Secutity check
30 svi 2009, 10:29
Imam Mandrivu 2009 spring. Svako malo mi se javlja MSEC (secutity chech) i nešto mi zapiše u log. Evo u nastavku log pa jel mi neko može reći šta on oće svako malo? Hvala unaprid!!
*
Admin: velike tekstove ubuduće stavljati u "Code" radi preglednosti.
*
- Kod:
** Security Check, Mon May 25 16:47:51 CEST 2009 ***
Security Warning: World Writable files found :
- /
- /live/memory
- /tmp/.ICE-unix
- /tmp/.X11-unix
- /var/lib/lock/sane
- /var/lib/xkb
- /var/spool/spamassassin
Security Warning: these files shouldn't be owned by someone else or readable :
- /home/davor/.Xauthority : file is group readable.
- /home/davor/.Xauthority : file is other readable.
Security Warning: these home directory should not be owned by someone else or writable :
user=nobody(65534) : home directory is group writable.
user=nobody(65534) : home directory is other writable.
user=messagebus(13) : home directory is group writable.
user=messagebus(13) : home directory is other writable.
user=polkituser(14) : home directory is group writable.
user=polkituser(14) : home directory is other writable.
user=haldaemon(15) : home directory is group writable.
user=haldaemon(15) : home directory is other writable.
user=rpc(19) : home directory is group writable.
user=rpc(19) : home directory is other writable.
user=gdm(70) : home directory is group writable.
Permissions changes on system files:
Wrong permissions of /var/log/cups/page_log: should be 640
Wrong group of /var/log/faillog: should be adm
Wrong group of /var/log/boot.log: should be adm
Wrong permissions of /var/log/gdm/:0.log.1: should be 640
Wrong permissions of /var/log/gdm/:0.log.2: should be 640
Wrong permissions of /var/log/gdm/:0.log.3: should be 640
Wrong group of /var/log/syslog: should be adm
Wrong permissions of /etc/rc.d/init.d/acpid: should be 744
Wrong group of /var/log/explanations: should be adm
Wrong permissions of /var/log/explanations: should be 640
Wrong permissions of /var/log/gdm/:0.log.4: should be 640
Wrong group of /: should be adm
Wrong permissions of /: should be 755
Wrong permissions of /var/log/cups/access_log: should be 640
Wrong group of /var/log/drakxtools.log: should be adm
Wrong permissions of /etc/rc.d/init.d/portreserve: should be 744
Wrong group of /var/log/dmesg: should be adm
Wrong permissions of /var/log/dmesg: should be 640
Wrong permissions of /var/log/cups/error_log: should be 640
Wrong group of /var/log/user.log: should be adm
Wrong permissions of /etc/rc.d/init.d/ip6tables: should be 744
Wrong group of /var/log/tallylog: should be adm
Wrong group of /var/log/Xorg.0.log.old: should be adm
Wrong permissions of /var/log/Xorg.0.log.old: should be 640
Wrong permissions of /etc/rc.d/init.d/wine: should be 744
Wrong permissions of /var/log/gdm/:0.log: should be 640
Wrong group of /var/log/messages: should be adm
Wrong group of /var/log/dmesg.old: should be adm
Wrong permissions of /var/log/dmesg.old: should be 640
Wrong permissions of /etc/rc.d/init.d/iptables: should be 744
Wrong permissions of /home/lost+found: should be 755
Wrong permissions of /etc/rc.d/init.d/ntpd: should be 744
Wrong group of /var/log/lastlog: should be adm
Wrong permissions of /var/log/ConsoleKit/history: should be 640
Wrong permissions of /etc/rc.d/init.d/cups: should be 744
Wrong group of /var/log/auth.log: should be adm
Wrong permissions of /etc/rc.d/init.d/virtualbox: should be 744
Wrong permissions of /dev: should be 755
Wrong group of /var/log/prcsys.log: should be adm
