System/Kernel
brian.moore@postfish:~$ uname -a ; cat /etc/*release
Linux postfish 5.4.0-64-generic #72-Ubuntu SMP Fri Jan 15 10:27:54 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=20.04
DISTRIB_CODENAME=focal
DISTRIB_DESCRIPTION="Ubuntu 20.04.1 LTS"
NAME="Ubuntu"
VERSION="20.04.1 LTS (Focal Fossa)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 20.04.1 LTS"
VERSION_ID="20.04"
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
VERSION_CODENAME=focal
UBUNTU_CODENAME=focal5.4.0-64-genericx86_64Ubuntu 20.04.1 LTS (Focal Fossa)
Networks
brian.moore@postfish:~$ ip route ; arp -a
default via 192.168.111.254 dev ens160 proto static
192.168.111.0/24 dev ens160 proto kernel scope link src 192.168.111.137
_gateway (192.168.111.254) at 00:50:56:9e:df:ab [ether] on ens160brian.moore@postfish:~$ netstat -antup4
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:110 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:143 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:25 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:993 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:995 0.0.0.0:* LISTEN -
tcp 0 612 192.168.111.137:22 192.168.45.192:40436 ESTABLISHED -
udp 0 0 127.0.0.53:53 0.0.0.0:* - tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN -
Users & Groups
brian.moore@postfish:~$ cat /etc/passwd ; ll /home
root:x:0:0:root:/root:/bin/bash
daemon:x:1:1:daemon:/usr/sbin:/usr/sbin/nologin
bin:x:2:2:bin:/bin:/usr/sbin/nologin
sys:x:3:3:sys:/dev:/usr/sbin/nologin
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/usr/sbin/nologin
man:x:6:12:man:/var/cache/man:/usr/sbin/nologin
lp:x:7:7:lp:/var/spool/lpd:/usr/sbin/nologin
mail:x:8:8:mail:/var/mail:/usr/sbin/nologin
news:x:9:9:news:/var/spool/news:/usr/sbin/nologin
uucp:x:10:10:uucp:/var/spool/uucp:/usr/sbin/nologin
proxy:x:13:13:proxy:/bin:/usr/sbin/nologin
www-data:x:33:33:www-data:/var/www:/usr/sbin/nologin
backup:x:34:34:backup:/var/backups:/usr/sbin/nologin
list:x:38:38:Mailing List Manager:/var/list:/usr/sbin/nologin
irc:x:39:39:ircd:/var/run/ircd:/usr/sbin/nologin
gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/usr/sbin/nologin
nobody:x:65534:65534:nobody:/nonexistent:/usr/sbin/nologin
systemd-network:x:100:102:systemd Network Management,,,:/run/systemd:/usr/sbin/nologin
systemd-resolve:x:101:103:systemd Resolver,,,:/run/systemd:/usr/sbin/nologin
systemd-timesync:x:102:104:systemd Time Synchronization,,,:/run/systemd:/usr/sbin/nologin
messagebus:x:103:106::/nonexistent:/usr/sbin/nologin
syslog:x:104:110::/home/syslog:/usr/sbin/nologin
_apt:x:105:65534::/nonexistent:/usr/sbin/nologin
tss:x:106:111:TPM software stack,,,:/var/lib/tpm:/bin/false
uuidd:x:107:112::/run/uuidd:/usr/sbin/nologin
