System/Kernel
spidey@spidersociety:~$ uname -a ; cat /etc/*release
Linux spidersociety 6.8.0-48-generic #48-Ubuntu SMP PREEMPT_DYNAMIC Fri Sep 27 14:04:52 UTC 2024 x86_64 x86_64 x86_64 GNU/Linux
DISTRIB_ID=Ubuntu
DISTRIB_RELEASE=24.04
DISTRIB_CODENAME=noble
DISTRIB_DESCRIPTION="Ubuntu 24.04.1 LTS"
PRETTY_NAME="Ubuntu 24.04.1 LTS"
NAME="Ubuntu"
VERSION_ID="24.04"
VERSION="24.04.1 LTS (Noble Numbat)"
VERSION_CODENAME=noble
ID=ubuntu
ID_LIKE=debian
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
UBUNTU_CODENAME=noble
LOGO=ubuntu-logo6.8.0-48-genericx86_64Ubuntu 24.04.1 LTS (Noble Numbat)
Networks
spidey@spidersociety:~$ ip route ; arp -a
default via 192.168.210.254 dev ens192 proto static
192.168.210.0/24 dev ens192 proto kernel scope link src 192.168.210.214
_gateway (192.168.210.254) at 00:50:56:9e:65:67 [ether] on ens192spidey@spidersociety:~$ netstat -antup
(No info could be read for "-p": geteuid()=1001 but you should be root.)
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 0.0.0.0:22 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:2121 0.0.0.0:* LISTEN -
tcp 0 0 0.0.0.0:80 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.53:53 0.0.0.0:* LISTEN -
tcp 0 0 127.0.0.54:53 0.0.0.0:* LISTEN -
tcp 0 88 192.168.210.214:22 192.168.45.182:50450 ESTABLISHED -
udp 0 0 127.0.0.54:53 0.0.0.0:* -
udp 0 0 127.0.0.53:53 0.0.0.0:* - 127.0.0.53:53
Users & Groups
spidey@spidersociety:~$ cat /etc/passwd ; ll /home
root:x:0:0:root:/root:/bin/bash
daemon:x:1:1:daemon:/usr/sbin:/usr/sbin/nologin
bin:x:2:2:bin:/bin:/usr/sbin/nologin
sys:x:3:3:sys:/dev:/usr/sbin/nologin
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/usr/sbin/nologin
man:x:6:12:man:/var/cache/man:/usr/sbin/nologin
lp:x:7:7:lp:/var/spool/lpd:/usr/sbin/nologin
mail:x:8:8:mail:/var/mail:/usr/sbin/nologin
news:x:9:9:news:/var/spool/news:/usr/sbin/nologin
uucp:x:10:10:uucp:/var/spool/uucp:/usr/sbin/nologin
proxy:x:13:13:proxy:/bin:/usr/sbin/nologin
www-data:x:33:33:www-data:/var/www:/usr/sbin/nologin
backup:x:34:34:backup:/var/backups:/usr/sbin/nologin
list:x:38:38:Mailing List Manager:/var/list:/usr/sbin/nologin
irc:x:39:39:ircd:/run/ircd:/usr/sbin/nologin
_apt:x:42:65534::/nonexistent:/usr/sbin/nologin
nobody:x:65534:65534:nobody:/nonexistent:/usr/sbin/nologin
systemd-network:x:998:998:systemd Network Management:/:/usr/sbin/nologin
systemd-timesync:x:997:997:systemd Time Synchronization:/:/usr/sbin/nologin
dhcpcd:x:100:65534:DHCP Client Daemon,,,:/usr/lib/dhcpcd:/bin/false
messagebus:x:101:102::/nonexistent:/usr/sbin/nologin
systemd-resolve:x:992:992:systemd Resolver:/:/usr/sbin/nologin
pollinate:x:102:1::/var/cache/pollinate:/bin/false
polkitd:x:991:991:User for polkitd:/:/usr/sbin/nologin
syslog:x:103:104::/nonexistent:/usr/sbin/nologin
uuidd:x:104:105::/run/uuidd:/usr/sbin/nologin
tcpdump:x:105:107::/nonexistent:/usr/sbin/nologin
tss:x:106:108:TPM software stack,,,:/var/lib/tpm:/bin/false
landscape:x:107:109::/var/lib/landscape:/usr/sbin/nologin
fwupd-refresh:x:989:989:Firmware update daemon:/var/lib/fwupd:/usr/sbin/nologin
usbmux:x:108:46:usbmux daemon,,,:/var/lib/usbmux:/usr/sbin/nologin
sshd:x:109:65534::/run/sshd:/usr/sbin/nologin
ubuntu:x:1000:1000:Ubuntu:/home/ubuntu:/bin/bash
