System/Kernel
bash-4.2$ uname -a ; cat /etc/*release
Linux megavolt 3.10.0-1062.el7.x86_64 #1 SMP Wed Aug 7 18:08:02 UTC 2019 x86_64 x86_64 x86_64 GNU/Linux
CentOS Linux release 7.7.1908 (Core)
NAME="CentOS Linux"
VERSION="7 (Core)"
ID="centos"
ID_LIKE="rhel fedora"
VERSION_ID="7"
PRETTY_NAME="CentOS Linux 7 (Core)"
ANSI_COLOR="0;31"
CPE_NAME="cpe:/o:centos:centos:7"
HOME_URL="https://www.centos.org/"
BUG_REPORT_URL="https://bugs.centos.org/"
CENTOS_MANTISBT_PROJECT="CentOS-7"
CENTOS_MANTISBT_PROJECT_VERSION="7"
REDHAT_SUPPORT_PRODUCT="centos"
REDHAT_SUPPORT_PRODUCT_VERSION="7"
CentOS Linux release 7.7.1908 (Core)
CentOS Linux release 7.7.1908 (Core)3.10.0-1062.el7.x86_64x86_64CentOS Linux 7 (Core)
Networks
bash-4.2$ ip route ; arp -a
default via 192.168.177.254 dev ens160
169.254.0.0/16 dev ens160 scope link metric 1003
192.168.177.0/24 dev ens160 proto kernel scope link src 192.168.177.115
gateway (192.168.177.254) at 00:50:56:9e:65:67 [ether] on ens160bash-4.2$ netstat -antup4
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 127.0.0.1:25 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:4444 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:3306 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:2828 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:80 127.0.0.1:54366 SYN_RECV -
tcp 0 0 127.0.0.1:80 127.0.0.1:54368 SYN_RECV -
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.1:56228 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55878 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56146 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55998 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55966 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56102 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56062 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55974 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56200 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56202 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55880 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56002 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55946 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55944 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55934 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55886 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56188 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56056 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56122 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55952 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55862 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56104 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55994 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55972 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56222 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56174 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54168 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:56060 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56118 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56162 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55932 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56108 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55962 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56080 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56144 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56168 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56160 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55928 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55850 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56010 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56066 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55924 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56240 127.0.0.1:4444 ESTABLISHED -
tcp 0 0 127.0.0.1:56204 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55978 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56230 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56138 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56006 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55870 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55906 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56226 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56026 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54004 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:55858 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55908 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56184 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55860 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55904 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56024 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55948 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54170 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:56172 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56190 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56074 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54200 127.0.0.1:80 TIME_WAIT -