tcpdump:x:108:113::/nonexistent:/usr/sbin/nologin
landscape:x:109:115::/var/lib/landscape:/usr/sbin/nologin
pollinate:x:110:1::/var/cache/pollinate:/bin/false
sshd:x:111:65534::/run/sshd:/usr/sbin/nologin
systemd-coredump:x:999:999:systemd Core Dumper:/:/usr/sbin/nologin
lxd:x:998:100::/var/snap/lxd/common/lxd:/bin/false
postfix:x:112:118::/var/spool/postfix:/usr/sbin/nologin
brian.moore:x:1000:1000::/home/brian.moore:/bin/bash
mike.ross:x:1001:1001::/home/mike.ross:/bin/bash
claire.madison:x:1002:1002::/home/claire.madison:/bin/bash
sarah.lorem:x:1003:1003::/home/sarah.lorem:/bin/bash
hr:x:1005:1005::/home/hr:/bin/sh
it:x:1006:1006::/home/it:/bin/sh
legal:x:1007:1007::/home/legal:/bin/sh
filter:x:997:997:Postfix Filters:/var/spool/filter:/bin/sh
sales:x:1008:1008::/home/sales:/bin/sh
dovecot:x:113:120:Dovecot mail server,,,:/usr/lib/dovecot:/usr/sbin/nologin
dovenull:x:114:121:Dovecot login user,,,:/nonexistent:/usr/sbin/nologin
total 28
drwxr-xr-x 7 root root 4096 Mar 31 2021 ./
drwxr-xr-x 20 root root 4096 Jan 7 2021 ../
drwxr-xr-x 3 brian.moore brian.moore 4096 Mar 26 13:31 brian.moore/
drwxr-xr-x 2 claire.madison claire.madison 4096 Jan 26 2021 claire.madison/
drwxr-xr-x 2 mike.ross mike.ross 4096 Jan 26 2021 mike.ross/
drwxr-xr-x 2 sales sales 4096 Mar 31 2021 sales/
drwxr-xr-x 2 sarah.lorem sarah.lorem 4096 Jan 26 2021 sarah.lorem/claire.madisonmike.rosssalessarah.loremitlegalsales
brian.moore@postfish:~$ cut -d: -f1 /etc/passwd | xargs -n1 id
uid=0(root) gid=0(root) groups=0(root)
uid=1(daemon) gid=1(daemon) groups=1(daemon)
uid=2(bin) gid=2(bin) groups=2(bin)
uid=3(sys) gid=3(sys) groups=3(sys)
uid=4(sync) gid=65534(nogroup) groups=65534(nogroup)
uid=5(games) gid=60(games) groups=60(games)
uid=6(man) gid=12(man) groups=12(man)
uid=7(lp) gid=7(lp) groups=7(lp)
uid=8(mail) gid=8(mail) groups=8(mail)
uid=9(news) gid=9(news) groups=9(news)
uid=10(uucp) gid=10(uucp) groups=10(uucp)
uid=13(proxy) gid=13(proxy) groups=13(proxy)
uid=33(www-data) gid=33(www-data) groups=33(www-data)
uid=34(backup) gid=34(backup) groups=34(backup)
uid=38(list) gid=38(list) groups=38(list)
uid=39(irc) gid=39(irc) groups=39(irc)
uid=41(gnats) gid=41(gnats) groups=41(gnats)
uid=65534(nobody) gid=65534(nogroup) groups=65534(nogroup)
uid=100(systemd-network) gid=102(systemd-network) groups=102(systemd-network)
uid=101(systemd-resolve) gid=103(systemd-resolve) groups=103(systemd-resolve)
uid=102(systemd-timesync) gid=104(systemd-timesync) groups=104(systemd-timesync)
uid=103(messagebus) gid=106(messagebus) groups=106(messagebus)
uid=104(syslog) gid=110(syslog) groups=110(syslog),4(adm),5(tty)
uid=105(_apt) gid=65534(nogroup) groups=65534(nogroup)
uid=106(tss) gid=111(tss) groups=111(tss)