ftp:x:110:111:ftp daemon,,,:/srv/ftp:/usr/sbin/nologin
spidey:x:1001:1001::/home/spidey:/bin/bash
ss_ftpbckuser:x:1002:1002::/var/www/html:/bin/bash
total 16
drwxr-xr-x 4 root root 4096 Apr 14 17:51 ./
drwxr-xr-x 24 root root 4096 Apr 14 17:53 ../
drwxr-x--- 3 spidey spidey 4096 Jun 26 16:56 spidey/
drwxr-x--- 3 ubuntu ubuntu 4096 Nov 7 2024 ubuntu/ubuntuspideyss_ftpbckuser
spidey@spidersociety:~$ cut -d: -f1 /etc/passwd | xargs -n1 id
uid=0(root) gid=0(root) groups=0(root)
uid=1(daemon) gid=1(daemon) groups=1(daemon)
uid=2(bin) gid=2(bin) groups=2(bin)
uid=3(sys) gid=3(sys) groups=3(sys)
uid=4(sync) gid=65534(nogroup) groups=65534(nogroup)
uid=5(games) gid=60(games) groups=60(games)
uid=6(man) gid=12(man) groups=12(man)
uid=7(lp) gid=7(lp) groups=7(lp)
uid=8(mail) gid=8(mail) groups=8(mail)
uid=9(news) gid=9(news) groups=9(news)
uid=10(uucp) gid=10(uucp) groups=10(uucp)
uid=13(proxy) gid=13(proxy) groups=13(proxy)
uid=33(www-data) gid=33(www-data) groups=33(www-data)
uid=34(backup) gid=34(backup) groups=34(backup)
uid=38(list) gid=38(list) groups=38(list)
uid=39(irc) gid=39(irc) groups=39(irc)
uid=42(_apt) gid=65534(nogroup) groups=65534(nogroup)
uid=65534(nobody) gid=65534(nogroup) groups=65534(nogroup)
uid=998(systemd-network) gid=998(systemd-network) groups=998(systemd-network)
uid=997(systemd-timesync) gid=997(systemd-timesync) groups=997(systemd-timesync)
uid=100(dhcpcd) gid=65534(nogroup) groups=65534(nogroup)
uid=101(messagebus) gid=102(messagebus) groups=102(messagebus)
uid=992(systemd-resolve) gid=992(systemd-resolve) groups=992(systemd-resolve)
uid=102(pollinate) gid=1(daemon) groups=1(daemon)
uid=991(polkitd) gid=991(polkitd) groups=991(polkitd)
uid=103(syslog) gid=104(syslog) groups=104(syslog),4(adm)
uid=104(uuidd) gid=105(uuidd) groups=105(uuidd)
uid=105(tcpdump) gid=107(tcpdump) groups=107(tcpdump)
uid=106(tss) gid=108(tss) groups=108(tss)
uid=107(landscape) gid=109(landscape) groups=109(landscape)
uid=989(fwupd-refresh) gid=989(fwupd-refresh) groups=989(fwupd-refresh)
uid=108(usbmux) gid=46(plugdev) groups=46(plugdev)
uid=109(sshd) gid=65534(nogroup) groups=65534(nogroup)
uid=1000(ubuntu) gid=1000(ubuntu) groups=1000(ubuntu),4(adm),24(cdrom),27(sudo),30(dip),101(lxd)
uid=110(ftp) gid=111(ftp) groups=111(ftp)
uid=1001(spidey) gid=1001(spidey) groups=1001(spidey)
uid=1002(ss_ftpbckuser) gid=1002(ss_ftpbckuser) groups=1002(ss_ftpbckuser)uid=1000(ubuntu) gid=1000(ubuntu) groups=1000(ubuntu),4(adm),24(cdrom),27(sudo),30(dip),101(lxd)uid=1001(spidey) gid=1001(spidey) groups=1001(spidey)uid=1002(ss_ftpbckuser) gid=1002(ss_ftpbckuser) groups=1002(ss_ftpbckuser)
SUIDs
spidey@spidersociety:~$ find / -perm -04000 -ls -type f 2>/dev/null | grep -v '/snap'
1121 272 -rwsr-xr-x 1 root root 277936 Apr 8 2024 /usr/bin/sudo
843 40 -rwsr-xr-x 1 root root 40664 Apr 9 2024 /usr/bin/newgrp
1202 40 -rwsr-xr-x 1 root root 39296 Aug 9 2024 /usr/bin/umount
830 52 -rwsr-xr-x 1 root root 51584 Aug 9 2024 /usr/bin/mount
879 64 -rwsr-xr-x 1 root root 64152 Apr 9 2024 /usr/bin/passwd
560 72 -rwsr-xr-x 1 root root 72792 Apr 9 2024 /usr/bin/chfn
1120 56 -rwsr-xr-x 1 root root 55680 Aug 9 2024 /usr/bin/su
690 76 -rwsr-xr-x 1 root root 76248 Apr 9 2024 /usr/bin/gpasswd