tcp 0 0 192.168.177.115:49840 192.168.45.192:80 ESTABLISHED 3294/bash
tcp 0 0 127.0.0.1:55912 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56206 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56004 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56218 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54204 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:56164 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56170 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56142 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55968 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54370 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:54174 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:55868 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54072 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:56140 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54068 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:55990 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55996 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55866 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56182 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55888 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55902 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56194 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55900 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55848 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56130 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56096 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56064 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56186 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55986 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56158 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55964 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56198 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55882 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54172 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:56106 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56044 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54368 127.0.0.1:80 ESTABLISHED -
tcp 0 0 127.0.0.1:56098 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55942 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55950 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54366 127.0.0.1:80 ESTABLISHED -
tcp 0 0 127.0.0.1:56046 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:2828 127.0.0.1:51552 ESTABLISHED -
tcp 0 0 127.0.0.1:55988 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56094 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55914 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56148 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55898 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56030 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56192 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56008 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56078 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55922 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56126 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56022 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:4444 127.0.0.1:56240 ESTABLISHED -
tcp 0 0 127.0.0.1:55992 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55970 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55930 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56028 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56076 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55926 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54268 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:55976 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56032 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54264 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:56054 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56220 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56082 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55910 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54114 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:56208 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56128 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54364 127.0.0.1:80 ESTABLISHED -