uid=107(uuidd) gid=112(uuidd) groups=112(uuidd)
uid=108(tcpdump) gid=113(tcpdump) groups=113(tcpdump)
uid=109(landscape) gid=115(landscape) groups=115(landscape)
uid=110(pollinate) gid=1(daemon) groups=1(daemon)
uid=111(sshd) gid=65534(nogroup) groups=65534(nogroup)
uid=999(systemd-coredump) gid=999(systemd-coredump) groups=999(systemd-coredump)
uid=998(lxd) gid=100(users) groups=100(users)
uid=112(postfix) gid=118(postfix) groups=118(postfix)
uid=1000(brian.moore) gid=1000(brian.moore) groups=1000(brian.moore),8(mail),997(filter)
uid=1001(mike.ross) gid=1001(mike.ross) groups=1001(mike.ross),8(mail)
uid=1002(claire.madison) gid=1002(claire.madison) groups=1002(claire.madison),8(mail)
uid=1003(sarah.lorem) gid=1003(sarah.lorem) groups=1003(sarah.lorem),8(mail)
uid=1005(hr) gid=1005(hr) groups=1005(hr)
uid=1006(it) gid=1006(it) groups=1006(it)
uid=1007(legal) gid=1007(legal) groups=1007(legal)
uid=997(filter) gid=997(filter) groups=997(filter)
uid=1008(sales) gid=1008(sales) groups=1008(sales)
uid=113(dovecot) gid=120(dovecot) groups=120(dovecot)
uid=114(dovenull) gid=121(dovenull) groups=121(dovenull)uid=1000(brian.moore) gid=1000(brian.moore) groups=1000(brian.moore),8(mail),997(filter)uid=1001(mike.ross) gid=1001(mike.ross) groups=1001(mike.ross),8(mail)uid=1002(claire.madison) gid=1002(claire.madison) groups=1002(claire.madison),8(mail)uid=1003(sarah.lorem) gid=1003(sarah.lorem) groups=1003(sarah.lorem),8(mail)uid=1005(hr) gid=1005(hr) groups=1005(hr)uid=1006(it) gid=1006(it) groups=1006(it)uid=1007(legal) gid=1007(legal) groups=1007(legal)uid=1008(sales) gid=1008(sales) groups=1008(sales)
SUIDs
brian.moore@postfish:~$ find / -perm -04000 -ls -type f 2>/dev/null
128 109 -rwsr-xr-x 1 root root 111048 Mar 8 2021 /snap/snapd/11402/usr/lib/snapd/snap-confine
128 109 -rwsr-xr-x 1 root root 110792 Dec 15 2020 /snap/snapd/10707/usr/lib/snapd/snap-confine
56 43 -rwsr-xr-x 1 root root 43088 Sep 16 2020 /snap/core18/1988/bin/mount
65 63 -rwsr-xr-x 1 root root 64424 Jun 28 2019 /snap/core18/1988/bin/ping
81 44 -rwsr-xr-x 1 root root 44664 Mar 22 2019 /snap/core18/1988/bin/su
99 27 -rwsr-xr-x 1 root root 26696 Sep 16 2020 /snap/core18/1988/bin/umount
1726 75 -rwsr-xr-x 1 root root 76496 Mar 22 2019 /snap/core18/1988/usr/bin/chfn
1728 44 -rwsr-xr-x 1 root root 44528 Mar 22 2019 /snap/core18/1988/usr/bin/chsh
1781 75 -rwsr-xr-x 1 root root 75824 Mar 22 2019 /snap/core18/1988/usr/bin/gpasswd
1845 40 -rwsr-xr-x 1 root root 40344 Mar 22 2019 /snap/core18/1988/usr/bin/newgrp
1858 59 -rwsr-xr-x 1 root root 59640 Mar 22 2019 /snap/core18/1988/usr/bin/passwd
1949 146 -rwsr-xr-x 1 root root 149080 Jan 19 2021 /snap/core18/1988/usr/bin/sudo