Wrong permissions of /var/log/prcsys.log: should be 640
Wrong group of /var/log/preload.log: should be adm
Wrong permissions of /var/log/preload.log: should be 640
Wrong group of /var/log/pm-suspend.log: should be adm
Wrong permissions of /etc/rc.d/init.d/mandi: should be 744
Wrong permissions of /etc/rc.d/init.d/shorewall: should be 744
These are the ports listening on your machine :
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:ipp *:* LISTEN 3120/cupsd
tcp 0 0 *:ipp *:* LISTEN 3120/cupsd
udp 0 0 *:bootpc *:* 2821/dhclient
udp 0 0 *:5353 *:* 2933/avahi-daemon:
udp 0 0 *:48757 *:* 2933/avahi-daemon:
udp 0 0 *:ipp *:* 3120/cupsd
udp 0 0 user-PC.lan:ntp *:* 3442/ntpd
udp 0 0 localhost:ntp *:* 3442/ntpd
udp 0 0 *:ntp *:* 3442/ntpd
udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3442/ntpd
udp 0 0 ::1:ntp *:* 3442/ntpd
udp 0 0 *:ntp *:* 3442/ntpd
*** Diff Check, Tue May 26 10:05:13 CEST 2009 ***
Security Warning: There are modifications for port listening on your machine :
- Opened ports : tcp 0 0 *:9091 *:* LISTEN 15984/transmission
- Opened ports : tcp 0 0 *:51413 *:* LISTEN 15984/transmission
- Opened ports : tcp 0 0 *:ipp *:* LISTEN 3085/cupsd
- Opened ports : tcp 0 0 *:51413 *:* LISTEN 15984/transmission
- Opened ports : tcp 0 0 *:ipp *:* LISTEN 3085/cupsd
- Opened ports : udp 0 0 *:40078 *:* 2927/avahi-daemon:
- Opened ports : udp 0 0 *:bootpc *:* 2742/dhclient
- Opened ports : udp 0 0 *:5353 *:* 2927/avahi-daemon:
- Opened ports : udp 0 0 *:ipp *:* 3085/cupsd
- Opened ports : udp 0 0 user-PC.lan:ntp *:* 3367/ntpd
- Opened ports : udp 0 0 localhost:ntp *:* 3367/ntpd
- Opened ports : udp 0 0 *:ntp *:* 3367/ntpd
- Opened ports : udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3367/ntpd
- Opened ports : udp 0 0 ::1:ntp *:* 3367/ntpd
- Opened ports : udp 0 0 *:ntp *:* 3367/ntpd
- Closed ports : tcp 0 0 *:ipp *:* LISTEN 3120/cupsd
- Closed ports : tcp 0 0 *:ipp *:* LISTEN 3120/cupsd
- Closed ports : udp 0 0 *:bootpc *:* 2821/dhclient
- Closed ports : udp 0 0 *:5353 *:* 2933/avahi-daemon:
- Closed ports : udp 0 0 *:48757 *:* 2933/avahi-daemon:
- Closed ports : udp 0 0 *:ipp *:* 3120/cupsd
- Closed ports : udp 0 0 user-PC.lan:ntp *:* 3442/ntpd
- Closed ports : udp 0 0 localhost:ntp *:* 3442/ntpd
- Closed ports : udp 0 0 *:ntp *:* 3442/ntpd
- Closed ports : udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3442/ntpd
- Closed ports : udp 0 0 ::1:ntp *:* 3442/ntpd
- Closed ports : udp 0 0 *:ntp *:* 3442/ntpd
*** Security Check, Tue May 26 10:05:14 CEST 2009 ***
Security Warning: World Writable files found :
- /
- /live/memory
- /tmp/.ICE-unix
- /tmp/.X11-unix
- /var/lib/lock/sane
- /var/lib/xkb
- /var/spool/spamassassin
Security Warning: these files shouldn't be owned by someone else or readable :
- /home/davor/.Xauthority : file is group readable.
- /home/davor/.Xauthority : file is other readable.
Security Warning: these home directory should not be owned by someone else or writable :
user=nobody(65534) : home directory is group writable.
user=nobody(65534) : home directory is other writable.
user=messagebus(13) : home directory is group writable.
user=messagebus(13) : home directory is other writable.
user=polkituser(14) : home directory is group writable.
user=polkituser(14) : home directory is other writable.
user=haldaemon(15) : home directory is group writable.
user=haldaemon(15) : home directory is other writable.
user=rpc(19) : home directory is group writable.
user=rpc(19) : home directory is other writable.
user=gdm(70) : home directory is group writable.