566 44 -rwsr-xr-x 1 root root 44760 Apr 9 2024 /usr/bin/chsh
674 40 -rwsr-xr-x 1 root root 39296 Apr 8 2024 /usr/bin/fusermount3
2017 336 -rwsr-xr-x 1 root root 342632 Apr 22 11:51 /usr/lib/openssh/ssh-keysign
1633 20 -rwsr-xr-x 1 root root 18736 Apr 3 2024 /usr/lib/polkit-1/polkit-agent-helper-1
1402 36 -rwsr-xr-- 1 root messagebus 34960 Aug 9 2024 /usr/lib/dbus-1.0/dbus-daemon-launch-helperSGIDs
spidey@spidersociety:~$ find / -type f -perm -02000 -ls 2>/dev/null | grep -v '/snap'
657 28 -rwxr-sr-x 1 root shadow 27152 Apr 9 2024 /usr/bin/expiry
1995 304 -rwxr-sr-x 1 root _ssh 309688 Apr 22 11:51 /usr/bin/ssh-agent
556 72 -rwxr-sr-x 1 root shadow 72184 Apr 9 2024 /usr/bin/chage
591 40 -rwxr-sr-x 1 root crontab 39664 Aug 27 2024 /usr/bin/crontab
11598 32 -rwxr-sr-x 1 root shadow 31040 Jun 12 14:45 /usr/sbin/unix_chkpwd
11587 28 -rwxr-sr-x 1 root shadow 26944 Jun 12 14:45 /usr/sbin/pam_extrausers_chkpwd
14626 16 -rwxr-sr-x 1 root utmp 14488 Aug 27 2024 /usr/lib/x86_64-linux-gnu/utempter/utempterCapabilities
spidey@spidersociety:~$ getcap -r / 2>/dev/null | grep -v '/snap'
/usr/bin/ping cap_net_raw=ep
/usr/bin/mtr-packet cap_net_raw=ep
/usr/lib/x86_64-linux-gnu/gstreamer1.0/gstreamer-1.0/gst-ptp-helper cap_net_bind_service,cap_net_admin,cap_sys_nice=epProcesses
spidey@spidersociety:~$ ps -auxwww
USER PID %CPU %MEM VSZ RSS TTY STAT START TIME COMMAND
root 1 0.0 0.6 22600 13696 ? Ss 15:05 0:06 /usr/lib/systemd/systemd --system --deserialize=100
message+ 719 0.0 0.2 10036 5632 ? Ss 15:05 0:00 @dbus-daemon --system --address=systemd: --nofork --nopidfile --systemd-activation --syslog-only
root 807 0.0 0.4 18132 8832 ? Ss 15:05 0:00 /usr/lib/systemd/systemd-logind
root 1156 0.0 1.1 109672 23040 ? Ssl 15:05 0:00 /usr/bin/python3 /usr/share/unattended-upgrades/unattended-upgrade-shutdown --wait-for-signal
root 1260 0.0 0.1 6104 2048 tty1 Ss+ 15:07 0:00 /sbin/agetty -o -p -- \u --noclear - linux
root 10449 0.0 0.1 6824 2944 ? Ss 15:59 0:00 /usr/sbin/cron -f -P
root 13596 0.0 1.3 354644 27392 ? SLsl 16:00 0:00 /sbin/multipathd -d -s
syslog 13628 0.0 0.2 222508 5504 ? Ssl 16:00 0:00 /usr/sbin/rsyslogd -n -iNONE
polkitd 14457 0.0 0.3 308164 7936 ? Ssl 16:00 0:00 /usr/lib/polkit-1/polkitd --no-debug
root 14478 0.0 0.6 392092 12928 ? Ssl 16:00 0:00 /usr/sbin/ModemManager
root 20387 0.0 0.8 50584 16512 ? S<s 16:01 0:00 /usr/lib/systemd/systemd-journald
systemd+ 20392 0.0 0.4 18992 9600 ? Ss 16:01 0:00 /usr/lib/systemd/systemd-networkd
systemd+ 20409 0.0 0.6 21584 13184 ? Ss 16:01 0:00 /usr/lib/systemd/systemd-resolved
systemd+ 20421 0.0 0.3 91020 7936 ? Ssl 16:01 0:00 /usr/lib/systemd/systemd-timesyncd
root 20423 0.0 0.3 28892 7796 ? Ss 16:01 0:00 /usr/lib/systemd/systemd-udevd
root 20424 0.0 0.6 468992 13824 ? Ssl 16:01 0:00 /usr/libexec/udisks2/udisksd
root 20425 0.0 0.4 313824 8832 ? Ssl 16:01 0:00 /usr/libexec/upowerd
root 20452 0.0 0.1 9088 3584 ? Ss 16:01 0:00 /usr/sbin/vsftpd /etc/vsftpd.conf
root 20537 0.0 0.4 12020 8192 ? Ss 16:06 0:00 sshd: /usr/sbin/sshd -D [listener] 0 of 10-100 startups
root 36549 0.0 0.6 53464 12416 ? Ss 16:07 0:00 /usr/bin/VGAuthService
root 36550 0.0 0.4 242384 9600 ? Ssl 16:07 0:02 /usr/bin/vmtoolsd