2036 42 -rwsr-xr-- 1 root systemd-resolve 42992 Jun 11 2020 /snap/core18/1988/usr/lib/dbus-1.0/dbus-daemon-launch-helper
2346 427 -rwsr-xr-x 1 root root 436552 Mar 4 2019 /snap/core18/1988/usr/lib/openssh/ssh-keysign
56 43 -rwsr-xr-x 1 root root 43088 Sep 16 2020 /snap/core18/1997/bin/mount
65 63 -rwsr-xr-x 1 root root 64424 Jun 28 2019 /snap/core18/1997/bin/ping
81 44 -rwsr-xr-x 1 root root 44664 Mar 22 2019 /snap/core18/1997/bin/su
99 27 -rwsr-xr-x 1 root root 26696 Sep 16 2020 /snap/core18/1997/bin/umount
1708 75 -rwsr-xr-x 1 root root 76496 Mar 22 2019 /snap/core18/1997/usr/bin/chfn
1710 44 -rwsr-xr-x 1 root root 44528 Mar 22 2019 /snap/core18/1997/usr/bin/chsh
1763 75 -rwsr-xr-x 1 root root 75824 Mar 22 2019 /snap/core18/1997/usr/bin/gpasswd
1827 40 -rwsr-xr-x 1 root root 40344 Mar 22 2019 /snap/core18/1997/usr/bin/newgrp
1840 59 -rwsr-xr-x 1 root root 59640 Mar 22 2019 /snap/core18/1997/usr/bin/passwd
1931 146 -rwsr-xr-x 1 root root 149080 Jan 19 2021 /snap/core18/1997/usr/bin/sudo
2018 42 -rwsr-xr-- 1 root systemd-resolve 42992 Jun 11 2020 /snap/core18/1997/usr/lib/dbus-1.0/dbus-daemon-launch-helper
2328 427 -rwsr-xr-x 1 root root 436552 Mar 4 2019 /snap/core18/1997/usr/lib/openssh/ssh-keysign
498 128 -rwsr-xr-x 1 root root 130152 Nov 19 2020 /usr/lib/snapd/snap-confine
1365 52 -rwsr-xr-- 1 root messagebus 51344 Jun 11 2020 /usr/lib/dbus-1.0/dbus-daemon-launch-helper
1577 464 -rwsr-xr-x 1 root root 473576 May 29 2020 /usr/lib/openssh/ssh-keysign
1587 24 -rwsr-xr-x 1 root root 22840 Aug 16 2019 /usr/lib/policykit-1/polkit-agent-helper-1
1372 16 -rwsr-xr-x 1 root root 14488 Jul 8 2019 /usr/lib/eject/dmcrypt-get-device
556 84 -rwsr-xr-x 1 root root 85064 May 28 2020 /usr/bin/chfn
625 40 -rwsr-xr-x 1 root root 39144 Jul 21 2020 /usr/bin/umount
559 56 -rwsr-xr-x 1 root root 55528 Jul 21 2020 /usr/bin/mount
11169 164 -rwsr-xr-x 1 root root 166056 Jul 15 2020 /usr/bin/sudo
887 32 -rwsr-xr-x 1 root root 31032 Aug 16 2019 /usr/bin/pkexec
866 68 -rwsr-xr-x 1 root root 68208 May 28 2020 /usr/bin/passwd
833 44 -rwsr-xr-x 1 root root 44784 May 28 2020 /usr/bin/newgrp
7891 68 -rwsr-xr-x 1 root root 67816 Jul 21 2020 /usr/bin/su
667 40 -rwsr-xr-x 1 root root 39144 Mar 7 2020 /usr/bin/fusermount
685 88 -rwsr-xr-x 1 root root 88464 May 28 2020 /usr/bin/gpasswd
488 56 -rwsr-sr-x 1 daemon daemon 55560 Nov 12 2018 /usr/bin/at
562 52 -rwsr-xr-x 1 root root 53040 May 28 2020 /usr/bin/chshSGIDs
brian.moore@postfish:~$ find / -perm -02000 -ls -type f 2>/dev/null
1655 34 -rwxr-sr-x 1 root shadow 34816 Jul 21 2020 /snap/core18/1988/sbin/pam_extrausers_chkpwd
1684 34 -rwxr-sr-x 1 root shadow 34816 Jul 21 2020 /snap/core18/1988/sbin/unix_chkpwd
1721 71 -rwxr-sr-x 1 root shadow 71816 Mar 22 2019 /snap/core18/1988/usr/bin/chage
