] Found SSH option: HostbasedAuthentication no
- [09:03:22] Found SSH option: PermitEmptyPasswords no
- [09:03:22] Found SSH option: ChallengeResponseAuthentication no
- [09:03:22] Found SSH option: PasswordAuthentication no
- [09:03:22] Found SSH option: X11Forwarding yes
- [09:03:22] Found SSH option: X11DisplayOffset 10
- [09:03:22] Found SSH option: PrintMotd no
- [09:03:22] Found SSH option: PrintLastLog yes
- [09:03:22] Found SSH option: TCPKeepAlive yes
- [09:03:22] Found SSH option: AcceptEnv LANG LC_*
- [09:03:22] Found SSH option: Subsystem sftp /usr/lib/openssh/sftp-server
- [09:03:22] Found SSH option: UsePAM yes
- [09:03:22] ===---------------------------------------------------------------===
- [09:03:22] Performing test ID SSH-7412 (Check SSH option: PermitRootLogin)
- [09:03:22] Test: check PermitRootLogin option
- [09:03:22] Result: PermitRootLogin is enabled, root can login directly
- [09:03:22] Warning: Root can directly login via SSH [SSH-7412]
- [09:03:22] Hardening: assigned 0 hardening points (max for this item: 3), current: 67, total: 151
- [09:03:22] ===---------------------------------------------------------------===
- [09:03:22] Performing test ID SSH-7414 (Check SSH option: Protocol)
- [09:03:22] Test: check allowed SSH protocol versions
- [09:03:22] Result: only protocol 2 is allowed
- [09:03:22] Hardening: assigned 3 hardening points (max for this item: 3), current: 70, total: 154
- [09:03:22] ===---------------------------------------------------------------===
- [09:03:22] Performing test ID SSH-7416 (Check SSH option: StrictModes)
- [09:03:22] Test: Check configured StrictModes option
- [09:03:22] Result: StrictModes active, file permissions are checked
- [09:03:22] Hardening: assigned 3 hardening points (max for this item: 3), current: 73, total: 157
- [09:03:22] ===---------------------------------------------------------------===
- [09:03:22] Performing test ID SSH-7440 (Check SSH option: AllowUsers and AllowGroups)
- [09:03:22] Result: AllowUsers is not set
- [09:03:22] Result: AllowGroups is not set
- [09:03:22] Result: SSH has no specific user or group limitation. Most likely all valid users can SSH to this machine.
- [09:03:22] Hardening: assigned 0 hardening points (max for this item: 1), current: 73, total: 158
- [09:03:23] ===---------------------------------------------------------------===
- [09:03:23] Action: Performing tests from category: SNMP Support
- [09:03:23] ===---------------------------------------------------------------===
- [09:03:23] Performing test ID SNMP-3302 (Check for running SNMP daemon)
- [09:03:23] Test: Searching for a SNMP daemon
- [09:03:23] IsRunning: process 'snmpd' not found
- [09:03:23] Result: No running SNMP daemon found
- [09:03:23] ===---------------------------------------------------------------===
- [09:03:23] Skipped test SNMP-3304 (Check SNMP daemon file location)
- [09:03:23] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:23] ===---------------------------------------------------------------===
- [09:03:23] Skipped test SNMP-3306 (Check SNMP communities)
- [09:03:23] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:24] ===---------------------------------------------------------------===
- [09:03:24] Action: Performing tests from category: Databases
- [09:03:24] ===---------------------------------------------------------------===
- [09:03:24] Performing test ID DBS-1804 (Checking active MySQL process)
- [09:03:24] Result: MySQL process not active
- [09:03:24] ===---------------------------------------------------------------===
- [09:03:24] Skipped test DBS-1816 (Checking MySQL root password)
- [09:03:24] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:24] Test skipped, MySQL daemon not running or no MySQL client available
- [09:03:24] ===---------------------------------------------------------------===
- [09:03:24] Performing test ID DBS-1826 (Checking active PostgreSQL processes)
- [09:03:24] Result: PostgreSQL process not active
- [09:03:24] ===---------------------------------------------------------------===
- [09:03:24] Performing test ID DBS-1840 (Checking active Oracle processes)
- [09:03:24] Result: Oracle process(es) not active
- [09:03:25] ===---------------------------------------------------------------===
- [09:03:25] Action: Performing tests from category: LDAP Services
- [09:03:25] ===---------------------------------------------------------------===
- [09:03:25] Performing test ID LDAP-2219 (Check running OpenLDAP instance)
- [09:03:25] IsRunning: process 'slapd' not found
- [09:03:25] Result: No running slapd process found.
- [09:03:25] ===---------------------------------------------------------------===
- [09:03:25] Skipped test LDAP-2224 (Check presence slapd.conf)
- [09:03:25] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:26] ===---------------------------------------------------------------===
- [09:03:26] Action: Performing tests from category: PHP
- [09:03:26] ===---------------------------------------------------------------===
- [09:03:26] Performing test ID PHP-2211 (Check php.ini presence)
- [09:03:26] Test: Checking for presence php.ini
- [09:03:26] Test: checking presence /etc/php.ini
- [09:03:26] Result: file /etc/php.ini not found
- [09:03:26] Test: checking presence /etc/php/cgi-php5/php.ini
- [09:03:26] Result: file /etc/php/cgi-php5/php.ini not found
- [09:03:26] Test: checking presence /etc/php/cli-php5/php.ini
- [09:03:26] Result: file /etc/php/cli-php5/php.ini not found
- [09:03:26] Test: checking presence /etc/php/apache2-php5/php.ini
- [09:03:26] Result: file /etc/php/apache2-php5/php.ini not found
- [09:03:26] Test: checking presence /etc/php/apache2-php5.4/php.ini
- [09:03:26] Result: file /etc/php/apache2-php5.4/php.ini not found
- [09:03:26] Test: checking presence /etc/php/apache2-php5.5/php.ini
- [09:03:26] Result: file /etc/php/apache2-php5.5/php.ini not found
- [09:03:26] Test: checking presence /etc/php5/cgi/php.ini
- [09:03:26] Result: file /etc/php5/cgi/php.ini not found
- [09:03:26] Test: checking presence /etc/php5/cli/php.ini
- [09:03:26] Result: file /etc/php5/cli/php.ini not found
- [09:03:26] Test: checking presence /etc/php5/cli-php5.4/php.ini
- [09:03:26] Result: file /etc/php5/cli-php5.4/php.ini not found
- [09:03:26] Test: checking presence /etc/php5/cli-php5.5/php.ini
- [09:03:26] Result: file /etc/php5/cli-php5.5/php.ini not found
- [09:03:26] Test: checking presence /etc/php5/cli-php5.6/php.ini
- [09:03:26] Result: file /etc/php5/cli-php5.6/php.ini not found
- [09:03:26] Test: checking presence /etc/php5/apache2/php.ini
- [09:03:26] Result: file /etc/php5/apache2/php.ini not found
- [09:03:26] Test: checking presence /etc/php5/fpm/php.ini
- [09:03:26] Result: file /etc/php5/fpm/php.ini not found
- [09:03:26] Test: checking presence /private/etc/php.ini
- [09:03:26] Result: file /private/etc/php.ini not found
- [09:03:26] Test: checking presence /var/www/conf/php.ini
- [09:03:26] Result: file /var/www/conf/php.ini not found
- [09:03:26] Test: checking presence /usr/local/etc/php.ini
- [09:03:26] Result: file /usr/local/etc/php.ini not found
- [09:03:26] Test: checking presence /usr/local/lib/php.ini
- [09:03:26] Result: file /usr/local/lib/php.ini not found
- [09:03:26] Test: checking presence /usr/pkg/etc/php.ini
- [09:03:26] Result: file /usr/pkg/etc/php.ini not found
- [09:03:26] Result: no files found for /etc/php5/conf.d
- [09:03:26] Result: no php.ini file found
- [09:03:26] ===---------------------------------------------------------------===
- [09:03:26] Skipped test PHP-2320 (Check PHP disabled functions)
- [09:03:26] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:26] ===---------------------------------------------------------------===
- [09:03:26] Skipped test PHP-2368 (Check PHP register_globals option)
- [09:03:26] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:26] ===---------------------------------------------------------------===
- [09:03:26] Skipped test PHP-2372 (Check PHP expose_php option)
- [09:03:26] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:26] ===---------------------------------------------------------------===
- [09:03:26] Skipped test PHP-2374 (Check PHP enable_dl option)
- [09:03:26] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:26] ===---------------------------------------------------------------===
- [09:03:26] Skipped test PHP-2376 (Check PHP allow_url_fopen option)
- [09:03:26] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:26] ===---------------------------------------------------------------===
- [09:03:26] Skipped test PHP-2378 (Check PHP allow_url_include option)
- [09:03:26] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Action: Performing tests from category: Squid Support
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Performing test ID SQD-3602 (Check for running Squid daemon)
- [09:03:27] Test: Searching for a Squid daemon
- [09:03:27] Result: No running Squid daemon found
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Skipped test SQD-3604 (Check Squid daemon file location)
- [09:03:27] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Skipped test SQD-3606 (Check Squid version)
- [09:03:27] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Skipped test SQD-3610 (Check Squid version)
- [09:03:27] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Skipped test SQD-3613 (Check Squid file permissions)
- [09:03:27] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Skipped test SQD-3614 (Check Squid authentication methods)
- [09:03:27] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Skipped test SQD-3616 (Check external Squid authentication)
- [09:03:27] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Skipped test SQD-3620 (Check Squid access control lists)
- [09:03:27] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Skipped test SQD-3624 (Check Squid safe ports)
- [09:03:27] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Skipped test SQD-3630 (Check Squid reply_body_max_size option)
- [09:03:27] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:27] ===---------------------------------------------------------------===
- [09:03:27] Skipped test SQD-3680 (Check Squid version suppresion)
- [09:03:27] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Action: Performing tests from category: Logging and files
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2130 (Check for running syslog daemon)
- [09:03:28] Test: Searching for a logging daemon
- [09:03:28] Result: Found a logging daemon
- [09:03:28] Hardening: assigned 3 hardening points (max for this item: 3), current: 76, total: 161
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2132 (Check for running syslog-ng daemon)
- [09:03:28] Test: Searching for syslog-ng daemon in process list
- [09:03:28] IsRunning: process 'syslog-ng' not found
- [09:03:28] Result: Syslog-ng NOT found in process list
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Skipped test LOGG-2134 (Checking Syslog-NG configuration file consistency)
- [09:03:28] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2136 (Check for running systemd journal daemon)
- [09:03:28] Test: Searching for systemd journal daemon in process list
- [09:03:28] IsRunning: process 'systemd-journal' found ( 643 ? Ss 0:11 /lib/systemd/systemd-journald)
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2210 (Check for running metalog daemon)
- [09:03:28] Test: Searching for metalog daemon in process list
- [09:03:28] IsRunning: process 'metalog' not found
- [09:03:28] Result: metalog NOT found in process list
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2230 (Check for running RSyslog daemon)
- [09:03:28] Test: Searching for RSyslog daemon in process list
- [09:03:28] IsRunning: process 'rsyslogd' found ( 1302 ? Ssl 0:02 /usr/sbin/rsyslogd -n)
- [09:03:28] Result: Found rsyslogd in process list
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2240 (Check for running RFC 3195 compliant daemon)
- [09:03:28] Test: Searching for RFC 3195 daemon (alias syslog reliable) in process list
- [09:03:28] IsRunning: process 'rfc3195d' not found
- [09:03:28] Result: rfc3195d NOT found in process list
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2138 (Checking kernel logger daemon on Linux)
- [09:03:28] Test: Searching kernel logger daemon (klogd)
- [09:03:28] Result: test skipped, because other facility is being used to log kernel messages
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2142 (Checking minilog daemon)
- [09:03:28] Result: Checking for unkilled minilogd instances
- [09:03:28] IsRunning: process 'minilogd' not found
- [09:03:28] Result: No minilogd is running
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2146 (Checking logrotate.conf and logrotate.d)
- [09:03:28] Test: Checking for /etc/logrotate.conf