root 36614 0.0 0.9 206452 19748 ? Ss 16:07 0:00 /usr/sbin/apache2 -k start
www-data 36618 0.0 0.7 207140 14140 ? S 16:07 0:00 /usr/sbin/apache2 -k start
spidey 36872 0.0 0.5 20260 11392 ? Ss 16:56 0:00 /usr/lib/systemd/systemd --user
spidey 36873 0.0 0.1 21144 3644 ? S 16:56 0:00 (sd-pam)
root 37102 0.0 0.5 14956 10552 ? Ss 16:56 0:00 sshd: spidey [priv]
spidey 37151 0.0 0.3 15116 6972 ? S 16:56 0:00 sshd: spidey@pts/0
spidey 37152 0.0 0.2 8752 5504 pts/0 Ss 16:56 0:00 -bash
spidey 37245 33.3 0.2 12184 5376 pts/0 R+ 17:00 0:00 ps -auxwwwroot 10449 0.0 0.1 6824 2944 ? Ss 15:59 0:00 /usr/sbin/cron -f -Proot 20452 0.0 0.1 9088 3584 ? Ss 16:01 0:00 /usr/sbin/vsftpd /etc/vsftpd.conf
Cron & Systemd
spidey@spidersociety:~$ crontab -l ; cat /etc/crontab ; systemctl list-timers
no crontab for spidey
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.
SHELL=/bin/sh
# You can also override PATH, but by default, newer versions inherit it from the environment
#PATH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin
# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed
17 * * * * root cd / && run-parts --report /etc/cron.hourly
25 6 * * * root test -x /usr/sbin/anacron || { cd / && run-parts --report /etc/cron.daily; }
47 6 * * 7 root test -x /usr/sbin/anacron || { cd / && run-parts --report /etc/cron.weekly; }
52 6 1 * * root test -x /usr/sbin/anacron || { cd / && run-parts --report /etc/cron.monthly; }
#
NEXT LEFT LAST PASSED UNIT ACTIVATES >
Thu 2025-06-26 17:09:00 UTC 7min Thu 2025-06-26 16:39:01 UTC 22min ago phpsessionclean.timer phpsessionclean.service
Thu 2025-06-26 17:10:00 UTC 8min Thu 2025-06-26 17:00:01 UTC 1min 51s ago sysstat-collect.timer sysstat-collect.service
Thu 2025-06-26 17:41:42 UTC 39min Thu 2025-06-26 16:07:00 UTC 54min ago fwupd-refresh.timer fwupd-refresh.service
Fri 2025-06-27 00:00:00 UTC 6h Thu 2025-06-26 15:08:29 UTC 1h 53min ago dpkg-db-backup.timer dpkg-db-backup.service
Fri 2025-06-27 00:00:00 UTC 6h Thu 2025-06-26 15:08:29 UTC 1h 53min ago logrotate.timer logrotate.service
Fri 2025-06-27 00:07:00 UTC 7h Thu 2025-06-26 15:08:29 UTC 1h 53min ago sysstat-summary.timer sysstat-summary.service
Fri 2025-06-27 00:35:20 UTC 7h Thu 2025-06-26 16:00:47 UTC 1h 1min ago motd-news.timer motd-news.service
Fri 2025-06-27 02:53:54 UTC 9h Thu 2025-06-26 15:59:26 UTC 1h 2min ago man-db.timer man-db.service
Fri 2025-06-27 03:34:28 UTC 10h Thu 2025-06-26 15:14:40 UTC 1h 47min ago apt-daily.timer apt-daily.service
Fri 2025-06-27 06:36:41 UTC 13h Thu 2025-06-26 15:58:30 UTC 1h 3min ago apt-daily-upgrade.timer apt-daily-upgrade.service
Fri 2025-06-27 15:10:56 UTC 22h Thu 2025-06-26 15:10:56 UTC 1h 50min ago update-notifier-download.timer update-notifier-download.ser>
Fri 2025-06-27 15:20:50 UTC 22h Thu 2025-06-26 15:20:50 UTC 1h 41min ago systemd-tmpfiles-clean.timer systemd-tmpfiles-clean.servi>
Sun 2025-06-29 03:10:16 UTC 2 days Thu 2025-06-26 15:08:29 UTC 1h 53min ago e2scrub_all.timer e2scrub_all.service
Mon 2025-06-30 00:11:01 UTC 3 days Thu 2025-06-26 15:59:26 UTC 1h 2min ago fstrim.timer fstrim.service
Tue 2025-07-01 11:04:45 UTC 4 days Thu 2024-11-07 00:34:11 UTC - update-notifier-motd.timer update-notifier-motd.service
15 timers listed.