Permissions changes on system files:
Wrong permissions of /var/log/cups/page_log: should be 640
Wrong group of /var/log/faillog: should be adm
Wrong group of /var/log/boot.log: should be adm
Wrong permissions of /var/log/gdm/:0.log.1: should be 640
Wrong permissions of /var/log/gdm/:0.log.2: should be 640
Wrong permissions of /var/log/gdm/:0.log.3: should be 640
Wrong group of /var/log/syslog: should be adm
Wrong permissions of /etc/rc.d/init.d/acpid: should be 744
Wrong group of /var/log/explanations: should be adm
Wrong permissions of /var/log/explanations: should be 640
Wrong group of /var/log/rpmpkgs: should be adm
Wrong permissions of /var/log/rpmpkgs: should be 640
Wrong permissions of /var/log/gdm/:0.log.4: should be 640
Wrong group of /: should be adm
Wrong permissions of /: should be 755
Wrong permissions of /var/log/cups/access_log: should be 640
Wrong group of /var/log/drakxtools.log: should be adm
Wrong permissions of /etc/rc.d/init.d/portreserve: should be 744
Wrong group of /var/log/dmesg: should be adm
Wrong permissions of /var/log/dmesg: should be 640
Wrong permissions of /var/log/cups/error_log: should be 640
Wrong group of /var/log/user.log: should be adm
Wrong permissions of /etc/rc.d/init.d/ip6tables: should be 744
Wrong group of /var/log/tallylog: should be adm
Wrong group of /var/log/Xorg.0.log.old: should be adm
Wrong permissions of /var/log/Xorg.0.log.old: should be 640
Wrong permissions of /etc/rc.d/init.d/wine: should be 744
Wrong permissions of /var/log/gdm/:0.log: should be 640
Wrong group of /var/log/messages: should be adm
Wrong group of /var/log/dmesg.old: should be adm
Wrong permissions of /var/log/dmesg.old: should be 640
Wrong permissions of /etc/rc.d/init.d/iptables: should be 744
Wrong permissions of /home/lost+found: should be 755
Wrong permissions of /etc/rc.d/init.d/ntpd: should be 744
Wrong group of /var/log/lastlog: should be adm
Wrong permissions of /var/log/ConsoleKit/history: should be 640
Wrong permissions of /etc/rc.d/init.d/cups: should be 744
Wrong group of /var/log/auth.log: should be adm
Wrong permissions of /etc/rc.d/init.d/virtualbox: should be 744
Wrong permissions of /dev: should be 755
Wrong group of /var/log/prcsys.log: should be adm
Wrong permissions of /var/log/prcsys.log: should be 640
Wrong group of /var/log/preload.log: should be adm
Wrong permissions of /var/log/preload.log: should be 640
Wrong group of /var/log/pm-suspend.log: should be adm
Wrong permissions of /etc/rc.d/init.d/mandi: should be 744
Wrong permissions of /etc/rc.d/init.d/shorewall: should be 744
These are the ports listening on your machine :
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:9091 *:* LISTEN 15984/transmission
tcp 0 0 *:51413 *:* LISTEN 15984/transmission
tcp 0 0 *:ipp *:* LISTEN 3085/cupsd
tcp 0 0 *:51413 *:* LISTEN 15984/transmission
tcp 0 0 *:ipp *:* LISTEN 3085/cupsd
udp 0 0 *:40078 *:* 2927/avahi-daemon:
udp 0 0 *:bootpc *:* 2742/dhclient
udp 0 0 *:5353 *:* 2927/avahi-daemon:
udp 0 0 *:ipp *:* 3085/cupsd
udp 0 0 user-PC.lan:ntp *:* 3367/ntpd
udp 0 0 localhost:ntp *:* 3367/ntpd
udp 0 0 *:ntp *:* 3367/ntpd
udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3367/ntpd
udp 0 0 ::1:ntp *:* 3367/ntpd
udp 0 0 *:ntp *:* 3367/ntpd
*** Security Check, Wed May 27 04:02:30 CEST 2009 ***
Security Warning: World Writable files found :
- /
- /live/memory
- /tmp/.ICE-unix
- /tmp/.X11-unix
- /var/lib/lock/sane
- /var/lib/xkb
- /var/spool/spamassassin
Security Warning: these files shouldn't be owned by someone else or readable :
- /home/davor/.Xauthority : file is group readable.
- /home/davor/.Xauthority : file is other readable.