- [09:03:28] Result: /etc/logrotate.conf found (file)
- [09:03:28] Test: Checking for /etc/logrotate.d (directory)
- [09:03:28] Result: /etc/logrotate.d found
- [09:03:28] Result: logrotate configuration found
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2148 (Checking logrotated files)
- [09:03:28] Test: Checking which files are rotated with logrotate and if they exist
- [09:03:28] Result: found one or more files which are rotated via logrotate
- [09:03:28] Output: File:/var/log/apport.log:does_not_exist
- [09:03:28] Output: File:/var/log/cron.log:does_not_exist
- [09:03:28] Output: File:/var/log/daemon.log:does_not_exist
- [09:03:28] Output: File:/var/log/debug:does_not_exist
- [09:03:28] Output: File:/var/log/lpr.log:does_not_exist
- [09:03:28] Output: File:/var/log/lxd/lxd.log:does_not_exist
- [09:03:28] Output: File:/var/log/mail.err:does_not_exist
- [09:03:28] Output: File:/var/log/mail.info:does_not_exist
- [09:03:28] Output: File:/var/log/mail.log:does_not_exist
- [09:03:28] Output: File:/var/log/mail.warn:does_not_exist
- [09:03:28] Output: File:/var/log/messages:does_not_exist
- [09:03:28] Output: File:/var/log/ufw.log:does_not_exist
- [09:03:28] Output: File:/var/log/user.log:does_not_exist
- [09:03:28] Output: File:/var/log/alternatives.log:exists
- [09:03:28] Output: File:/var/log/apport.log:exists
- [09:03:28] Output: File:/var/log/apt/history.log:exists
- [09:03:28] Output: File:/var/log/apt/term.log:exists
- [09:03:28] Output: File:/var/log/auth.log:exists
- [09:03:28] Output: File:/var/log/btmp:exists
- [09:03:28] Output: File:/var/log/cron.log:exists
- [09:03:28] Output: File:/var/log/daemon.log:exists
- [09:03:28] Output: File:/var/log/debug:exists
- [09:03:28] Output: File:/var/log/dpkg.log:exists
- [09:03:28] Output: File:/var/log/kern.log:exists
- [09:03:28] Output: File:/var/log/lpr.log:exists
- [09:03:28] Output: File:/var/log/lxd/lxd.log:exists
- [09:03:28] Output: File:/var/log/mail.err:exists
- [09:03:28] Output: File:/var/log/mail.info:exists
- [09:03:28] Output: File:/var/log/mail.log:exists
- [09:03:28] Output: File:/var/log/mail.warn:exists
- [09:03:28] Output: File:/var/log/messages:exists
- [09:03:28] Output: File:/var/log/syslog:exists
- [09:03:28] Output: File:/var/log/ufw.log:exists
- [09:03:28] Output: File:/var/log/unattended-upgrades/unattended-upgrades-dpkg.log:exists
- [09:03:28] Output: File:/var/log/unattended-upgrades/unattended-upgrades-shutdown.log:exists
- [09:03:28] Output: File:/var/log/unattended-upgrades/unattended-upgrades.log:exists
- [09:03:28] Output: File:/var/log/user.log:exists
- [09:03:28] Output: File:/var/log/wtmp:exists
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2150 (Checking directories in logrotate configuration)
- [09:03:28] Test: Checking which directories can be found in logrotate configuration
- [09:03:28] Result: found one or more directories (via logrotate configuration)
- [09:03:28] Directory found: /var/log
- [09:03:28] Directory found: /var/log/apt
- [09:03:28] Directory found: /var/log/lxd
- [09:03:28] Directory found: /var/log/unattended-upgrades
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Skipped test LOGG-2152 (Checking loghost)
- [09:03:28] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2154 (Checking syslog configuration file)
- [09:03:28] Result: test skipped, file /etc/syslog.conf not found
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Skipped test LOGG-2160 (Checking /etc/newsyslog.conf)
- [09:03:28] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Skipped test LOGG-2162 (Checking /etc/newsyslog.conf)
- [09:03:28] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Skipped test LOGG-2164 (Checking /etc/newsyslog.conf)
- [09:03:28] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2170 (Checking log paths)
- [09:03:28] Test: Searching log paths
- [09:03:28] Result: directory /var/log exists
- [09:03:28] Result: directory /var/adm can't be found
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2180 (Checking open log files)
- [09:03:28] Test: checking open log files with lsof
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/3zxf.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/5YIM.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/6n7y.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/BUD6.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/Cuj9.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/KisE.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/Kn1f.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/L_mn.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/RYMC.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/StX1.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/ZehX.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/_ypZ.log
- [09:03:28] Found logfile: /home/gitlab-runner/.forever/hXwC.log
- [09:03:28] Found logfile: /var/log/auth.log
- [09:03:28] Found logfile: /var/log/syslog
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID LOGG-2190 (Checking deleted files in file table)
- [09:03:28] Test: checking deleted files but are still in use
- [09:03:28] Result: no deleted files found
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Action: Performing tests from category: Insecure services
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Performing test ID INSE-8002 (Check for enabled inet daemon)
- [09:03:28] Test: Searching for active inet daemon
- [09:03:28] IsRunning: process 'inetd' not found
- [09:03:28] Result: inetd is NOT running
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:28] Skipped test INSE-8004 (Check for enabled inet daemon)
- [09:03:28] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:28] ===---------------------------------------------------------------===
- [09:03:29] Skipped test INSE-8006 (Check configuration of inetd when disabled)
- [09:03:29] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:29] ===---------------------------------------------------------------===
- [09:03:29] Skipped test INSE-8016 (Check for telnet via inetd)
- [09:03:29] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:30] ===---------------------------------------------------------------===
- [09:03:30] Action: Performing tests from category: Banners and identification
- [09:03:30] ===---------------------------------------------------------------===
- [09:03:30] Skipped test BANN-7113 (Check COPYRIGHT banner file)
- [09:03:30] Reason to skip: Incorrect guest OS (FreeBSD only)
- [09:03:30] ===---------------------------------------------------------------===
- [09:03:30] Performing test ID BANN-7119 (Check MOTD banner file)
- [09:03:30] Test: Testing existence /etc/motd
- [09:03:30] Result: File /etc/motd not found
- [09:03:30] ===---------------------------------------------------------------===
- [09:03:30] Skipped test BANN-7122 (Check /etc/motd banner file contents)
- [09:03:30] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:30] ===---------------------------------------------------------------===
- [09:03:30] Performing test ID BANN-7124 (Check issue banner file)
- [09:03:30] Test: Checking file /etc/issue
- [09:03:30] ===---------------------------------------------------------------===
- [09:03:30] Performing test ID BANN-7126 (Check issue banner file contents)
- [09:03:30] Test: Checking file /etc/issue contents for legal key words
- [09:03:30] Result: Found only 0 key words (5 or more suggested), to warn unauthorized users and could be increased
- [09:03:30] Suggestion: Add a legal banner to /etc/issue, to warn unauthorized users [BANN-7126]
- [09:03:30] Hardening: assigned 0 hardening points (max for this item: 1), current: 76, total: 162
- [09:03:30] ===---------------------------------------------------------------===
- [09:03:30] Performing test ID BANN-7128 (Check issue.net banner file)
- [09:03:30] Test: Checking file /etc/issue.net
- [09:03:30] Result: file /etc/issue.net exists
- [09:03:30] ===---------------------------------------------------------------===
- [09:03:30] Performing test ID BANN-7130 (Check issue.net banner file contents)
- [09:03:30] Test: Checking file /etc/issue.net contents for legal key words
- [09:03:30] Result: Found only 0 key words, to warn unauthorized users and could be increased
- [09:03:30] Suggestion: Add legal banner to /etc/issue.net, to warn unauthorized users [BANN-7130]
- [09:03:30] Hardening: assigned 0 hardening points (max for this item: 1), current: 76, total: 163
- [09:03:31] ===---------------------------------------------------------------===
- [09:03:31] Action: Performing tests from category: Scheduled tasks
- [09:03:31] ===---------------------------------------------------------------===
- [09:03:31] Performing test ID SCHD-7704 (Check crontab/cronjobs)
- [09:03:31] Found cronjob (/etc/crontab): 17,*,*,*,*,root,cd,/,&&,run-parts,--report,/etc/cron.hourly
- [09:03:31] Found cronjob (/etc/crontab): 25,6,*,*,*,root,test,-x,/usr/sbin/anacron,||,(,cd,/,&&,run-parts,--report,/etc/cron.daily,)
- [09:03:31] Found cronjob (/etc/crontab): 47,6,*,*,7,root,test,-x,/usr/sbin/anacron,||,(,cd,/,&&,run-parts,--report,/etc/cron.weekly,)
- [09:03:31] Found cronjob (/etc/crontab): 52,6,1,*,*,root,test,-x,/usr/sbin/anacron,||,(,cd,/,&&,run-parts,--report,/etc/cron.monthly,)
- [09:03:31] Test: checking directory /etc/cron.d
- [09:03:31] Test: testing if we can access /etc/cron.d
- [09:03:31] Result: file /etc/cron.d is readable (or directory accessible).
- [09:03:31] Result: found directory /etc/cron.d
- [09:03:31] Test: searching files in /etc/cron.d
- [09:03:31] Result: found one or more files in /etc/cron.d. Analyzing files..
- [09:03:31] Result: Found cronjob (/etc/cron.d): 57,0,*,*,0,root,if,[,-x,/usr/share/mdadm/checkarray,],&&,[,$(date,+\%d),-le,7,];,then,/usr/share/mdadm/checkarray,--cron,--all,--idle,--quiet;,fi
- [09:03:31] Result: Found cronjob (/etc/cron.d): 15,2,*,*,*,root,test,-x,/etc/cron.daily/popularity-contest,&&,/etc/cron.daily/popularity-contest,--crond
- [09:03:31] Result: done with analyzing files in /etc/cron.d
- [09:03:31] Test: checking directory /etc/cron.hourly
- [09:03:31] Result: found directory /etc/cron.hourly
- [09:03:31] Test: searching files in /etc/cron.hourly
- [09:03:31] Result: no files found in /etc/cron.hourly
- [09:03:31] Test: checking directory /etc/cron.daily
- [09:03:31] Result: found directory /etc/cron.daily
- [09:03:31] Test: searching files in /etc/cron.daily
- [09:03:31] Result: found one or more files in /etc/cron.daily. Analyzing files..
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/mdadm
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/update-notifier-common
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/apt-compat
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/dpkg
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/logrotate
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/apport
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/passwd
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/mlocate
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/bsdmainutils
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/man-db
- [09:03:31] Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/popularity-contest
- [09:03:31] Result: done with analyzing files in /etc/cron.daily
- [09:03:31] Test: checking directory /etc/cron.weekly
- [09:03:31] Result: found directory /etc/cron.weekly
- [09:03:31] Test: searching files in /etc/cron.weekly
- [09:03:31] Result: found one or more files in /etc/cron.weekly. Analyzing files..
- [09:03:31] Result: Found cronjob (/etc/cron.weekly): /etc/cron.weekly/update-notifier-common
- [09:03:31] Result: Found cronjob (/etc/cron.weekly): /etc/cron.weekly/fstrim
- [09:03:31] Result: Found cronjob (/etc/cron.weekly): /etc/cron.weekly/man-db
- [09:03:31] Result: done with analyzing files in /etc/cron.weekly
- [09:03:31] Test: checking directory /etc/cron.monthly
- [09:03:31] Result: found directory /etc/cron.monthly
- [09:03:31] Test: searching files in /etc/cron.monthly
- [09:03:31] Result: no files found in /etc/cron.monthly
- [09:03:31] ===---------------------------------------------------------------===
- [09:03:31] Performing test ID SCHD-7718 (Check at users)
- [09:03:31] Test: Checking atd status
- [09:03:31] Result: at daemon active
- [09:03:31] ===---------------------------------------------------------------===
- [09:03:31] Performing test ID SCHD-7720 (Check at users)
- [09:03:31] Test: checking for file /etc/at.allow
- [09:03:31] Result: file /etc/at.allow does not exist
- [09:03:31] Test: checking for file /etc/at.deny
- [09:03:31] Test: testing if we can access /etc/at.deny
- [09:03:31] Result: file is owned by our current user ID (0), checking if it is readable
- [09:03:31] Result: file /etc/at.deny is readable (or directory accessible).