Pass --all to see loaded but inactive timers, too.Services
spidey@spidersociety:~$ systemctl list-units --state=running
UNIT LOAD ACTIVE SUB DESCRIPTION
proc-sys-fs-binfmt_misc.automount loaded active running Arbitrary Executable File Formats File System Automount Point
init.scope loaded active running System and Service Manager
session-21.scope loaded active running Session 21 of User spidey
apache2.service loaded active running The Apache HTTP Server
cron.service loaded active running Regular background program processing daemon
dbus.service loaded active running D-Bus System Message Bus
getty@tty1.service loaded active running Getty on tty1
ModemManager.service loaded active running Modem Manager
multipathd.service loaded active running Device-Mapper Multipath Device Controller
open-vm-tools.service loaded active running Service for virtual machines hosted on VMware
polkit.service loaded active running Authorization Manager
rsyslog.service loaded active running System Logging Service
ssh.service loaded active running OpenBSD Secure Shell server
systemd-journald.service loaded active running Journal Service
systemd-logind.service loaded active running User Login Management
systemd-networkd.service loaded active running Network Configuration
systemd-resolved.service loaded active running Network Name Resolution
systemd-timesyncd.service loaded active running Network Time Synchronization
systemd-udevd.service loaded active running Rule-based Manager for Device Events and Files
udisks2.service loaded active running Disk Manager
unattended-upgrades.service loaded active running Unattended Upgrades Shutdown
upower.service loaded active running Daemon for power management
user@1001.service loaded active running User Manager for UID 1001
vgauth.service loaded active running Authentication service for virtual machines hosted on VMware
vsftpd.service loaded active running vsftpd FTP server
dbus.socket loaded active running D-Bus System Message Bus Socket
multipathd.socket loaded active running multipathd control socket
ssh.socket loaded active running OpenBSD Secure Shell server socket
syslog.socket loaded active running Syslog Socket
systemd-journald-dev-log.socket loaded active running Journal Socket (/dev/log)
systemd-journald.socket loaded active running Journal Socket
systemd-networkd.socket loaded active running Network Service Netlink Socket
systemd-udevd-control.socket loaded active running udev Control Socket
systemd-udevd-kernel.socket loaded active running udev Kernel Socket
Legend: LOAD → Reflects whether the unit definition was properly loaded.
ACTIVE → The high-level unit activation state, i.e. generalization of SUB.
SUB → The low-level unit activation state, values depend on unit type.
34 loaded units listed.apache2.servicecron.servicevsftpd.service
Sudo Version
spidey@spidersociety:~$ sudo --version
Sudo version 1.9.15p5
Sudoers policy plugin version 1.9.15p5
Sudoers file grammar version 50
Sudoers I/O plugin version 1.9.15p5
Sudoers audit plugin version 1.9.15p5Sudo version 1.9.15p5
Glibc Version
spidey@spidersociety:~$ ldd --version
ldd (Ubuntu GLIBC 2.39-0ubuntu8.4) 2.39
Copyright (C) 2024 Free Software Foundation, Inc.
This is free software; see the source for copying conditions. There is NO
warranty; not even for MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.
Written by Roland McGrath and Ulrich Drepper.ldd (Ubuntu GLIBC 2.39-0ubuntu8.4) 2.39