tcp 0 0 127.0.0.1:56034 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:51552 127.0.0.1:2828 ESTABLISHED -
tcp 0 0 127.0.0.1:56012 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54310 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:56124 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56224 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56166 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56084 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:54008 127.0.0.1:80 TIME_WAIT -
tcp 0 0 127.0.0.1:56120 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56058 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56110 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55884 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:55864 127.0.0.1:4444 TIME_WAIT -
tcp 0 0 127.0.0.1:56100 127.0.0.1:4444 TIME_WAIT -
udp 0 0 192.168.177.115:44900 217.114.59.3:123 ESTABLISHED -
udp 0 0 192.168.177.115:49327 162.159.200.123:123 ESTABLISHED -
udp 0 0 192.168.177.115:55548 77.74.199.184:123 ESTABLISHED -
udp 0 0 127.0.0.1:323 0.0.0.0:* -
udp 0 0 192.168.177.115:56078 51.89.151.183:123 ESTABLISHED - 127.0.0.1:25127.0.0.1:44440.0.0.0:3306127.0.0.1:2828
Users & Groups
bash-4.2$ cat /etc/passwd ; ll /home
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
operator:x:11:0:operator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
systemd-network:x:192:192:systemd Network Management:/:/sbin/nologin
dbus:x:81:81:System message bus:/:/sbin/nologin
polkitd:x:999:998:User for polkitd:/:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
postfix:x:89:89::/var/spool/postfix:/sbin/nologin
chrony:x:998:996::/var/lib/chrony:/sbin/nologin
tss:x:59:59:Account used by the trousers package to sandbox the tcsd daemon:/dev/null:/sbin/nologin
mysql:x:27:27:MariaDB Server:/var/lib/mysql:/sbin/nologin
apache:x:48:48:Apache:/usr/share/httpd:/sbin/nologin
alfred:x:1000:1000::/home/alfred:/bin/bash
total 0
0 drwxr-xr-x. 5 alfred alfred 145 Oct 6 2020 alfred
0 dr-xr-xr-x. 17 root root 244 Oct 6 2020 ..
0 drwxr-xr-x. 3 root root 20 Oct 6 2020 .alfred
bash-4.2$ cut -d: -f1 /etc/passwd | xargs -n1 id
uid=0(root) gid=0(root) groups=0(root)
uid=1(bin) gid=1(bin) groups=1(bin)
uid=2(daemon) gid=2(daemon) groups=2(daemon)
uid=3(adm) gid=4(adm) groups=4(adm)
uid=4(lp) gid=7(lp) groups=7(lp)
uid=5(sync) gid=0(root) groups=0(root)
uid=6(shutdown) gid=0(root) groups=0(root)
uid=7(halt) gid=0(root) groups=0(root)
uid=8(mail) gid=12(mail) groups=12(mail)
uid=11(operator) gid=0(root) groups=0(root)
uid=12(games) gid=100(users) groups=100(users)
uid=14(ftp) gid=50(ftp) groups=50(ftp)
uid=99(nobody) gid=99(nobody) groups=99(nobody)
uid=192(systemd-network) gid=192(systemd-network) groups=192(systemd-network)
uid=81(dbus) gid=81(dbus) groups=81(dbus)
uid=999(polkitd) gid=998(polkitd) groups=998(polkitd)
uid=74(sshd) gid=74(sshd) groups=74(sshd)
uid=89(postfix) gid=89(postfix) groups=89(postfix),12(mail)
uid=998(chrony) gid=996(chrony) groups=996(chrony)
uid=59(tss) gid=59(tss) groups=59(tss)
uid=27(mysql) gid=27(mysql) groups=27(mysql)
uid=48(apache) gid=48(apache) groups=48(apache)
uid=1000(alfred) gid=1000(alfred) groups=1000(alfred)uid=1000(alfred) gid=1000(alfred) groups=1000(alfred)
SUIDs
bash-4.2$ find / -perm -04000 -ls -type f 2>/dev/null
25615441 76 -rwsr-xr-x 1 root root 73888 Aug 8 2019 /usr/bin/chage
25615442 80 -rwsr-xr-x 1 root root 78408 Aug 8 2019 /usr/bin/gpasswd
25672719 24 -rws--x--x 1 root root 23968 Aug 8 2019 /usr/bin/chfn
25672722 24 -rws--x--x 1 root root 23880 Aug 8 2019 /usr/bin/chsh
25615445 44 -rwsr-xr-x 1 root root 41936 Aug 8 2019 /usr/bin/newgrp
25672770 32 -rwsr-xr-x 1 root root 32128 Aug 8 2019 /usr/bin/su
26331973 144 ---s--x--x 1 root root 147336 Apr 1 2020 /usr/bin/sudo
25672755 44 -rwsr-xr-x 1 root root 44264 Aug 8 2019 /usr/bin/mount
25672774 32 -rwsr-xr-x 1 root root 31984 Aug 8 2019 /usr/bin/umount
25725093 60 -rwsr-xr-x 1 root root 57656 Aug 8 2019 /usr/bin/crontab
25724852 24 -rwsr-xr-x 1 root root 23576 Aug 8 2019 /usr/bin/pkexec
25831372 28 -rwsr-xr-x 1 root root 27856 Aug 8 2019 /usr/bin/passwd
25984385 32 -rwsr-xr-x 1 root root 32096 Oct 30 2018 /usr/bin/fusermount
295662 36 -rwsr-xr-x 1 root root 36280 Apr 10 2018 /usr/sbin/unix_chkpwd
295660 12 -rwsr-xr-x 1 root root 11216 Apr 10 2018 /usr/sbin/pam_timestamp_check
412162 12 -rwsr-xr-x 1 root root 11296 Aug 8 2019 /usr/sbin/usernetctl
8703833 16 -rwsr-xr-x 1 root root 15432 Aug 8 2019 /usr/lib/polkit-1/polkit-agent-helper-1