- [09:03:31] Result: file /etc/at.deny exists, only non listed users can schedule at jobs
- [09:03:31] Denied at user: alias
- [09:03:31] Denied at user: backup
- [09:03:31] Denied at user: bin
- [09:03:31] Denied at user: daemon
- [09:03:31] Denied at user: ftp
- [09:03:31] Denied at user: games
- [09:03:31] Denied at user: gnats
- [09:03:31] Denied at user: guest
- [09:03:31] Denied at user: irc
- [09:03:31] Denied at user: lp
- [09:03:31] Denied at user: mail
- [09:03:31] Denied at user: man
- [09:03:31] Denied at user: nobody
- [09:03:31] Denied at user: operator
- [09:03:31] Denied at user: proxy
- [09:03:31] Denied at user: qmaild
- [09:03:31] Denied at user: qmaill
- [09:03:31] Denied at user: qmailp
- [09:03:31] Denied at user: qmailq
- [09:03:31] Denied at user: qmailr
- [09:03:31] Denied at user: qmails
- [09:03:31] Denied at user: sync
- [09:03:31] Denied at user: sys
- [09:03:31] Denied at user: www-data
- [09:03:32] ===---------------------------------------------------------------===
- [09:03:32] Performing test ID SCHD-7724 (Check at jobs)
- [09:03:32] Test: Check scheduled at jobs
- [09:03:32] Result: no pending at jobs
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Action: Performing tests from category: Accounting
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Skipped test ACCT-2754 (Check for available FreeBSD accounting information)
- [09:03:33] Reason to skip: Incorrect guest OS (FreeBSD only)
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Performing test ID ACCT-9622 (Check for available Linux accounting information)
- [09:03:33] Test: Check accounting information
- [09:03:33] Result: No accounting information available (/var/account/pacct, /var/log/account/pact nor /var/log/pact exist)
- [09:03:33] Remark: Possibly there is another location where the accounting data is stored
- [09:03:33] Suggestion: Enable process accounting [ACCT-9622]
- [09:03:33] Hardening: assigned 2 hardening points (max for this item: 3), current: 78, total: 166
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Performing test ID ACCT-9626 (Check for sysstat accounting data)
- [09:03:33] Test: check /etc/default/sysstat presence
- [09:03:33] Result: sysstat not found via /etc/default/sysstat or /etc/cron.d/sysstat
- [09:03:33] Suggestion: Enable sysstat to collect accounting (no results) [ACCT-9626]
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Performing test ID ACCT-9628 (Check for auditd)
- [09:03:33] Test: Check auditd status
- [09:03:33] IsRunning: process 'auditd' not found
- [09:03:33] Result: auditd not active
- [09:03:33] Suggestion: Enable auditd to collect audit information [ACCT-9628]
- [09:03:33] Hardening: assigned 0 hardening points (max for this item: 1), current: 78, total: 167
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Skipped test ACCT-9630 (Check for auditd rules)
- [09:03:33] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Skipped test ACCT-9632 (Check for auditd configuration file)
- [09:03:33] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Skipped test ACCT-9634 (Check for auditd log file)
- [09:03:33] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Performing test ID ACCT-9636 (Check for Snoopy wrapper and logger)
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Skipped test ACCT-9650 (Check Solaris audit daemon)
- [09:03:33] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Skipped test ACCT-9652 (Check auditd SMF status)
- [09:03:33] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Skipped test ACCT-9654 (Check BSM auditing in /etc/system)
- [09:03:33] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Skipped test ACCT-9656 (Check BSM auditing in module list)
- [09:03:33] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Skipped test ACCT-9660 (Check location of audit events)
- [09:03:33] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:33] ===---------------------------------------------------------------===
- [09:03:33] Skipped test ACCT-9662 (Check Solaris auditing stats)
- [09:03:33] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Action: Performing tests from category: Time and Synchronization
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Performing test ID TIME-3104 (Check for running NTP daemon or client)
- [09:03:34] Test: Searching for a running NTP daemon or available client
- [09:03:34] IsRunning: process 'dntpd' not found
- [09:03:34] IsRunning: process 'timed' not found
- [09:03:34] Result: time sychronization not performed according timedatectl command
- [09:03:34] Result: crontab file /etc/anacrontab not found
- [09:03:34] Test: checking for ntpdate or rdate in crontab file /etc/crontab
- [09:03:34] Result: no ntpdate or rdate reference found in crontab file /etc/crontab
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.d/mdadm
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.d/popularity-contest
- [09:03:34] Result: /etc/cron.hourly is empty, skipping search in directory
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/apport
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/apt-compat
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/bsdmainutils
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/dpkg
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/logrotate
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/man-db
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/mdadm
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/mlocate
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/passwd
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/popularity-contest
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.daily/update-notifier-common
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.weekly/fstrim
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.weekly/man-db
- [09:03:34] Test: checking for ntpdate or rdate in /etc/cron.weekly/update-notifier-common
- [09:03:34] Result: /etc/cron.monthly is empty, skipping search in directory
- [09:03:34] Result: no ntpdate or rdate found in cron directories
- [09:03:34] Test: checking for file /etc/network/if-up.d/ntpdate
- [09:03:34] Result: file /etc/network/if-up.d/ntpdate does not exist
- [09:03:34] Result: Could not find a NTP daemon or client
- [09:03:34] Suggestion: Use NTP daemon or NTP client to prevent time issues. [TIME-3104]
- [09:03:34] Hardening: assigned 0 hardening points (max for this item: 2), current: 78, total: 169
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Skipped test TIME-3106 (Check systemd NTP time synchronization status)
- [09:03:34] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Skipped test TIME-3112 (Check active NTP associations ID's)
- [09:03:34] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Skipped test TIME-3116 (Check peers with stratum value of 16)
- [09:03:34] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Skipped test TIME-3120 (Check unreliable NTP peers)
- [09:03:34] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Skipped test TIME-3124 (Check selected time source)
- [09:03:34] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Skipped test TIME-3128 (Check preffered time source)
- [09:03:34] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Skipped test TIME-3132 (Check NTP falsetickers)
- [09:03:34] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Skipped test TIME-3136 (Check NTP protocol version)
- [09:03:34] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:34] ===---------------------------------------------------------------===
- [09:03:34] Skipped test TIME-3160 (Check empty NTP step-tickers)
- [09:03:34] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:35] ===---------------------------------------------------------------===
- [09:03:35] Action: Performing tests from category: Cryptography
- [09:03:35] ===---------------------------------------------------------------===
- [09:03:35] Performing test ID CRYP-7902 (Check expire date of SSL certificates)
- [09:03:35] Result: SSL path /etc/pki does not exist
- [09:03:35] Test: testing if we can access /etc/ssl
- [09:03:35] Result: file /etc/ssl is readable (or directory accessible).
- [09:03:35] Result: found directory /etc/ssl
- [09:03:35] Test: testing if we can access /etc/ssl/certs/ca-certificates.crt
- [09:03:35] Result: file is owned by our current user ID (0), checking if it is readable
- [09:03:35] Result: file /etc/ssl/certs/ca-certificates.crt is readable (or directory accessible).
- [09:03:35] Test: checking certificate /etc/ssl/certs/ca-certificates.crt
- [09:03:35] Result: certificate /etc/ssl/certs/ca-certificates.crt seems to be correct and still valid
- [09:03:35] Test: testing if we can access /usr/local/share/ca-certificates
- [09:03:35] Result: file /usr/local/share/ca-certificates is readable (or directory accessible).
- [09:03:35] Result: found directory /usr/local/share/ca-certificates
- [09:03:35] Result: SSL path /var/www does not exist
- [09:03:35] Result: SSL path /srv/www does not exist
- [09:03:36] ===---------------------------------------------------------------===
- [09:03:36] Action: Performing tests from category: Virtualization
- [09:03:37] ===---------------------------------------------------------------===
- [09:03:37] Action: Performing tests from category: Containers
- [09:03:37] ===---------------------------------------------------------------===
- [09:03:37] Skipped test CONT-8004 (Query running Solaris zones)
- [09:03:37] Reason to skip: Incorrect guest OS (Solaris only)
- [09:03:37] ===---------------------------------------------------------------===
- [09:03:37] Performing test ID CONT-8102 (Checking Docker status and information)
- [09:03:37] IsRunning: process 'docker -d' not found
- [09:03:37] ===---------------------------------------------------------------===
- [09:03:37] Skipped test CONT-8104 (Checking Docker info for any warnings)
- [09:03:37] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:37] ===---------------------------------------------------------------===
- [09:03:37] Skipped test CONT-8106 (Checking Docker info for any warnings)
- [09:03:37] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:38] ===---------------------------------------------------------------===
- [09:03:38] Action: Performing tests from category: Security frameworks
- [09:03:38] ===---------------------------------------------------------------===
- [09:03:38] Performing test ID MACF-6204 (Check AppArmor presence)
- [09:03:38] Result: aa-status binary found, AppArmor is installed
- [09:03:38] ===---------------------------------------------------------------===
- [09:03:38] Performing test ID MACF-6208 (Check if AppArmor is enabled)
- [09:03:38] Result: AppArmor is enabled and a policy is loaded
- [09:03:38] ===---------------------------------------------------------------===
- [09:03:38] Performing test ID MACF-6232 (Check SELINUX presence)
- [09:03:38] Test: checking if we have sestatus binary
- [09:03:38] Result: sestatus binary NOT found
- [09:03:38] ===---------------------------------------------------------------===
- [09:03:38] Skipped test MACF-6234 (Check SELINUX status)
- [09:03:38] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:38] ===---------------------------------------------------------------===
- [09:03:38] Performing test ID RBAC-6272 (Check grsecurity presence)
- [09:03:38] Result: grsecurity not present (/dev/grsec not found)
- [09:03:38] Result: no grsecurity found in kernel config
- [09:03:38] ===---------------------------------------------------------------===
- [09:03:38] Performing test ID MACF-6290 (Check for implemented MAC framework)
- [09:03:38] Hardening: assigned 3 hardening points (max for this item: 3), current: 81, total: 172
- [09:03:38] Result: found implemented MAC framework
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Action: Performing tests from category: Software: file integrity
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Performing test ID FINT-4310 (AFICK availability)
- [09:03:39] Test: Checking AFICK binary
- [09:03:39] Result: AFICK is not installed
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Performing test ID FINT-4314 (AIDE availability)
- [09:03:39] Test: Checking AIDE binary
- [09:03:39] Result: AIDE is not installed
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Skipped test FINT-4315 (Check AIDE configuration file)
- [09:03:39] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Skipped test FINT-4316 (AIDE configuration: Checksums (SHA256 or SHA512))
- [09:03:39] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Performing test ID FINT-4318 (Osiris availability)
- [09:03:39] Test: Checking Osiris binary
- [09:03:39] Result: Osiris is not installed
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Performing test ID FINT-4322 (Samhain availability)
- [09:03:39] Test: Checking Samhain binary
- [09:03:39] Result: Samhain is not installed
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Performing test ID FINT-4326 (Tripwire availability)
- [09:03:39] Test: Checking Tripwire binary
- [09:03:39] Result: Tripwire is not installed
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Performing test ID FINT-4328 (OSSEC syscheck daemon running)
- [09:03:39] Test: Checking if OSSEC syscheck daemon is running
- [09:03:39] IsRunning: process 'ossec-syscheckd' not found
- [09:03:39] Result: syscheck (OSSEC) not installed
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Performing test ID FINT-4330 (mtree availability)
- [09:03:39] Test: Checking mtree binary
- [09:03:39] Result: mtree is not installed
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Skipped test FINT-4334 (Check lfd daemon status)
- [09:03:39] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Skipped test FINT-4336 (Check lfd configuration status)
- [09:03:39] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Performing test ID FINT-4350 (File integrity software installed)
- [09:03:39] Test: Check if at least on file integrity tool is available/installed
- [09:03:39] Result: No file integrity tools found
- [09:03:39] Suggestion: Install a file integrity tool to monitor changes to critical and sensitive files [FINT-4350]
- [09:03:39] Hardening: assigned 0 hardening points (max for this item: 5), current: 81, total: 177
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Action: Performing tests from category: Software: System tooling
- [09:03:39] ===---------------------------------------------------------------===
- [09:03:39] Performing test ID TOOL-5002 (Checking for automation tools)
- [09:03:39] IsRunning: process 'puppet master' not found
- [09:03:39] IsRunning: process 'salt-master' not found
- [09:03:39] Suggestion: Determine if automation tools are present for system management [TOOL-5002]
- [09:03:40] ===---------------------------------------------------------------===
- [09:03:40] Action: Performing tests from category: Software: Malware scanners
- [09:03:40] ===---------------------------------------------------------------===
- [09:03:40] Performing test ID MALW-3275 (Check for chkrootkit)
- [09:03:40] Test: checking presence chkrootkit
- [09:03:40] Result: chkrootkit not found
- [09:03:40] ===---------------------------------------------------------------===
- [09:03:40] Performing test ID MALW-3276 (Check for Rootkit Hunter)
- [09:03:40] Test: checking presence Rootkit Hunter
- [09:03:40] Result: Rootkit Hunter not found
- [09:03:40] ===---------------------------------------------------------------===
- [09:03:40] Performing test ID MALW-3280 (Check if anti-virus tool is installed)
- [09:03:40] Test: checking process cma or cmdagent (McAfee)
- [09:03:40] IsRunning: process 'cmdagent' not found
- [09:03:40] Test: checking process savscand
- [09:03:40] IsRunning: process 'savscand' not found
- [09:03:40] Test: checking process SophosScanD
- [09:03:40] IsRunning: process 'SophosScanD' not found
- [09:03:40] Result: no commercial anti-virus tool found
- [09:03:40] Hardening: assigned 0 hardening points (max for this item: 3), current: 81, total: 180
- [09:03:40] ===---------------------------------------------------------------===
- [09:03:40] Performing test ID MALW-3282 (Check for clamscan)
- [09:03:40] Test: checking presence clamscan
- [09:03:40] Result: clamscan couldn't be found
- [09:03:40] ===---------------------------------------------------------------===
- [09:03:40] Performing test ID MALW-3284 (Check for clamd)
- [09:03:40] Test: checking running ClamAV daemon (clamd)
- [09:03:40] IsRunning: process 'clamd' not found
- [09:03:40] Result: clamd not running
- [09:03:40] ===---------------------------------------------------------------===
- [09:03:40] Skipped test MALW-3286 (Check for freshclam)
- [09:03:40] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:40] ===---------------------------------------------------------------===
- [09:03:40] Skipped test MALW-3288 (Check for ClamXav)
- [09:03:40] Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
- [09:03:41] ===---------------------------------------------------------------===
- [09:03:41] Action: Performing tests from category: File Permissions
- [09:03:41] ===---------------------------------------------------------------===
- [09:03:41] Performing test ID FILE-7524 (Perform file permissions check)
- [09:03:41] Test: Checking file permissions
- [09:03:41] Using profile /etc/lynis/default.prf for baseline.