1766 23 -rwxr-sr-x 1 root shadow 22808 Mar 22 2019 /snap/core18/1988/usr/bin/expiry
1942 355 -rwxr-sr-x 1 root crontab 362640 Mar 4 2019 /snap/core18/1988/usr/bin/ssh-agent
2006 31 -rwxr-sr-x 1 root tty 30800 Sep 16 2020 /snap/core18/1988/usr/bin/wall
10809 0 drwxrwsr-x 2 root mail 3 Jan 28 2021 /snap/core18/1988/var/mail
1637 34 -rwxr-sr-x 1 root shadow 34816 Jul 21 2020 /snap/core18/1997/sbin/pam_extrausers_chkpwd
1666 34 -rwxr-sr-x 1 root shadow 34816 Jul 21 2020 /snap/core18/1997/sbin/unix_chkpwd
1703 71 -rwxr-sr-x 1 root shadow 71816 Mar 22 2019 /snap/core18/1997/usr/bin/chage
1748 23 -rwxr-sr-x 1 root shadow 22808 Mar 22 2019 /snap/core18/1997/usr/bin/expiry
1924 355 -rwxr-sr-x 1 root crontab 362640 Mar 4 2019 /snap/core18/1997/usr/bin/ssh-agent
1988 31 -rwxr-sr-x 1 root tty 30800 Sep 16 2020 /snap/core18/1997/usr/bin/wall
10782 0 drwxrwsr-x 2 root mail 3 Mar 9 2021 /snap/core18/1997/var/mail
266654 4 drwx--s--- 2 postfix postdrop 4096 Aug 3 2024 /var/spool/postfix/public
12049 4 drwxr-sr-x 3 root systemd-journal 4096 Jan 7 2021 /var/log/journal
524863 4 drwxr-sr-x 2 root systemd-journal 4096 Mar 26 13:26 /var/log/journal/b266781b406945aeb7b9b987494ac6b1
11741 4 drwxrwsr-x 2 root mail 4096 Mar 26 13:31 /var/mail
11739 4 drwxrwsr-x 2 root staff 4096 Apr 15 2020 /var/local
333 0 drwxr-sr-x 2 root systemd-journal 40 Aug 3 2024 /run/log/journal
1456 44 -rwxr-sr-x 1 root shadow 43160 Jul 21 2020 /usr/sbin/unix_chkpwd
1112 44 -rwxr-sr-x 1 root shadow 43168 Jul 21 2020 /usr/sbin/pam_extrausers_chkpwd
11386 24 -r-xr-sr-x 1 root postdrop 22760 Jun 19 2020 /usr/sbin/postqueue
11337 24 -r-xr-sr-x 1 root postdrop 22808 Jun 19 2020 /usr/sbin/postdrop
134101 16 -rwxr-sr-x 1 root utmp 14648 Sep 30 2019 /usr/lib/x86_64-linux-gnu/utempter/utempter
1078 344 -rwxr-sr-x 1 root ssh 350504 May 29 2020 /usr/bin/ssh-agent
586 44 -rwxr-sr-x 1 root crontab 43720 Feb 13 2020 /usr/bin/crontab
3342 36 -rwxr-sr-x 1 root tty 35048 Jul 21 2020 /usr/bin/wall
551 84 -rwxr-sr-x 1 root shadow 84512 May 28 2020 /usr/bin/chage
37607 16 -rwxr-sr-x 1 root root 15368 Mar 20 2020 /usr/bin/dotlock.mailutils
488 56 -rwsr-sr-x 1 daemon daemon 55560 Nov 12 2018 /usr/bin/at
649 32 -rwxr-sr-x 1 root shadow 31312 May 28 2020 /usr/bin/expiry
501 16 -rwxr-sr-x 1 root tty 14488 Mar 30 2020 /usr/bin/bsd-write
8380 4 drwxrwsr-x 3 root staff 4096 Jul 31 2020 /usr/local/lib/python3.8
8381 4 drwxrwsr-x 2 root staff 4096 Jul 31 2020 /usr/local/lib/python3.8/dist-packages 11741 4 drwxrwsr-x 2 root mail 4096 Mar 26 13:31 /var/mail
Capabilities
brian.moore@postfish:~$ getcap -r / 2>/dev/null
/usr/lib/x86_64-linux-gnu/gstreamer1.0/gstreamer-1.0/gst-ptp-helper = cap_net_bind_service,cap_net_admin+ep
/usr/bin/traceroute6.iputils = cap_net_raw+ep