8703831 60 -rwsr-x--- 1 root dbus 58024 Mar 14 2019 /usr/libexec/dbus-1/dbus-daemon-launch-helperSGIDs
bash-4.2$ find / -perm -02000 -ls -type f 2>/dev/null
7717 0 drwxr-sr-x 3 root systemd-journal 60 Aug 2 2024 /run/log/journal
7718 0 drwxr-s--- 2 root systemd-journal 80 Mar 12 17:08 /run/log/journal/a9588f7c4b1146b680f0d220a644031d
25187174 16 -r-xr-sr-x 1 root tty 15344 Jun 9 2014 /usr/bin/wall
25672780 20 -rwxr-sr-x 1 root tty 19544 Aug 8 2019 /usr/bin/write
25806889 376 ---x--s--x 1 root nobody 382216 Aug 8 2019 /usr/bin/ssh-agent
412157 12 -rwxr-sr-x 1 root root 11224 Aug 8 2019 /usr/sbin/netreport
468585 216 -rwxr-sr-x 1 root postdrop 218632 Oct 30 2018 /usr/sbin/postdrop
468592 256 -rwxr-sr-x 1 root postdrop 260112 Oct 30 2018 /usr/sbin/postqueue
17078489 12 -rwx--s--x 1 root utmp 11192 Jun 9 2014 /usr/libexec/utempter/utempter
8704256 456 ---x--s--x 1 root ssh_keys 465760 Aug 8 2019 /usr/libexec/openssh/ssh-keysignCapabilities
bash-4.2$ getcap -r / 2>/dev/null
/usr/bin/newgidmap = cap_setgid+ep
/usr/bin/newuidmap = cap_setuid+ep
/usr/bin/ping = cap_net_admin,cap_net_raw+p
/usr/sbin/arping = cap_net_raw+p
/usr/sbin/clockdiff = cap_net_raw+p
/usr/sbin/suexec = cap_setgid,cap_setuid+epProcesses
bash-4.2$ ps -auxwww
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.2 125316 3840 ? Ss 17:06 0:00 /usr/lib/systemd/systemd --switched-root --system --deserialize 22
root 595 0.0 0.2 39084 3992 ? Ss 17:06 0:00 /usr/lib/systemd/systemd-journald
root 614 0.0 0.0 124836 1320 ? Ss 17:06 0:00 /usr/sbin/lvmetad -f
root 616 0.0 0.1 44976 2024 ? Ss 17:06 0:00 /usr/lib/systemd/systemd-udevd
root 758 0.0 0.0 55528 892 ? S<sl 17:06 0:00 /sbin/auditd
polkitd 780 0.0 0.6 612244 12132 ? Ssl 17:06 0:00 /usr/lib/polkit-1/polkitd --no-debug
root 783 0.0 0.3 99684 6184 ? Ss 17:06 0:00 /usr/bin/VGAuthService -s
root 787 0.0 0.3 314352 7288 ? Ssl 17:06 0:01 /usr/bin/vmtoolsd
root 788 0.0 0.0 24256 1592 ? Ss 17:06 0:00 /usr/lib/systemd/systemd-logind
dbus 789 0.0 0.1 58236 2436 ? Ss 17:06 0:00 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation
chrony 797 0.0 0.1 120404 2016 ? S 17:06 0:00 /usr/sbin/chronyd
root 800 0.0 0.0 126288 1556 ? Ss 17:06 0:00 /usr/sbin/crond -n
root 814 0.0 0.0 110108 848 tty1 Ss+ 17:06 0:00 /sbin/agetty --noclear tty1 linux
root 834 0.0 0.4 550184 8880 ? Ssl 17:06 0:00 /usr/sbin/NetworkManager --no-daemon
root 1064 0.0 1.2 651088 23352 ? Ss 17:07 0:00 /usr/sbin/httpd -DFOREGROUND
root 1065 0.0 0.2 112920 4300 ? Ss 17:07 0:00 /usr/sbin/sshd -D
root 1066 0.0 1.0 574200 19480 ? Ssl 17:07 0:00 /usr/bin/python2 -Es /usr/sbin/tuned -l -P
root 1070 0.0 0.2 226740 5224 ? Ssl 17:07 0:00 /usr/sbin/rsyslogd -n
mysql 1152 0.0 0.0 113316 1600 ? Ss 17:07 0:00 /bin/sh /usr/bin/mysqld_safe --basedir=/usr
apache 1281 0.1 1.6 759664 31244 ? S 17:07 0:02 /usr/sbin/httpd -DFOREGROUND
apache 1282 0.0 1.5 759652 29700 ? S 17:07 0:02 /usr/sbin/httpd -DFOREGROUND
mysql 1451 0.4 6.0 1102412 114040 ? Sl 17:07 0:12 /usr/libexec/mysqld --basedir=/usr --datadir=/var/lib/mysql --plugin-dir=/usr/lib64/mysql/plugin --log-error=/var/log/mariadb/mariadb.log --pid-file=/var/run/mariadb/mariadb.pid --socket=/var/lib/mysql/mysql.sock
root 1508 0.0 0.1 89700 2172 ? Ss 17:07 0:00 /usr/libexec/postfix/master -w
postfix 1515 0.0 0.2 89980 4292 ? S 17:07 0:00 qmgr -l -t unix -u
alfred 1772 0.0 0.7 194116 13332 ? Ss 17:07 0:02 /home/alfred/.surfer/env/bin/python /home/alfred/.surfer/main.py
alfred 1773 2.6 29.4 3160500 553428 ? Sl 17:07 1:08 /bin/firefox --profile /home/alfred/.surfer-profile --headless --marionette
alfred 1774 0.0 0.0 8064 1552 ? Sl 17:07 0:01 /bin/geckodriver --connect-existing --marionette-port 2828
alfred 1841 6.3 7.4 2974892 140220 ? Sl 17:07 2:45 /usr/local/firefox/firefox-bin -contentproc -childID 1 -isForBrowser -prefsLen 1 -prefMapSize 225966 -parentBuildID 20200917005511 -appdir /usr/local/firefox/browser 1773 true tab
alfred 1914 0.0 2.7 2651132 52016 ? Sl 17:07 0:00 /usr/local/firefox/firefox-bin -contentproc -childID 2 -isForBrowser -prefsLen 6427 -prefMapSize 225966 -parentBuildID 20200917005511 -appdir /usr/local/firefox/browser 1773 true tab
alfred 1980 0.0 1.8 2631740 34464 ? Sl 17:07 0:00 /usr/local/firefox/firefox-bin -contentproc -childID 3 -isForBrowser -prefsLen 7803 -prefMapSize 225966 -parentBuildID 20200917005511 -appdir /usr/local/firefox/browser 1773 true tab
apache 2008 0.1 1.5 759648 29572 ? S 17:07 0:03 /usr/sbin/httpd -DFOREGROUND
apache 2011 0.0 1.7 763612 32556 ? S 17:07 0:02 /usr/sbin/httpd -DFOREGROUND
apache 2012 2.0 1.5 759520 29044 ? R 17:07 0:54 /usr/sbin/httpd -DFOREGROUND
apache 2028 0.0 1.5 759516 28380 ? S 17:07 0:02 /usr/sbin/httpd -DFOREGROUND