Security Warning: these home directory should not be owned by someone else or writable :
user=nobody(65534) : home directory is group writable.
user=nobody(65534) : home directory is other writable.
user=messagebus(13) : home directory is group writable.
user=messagebus(13) : home directory is other writable.
user=polkituser(14) : home directory is group writable.
user=polkituser(14) : home directory is other writable.
user=haldaemon(15) : home directory is group writable.
user=haldaemon(15) : home directory is other writable.
user=rpc(19) : home directory is group writable.
user=rpc(19) : home directory is other writable.
user=gdm(70) : home directory is group writable.
Permissions changes on system files:
Wrong permissions of /var/log/cups/page_log: should be 640
Wrong group of /var/log/faillog: should be adm
Wrong group of /var/log/boot.log: should be adm
Wrong permissions of /var/log/gdm/:0.log.1: should be 640
Wrong permissions of /var/log/gdm/:0.log.2: should be 640
Wrong permissions of /var/log/gdm/:0.log.3: should be 640
Wrong group of /var/log/syslog: should be adm
Wrong permissions of /etc/rc.d/init.d/acpid: should be 744
Wrong group of /var/log/explanations: should be adm
Wrong permissions of /var/log/explanations: should be 640
Wrong group of /var/log/rpmpkgs: should be adm
Wrong permissions of /var/log/rpmpkgs: should be 640
Wrong permissions of /var/log/gdm/:0.log.4: should be 640
Wrong group of /: should be adm
Wrong permissions of /: should be 755
Wrong permissions of /var/log/cups/access_log: should be 640
Wrong group of /var/log/drakxtools.log: should be adm
Wrong permissions of /etc/rc.d/init.d/portreserve: should be 744
Wrong group of /var/log/dmesg: should be adm
Wrong permissions of /var/log/dmesg: should be 640
Wrong permissions of /var/log/cups/error_log: should be 640
Wrong group of /var/log/user.log: should be adm
Wrong permissions of /etc/rc.d/init.d/ip6tables: should be 744
Wrong group of /var/log/tallylog: should be adm
Wrong group of /var/log/Xorg.0.log.old: should be adm
Wrong permissions of /var/log/Xorg.0.log.old: should be 640
Wrong permissions of /etc/rc.d/init.d/wine: should be 744
Wrong permissions of /var/log/gdm/:0.log: should be 640
Wrong group of /var/log/messages: should be adm
Wrong group of /var/log/dmesg.old: should be adm
Wrong permissions of /var/log/dmesg.old: should be 640
Wrong permissions of /etc/rc.d/init.d/iptables: should be 744
Wrong permissions of /home/lost+found: should be 755
Wrong permissions of /etc/rc.d/init.d/ntpd: should be 744
Wrong group of /var/log/lastlog: should be adm
Wrong permissions of /var/log/ConsoleKit/history: should be 640
Wrong permissions of /etc/rc.d/init.d/cups: should be 744
Wrong group of /var/log/auth.log: should be adm
Wrong permissions of /etc/rc.d/init.d/virtualbox: should be 744
Wrong permissions of /dev: should be 755
Wrong group of /var/log/prcsys.log: should be adm
Wrong permissions of /var/log/prcsys.log: should be 640
Wrong group of /var/log/preload.log: should be adm
Wrong permissions of /var/log/preload.log: should be 640
Wrong group of /var/log/pm-suspend.log: should be adm
Wrong permissions of /etc/rc.d/init.d/mandi: should be 744
Wrong permissions of /etc/rc.d/init.d/shorewall: should be 744
These are the ports listening on your machine :
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:9091 *:* LISTEN 15984/transmission
tcp 0 0 *:51413 *:* LISTEN 15984/transmission
tcp 0 0 *:ipp *:* LISTEN 3085/cupsd
tcp 0 0 *:51413 *:* LISTEN 15984/transmission
tcp 0 0 *:ipp *:* LISTEN 3085/cupsd
udp 0 0 *:40078 *:* 2927/avahi-daemon:
udp 0 0 *:bootpc *:* 2742/dhclient
udp 0 0 *:5353 *:* 2927/avahi-daemon:
udp 0 0 *:ipp *:* 3085/cupsd
udp 0 0 user-PC.lan:ntp *:* 3367/ntpd
udp 0 0 localhost:ntp *:* 3367/ntpd
udp 0 0 *:ntp *:* 3367/ntpd
udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3367/ntpd
udp 0 0 ::1:ntp *:* 3367/ntpd
udp 0 0 *:ntp *:* 3367/ntpd
*** Security Check, Thu May 28 04:02:17 CEST 2009 ***
Security Warning: World Writable files found :
- /
- /live/memory
- /tmp/.ICE-unix
- /tmp/.X11-unix
- /var/lib/lock/sane
- /var/lib/xkb
- /var/spool/spamassassin
Security Warning: these files shouldn't be owned by someone else or readable :
- /home/davor/.Xauthority : file is group readable.