/usr/bin/ping = cap_net_raw+ep
/usr/bin/mtr-packet = cap_net_raw+epProcesses
brian.moore@postfish:~$ ps -auxwww
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 1.2 103192 12784 ? Ss 13:16 0:01 /sbin/init maybe-ubiquity
root 453 0.0 2.0 68056 20384 ? S<s 13:16 0:00 /lib/systemd/systemd-journald
root 485 0.0 0.5 21508 5452 ? Ss 13:16 0:00 /lib/systemd/systemd-udevd
root 631 0.0 1.7 345772 17992 ? SLsl 13:16 0:00 /sbin/multipathd -d -s
systemd+ 666 0.0 0.6 90424 6284 ? Ssl 13:16 0:00 /lib/systemd/systemd-timesyncd
root 677 0.0 1.0 47524 10476 ? Ss 13:16 0:00 /usr/bin/VGAuthService
root 678 0.0 0.7 163400 7528 ? Ssl 13:16 0:00 /usr/bin/vmtoolsd
systemd+ 753 0.0 1.2 24356 12424 ? Ss 13:16 0:00 /lib/systemd/systemd-resolved
root 833 0.0 0.8 239276 8968 ? Ssl 13:18 0:00 /usr/lib/accountsservice/accounts-daemon
root 837 0.0 0.2 6812 2940 ? Ss 13:18 0:00 /usr/sbin/cron -f
message+ 838 0.0 0.4 7524 4404 ? Ss 13:18 0:00 /usr/bin/dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
root 841 0.0 0.3 4680 3448 ? Ss 13:18 0:00 /usr/sbin/dovecot -F
root 849 0.0 1.7 29032 17152 ? Ss 13:18 0:00 /usr/bin/python3 /usr/bin/networkd-dispatcher --run-startup-triggers
syslog 851 0.0 0.5 224500 5124 ? Ssl 13:18 0:00 /usr/sbin/rsyslogd -n -iNONE
root 853 3.4 3.3 637000 33340 ? Ssl 13:18 0:39 /usr/lib/snapd/snapd
root 855 0.0 0.7 16984 7856 ? Ss 13:18 0:00 /lib/systemd/systemd-logind
daemon 861 0.0 0.2 3792 2136 ? Ss 13:18 0:00 /usr/sbin/atd -f
root 876 0.0 0.1 5828 1748 tty1 Ss+ 13:18 0:00 /sbin/agetty -o -p -- \u --noclear tty1 linux
root 906 0.0 0.7 12176 7308 ? Ss 13:18 0:00 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups
dovecot 935 0.0 0.1 4248 1128 ? S 13:18 0:00 dovecot/anvil
root 936 0.0 0.2 4388 2680 ? S 13:18 0:00 dovecot/log
root 937 0.0 0.4 5540 4056 ? S 13:18 0:00 dovecot/config
root 938 0.0 0.8 236416 8712 ? Ssl 13:18 0:00 /usr/lib/policykit-1/polkitd --no-debug
root 953 0.0 0.4 6684 4724 ? Ss 13:18 0:00 /usr/sbin/apache2 -k start
www-data 957 0.0 0.4 752812 4108 ? Sl 13:18 0:00 /usr/sbin/apache2 -k start
www-data 958 0.0 0.4 752812 4108 ? Sl 13:18 0:00 /usr/sbin/apache2 -k start
root 1016 0.0 1.9 107888 19412 ? Ssl 13:18 0:00 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal
root 1960 0.0 0.4 38032 4444 ? Ss 13:18 0:00 /usr/lib/postfix/sbin/master -w
postfix 1967 0.0 0.5 38352 5924 ? S 13:18 0:00 qmgr -l -t unix -u
root 2052 0.0 1.9 446052 19488 ? Ssl 13:18 0:00 /usr/libexec/fwupd/fwupd
systemd+ 2238 0.0 0.6 18596 6432 ? Ss 13:18 0:00 /lib/systemd/systemd-networkd
postfix 2397 0.0 0.5 38300 5812 ? S 13:18 0:00 pickup -l -t unix -u -c
postfix 2404 0.0 0.8 42096 8740 ? S 13:18 0:00 tlsmgr -l -t unix -u -c
dovecot 2664 0.0 0.0 4264 1000 ? S 13:24 0:00 dovecot/stats