- [09:03:41] Checking /etc/lilo.conf
- [09:03:41] Expected permissions:
- [09:03:41] Actual permissions:
- [09:03:41] Result: FILE_NOT_FOUND
- [09:03:41] Checking /root/.ssh
- [09:03:41] Expected permissions: rwx------
- [09:03:41] Actual permissions: rwx------
- [09:03:41] Result: OK
- [09:03:44] ===---------------------------------------------------------------===
- [09:03:44] Action: Performing tests from category: Home directories
- [09:03:44] ===---------------------------------------------------------------===
- [09:03:44] Performing test ID HOME-9302 (Create list with home directories)
- [09:03:44] Test: query /etc/passwd to obtain home directories
- [09:03:44] Result: found home directory: /bin (directory exists)
- [09:03:44] Result: found home directory: /dev (directory exists)
- [09:03:44] Result: found home directory: /home/gitlab-runner (directory exists)
- [09:03:44] Result: found home directory: /home/syslog (directory does not exist)
- [09:03:44] Result: found home directory: /nonexistent (directory does not exist)
- [09:03:44] Result: found home directory: /root (directory exists)
- [09:03:44] Result: found home directory: /run/systemd (directory exists)
- [09:03:44] Result: found home directory: /run/systemd/netif (directory exists)
- [09:03:44] Result: found home directory: /run/systemd/resolve (directory does not exist)
- [09:03:44] Result: found home directory: /run/uuidd (directory exists)
- [09:03:44] Result: found home directory: /usr/games (directory exists)
- [09:03:44] Result: found home directory: /usr/sbin (directory exists)
- [09:03:44] Result: found home directory: /var/backups (directory exists)
- [09:03:44] Result: found home directory: /var/cache/man (directory exists)
- [09:03:44] Result: found home directory: /var/cache/pollinate (directory exists)
- [09:03:44] Result: found home directory: /var/lib/gnats (directory does not exist)
- [09:03:44] Result: found home directory: /var/lib/lxd/ (directory exists)
- [09:03:44] Result: found home directory: /var/lib/misc (directory exists)
- [09:03:44] Result: found home directory: /var/list (directory does not exist)
- [09:03:44] Result: found home directory: /var/mail (directory exists)
- [09:03:44] Result: found home directory: /var/run/dbus (directory exists)
- [09:03:44] Result: found home directory: /var/run/ircd (directory does not exist)
- [09:03:44] Result: found home directory: /var/run/sshd (directory exists)
- [09:03:44] Result: found home directory: /var/spool/lpd (directory does not exist)
- [09:03:44] Result: found home directory: /var/spool/news (directory does not exist)
- [09:03:44] Result: found home directory: /var/spool/uucp (directory does not exist)
- [09:03:44] Result: found home directory: /var/www (directory does not exist)
- [09:03:44] ===---------------------------------------------------------------===
- [09:03:44] Performing test ID HOME-9310 (Checking for suspicious shell history files)
- [09:03:44] Result: Ok, history files are type 'file'.
- [09:03:44] Remarks: History files are normally of the type 'file'. Symbolic links and other types can be riskful.
- [09:03:44] ===---------------------------------------------------------------===
- [09:03:44] Performing test ID HOME-9350 (Collecting information from home directories)
- [09:03:44] Result: IGNORE_HOME_DIRS empty, no paths excluded
- [09:03:48] ===---------------------------------------------------------------===
- [09:03:48] Action: Performing tests from category: Kernel Hardening
- [09:03:48] ===---------------------------------------------------------------===
- [09:03:48] Performing test ID KRNL-6000 (Check sysctl key pairs in scan profile)
- [09:03:48] Result: key security.bsd.see_other_gids does not exist on this machine
- [09:03:48] Result: key security.bsd.see_other_uids does not exist on this machine
- [09:03:48] Result: key kern.sugid_coredump does not exist on this machine
- [09:03:48] Result: key kernel.core_setuid_ok does not exist on this machine
- [09:03:48] Result: sysctl key kernel.core_uses_pid has a different value than expected in scan profile. Expected=1, Real=0
- [09:03:48] Hardening: assigned 0 hardening points (max for this item: 1), current: 81, total: 181
- [09:03:48] Result: sysctl key kernel.ctrl-alt-del contains equal expected and current value (0)
- [09:03:48] Hardening: assigned 1 hardening points (max for this item: 1), current: 82, total: 182
- [09:03:48] Result: key kernel.exec-shield-randomize does not exist on this machine
- [09:03:48] Result: key kernel.exec-shield does not exist on this machine
- [09:03:48] Result: sysctl key kernel.kptr_restrict contains equal expected and current value (1)
- [09:03:48] Hardening: assigned 1 hardening points (max for this item: 1), current: 83, total: 183
- [09:03:48] Result: sysctl key kernel.sysrq has a different value than expected in scan profile. Expected=0, Real=176
- [09:03:48] Hardening: assigned 0 hardening points (max for this item: 1), current: 83, total: 184
- [09:03:48] Result: key kernel.use-nx does not exist on this machine
- [09:03:48] Result: key net.inet.icmp.bmcastecho does not exist on this machine
- [09:03:48] Result: key net.inet.icmp.rediraccept does not exist on this machine
- [09:03:48] Result: key net.inet.ip.accept_sourceroute does not exist on this machine
- [09:03:48] Result: key net.inet.ip.redirect does not exist on this machine
- [09:03:48] Result: key net.inet.ip.sourceroute does not exist on this machine
- [09:03:48] Result: key net.inet.ip6.redirect does not exist on this machine
- [09:03:48] Result: key net.inet.tcp.blackhole does not exist on this machine
- [09:03:48] Result: key net.inet.udp.blackhole does not exist on this machine
- [09:03:48] Result: key net.inet6.icmp6.rediraccept does not exist on this machine
- [09:03:48] Result: key net.inet6.ip6.redirect does not exist on this machine
- [09:03:48] Result: sysctl key net.ipv4.conf.all.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
- [09:03:48] Hardening: assigned 0 hardening points (max for this item: 1), current: 83, total: 185
- [09:03:48] Result: sysctl key net.ipv4.conf.all.accept_source_route contains equal expected and current value (0)
- [09:03:48] Hardening: assigned 1 hardening points (max for this item: 1), current: 84, total: 186
- [09:03:48] Result: sysctl key net.ipv4.conf.all.bootp_relay contains equal expected and current value (0)
- [09:03:48] Hardening: assigned 1 hardening points (max for this item: 1), current: 85, total: 187
- [09:03:48] Result: sysctl key net.ipv4.conf.all.forwarding contains equal expected and current value (0)
- [09:03:48] Hardening: assigned 1 hardening points (max for this item: 1), current: 86, total: 188
- [09:03:48] Result: sysctl key net.ipv4.conf.all.log_martians has a different value than expected in scan profile. Expected=1, Real=0
- [09:03:48] Hardening: assigned 0 hardening points (max for this item: 1), current: 86, total: 189
- [09:03:48] Result: sysctl key net.ipv4.conf.all.mc_forwarding contains equal expected and current value (0)
- [09:03:48] Hardening: assigned 1 hardening points (max for this item: 1), current: 87, total: 190
- [09:03:48] Result: sysctl key net.ipv4.conf.all.proxy_arp contains equal expected and current value (0)
- [09:03:48] Hardening: assigned 1 hardening points (max for this item: 1), current: 88, total: 191
- [09:03:48] Result: sysctl key net.ipv4.conf.all.rp_filter contains equal expected and current value (1)
- [09:03:48] Hardening: assigned 1 hardening points (max for this item: 1), current: 89, total: 192
- [09:03:48] Result: sysctl key net.ipv4.conf.all.send_redirects has a different value than expected in scan profile. Expected=0, Real=1
- [09:03:48] Hardening: assigned 0 hardening points (max for this item: 1), current: 89, total: 193
- [09:03:48] Result: sysctl key net.ipv4.conf.default.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
- [09:03:48] Hardening: assigned 0 hardening points (max for this item: 1), current: 89, total: 194
- [09:03:48] Result: sysctl key net.ipv4.conf.default.accept_source_route has a different value than expected in scan profile. Expected=0, Real=1
- [09:03:48] Hardening: assigned 0 hardening points (max for this item: 1), current: 89, total: 195
- [09:03:49] Result: sysctl key net.ipv4.conf.default.log_martians has a different value than expected in scan profile. Expected=1, Real=0
- [09:03:49] Hardening: assigned 0 hardening points (max for this item: 1), current: 89, total: 196
- [09:03:49] Result: sysctl key net.ipv4.icmp_echo_ignore_broadcasts contains equal expected and current value (1)
- [09:03:49] Hardening: assigned 1 hardening points (max for this item: 1), current: 90, total: 197
- [09:03:49] Result: sysctl key net.ipv4.icmp_ignore_bogus_error_responses contains equal expected and current value (1)
- [09:03:49] Hardening: assigned 1 hardening points (max for this item: 1), current: 91, total: 198
- [09:03:49] Result: sysctl key net.ipv4.tcp_syncookies contains equal expected and current value (1)
- [09:03:49] Hardening: assigned 1 hardening points (max for this item: 1), current: 92, total: 199
- [09:03:49] Result: sysctl key net.ipv4.tcp_timestamps has a different value than expected in scan profile. Expected=0, Real=1
- [09:03:49] Hardening: assigned 0 hardening points (max for this item: 1), current: 92, total: 200
- [09:03:49] Result: key net.ipv6.conf.all.send_redirects does not exist on this machine
- [09:03:49] Result: sysctl key net.ipv6.conf.all.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
- [09:03:49] Hardening: assigned 0 hardening points (max for this item: 1), current: 92, total: 201
- [09:03:49] Result: sysctl key net.ipv6.conf.all.accept_source_route contains equal expected and current value (0)
- [09:03:49] Hardening: assigned 1 hardening points (max for this item: 1), current: 93, total: 202
- [09:03:49] Result: sysctl key net.ipv6.conf.default.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
- [09:03:49] Hardening: assigned 0 hardening points (max for this item: 1), current: 93, total: 203
- [09:03:49] Result: sysctl key net.ipv6.conf.default.accept_source_route contains equal expected and current value (0)
- [09:03:49] Hardening: assigned 1 hardening points (max for this item: 1), current: 94, total: 204
- [09:03:49] Suggestion: One or more sysctl values differ from the scan profile and could be tweaked [KRNL-6000]
- [09:03:52] ===---------------------------------------------------------------===
- [09:03:52] Action: Performing tests from category: Hardening
- [09:03:52] ===---------------------------------------------------------------===
- [09:03:52] Performing test ID HRDN-7220 (Check if one or more compilers are installed)
- [09:03:52] Test: Check if one or more compilers can be found on the system
- [09:03:52] Result: no compilers found
- [09:03:52] Hardening: assigned 3 hardening points (max for this item: 3), current: 97, total: 207
- [09:03:52] ===---------------------------------------------------------------===
- [09:03:52] Performing test ID HRDN-7222 (Check compiler permissions)
- [09:03:52] Test: Check if one or more compilers can be found on the system
- [09:03:52] Result: no compilers found
- [09:03:52] ===---------------------------------------------------------------===
- [09:03:52] Performing test ID HRDN-7230 (Check for malware scanner)
- [09:03:52] Test: Check if one or more compilers can be found on the system
- [09:03:52] Result: no malware scanner found
- [09:03:52] Suggestion: Harden the system by installing at least one malware scanner, to perform periodic file system scans [HRDN-7230]
- [09:03:52] Hardening: assigned 1 hardening points (max for this item: 3), current: 98, total: 210
- [09:03:54] ===---------------------------------------------------------------===
- [09:03:54] Action: Performing tests from category: Custom Tests
- [09:03:54] Test: Checking for tests_custom file
- [09:03:54] Checking permissions of /usr/share/lynis/include/report
- [09:03:54] File permissions are OK
- [09:03:54] ===---------------------------------------------------------------===
- [09:03:54] Hardening index : [46] [######### ]
- [09:03:54] Hardening strength: System has not or a low amount been hardened
- [09:03:54] ================================================================================
- [09:03:54] Tests performed: 189
- [09:03:54] Total tests: 336
- [09:03:54] Active plugins: 1
- [09:03:54] Total plugins: 1
- [09:03:54] ================================================================================
- [09:03:54] Lynis 2.1.1
- [09:03:54] Copyright 2007-2015 - CISOfy, https://cisofy.com
- [09:03:54] Enterprise support and plugins available via CISOfy
- [09:03:54] Program ended successfully
- [09:03:54] ================================================================================
- [09:03:54] PID file removed (/var/run/lynis.pid)
- root@node8-new-21:/var/log# ls -la
- total 992
- drwxrwxr-x 7 root syslog 4096 Oct 3 09:02 .