- /home/davor/.Xauthority : file is other readable.
Security Warning: these home directory should not be owned by someone else or writable :
user=nobody(65534) : home directory is group writable.
user=nobody(65534) : home directory is other writable.
user=messagebus(13) : home directory is group writable.
user=messagebus(13) : home directory is other writable.
user=polkituser(14) : home directory is group writable.
user=polkituser(14) : home directory is other writable.
user=haldaemon(15) : home directory is group writable.
user=haldaemon(15) : home directory is other writable.
user=rpc(19) : home directory is group writable.
user=rpc(19) : home directory is other writable.
user=gdm(70) : home directory is group writable.
Permissions changes on system files:
Wrong permissions of /var/log/cups/page_log: should be 640
Wrong group of /var/log/faillog: should be adm
Wrong group of /var/log/boot.log: should be adm
Wrong permissions of /var/log/gdm/:0.log.1: should be 640
Wrong permissions of /var/log/gdm/:0.log.2: should be 640
Wrong permissions of /var/log/gdm/:0.log.3: should be 640
Wrong group of /var/log/syslog: should be adm
Wrong permissions of /etc/rc.d/init.d/acpid: should be 744
Wrong group of /var/log/explanations: should be adm
Wrong permissions of /var/log/explanations: should be 640
Wrong group of /var/log/rpmpkgs: should be adm
Wrong permissions of /var/log/rpmpkgs: should be 640
Wrong permissions of /var/log/gdm/:0.log.4: should be 640
Wrong group of /: should be adm
Wrong permissions of /: should be 755
Wrong permissions of /var/log/cups/access_log: should be 640
Wrong group of /var/log/drakxtools.log: should be adm
Wrong permissions of /etc/rc.d/init.d/portreserve: should be 744
Wrong group of /var/log/dmesg: should be adm
Wrong permissions of /var/log/dmesg: should be 640
Wrong permissions of /var/log/cups/error_log: should be 640
Wrong group of /var/log/user.log: should be adm
Wrong permissions of /etc/rc.d/init.d/ip6tables: should be 744
Wrong group of /var/log/tallylog: should be adm
Wrong group of /var/log/Xorg.0.log.old: should be adm
Wrong permissions of /var/log/Xorg.0.log.old: should be 640
Wrong permissions of /etc/rc.d/init.d/wine: should be 744
Wrong permissions of /var/log/gdm/:0.log: should be 640
Wrong group of /var/log/messages: should be adm
Wrong group of /var/log/dmesg.old: should be adm
Wrong permissions of /var/log/dmesg.old: should be 640
Wrong permissions of /etc/rc.d/init.d/iptables: should be 744
Wrong permissions of /home/lost+found: should be 755
Wrong permissions of /etc/rc.d/init.d/ntpd: should be 744
Wrong group of /var/log/lastlog: should be adm
Wrong permissions of /var/log/ConsoleKit/history: should be 640
Wrong permissions of /etc/rc.d/init.d/cups: should be 744
Wrong group of /var/log/auth.log: should be adm
Wrong permissions of /etc/rc.d/init.d/virtualbox: should be 744
Wrong permissions of /dev: should be 755
Wrong group of /var/log/prcsys.log: should be adm
Wrong permissions of /var/log/prcsys.log: should be 640
Wrong group of /var/log/preload.log: should be adm
Wrong permissions of /var/log/preload.log: should be 640
Wrong group of /var/log/pm-suspend.log: should be adm
Wrong permissions of /etc/rc.d/init.d/mandi: should be 744
Wrong permissions of /etc/rc.d/init.d/shorewall: should be 744