apache 2029 0.1 1.5 759520 29400 ? S 17:07 0:02 /usr/sbin/httpd -DFOREGROUND
apache 2030 22.4 1.5 759652 29700 ? S 17:07 9:40 /usr/sbin/httpd -DFOREGROUND
apache 2031 0.1 1.7 763612 32608 ? S 17:07 0:02 /usr/sbin/httpd -DFOREGROUND
apache 2425 0.1 1.5 759516 29100 ? S 17:10 0:02 /usr/sbin/httpd -DFOREGROUND
apache 3294 0.0 0.0 0 0 ? Z 17:31 0:00 [bash] <defunct>
postfix 3724 0.0 0.2 89804 4040 ? S 17:36 0:00 pickup -l -t unix -u
apache 5215 0.0 0.0 11688 1128 ? S 17:49 0:00 bash
apache 5245 0.0 0.3 131328 5840 ? S 17:50 0:00 python3 -c import pty; pty.spawn("/bin/bash")
apache 5246 0.0 0.0 11824 1744 pts/0 Ss 17:50 0:00 /bin/bash
apache 5308 0.0 0.0 51752 1724 pts/0 R+ 17:50 0:00 ps -auxwwwpolkitd 780 0.0 0.6 612244 12132 ? Ssl 17:06 0:00 /usr/lib/polkit-1/polkitd --no-debugroot 800 0.0 0.0 126288 1556 ? Ss 17:06 0:00 /usr/sbin/crond -nmysql 1152 0.0 0.0 113316 1600 ? Ss 17:07 0:00 /bin/sh /usr/bin/mysqld_safe --basedir=/usrmysql 1451 0.4 6.0 1102412 114040 ? Sl 17:07 0:12 /usr/libexec/mysqld --basedir=/usr --datadir=/var/lib/mysql --plugin-dir=/usr/lib64/mysql/plugin --log-error=/var/log/mariadb/mariadb.log --pid-file=/var/run/mariadb/mariadb.pid --socket=/var/lib/mysql/mysql.sockroot 1508 0.0 0.1 89700 2172 ? Ss 17:07 0:00 /usr/libexec/postfix/master -wpostfix 1515 0.0 0.2 89980 4292 ? S 17:07 0:00 qmgr -l -t unix -ualfred 1772 0.0 0.7 194116 13332 ? Ss 17:07 0:02 /home/alfred/.surfer/env/bin/python /home/alfred/.surfer/main.pyalfred 1773 2.6 29.4 3160500 553428 ? Sl 17:07 1:08 /bin/firefox --profile /home/alfred/.surfer-profile --headless --marionettealfred 1774 0.0 0.0 8064 1552 ? Sl 17:07 0:01 /bin/geckodriver --connect-existing --marionette-port 2828
Cron & Systemd
bash-4.2$ crontab -l ; cat /etc/crontab ; systemctl list-timers
no crontab for apache
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
# For details see man 4 crontabs
# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed
NEXT LEFT LAST PASSED UNI
Thu 2025-03-13 17:21:50 EDT 23h left Wed 2025-03-12 17:21:50 EDT 29min ago sys
1 timers listed.
Pass --all to see loaded but inactive timers, too.
lines 1-5/5 (END) Services
bash-4.2$ systemctl list-units --state=running
systemctl list-units --state=running
UNIT LOAD ACTIVE SUB DESCRIPTION
proc-sys-fs-binfmt_misc.automount loaded active running Arbitrary Executable Fil
auditd.service loaded active running Security Auditing Service
chronyd.service loaded active running NTP client/server
crond.service loaded active running Command Scheduler
dbus.service loaded active running D-Bus System Message Bus
getty@tty1.service loaded active running Getty on tty1
httpd.service loaded active running The Apache HTTP Server
lvm2-lvmetad.service loaded active running LVM2 metadata daemon
mariadb.service loaded active running MariaDB database server
NetworkManager.service loaded active running Network Manager
polkit.service loaded active running Authorization Manager
postfix.service loaded active running Postfix Mail Transport Agent
rsyslog.service loaded active running System Logging Service
sshd.service loaded active running OpenSSH server daemon
surfer.service loaded active running Automated Web Browser
systemd-journald.service loaded active running Journal Service
systemd-logind.service loaded active running Login Service
systemd-udevd.service loaded active running udev Kernel Device Manager
tuned.service loaded active running Dynamic System Tuning Daemon
vgauthd.service loaded active running VGAuth Service for open-vm-to
vmtoolsd.service loaded active running Service for virtual machines
dbus.socket loaded active running D-Bus System Message Bus Sock
lvm2-lvmetad.socket loaded active running LVM2 metadata daemon socket
systemd-journald.socket loaded active running Journal Socket
systemd-udevd-control.socket loaded active running udev Control Socket
systemd-udevd-kernel.socket loaded active running udev Kernel Socket
LOAD = Reflects whether the unit definition was properly loaded.
ACTIVE = The high-level unit activation state, i.e. generalization of SUB.
SUB = The low-level unit activation state, values depend on unit type.
26 loaded units listed. Pass --all to see loaded but inactive units, too.
To show all installed unit files use 'systemctl list-unit-files'.httpd.service
mariadb.service
postfix.service
surfer.service
Sudo Version
bash-4.2$ sudo --version
Sudo version 1.8.23
Sudoers policy plugin version 1.8.23
Sudoers file grammar version 46
Sudoers I/O plugin version 1.8.23Sudo version 1.8.23
Glibc Version
bash-4.2$ ldd --version
ldd (GNU libc) 2.17
Copyright (C) 2012 Free Software Foundation, Inc.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Written by Roland McGrath and Ulrich Drepper.ldd (GNU libc) 2.17