- drwxr-xr-x 13 root root 4096 Dec 8 2017 ..
- -rw-r--r-- 1 root root 0 Jul 20 06:25 alternatives.log
- -rw-r--r-- 1 root root 1286 Jul 19 13:41 alternatives.log.1
- -rw-r--r-- 1 root root 134 Jun 14 06:23 alternatives.log.2.gz
- -rw-r--r-- 1 root root 135 May 25 06:41 alternatives.log.3.gz
- -rw-r--r-- 1 root root 134 Apr 18 06:19 alternatives.log.4.gz
- -rw-r--r-- 1 root root 110 Jan 23 2018 alternatives.log.5.gz
- -rw-r--r-- 1 root root 164 Dec 23 2017 alternatives.log.6.gz
- drwxr-xr-x 2 root root 4096 Oct 1 06:25 apt
- -rw-r----- 1 syslog adm 16083 Oct 3 09:02 auth.log
- -rw-r----- 1 syslog adm 59026 Oct 1 06:25 auth.log.1
- -rw-r----- 1 syslog adm 5353 Sep 23 06:25 auth.log.2.gz
- -rw-r----- 1 syslog adm 2193 Sep 17 06:25 auth.log.3.gz
- -rw-r----- 1 syslog adm 3304 Sep 9 06:25 auth.log.4.gz
- -rw-rw---- 1 root utmp 0 Oct 1 06:25 btmp
- -rw-rw---- 1 root utmp 0 Sep 1 06:25 btmp.1
- -rw-r--r-- 1 syslog adm 404526 Jul 19 13:43 cloud-init.log
- -rw-r--r-- 1 root root 12820 Jul 19 13:43 cloud-init-output.log
- drwxr-xr-x 2 root root 4096 Oct 20 2017 dist-upgrade
- -rw-r--r-- 1 root root 8527 Oct 3 09:02 dpkg.log
- -rw-r--r-- 1 root root 16473 Sep 28 06:17 dpkg.log.1
- -rw-r--r-- 1 root root 1899 Dec 26 2017 dpkg.log.10.gz
- -rw-r--r-- 1 root root 1401 Aug 31 06:37 dpkg.log.2.gz
- -rw-r--r-- 1 root root 8625 Jul 19 13:41 dpkg.log.3.gz
- -rw-r--r-- 1 root root 1826 Jun 29 06:54 dpkg.log.4.gz
- -rw-r--r-- 1 root root 1875 May 31 06:22 dpkg.log.5.gz
- -rw-r--r-- 1 root root 1542 Apr 24 06:30 dpkg.log.6.gz
- -rw-r--r-- 1 root root 735 Mar 30 2018 dpkg.log.7.gz
- -rw-r--r-- 1 root root 1746 Feb 27 2018 dpkg.log.8.gz
- -rw-r--r-- 1 root root 2828 Jan 26 2018 dpkg.log.9.gz
- drwxr-xr-x 2 root root 4096 Dec 8 2017 fsck
- -rw-r----- 1 syslog adm 356 Oct 2 15:49 kern.log
- -rw-r----- 1 syslog adm 1424 Sep 26 18:19 kern.log.1
- -rw-r----- 1 syslog adm 647 Sep 22 06:29 kern.log.2.gz
- -rw-r----- 1 syslog adm 251 Sep 10 00:10 kern.log.3.gz
- -rw-r----- 1 syslog adm 508 Sep 7 09:53 kern.log.4.gz
- -rw-rw-r-- 1 root utmp 292000 Oct 3 09:02 lastlog
- drwxr-xr-x 2 root root 4096 Dec 7 2017 lxd
- -rw-r----- 1 root root 248931 Oct 3 09:03 lynis.log
- -rw-r----- 1 root root 34225 Oct 3 09:03 lynis-report.dat
- -rw-r----- 1 syslog adm 2192 Oct 3 09:03 syslog
- -rw-r----- 1 syslog adm 11961 Oct 3 06:25 syslog.1
- -rw-r----- 1 syslog adm 1007 Oct 2 06:25 syslog.2.gz
- -rw-r----- 1 syslog adm 1004 Oct 1 06:25 syslog.3.gz
- -rw-r----- 1 syslog adm 1070 Sep 30 06:25 syslog.4.gz
- -rw-r----- 1 syslog adm 973 Sep 29 06:25 syslog.5.gz
- -rw-r----- 1 syslog adm 1006 Sep 28 06:25 syslog.6.gz
- -rw-r----- 1 syslog adm 1267 Sep 27 06:25 syslog.7.gz
- drwxr-x--- 2 root adm 4096 Oct 1 06:25 unattended-upgrades
- -rw-rw-r-- 1 root utmp 384 Oct 3 09:02 wtmp
- -rw-rw-r-- 1 root utmp 0 Sep 1 06:25 wtmp.1
- root@node8-new-21:/var/log# chkrootkit
- The program 'chkrootkit' is currently not installed. You can install it by typing:
- apt install chkrootkit
- root@node8-new-21:/var/log# apt-get install chkrootkit -y
- Reading package lists... Done
- Building dependency tree
- Reading state information... Done
- The following packages were automatically installed and are no longer required:
- grub-pc-bin linux-headers-4.4.0-103 linux-headers-4.4.0-103-generic linux-headers-4.4.0-104 linux-headers-4.4.0-104-generic linux-headers-4.4.0-108
- linux-headers-4.4.0-108-generic linux-headers-4.4.0-109 linux-headers-4.4.0-109-generic linux-headers-4.4.0-112 linux-headers-4.4.0-112-generic
- linux-headers-4.4.0-116 linux-headers-4.4.0-116-generic linux-headers-4.4.0-119 linux-headers-4.4.0-119-generic linux-headers-4.4.0-121
- linux-headers-4.4.0-121-generic linux-headers-4.4.0-124 linux-headers-4.4.0-124-generic linux-headers-4.4.0-127 linux-headers-4.4.0-127-generic
- linux-headers-4.4.0-128 linux-headers-4.4.0-128-generic linux-headers-4.4.0-133 linux-headers-4.4.0-133-generic linux-image-4.4.0-103-generic
- linux-image-4.4.0-104-generic linux-image-4.4.0-108-generic linux-image-4.4.0-109-generic linux-image-4.4.0-112-generic linux-image-4.4.0-116-generic
- linux-image-4.4.0-119-generic linux-image-4.4.0-121-generic linux-image-4.4.0-124-generic linux-image-4.4.0-127-generic linux-image-4.4.0-128-generic
- linux-image-4.4.0-133-generic
- Use 'apt autoremove' to remove them.
- The following additional packages will be installed:
- binutils
- Suggested packages:
- binutils-doc
- The following NEW packages will be installed:
- binutils chkrootkit
- 0 upgraded, 2 newly installed, 0 to remove and 33 not upgraded.
- Need to get 2,636 kB of archives.
- After this operation, 14.7 MB of additional disk space will be used.
- Get:1 http://nyc2.mirrors.digitalocean.com/ubuntu xenial-updates/main amd64 binutils amd64 2.26.1-1ubuntu1~16.04.7 [2,309 kB]
- Get:2 http://nyc2.mirrors.digitalocean.com/ubuntu xenial/universe amd64 chkrootkit amd64 0.50-3.2 [326 kB]
- Fetched 2,636 kB in 0s (7,993 kB/s)
- Preconfiguring packages ...
- Selecting previously unselected package binutils.
- (Reading database ... 451643 files and directories currently installed.)
- Preparing to unpack .../binutils_2.26.1-1ubuntu1~16.04.7_amd64.deb ...
- Unpacking binutils (2.26.1-1ubuntu1~16.04.7) ...
- Selecting previously unselected package chkrootkit.
- Preparing to unpack .../chkrootkit_0.50-3.2_amd64.deb ...
- Unpacking chkrootkit (0.50-3.2) ...
- Processing triggers for libc-bin (2.23-0ubuntu10) ...
- Processing triggers for man-db (2.7.5-1) ...
- Setting up binutils (2.26.1-1ubuntu1~16.04.7) ...
- Setting up chkrootkit (0.50-3.2) ...
- Processing triggers for libc-bin (2.23-0ubuntu10) ...