These are the ports listening on your machine :
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:9091 *:* LISTEN 15984/transmission
tcp 0 0 *:51413 *:* LISTEN 15984/transmission
tcp 0 0 *:ipp *:* LISTEN 3085/cupsd
tcp 0 0 *:51413 *:* LISTEN 15984/transmission
tcp 0 0 *:ipp *:* LISTEN 3085/cupsd
udp 0 0 *:40078 *:* 2927/avahi-daemon:
udp 0 0 *:bootpc *:* 2742/dhclient
udp 0 0 *:5353 *:* 2927/avahi-daemon:
udp 0 0 *:ipp *:* 3085/cupsd
udp 0 0 user-PC.lan:ntp *:* 3367/ntpd
udp 0 0 localhost:ntp *:* 3367/ntpd
udp 0 0 *:ntp *:* 3367/ntpd
udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3367/ntpd
udp 0 0 ::1:ntp *:* 3367/ntpd
udp 0 0 *:ntp *:* 3367/ntpd
*** Diff Check, Thu May 28 22:17:32 CEST 2009 ***
Security Warning: There are modifications for port listening on your machine :
- Opened ports : tcp 0 0 *:ipp *:* LISTEN 2922/cupsd
- Opened ports : tcp 0 0 *:ipp *:* LISTEN 2922/cupsd
- Opened ports : udp 0 0 *:44575 *:* 2859/avahi-daemon:
- Opened ports : udp 0 0 *:bootpc *:* 2707/dhclient
- Opened ports : udp 0 0 *:5353 *:* 2859/avahi-daemon:
- Opened ports : udp 0 0 *:ipp *:* 2922/cupsd
- Opened ports : udp 0 0 user-PC.lan:ntp *:* 3321/ntpd
- Opened ports : udp 0 0 localhost:ntp *:* 3321/ntpd
- Opened ports : udp 0 0 *:ntp *:* 3321/ntpd
- Opened ports : udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3321/ntpd
- Opened ports : udp 0 0 ::1:ntp *:* 3321/ntpd
- Opened ports : udp 0 0 *:ntp *:* 3321/ntpd
- Closed ports : tcp 0 0 *:9091 *:* LISTEN 15984/transmission
- Closed ports : tcp 0 0 *:51413 *:* LISTEN 15984/transmission
- Closed ports : tcp 0 0 *:ipp *:* LISTEN 3085/cupsd
- Closed ports : tcp 0 0 *:51413 *:* LISTEN 15984/transmission
- Closed ports : tcp 0 0 *:ipp *:* LISTEN 3085/cupsd
- Closed ports : udp 0 0 *:40078 *:* 2927/avahi-daemon:
- Closed ports : udp 0 0 *:bootpc *:* 2742/dhclient
- Closed ports : udp 0 0 *:5353 *:* 2927/avahi-daemon:
- Closed ports : udp 0 0 *:ipp *:* 3085/cupsd
- Closed ports : udp 0 0 user-PC.lan:ntp *:* 3367/ntpd
- Closed ports : udp 0 0 localhost:ntp *:* 3367/ntpd
- Closed ports : udp 0 0 *:ntp *:* 3367/ntpd
- Closed ports : udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3367/ntpd
- Closed ports : udp 0 0 ::1:ntp *:* 3367/ntpd
- Closed ports : udp 0 0 *:ntp *:* 3367/ntpd
*** Security Check, Thu May 28 22:17:33 CEST 2009 ***
Security Warning: World Writable files found :
- /
- /live/memory
- /tmp/.ICE-unix
- /tmp/.X11-unix
- /var/lib/lock/sane
- /var/lib/xkb
- /var/spool/spamassassin
Security Warning: these files shouldn't be owned by someone else or readable :
- /home/davor/.Xauthority : file is group readable.
- /home/davor/.Xauthority : file is other readable.
Security Warning: these home directory should not be owned by someone else or writable :
user=nobody(65534) : home directory is group writable.
user=nobody(65534) : home directory is other writable.
user=messagebus(13) : home directory is group writable.
user=messagebus(13) : home directory is other writable.
user=polkituser(14) : home directory is group writable.
user=polkituser(14) : home directory is other writable.
user=haldaemon(15) : home directory is group writable.
user=haldaemon(15) : home directory is other writable.
user=rpc(19) : home directory is group writable.
user=rpc(19) : home directory is other writable.
user=gdm(70) : home directory is group writable.