root 3247 0.0 0.8 13948 8580 ? Ss 13:30 0:00 sshd: brian.moore [priv]
brian.m+ 3261 0.0 0.9 18616 9748 ? Ss 13:30 0:00 /lib/systemd/systemd --user
brian.m+ 3262 0.0 0.4 104404 4456 ? S 13:30 0:00 (sd-pam)
brian.m+ 3339 0.0 0.5 13948 5640 ? S 13:30 0:00 sshd: brian.moore@pts/0
brian.m+ 3340 0.0 0.4 8276 4868 pts/0 Ss 13:30 0:00 -bash
brian.m+ 3689 0.0 0.3 9084 3672 pts/0 R+ 13:37 0:00 ps -auxwwwroot 837 0.0 0.2 6812 2940 ? Ss 13:18 0:00 /usr/sbin/cron -froot 841 0.0 0.3 4680 3448 ? Ss 13:18 0:00 /usr/sbin/dovecot -Fdovecot 935 0.0 0.1 4248 1128 ? S 13:18 0:00 dovecot/anvilroot 936 0.0 0.2 4388 2680 ? S 13:18 0:00 dovecot/logroot 937 0.0 0.4 5540 4056 ? S 13:18 0:00 dovecot/configroot 938 0.0 0.8 236416 8712 ? Ssl 13:18 0:00 /usr/lib/policykit-1/polkitd --no-debugroot 1960 0.0 0.4 38032 4444 ? Ss 13:18 0:00 /usr/lib/postfix/sbin/master -wpostfix 1967 0.0 0.5 38352 5924 ? S 13:18 0:00 qmgr -l -t unix -uroot 2052 0.0 1.9 446052 19488 ? Ssl 13:18 0:00 /usr/libexec/fwupd/fwupdpostfix 2397 0.0 0.5 38300 5812 ? S 13:18 0:00 pickup -l -t unix -u -cpostfix 2404 0.0 0.8 42096 8740 ? S 13:18 0:00 tlsmgr -l -t unix -u -cdovecot 2664 0.0 0.0 4264 1000 ? S 13:24 0:00 dovecot/stats
Cron & Systemd
brian.moore@postfish:~$ crontab -l ; cat /etc/crontab ; systemctl list-timers
no crontab for brian.moore
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.
SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin
# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 6 * * 7 root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 6 1 * * root test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
#
NEXT LEFT LAST PASSED UNIT ACTIVATES >
Wed 2025-03-26 20:19:06 UTC 6h left Wed 2025-03-26 13:18:31 UTC 20min ago apt-daily.timer apt-daily.service >
Wed 2025-03-26 23:22:03 UTC 9h left Wed 2025-03-26 13:18:31 UTC 20min ago fwupd-refresh.timer fwupd-refresh.service >
Thu 2025-03-27 00:00:00 UTC 10h left Wed 2025-03-26 13:18:31 UTC 20min ago logrotate.timer logrotate.service >
Thu 2025-03-27 00:00:00 UTC 10h left Wed 2025-03-26 13:18:31 UTC 20min ago man-db.timer man-db.service >
Thu 2025-03-27 06:07:54 UTC 16h left Wed 2025-03-26 13:18:31 UTC 20min ago apt-daily-upgrade.timer apt-daily-upgrade.service >
Thu 2025-03-27 08:59:05 UTC 19h left Wed 2025-03-26 13:18:31 UTC 20min ago motd-news.timer motd-news.service >
Thu 2025-03-27 13:31:22 UTC 23h left Wed 2025-03-26 13:31:22 UTC 7min ago systemd-tmpfiles-clean.timer systemd-tmpfiles-clean.servi>
Sun 2025-03-30 03:10:09 UTC 3 days left Wed 2025-03-26 13:18:31 UTC 20min ago e2scrub_all.timer e2scrub_all.service >
Mon 2025-03-31 00:00:00 UTC 4 days left Wed 2025-03-26 13:18:31 UTC 20min ago fstrim.timer fstrim.service >
9 timers listed.