- root@node8-new-21:/var/log# chkrootkit
- ROOTDIR is `/'
- Checking `amd'... not found
- Checking `basename'... not infected
- Checking `biff'... not found
- Checking `chfn'... not infected
- Checking `chsh'... not infected
- Checking `cron'... not infected
- Checking `crontab'... not infected
- Checking `date'... not infected
- Checking `du'... not infected
- Checking `dirname'... not infected
- Checking `echo'... not infected
- Checking `egrep'... not infected
- Checking `env'... not infected
- Checking `find'... not infected
- Checking `fingerd'... not found
- Checking `gpm'... not found
- Checking `grep'... not infected
- Checking `hdparm'... not infected
- Checking `su'... not infected
- Checking `ifconfig'... not infected
- Checking `inetd'... not infected
- Checking `inetdconf'... not found
- Checking `identd'... not found
- Checking `init'... not infected
- Checking `killall'... not infected
- Checking `ldsopreload'... not infected
- Checking `login'... not infected
- Checking `ls'... not infected
- Checking `lsof'... not infected
- Checking `mail'... not found
- Checking `mingetty'... not found
- Checking `netstat'... not infected
- Checking `named'... not found
- Checking `passwd'... not infected
- Checking `pidof'... not infected
- Checking `pop2'... not found
- Checking `pop3'... not found
- Checking `ps'... not infected
- Checking `pstree'... not infected
- Checking `rpcinfo'... not found
- Checking `rlogind'... not found
- Checking `rshd'... not found
- Checking `slogin'... not infected
- Checking `sendmail'... not found
- Checking `sshd'... not infected
- Checking `syslogd'... not tested
- Checking `tar'... not infected
- Checking `tcpd'... not infected
- Checking `tcpdump'... not infected
- Checking `top'... not infected
- Checking `telnetd'... not found
- Checking `timed'... not found
- Checking `traceroute'... not found
- Checking `vdir'... not infected
- Checking `w'... not infected
- Checking `write'... not infected
- Checking `aliens'... no suspect files
- Searching for sniffer's logs, it may take a while... nothing found
- Searching for rootkit HiDrootkit's default files... nothing found
- Searching for rootkit t0rn's default files... nothing found
- Searching for t0rn's v8 defaults... nothing found
- Searching for rootkit Lion's default files... nothing found
- Searching for rootkit RSHA's default files... nothing found
- Searching for rootkit RH-Sharpe's default files... nothing found
- Searching for Ambient's rootkit (ark) default files and dirs... nothing found
- Searching for suspicious files and dirs, it may take a while... The following suspicious files and directories were found:
- /usr/lib/node_modules/npm/.npmignore /usr/lib/node_modules/npm/.github /usr/lib/node_modules/npm/.mailmap /usr/lib/node_modules/npm/node_modules/lazy-property/.npmignore /usr/lib/node_modules/npm/node_modules/archy/.travis.yml /usr/lib/node_modules/npm/node_modules/sha/.npmignore /usr/lib/node_modules/npm/node_modules/umask/.npmignore /usr/lib/node_modules/npm/node_modules/JSONStream/.npmignore /usr/lib/node_modules/npm/node_modules/JSONStream/node_modules/jsonparse/.npmignore /usr/lib/node_modules/npm/node_modules/JSONStream/node_modules/through/.travis.yml /usr/lib/node_modules/npm/node_modules/JSONStream/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/hawk/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/hawk/node_modules/sntp/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/hawk/node_modules/hoek/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/hawk/node_modules/cryptiles/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/performance-now/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/performance-now/.tm_properties /usr/lib/node_modules/npm/node_modules/request/node_modules/performance-now/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/combined-stream/node_modules/delayed-stream/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/isstream/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/isstream/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/.dir-locals.el /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/jsprim/node_modules/verror/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/jsprim/node_modules/extsprintf/.gitmodules /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/jsprim/node_modules/extsprintf/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/sshpk/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/sshpk/node_modules/getpass/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/sshpk/node_modules/getpass/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/sshpk/node_modules/jsbn/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/sshpk/node_modules/asn1/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/sshpk/node_modules/asn1/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/sshpk/node_modules/tweetnacl/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/sshpk/node_modules/ecc-jsbn/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/http-signature/node_modules/sshpk/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/extend/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/extend/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/extend/.jscs.json /usr/lib/node_modules/npm/node_modules/request/node_modules/qs/.eslintignore /usr/lib/node_modules/npm/node_modules/request/node_modules/qs/.editorconfig /usr/lib/node_modules/npm/node_modules/request/node_modules/stringstream/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/stringstream/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/.tonic_example.js /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/json-stable-stringify/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/json-stable-stringify/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/fast-deep-equal/benchmark/.eslintrc.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/fast-deep-equal/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/fast-deep-equal/spec/.eslintrc.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/fast-deep-equal/.eslintrc.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/fast-deep-equal/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/json-schema-traverse/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/json-schema-traverse/spec/.eslintrc.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/json-schema-traverse/.eslintrc.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/node_modules/json-schema-traverse/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/har-validator/node_modules/ajv/scripts/.eslintrc.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/aws4/.tern-port /usr/lib/node_modules/npm/node_modules/request/node_modules/aws4/.npmignore /usr/lib/node_modules/npm/node_modules/request/node_modules/aws4/.travis.yml /usr/lib/node_modules/npm/node_modules/request/node_modules/json-stringify-safe/.npmignore /usr/lib/node_modules/npm/node_modules/fs-write-stream-atomic/.npmignore /usr/lib/node_modules/npm/node_modules/fs-write-stream-atomic/.travis.yml /usr/lib/node_modules/npm/node_modules/qrcode-terminal/.npmignore /usr/lib/node_modules/npm/node_modules/qrcode-terminal/.travis.yml /usr/lib/node_modules/npm/node_modules/cli-table2/.npmignore /usr/lib/node_modules/npm/node_modules/cli-table2/.travis.yml /usr/lib/node_modules/npm/node_modules/read-cmd-shim/.npmignore /usr/lib/node_modules/npm/node_modules/safe-buffer/.travis.yml /usr/lib/node_modules/npm/node_modules/nopt/.npmignore /usr/lib/node_modules/npm/node_modules/nopt/.travis.yml /usr/lib/node_modules/npm/node_modules/readable-stream/.npmignore /usr/lib/node_modules/npm/node_modules/readable-stream/node_modules/string_decoder/.npmignore /usr/lib/node_modules/npm/node_modules/readable-stream/node_modules/process-nextick-args/.travis.yml /usr/lib/node_modules/npm/node_modules/readable-stream/node_modules/isarray/.npmignore /usr/lib/node_modules/npm/node_modules/readable-stream/node_modules/isarray/.travis.yml /usr/lib/node_modules/npm/node_modules/readable-stream/.travis.yml /usr/lib/node_modules/npm/node_modules/tar/node_modules/minipass/.npmignore /usr/lib/node_modules/npm/node_modules/tar/node_modules/minipass/.travis.yml /usr/lib/node_modules/npm/node_modules/fs-vacuum/.eslintrc /usr/lib/node_modules/npm/node_modules/fs-vacuum/.npmignore /usr/lib/node_modules/npm/node_modules/fs-vacuum/.travis.yml /usr/lib/node_modules/npm/node_modules/init-package-json/node_modules/promzard/.npmignore /usr/lib/node_modules/npm/node_modules/dezalgo/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/https-proxy-agent/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/https-proxy-agent/node_modules/agent-base/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/https-proxy-agent/node_modules/agent-base/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/https-proxy-agent/node_modules/debug/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/https-proxy-agent/node_modules/debug/.coveralls.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/https-proxy-agent/node_modules/debug/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/https-proxy-agent/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/http-proxy-agent/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/http-proxy-agent/node_modules/agent-base/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/http-proxy-agent/node_modules/agent-base/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/http-proxy-agent/node_modules/debug/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/http-proxy-agent/node_modules/debug/.coveralls.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/http-proxy-agent/node_modules/debug/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/http-proxy-agent/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/agent-base/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/agent-base/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/node_modules/smart-buffer/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/node_modules/smart-buffer/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/node_modules/ip/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/node_modules/ip/.jscsrc /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/node_modules/ip/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/promise-retry/.editorconfig /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/promise-retry/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/promise-retry/node_modules/err-code/.editorconfig /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/promise-retry/node_modules/err-code/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/promise-retry/node_modules/err-code/.eslintrc.json /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/promise-retry/node_modules/err-code/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/promise-retry/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/node-fetch-npm/node_modules/encoding/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/node-fetch-npm/node_modules/encoding/node_modules/iconv-lite/.npmignore /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/node-fetch-npm/node_modules/encoding/node_modules/iconv-lite/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-profile/node_modules/make-fetch-happen/node_modules/node-fetch-npm/node_modules/encoding/.travis.yml /usr/lib/node_modules/npm/node_modules/sorted-union-stream/.npmignore /usr/lib/node_modules/npm/node_modules/sorted-union-stream/node_modules/stream-iterate/.npmignore /usr/lib/node_modules/npm/node_modules/sorted-union-stream/node_modules/stream-iterate/node_modules/stream-shift/.npmignore /usr/lib/node_modules/npm/node_modules/sorted-union-stream/node_modules/stream-iterate/node_modules/stream-shift/.travis.yml /usr/lib/node_modules/npm/node_modules/sorted-union-stream/node_modules/stream-iterate/.travis.yml /usr/lib/node_modules/npm/node_modules/sorted-union-stream/node_modules/from2/node_modules/readable-stream/.npmignore /usr/lib/node_modules/npm/node_modules/sorted-union-stream/node_modules/from2/node_modules/readable-stream/node_modules/string_decoder/.npmignore /usr/lib/node_modules/npm/node_modules/sorted-union-stream/.travis.yml /usr/lib/node_modules/npm/node_modules/npm-packlist/node_modules/ignore-walk/node_modules/minimatch/node_modules/brace-expansion/node_modules/balanced-match/.npmignore /usr/lib/node_modules/npm/node_modules/npm-packlist/node_modules/ignore-walk/node_modules/minimatch/node_modules/brace-expansion/node_modules/concat-map/.travis.yml /usr/lib/node_modules/npm/node_modules/read-installed/.npmignore /usr/lib/node_modules/npm/node_modules/read-installed/.travis.yml /usr/lib/node_modules/npm/node_modules/uuid/.eslintrc.json /usr/lib/node_modules/npm/node_modules/cmd-shim/.npmignore /usr/lib/node_modules/npm/node_modules/cmd-shim/.travis.yml /usr/lib/node_modules/npm/node_modules/text-table/.travis.yml /usr/lib/node_modules/npm/node_modules/lockfile/.npmignore /usr/lib/node_modules/npm/node_modules/lockfile/.travis.yml /usr/lib/node_modules/npm/node_modules/worker-farm/node_modules/xtend/.npmignore /usr/lib/node_modules/npm/node_modules/worker-farm/node_modules/errno/.npmignore /usr/lib/node_modules/npm/node_modules/worker-farm/node_modules/errno/node_modules/prr/.npmignore /usr/lib/node_modules/npm/node_modules/worker-farm/node_modules/errno/node_modules/prr/.travis.yml /usr/lib/node_modules/npm/node_modules/worker-farm/.travis.yml /usr/lib/node_modules/npm/node_modules/retry/.npmignore /usr/lib/node_modules/npm/node_modules/columnify/node_modules/wcwidth/.npmignore /usr/lib/node_modules/npm/node_modules/columnify/node_modules/wcwidth/node_modules/defaults/.npmignore /usr/lib/node_modules/npm/node_modules/columnify/node_modules/wcwidth/node_modules/defaults/node_modules/clone/.npmignore /usr/lib/node_modules/npm/node_modules/columnify/node_modules/wcwidth/node_modules/defaults/node_modules/clone/.travis.yml /usr/lib/node_modules/npm/node_modules/unique-filename/.npmignore /usr/lib/node_modules/npm/node_modules/unique-filename/node_modules/unique-slug/.npmignore /usr/lib/node_modules/npm/node_modules/unique-filename/node_modules/unique-slug/.travis.yml /usr/lib/node_modules/npm/node_modules/which/node_modules/isexe/.npmignore /usr/lib/node_modules/npm/node_modules/meant/.npmignore /usr/lib/node_modules/npm/node_modules/meant/.travis.yml /usr/lib/node_modules/npm/node_modules/is-cidr/.npmignore /usr/lib/node_modules/npm/node_modules/is-cidr/node_modules/cidr-regex/.npmignore /usr/lib/node_modules/npm/node_modules/is-cidr/.travis.yml /usr/lib/node_modules/npm/node_modules/npmlog/node_modules/are-we-there-yet/node_modules/delegates/.npmignore /usr/lib/node_modules/npm/node_modules/mkdirp/node_modules/minimist/.travis.yml /usr/lib/node_modules/npm/node_modules/mkdirp/.travis.yml /usr/lib/node_modules/npm/node_modules/readdir-scoped-modules/.travis.yml /usr/lib/node_modules/npm/node_modules/validate-npm-package-name/.npmignore /usr/lib/node_modules/npm/node_modules/validate-npm-package-name/node_modules/builtins/.travis.yml /usr/lib/node_modules/npm/node_modules/validate-npm-package-name/.travis.yml /usr/lib/node_modules/npm/node_modules/config-chain/.npmignore /usr/lib/node_modules/npm/node_modules/npm-registry-client/node_modules/concat-stream/node_modules/typedarray/.travis.yml /usr/lib/node_modules/npm/node_modules/glob/node_modules/minimatch/node_modules/brace-expansion/node_modules/balanced-match/.npmignore /usr/lib/node_modules/npm/node_modules/glob/node_modules/minimatch/node_modules/brace-expansion/node_modules/concat-map/.travis.yml /usr/lib/node_modules/npm/node_modules/libnpx/node_modules/yargs/node_modules/require-main-filename/.npmignore /usr/lib/node_modules/npm/node_modules/libnpx/node_modules/yargs/node_modules/require-main-filename/.travis.yml /usr/lib/node_modules/npm/node_modules/libnpx/node_modules/yargs/node_modules/read-pkg-up/node_modules/read-pkg/node_modules/load-json-file/node_modules/parse-json/node_modules/error-ex/node_modules/is-arrayish/.editorconfig /usr/lib/node_modules/npm/node_modules/libnpx/node_modules/yargs/node_modules/read-pkg-up/node_modules/read-pkg/node_modules/load-json-file/node_modules/parse-json/node_modules/error-ex/node_modules/is-arrayish/.npmignore /usr/lib/node_modules/npm/node_modules/libnpx/node_modules/yargs/node_modules/read-pkg-up/node_modules/read-pkg/node_modules/load-json-file/node_modules/parse-json/node_modules/error-ex/node_modules/is-arrayish/.istanbul.yml /usr/lib/node_modules/npm/node_modules/libnpx/node_modules/yargs/node_modules/read-pkg-up/node_modules/read-pkg/node_modules/load-json-file/node_modules/parse-json/node_modules/error-ex/node_modules/is-arrayish/.travis.yml /usr/lib/node_modules/npm/node_modules/libnpx/node_modules/yargs/node_modules/require-directory/.npmignore /usr/lib/node_modules/npm/node_modules/libnpx/node_modules/yargs/node_modules/require-directory/.travis.yml /usr/lib/node_modules/npm/node_modules/read/node_modules/mute-stream/.travis.yml /usr/lib/node_modules/npm/node_modules/osenv/.npmignore /usr/lib/node_modules/npm/node_modules/osenv/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/promise-retry/.editorconfig /usr/lib/node_modules/npm/node_modules/pacote/node_modules/promise-retry/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/promise-retry/node_modules/err-code/.editorconfig /usr/lib/node_modules/npm/node_modules/pacote/node_modules/promise-retry/node_modules/err-code/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/promise-retry/node_modules/err-code/.eslintrc.json /usr/lib/node_modules/npm/node_modules/pacote/node_modules/promise-retry/node_modules/err-code/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/promise-retry/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/minimatch/node_modules/brace-expansion/node_modules/balanced-match/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/minimatch/node_modules/brace-expansion/node_modules/concat-map/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/https-proxy-agent/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/https-proxy-agent/node_modules/agent-base/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/https-proxy-agent/node_modules/debug/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/https-proxy-agent/node_modules/debug/.coveralls.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/https-proxy-agent/node_modules/debug/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/https-proxy-agent/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/http-proxy-agent/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/http-proxy-agent/node_modules/agent-base/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/http-proxy-agent/node_modules/debug/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/http-proxy-agent/node_modules/debug/.coveralls.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/http-proxy-agent/node_modules/debug/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/http-proxy-agent/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/agent-base/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/node_modules/smart-buffer/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/node_modules/smart-buffer/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/node_modules/ip/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/node_modules/ip/.jscsrc /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/node_modules/socks/node_modules/ip/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/socks-proxy-agent/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/node-fetch-npm/node_modules/encoding/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/node-fetch-npm/node_modules/encoding/node_modules/iconv-lite/.npmignore /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/node-fetch-npm/node_modules/encoding/node_modules/iconv-lite/.travis.yml /usr/lib/node_modules/npm/node_modules/pacote/node_modules/make-fetch-happen/node_modules/node-fetch-npm/node_modules/encoding/.travis.yml /usr/lib/node_modules/npm/node_modules/update-notifier/node_modules/chalk/node_modules/ansi-styles/node_modules/color-convert/node_modules/color-name/.npmignore /usr/lib/node_modules/npm/node_modules/update-notifier/node_modules/chalk/node_modules/ansi-styles/node_modules/color-convert/node_modules/color-name/.eslintrc.json /usr/lib/node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-auth-token/.npmignore /usr/lib/node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-auth-token/node_modules/rc/.npmignore /usr/lib/node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-auth-token/node_modules/rc/node_modules/minimist/.travis.yml /usr/lib/node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-url/node_modules/rc/.npmignore /usr/lib/node_modules/npm/node_modules/update-notifier/node_modules/latest-version/node_modules/package-json/node_modules/registry-url/node_modules/rc/node_modules/minimist/.travis.yml /usr/lib/node_modules/npm/node_modules/node-gyp/gyp/.npmignore /usr/lib/node_modules/npm/node_modules/node-gyp/.npmignore /usr/lib/node_modules/npm/node_modules/node-gyp/node_modules/nopt/.npmignore /usr/lib/node_modules/npm/node_modules/node-gyp/node_modules/nopt/.travis.yml /usr/lib/node_modules/npm/node_modules/node-gyp/node_modules/tar/.npmignore /usr/lib/node_modules/npm/node_modules/node-gyp/node_modules/tar/.travis.yml /usr/lib/node_modules/npm/node_modules/node-gyp/node_modules/minimatch/node_modules/brace-expansion/node_modules/balanced-match/.npmignore /usr/lib/node_modules/npm/node_modules/node-gyp/node_modules/minimatch/node_modules/brace-expansion/node_modules/concat-map/.travis.yml /usr/lib/node_modules/npm/node_modules/node-gyp/node_modules/fstream/.npmignore /usr/lib/node_modules/npm/node_modules/node-gyp/node_modules/fstream/.travis.yml /usr/lib/node_modules/npm/node_modules/node-gyp/.jshintrc /usr/lib/node_modules/npm/node_modules/mississippi/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/stream-each/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/stream-each/node_modules/stream-shift/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/stream-each/node_modules/stream-shift/.travis.yml /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/stream-each/.travis.yml /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/pumpify/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/pumpify/.travis.yml /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/duplexify/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/duplexify/node_modules/stream-shift/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/duplexify/node_modules/stream-shift/.travis.yml /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/duplexify/node_modules/end-of-stream/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/duplexify/.travis.yml /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/through2/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/through2/node_modules/xtend/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/pump/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/pump/.travis.yml /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/flush-write-stream/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/flush-write-stream/.travis.yml /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/concat-stream/node_modules/typedarray/.travis.yml /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/parallel-transform/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/parallel-transform/node_modules/cyclist/.npmignore /usr/lib/node_modules/npm/node_modules/mississippi/node_modules/from2/.travis.yml /usr/lib/node_modules/npm/node_modules/iferr/.npmignore /usr/lib/node_modules/npm/.travis.yml /usr/lib/node_modules/forever/.editorconfig /usr/lib/node_modules/forever/.npmignore /usr/lib/node_modules/forever/node_modules/string_decoder/.npmignore /usr/lib/node_modules/forever/node_modules/optimist/.travis.yml /usr/lib/node_modules/forever/node_modules/ps-tree/.npmignore /usr/lib/node_modules/forever/node_modules/nssocket/.npmignore /usr/lib/node_modules/forever/node_modules/nssocket/.travis.yml /usr/lib/node_modules/forever/node_modules/async-each/.npmignore /usr/lib/node_modules/forever/node_modules/defined/.travis.yml /usr/lib/node_modules/forever/node_modules/timespan/.npmignore /usr/lib/node_modules/forever/node_modules/balanced-match/.npmignore /usr/lib/node_modules/forever/node_modules/stack-trace/.npmignore /usr/lib/node_modules/forever/node_modules/broadway/.npmignore /usr/lib/node_modules/forever/node_modules/broadway/node_modules/cliff/.npmignore /usr/lib/node_modules/forever/node_modules/broadway/node_modules/winston/.npmignore /usr/lib/node_modules/forever/node_modules/broadway/node_modules/winston/test/fixtures/.gitkeep /usr/lib/node_modules/forever/node_modules/broadway/node_modules/winston/test/fixtures/logs/.gitkeep /usr/lib/node_modules/forever/node_modules/broadway/node_modules/winston/.travis.yml /usr/lib/node_modules/forever/node_modules/broadway/test/fixtures/empty-app/.gitkeep /usr/lib/node_modules/forever/node_modules/broadway/test/fixtures/.gitkeep /usr/lib/node_modules/forever/node_modules/broadway/.travis.yml /usr/lib/node_modules/forever/node_modules/resumer/.travis.yml /usr/lib/node_modules/forever/node_modules/process-nextick-args/.travis.yml /usr/lib/node_modules/forever/node_modules/prompt/.npmignore /usr/lib/node_modules/forever/node_modules/prompt/.travis.yml /usr/lib/node_modules/forever/node_modules/prompt/.jshintrc /usr/lib/node_modules/forever/node_modules/glob-parent/.npmignore /usr/lib/node_modules/forever/node_modules/glob-parent/.travis.yml /usr/lib/node_modules/forever/node_modules/tape/.npmignore /usr/lib/node_modules/forever/node_modules/tape/node_modules/deep-equal/.travis.yml /usr/lib/node_modules/forever/node_modules/tape/.travis.yml /usr/lib/node_modules/forever/node_modules/safe-buffer/.travis.yml /usr/lib/node_modules/forever/node_modules/minimist/.travis.yml /usr/lib/node_modules/forever/node_modules/readable-stream/.npmignore /usr/lib/node_modules/forever/node_modules/readable-stream/.travis.yml /usr/lib/node_modules/forever/node_modules/clone/.npmignore /usr/lib/node_modules/forever/node_modules/deep-equal/.travis.yml /usr/lib/node_modules/forever/node_modules/lazy/.npmignore /usr/lib/node_modules/forever/node_modules/cliff/.npmignore /usr/lib/node_modules/forever/node_modules/cliff/node_modules/colors/.travis.yml /usr/lib/node_modules/forever/node_modules/caller/.npmignore /usr/lib/node_modules/forever/node_modules/preserve/.npmignore /usr/lib/node_modules/forever/node_modules/preserve/.gitattributes /usr/lib/node_modules/forever/node_modules/preserve/.verb.md /usr/lib/node_modules/forever/node_modules/preserve/.travis.yml /usr/lib/node_modules/forever/node_modules/preserve/.jshintrc /usr/lib/node_modules/forever/node_modules/shush/.npmignore /usr/lib/node_modules/forever/node_modules/shush/.travis.yml /usr/lib/node_modules/forever/node_modules/pkginfo/.npmignore /usr/lib/node_modules/forever/node_modules/utile/.npmignore /usr/lib/node_modules/forever/node_modules/utile/.travis.yml /usr/lib/node_modules/forever/node_modules/event-stream/.gitmodules /usr/lib/node_modules/forever/node_modules/event-stream/.npmignore /usr/lib/node_modules/forever/node_modules/event-stream/node_modules/optimist/.gitignore /usr/lib/node_modules/forever/node_modules/event-stream/node_modules/optimist/.npmignore /usr/lib/node_modules/forever/node_modules/event-stream/test/.npmignore /usr/lib/node_modules/forever/node_modules/isstream/.npmignore /usr/lib/node_modules/forever/node_modules/isstream/.travis.yml /usr/lib/node_modules/forever/node_modules/isstream/.jshintrc /usr/lib/node_modules/forever/node_modules/nconf/.npmignore /usr/lib/node_modules/forever/node_modules/nconf/node_modules/optimist/.travis.yml /usr/lib/node_modules/forever/node_modules/nconf/.travis.yml /usr/lib/node_modules/forever/node_modules/isarray/.npmignore /usr/lib/node_modules/forever/node_modules/isarray/.travis.yml /usr/lib/node_modules/forever/node_modules/winston/.npmignore /usr/lib/node_modules/forever/node_modules/winston/test/fixtures/.gitkeep /usr/lib/node_modules/forever/node_modules/winston/test/fixtures/logs/.gitkeep /usr/lib/node_modules/forever/node_modules/winston/.travis.yml /usr/lib/node_modules/forever/node_modules/winston/.jshintrc /usr/lib/node_modules/forever/node_modules/concat-map/.travis.yml /usr/lib/node_modules/forever/node_modules/director/.npmignore /usr/lib/node_modules/forever/node_modules/director/.travis.yml /usr/lib/node_modules/forever/node_modules/mkdirp/node_modules/minimist/.travis.yml /usr/lib/node_modules/forever/node_modules/mkdirp/.travis.yml /usr/lib/node_modules/forever/node_modules/ncp/.npmignore /usr/lib/node_modules/forever/node_modules/ncp/.travis.yml /usr/lib/node_modules/forever/node_modules/forever-monitor/.npmignore /usr/lib/node_modules/forever/node_modules/forever-monitor/test/fixtures/watch/.foreverignore /usr/lib/node_modules/forever/node_modules/forever-monitor/.travis.yml /usr/lib/node_modules/forever/node_modules/i/.npmignore /usr/lib/node_modules/forever/node_modules/i/.travis.yml /usr/lib/node_modules/forever/node_modules/.bin /usr/lib/node_modules/forever/node_modules/mute-stream/.travis.yml /usr/lib/node_modules/forever/node_modules/mute-stream/.nyc_output /usr/lib/node_modules/forever/node_modules/through/.travis.yml /usr/lib/node_modules/forever/node_modules/prettyjson/.npmignore /usr/lib/node_modules/forever/node_modules/prettyjson/node_modules/minimist/.travis.yml /usr/lib/node_modules/forever/node_modules/prettyjson/.travis.yml /usr/lib/node_modules/forever/node_modules/prettyjson/.jshintrc /usr/lib/node_modules/forever/node_modules/flatiron/.npmignore /usr/lib/node_modules/forever/node_modules/flatiron/node_modules/optimist/.travis.yml /usr/lib/node_modules/forever/node_modules/flatiron/.travis.yml /usr/lib/node_modules/forever/node_modules/readdirp/.npmignore /usr/lib/node_modules/forever/node_modules/readdirp/.travis.yml /usr/lib/node_modules/forever/node_modules/revalidator/.npmignore /usr/lib/node_modules/forever/node_modules/revalidator/.travis.yml /usr/lib/node_modules/forever/.travis.yml /usr/lib/node_modules/forever/.jshintrc /usr/lib/node_modules/nodemon/.github /usr/lib/node_modules/nodemon/.jscsrc /usr/lib/node_modules/nodemon/node_modules/string_decoder/.npmignore /usr/lib/node_modules/nodemon/node_modules/ps-tree/.appveyor.yml /usr/lib/node_modules/nodemon/node_modules/ps-tree/.npmignore /usr/lib/node_modules/nodemon/node_modules/ps-tree/.travis.yml /usr/lib/node_modules/nodemon/node_modules/async-each/.npmignore /usr/lib/node_modules/nodemon/node_modules/balanced-match/.npmignore /usr/lib/node_modules/nodemon/node_modules/pause-stream/.npmignore /usr/lib/node_modules/nodemon/node_modules/process-nextick-args/.travis.yml /usr/lib/node_modules/nodemon/node_modules/glob-parent/.npmignore /usr/lib/node_modules/nodemon/node_modules/glob-parent/.travis.yml /usr/lib/node_modules/nodemon/node_modules/split/.npmignore /usr/lib/node_modules/nodemon/node_modules/split/.travis.yml /usr/lib/node_modules/nodemon/node_modules/safe-buffer/.travis.yml /usr/lib/node_modules/nodemon/node_modules/minimist/.travis.yml /usr/lib/node_modules/nodemon/node_modules/nopt/.npmignore /usr/lib/node_modules/nodemon/node_modules/readable-stream/.npmignore /usr/lib/node_modules/nodemon/node_modules/readable-stream/.travis.yml /usr/lib/node_modules/nodemon/node_modules/rc/.npmignore /usr/lib/node_modules/nodemon/node_modules/preserve/.npmignore /usr/lib/node_modules/nodemon/node_modules/preserve/.gitattributes /usr/lib/node_modules/nodemon/node_modules/preserve/.verb.md /usr/lib/node_modules/nodemon/node_modules/preserve/.travis.yml /usr/lib/node_modules/nodemon/node_modules/preserve/.jshintrc /usr/lib/node_modules/nodemon/node_modules/pstree.remy/.travis.yml /usr/lib/node_modules/nodemon/node_modules/event-stream/.npmignore /usr/lib/node_modules/nodemon/node_modules/event-stream/.travis.yml /usr/lib/node_modules/nodemon/node_modules/registry-auth-token/.npmignore /usr/lib/node_modules/nodemon/node_modules/isexe/.npmignore /usr/lib/node_modules/nodemon/node_modules/map-stream/.npmignore /usr/lib/node_modules/nodemon/node_modules/map-stream/.travis.yml /usr/lib/node_modules/nodemon/node_modules/isarray/.npmignore /usr/lib/node_modules/nodemon/node_modules/isarray/.travis.yml /usr/lib/node_modules/nodemon/node_modules/concat-map/.travis.yml /usr/lib/node_modules/nodemon/node_modules/stream-combiner/.npmignore /usr/lib/node_modules/nodemon/node_modules/stream-combiner/.travis.yml /usr/lib/node_modules/nodemon/node_modules/from/.npmignore /usr/lib/node_modules/nodemon/node_modules/from/.travis.yml /usr/lib/node_modules/nodemon/node_modules/undefsafe/.npmignore /usr/lib/node_modules/nodemon/node_modules/undefsafe/.travis.yml /usr/lib/node_modules/nodemon/node_modules/debug/.eslintrc /usr/lib/node_modules/nodemon/node_modules/debug/.npmignore /usr/lib/node_modules/nodemon/node_modules/debug/.coveralls.yml /usr/lib/node_modules/nodemon/node_modules/debug/.travis.yml /usr/lib/node_modules/nodemon/node_modules/duplexer/.npmignore /usr/lib/node_modules/nodemon/node_modules/duplexer/.travis.yml /usr/lib/node_modules/nodemon/node_modules/.bin /usr/lib/node_modules/nodemon/node_modules/color-name/.npmignore /usr/lib/node_modules/nodemon/node_modules/color-name/.eslintrc.json /usr/lib/node_modules/nodemon/node_modules/through/.travis.yml /usr/lib/node_modules/nodemon/node_modules/readdirp/.npmignore /usr/lib/node_modules/nodemon/node_modules/readdirp/.travis.yml /usr/lib/node_modules/nodemon/.travis.yml /usr/lib/node_modules/nodemon/.jshintrc /lib/modules/4.4.0-121-generic/vdso/.build-id /lib/modules/4.4.0-127-generic/vdso/.build-id /lib/modules/4.4.0-137-generic/vdso/.build-id /lib/modules/4.4.0-128-generic/vdso/.build-id /lib/modules/4.4.0-109-generic/vdso/.build-id /lib/modules/4.4.0-116-generic/vdso/.build-id /lib/modules/4.4.0-119-generic/vdso/.build-id /lib/modules/4.4.0-104-generic/vdso/.build-id /lib/modules/4.4.0-133-generic/vdso/.build-id /lib/modules/4.4.0-124-generic/vdso/.build-id /lib/modules/4.4.0-108-generic/vdso/.build-id /lib/modules/4.4.0-134-generic/vdso/.build-id /lib/modules/4.4.0-103-generic/vdso/.build-id /lib/modules/4.4.0-112-generic/vdso/.build-id /lib/modules/4.4.0-130-generic/vdso/.build-id
- /usr/lib/node_modules/npm/.github /usr/lib/node_modules/forever/node_modules/.bin /usr/lib/node_modules/forever/node_modules/mute-stream/.nyc_output /usr/lib/node_modules/nodemon/.github /usr/lib/node_modules/nodemon/node_modules/.bin /lib/modules/4.4.0-121-generic/vdso/.build-id /lib/modules/4.4.0-127-generic/vdso/.build-id /lib/modules/4.4.0-137-generic/vdso/.build-id /lib/modules/4.4.0-128-generic/vdso/.build-id /lib/modules/4.4.0-109-generic/vdso/.build-id /lib/modules/4.4.0-116-generic/vdso/.build-id /lib/modules/4.4.0-119-generic/vdso/.build-id /lib/modules/4.4.0-104-generic/vdso/.build-id /lib/modules/4.4.0-133-generic/vdso/.build-id /lib/modules/4.4.0-124-generic/vdso/.build-id /lib/modules/4.4.0-108-generic/vdso/.build-id /lib/modules/4.4.0-134-generic/vdso/.build-id /lib/modules/4.4.0-103-generic/vdso/.build-id /lib/modules/4.4.0-112-generic/vdso/.build-id /lib/modules/4.4.0-130-generic/vdso/.build-id
- Searching for LPD Worm files and dirs... nothing found
- Searching for Ramen Worm files and dirs... nothing found
- Searching for Maniac files and dirs... nothing found
- Searching for RK17 files and dirs... nothing found
- Searching for Ducoci rootkit... nothing found
- Searching for Adore Worm... nothing found
- Searching for ShitC Worm... nothing found
- Searching for Omega Worm... nothing found
- Searching for Sadmind/IIS Worm... nothing found
- Searching for MonKit... nothing found
- Searching for Showtee... nothing found
- Searching for OpticKit... nothing found
- Searching for T.R.K... nothing found
- Searching for Mithra... nothing found
- Searching for LOC rootkit... nothing found
- Searching for Romanian rootkit... nothing found
- Searching for Suckit rootkit... nothing found
- Searching for Volc rootkit... nothing found
- Searching for Gold2 rootkit... nothing found
- Searching for TC2 Worm default files and dirs... nothing found
- Searching for Anonoying rootkit default files and dirs... nothing found
- Searching for ZK rootkit default files and dirs... nothing found
- Searching for ShKit rootkit default files and dirs... nothing found
- Searching for AjaKit rootkit default files and dirs... nothing found
- Searching for zaRwT rootkit default files and dirs... nothing found
- Searching for Madalin rootkit default files... nothing found
- Searching for Fu rootkit default files... nothing found
- Searching for ESRK rootkit default files... nothing found
- Searching for rootedoor... nothing found
- Searching for ENYELKM rootkit default files... nothing found
- Searching for common ssh-scanners default files... nothing found
- Searching for Linux/Ebury - Operation Windigo ssh... Possible Linux/Ebury - Operation Windigo installetd
- Searching for 64-bit Linux Rootkit ... nothing found
- Searching for 64-bit Linux Rootkit modules... nothing found
- Searching for suspect PHP files... nothing found
- Searching for anomalies in shell history files... nothing found
- Checking `asp'... not infected
- Checking `bindshell'... not infected
- Checking `lkm'... chkproc: nothing detected
- chkdirs: nothing detected
- Checking `rexedcs'... not found
- Checking `sniffer'... lo: not promisc and no packet sniffer sockets
- eth0: not promisc and no packet sniffer sockets
- eth0: not promisc and no packet sniffer sockets
- Checking `w55808'... not infected
- Checking `wted'... chkwtmp: nothing deleted
- Checking `scalper'... not infected
- Checking `slapper'... not infected
- Checking `z2'... chklastlog: nothing deleted
- Checking `chkutmp'... chkutmp: nothing deleted
- Checking `OSX_RSPLUG'... not infected
- root@node8-new-21:/var/log# ifconfig
- eth0 Link encap:Ethernet HWaddr ce:4f:e2:7f:f5:ed
- inet addr:165.227.222.101 Bcast:165.227.223.255 Mask:255.255.240.0
- inet6 addr: fe80::cc4f:e2ff:fe7f:f5ed/64 Scope:Link
- UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
- RX packets:314002395 errors:0 dropped:0 overruns:0 frame:0
- TX packets:263839775 errors:0 dropped:0 overruns:0 carrier:0
- collisions:0 txqueuelen:1000
- RX bytes:377528674404 (377.5 GB) TX bytes:56676789792 (56.6 GB)
- lo Link encap:Local Loopback
- inet addr:127.0.0.1 Mask:255.0.0.0
- inet6 addr: ::1/128 Scope:Host
- UP LOOPBACK RUNNING MTU:65536 Metric:1
- RX packets:582 errors:0 dropped:0 overruns:0 frame:0
- TX packets:582 errors:0 dropped:0 overruns:0 carrier:0
- collisions:0 txqueuelen:1
- RX bytes:51068 (51.0 KB) TX bytes:51068 (51.0 KB)
- root@node8-new-21:/var/log# mv lynis-report.dat /var/log/165_227_222_101.dat
- root@node8-new-21:/var/log# chmod 777 165_227_222_101.dat
- root@node8-new-21:/var/log# ftp 45.76.145.249
- Connected to 45.76.145.249.
- 220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------
- 220-You are user number 4 of 50 allowed.
- 220-Local time is now 12:40. Server port: 21.
- 220-This is a private system - No anonymous login
- 220-IPv6 connections are also welcome on this server.
- 220 You will be disconnected after 15 minutes of inactivity.
- Name (45.76.145.249:root): ftpman
- 331 User ftpman OK. Password required
- Password:
- 230 OK. Current directory is /var/www
- Remote system type is UNIX.
- Using binary mode to transfer files.
- ftp> put 165_227_222_101.dat
- local: 165_227_222_101.dat remote: 165_227_222_101.dat
- 200 PORT command successful
- 150 Connecting to port 46820
- 226-File successfully transferred
- 226 0.550 seconds (measured here), 60.77 Kbytes per second
- 34225 bytes sent in 0.00 secs (299.4450 MB/s)
- ftp> exit
- 221-Goodbye. You uploaded 34 and downloaded 0 kbytes.
- 221 Logout.
- root@node8-new-21:/var/log#
- root@node8-new-21:/var/log#
- root@node8-new-21:/var/log#
- root@node8-new-21:/var/log#
- root@node8-new-21:/var/log#
Add Comment
Please, Sign In to add comment