Permissions changes on system files:
Wrong permissions of /var/log/cups/page_log: should be 640
Wrong group of /var/log/faillog: should be adm
Wrong group of /var/log/boot.log: should be adm
Wrong permissions of /var/log/gdm/:0.log.1: should be 640
Wrong permissions of /var/log/gdm/:0.log.2: should be 640
Wrong permissions of /var/log/gdm/:0.log.3: should be 640
Wrong group of /var/log/syslog: should be adm
Wrong permissions of /etc/rc.d/init.d/acpid: should be 744
Wrong group of /var/log/explanations: should be adm
Wrong permissions of /var/log/explanations: should be 640
Wrong group of /var/log/rpmpkgs: should be adm
Wrong permissions of /var/log/rpmpkgs: should be 640
Wrong permissions of /var/log/gdm/:0.log.4: should be 640
Wrong group of /: should be adm
Wrong permissions of /: should be 755
Wrong permissions of /var/log/cups/access_log: should be 640
Wrong group of /var/log/drakxtools.log: should be adm
Wrong permissions of /etc/rc.d/init.d/portreserve: should be 744
Wrong group of /var/log/dmesg: should be adm
Wrong permissions of /var/log/dmesg: should be 640
Wrong permissions of /var/log/cups/error_log: should be 640
Wrong group of /var/log/user.log: should be adm
Wrong permissions of /etc/rc.d/init.d/ip6tables: should be 744
Wrong group of /var/log/tallylog: should be adm
Wrong group of /var/log/Xorg.0.log.old: should be adm
Wrong permissions of /var/log/Xorg.0.log.old: should be 640
Wrong permissions of /etc/rc.d/init.d/wine: should be 744
Wrong permissions of /var/log/gdm/:0.log: should be 640
Wrong group of /var/log/messages: should be adm
Wrong group of /var/log/dmesg.old: should be adm
Wrong permissions of /var/log/dmesg.old: should be 640
Wrong permissions of /etc/rc.d/init.d/iptables: should be 744
Wrong permissions of /home/lost+found: should be 755
Wrong permissions of /etc/rc.d/init.d/ntpd: should be 744
Wrong group of /var/log/lastlog: should be adm
Wrong permissions of /var/log/ConsoleKit/history: should be 640
Wrong permissions of /etc/rc.d/init.d/cups: should be 744
Wrong group of /var/log/auth.log: should be adm
Wrong permissions of /etc/rc.d/init.d/virtualbox: should be 744
Wrong permissions of /dev: should be 755
Wrong group of /var/log/prcsys.log: should be adm
Wrong permissions of /var/log/prcsys.log: should be 640
Wrong group of /var/log/preload.log: should be adm
Wrong permissions of /var/log/preload.log: should be 640
Wrong group of /var/log/pm-suspend.log: should be adm
Wrong permissions of /etc/rc.d/init.d/mandi: should be 744
Wrong permissions of /etc/rc.d/init.d/shorewall: should be 744
These are the ports listening on your machine :
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:ipp *:* LISTEN 2922/cupsd
tcp 0 0 *:ipp *:* LISTEN 2922/cupsd
udp 0 0 *:44575 *:* 2859/avahi-daemon:
udp 0 0 *:bootpc *:* 2707/dhclient
udp 0 0 *:5353 *:* 2859/avahi-daemon:
udp 0 0 *:ipp *:* 2922/cupsd
udp 0 0 user-PC.lan:ntp *:* 3321/ntpd
udp 0 0 localhost:ntp *:* 3321/ntpd
udp 0 0 *:ntp *:* 3321/ntpd
udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3321/ntpd
udp 0 0 ::1:ntp *:* 3321/ntpd
udp 0 0 *:ntp *:* 3321/ntpd
*** Diff Check, Fri May 29 10:45:34 CEST 2009 ***
Security Warning: There are modifications for port listening on your machine :
- Opened ports : tcp 0 0 *:ipp *:* LISTEN 3097/cupsd
- Opened ports : tcp 0 0 *:ipp *:* LISTEN 3097/cupsd
- Opened ports : udp 0 0 *:47165 *:* 2992/avahi-daemon:
- Opened ports : udp 0 0 *:bootpc *:* 2824/dhclient
- Opened ports : udp 0 0 *:5353 *:* 2992/avahi-daemon:
- Opened ports : udp 0 0 *:ipp *:* 3097/cupsd
- Opened ports : udp 0 0 user-PC.lan:ntp *:* 3343/ntpd
- Opened ports : udp 0 0 localhost:ntp *:* 3343/ntpd
- Opened ports : udp 0 0 *:ntp *:* 3343/ntpd