Pass --all to see loaded but inactive timers, too.Services
brian.moore@postfish:~$ systemctl list-units --state=running
UNIT LOAD ACTIVE SUB DESCRIPTION
proc-sys-fs-binfmt_misc.automount loaded active running Arbitrary Executable File Formats File System Automount Point
init.scope loaded active running System and Service Manager
session-23.scope loaded active running Session 23 of user brian.moore
accounts-daemon.service loaded active running Accounts Service
apache2.service loaded active running The Apache HTTP Server
atd.service loaded active running Deferred execution scheduler
cron.service loaded active running Regular background program processing daemon
dbus.service loaded active running D-Bus System Message Bus
dovecot.service loaded active running Dovecot IMAP/POP3 email server
fwupd.service loaded active running Firmware update daemon
getty@tty1.service loaded active running Getty on tty1
multipathd.service loaded active running Device-Mapper Multipath Device Controller
networkd-dispatcher.service loaded active running Dispatcher daemon for systemd-networkd
open-vm-tools.service loaded active running Service for virtual machines hosted on VMware
polkit.service loaded active running Authorization Manager
postfix@-.service loaded active running Postfix Mail Transport Agent (instance -)
rsyslog.service loaded active running System Logging Service
snapd.service loaded active running Snap Daemon
ssh.service loaded active running OpenBSD Secure Shell server
systemd-journald.service loaded active running Journal Service
systemd-logind.service loaded active running Login Service
systemd-networkd.service loaded active running Network Service
systemd-resolved.service loaded active running Network Name Resolution
systemd-timesyncd.service loaded active running Network Time Synchronization
systemd-udevd.service loaded active running udev Kernel Device Manager
unattended-upgrades.service loaded active running Unattended Upgrades Shutdown
user@1000.service loaded active running User Manager for UID 1000
vgauth.service loaded active running Authentication service for virtual machines hosted on VMware
dbus.socket loaded active running D-Bus System Message Bus Socket
multipathd.socket loaded active running multipathd control socket
snapd.socket loaded active running Socket activation for snappy daemon
syslog.socket loaded active running Syslog Socket
systemd-journald-audit.socket loaded active running Journal Audit Socket
systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log)
systemd-journald.socket loaded active running Journal Socket
systemd-networkd.socket loaded active running Network Service Netlink Socket
systemd-udevd-control.socket loaded active running udev Control Socket
systemd-udevd-kernel.socket loaded active running udev Kernel Socket
LOAD = Reflects whether the unit definition was properly loaded.
ACTIVE = The high-level unit activation state, i.e. generalization of SUB.
SUB = The low-level unit activation state, values depend on unit type.
38 loaded units listed.apache2.servicecron.servicedovecot.servicefwupd.servicepostfix@-.service
Sudo Version
brian.moore@postfish:~$ sudo --version
Sudo version 1.8.31
Sudoers policy plugin version 1.8.31
Sudoers file grammar version 46
Sudoers I/O plugin version 1.8.31Sudo version 1.8.31
Glibc Version
brian.moore@postfish:~$ ldd --version
ldd (Ubuntu GLIBC 2.31-0ubuntu9.1) 2.31
Copyright (C) 2020 Free Software Foundation, Inc.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Written by Roland McGrath and Ulrich Drepper.ldd (Ubuntu GLIBC 2.31-0ubuntu9.1) 2.31