- Opened ports : udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3343/ntpd
- Opened ports : udp 0 0 ::1:ntp *:* 3343/ntpd
- Opened ports : udp 0 0 *:ntp *:* 3343/ntpd
- Closed ports : tcp 0 0 *:ipp *:* LISTEN 2922/cupsd
- Closed ports : tcp 0 0 *:ipp *:* LISTEN 2922/cupsd
- Closed ports : udp 0 0 *:44575 *:* 2859/avahi-daemon:
- Closed ports : udp 0 0 *:bootpc *:* 2707/dhclient
- Closed ports : udp 0 0 *:5353 *:* 2859/avahi-daemon:
- Closed ports : udp 0 0 *:ipp *:* 2922/cupsd
- Closed ports : udp 0 0 user-PC.lan:ntp *:* 3321/ntpd
- Closed ports : udp 0 0 localhost:ntp *:* 3321/ntpd
- Closed ports : udp 0 0 *:ntp *:* 3321/ntpd
- Closed ports : udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3321/ntpd
- Closed ports : udp 0 0 ::1:ntp *:* 3321/ntpd
- Closed ports : udp 0 0 *:ntp *:* 3321/ntpd
*** Security Check, Fri May 29 10:45:35 CEST 2009 ***
Security Warning: World Writable files found :
- /
- /live/memory
- /tmp/.ICE-unix
- /tmp/.X11-unix
- /var/lib/lock/sane
- /var/lib/xkb
- /var/spool/spamassassin
Security Warning: these files shouldn't be owned by someone else or readable :
- /home/davor/.Xauthority : file is group readable.
- /home/davor/.Xauthority : file is other readable.
Security Warning: these home directory should not be owned by someone else or writable :
user=nobody(65534) : home directory is group writable.
user=nobody(65534) : home directory is other writable.
user=messagebus(13) : home directory is group writable.
user=messagebus(13) : home directory is other writable.
user=polkituser(14) : home directory is group writable.
user=polkituser(14) : home directory is other writable.
user=haldaemon(15) : home directory is group writable.
user=haldaemon(15) : home directory is other writable.
user=rpc(19) : home directory is group writable.
user=rpc(19) : home directory is other writable.
user=gdm(70) : home directory is group writable.
Permissions changes on system files:
Wrong permissions of /var/log/cups/page_log: should be 640
Wrong group of /var/log/faillog: should be adm
Wrong group of /var/log/boot.log: should be adm
Wrong permissions of /var/log/gdm/:0.log.1: should be 640
Wrong permissions of /var/log/gdm/:0.log.2: should be 640
Wrong permissions of /var/log/gdm/:0.log.3: should be 640
Wrong group of /var/log/syslog: should be adm
Wrong permissions of /etc/rc.d/init.d/acpid: should be 744
Wrong group of /var/log/explanations: should be adm
Wrong permissions of /var/log/explanations: should be 640
Wrong group of /var/log/rpmpkgs: should be adm
Wrong permissions of /var/log/rpmpkgs: should be 640
Wrong permissions of /var/log/gdm/:0.log.4: should be 640
Wrong group of /: should be adm
Wrong permissions of /: should be 755
Wrong permissions of /var/log/cups/access_log: should be 640
Wrong group of /var/log/drakxtools.log: should be adm
Wrong permissions of /etc/rc.d/init.d/portreserve: should be 744
Wrong group of /var/log/dmesg: should be adm
Wrong permissions of /var/log/dmesg: should be 640
Wrong permissions of /var/log/cups/error_log: should be 640
Wrong group of /var/log/user.log: should be adm
Wrong permissions of /etc/rc.d/init.d/ip6tables: should be 744
Wrong group of /var/log/tallylog: should be adm
Wrong group of /var/log/Xorg.0.log.old: should be adm
Wrong permissions of /var/log/Xorg.0.log.old: should be 640
Wrong permissions of /etc/rc.d/init.d/wine: should be 744
Wrong permissions of /var/log/gdm/:0.log: should be 640
Wrong group of /var/log/messages: should be adm
Wrong group of /var/log/dmesg.old: should be adm
Wrong permissions of /var/log/dmesg.old: should be 640
Wrong permissions of /etc/rc.d/init.d/iptables: should be 744
Wrong permissions of /home/lost+found: should be 755
Wrong permissions of /etc/rc.d/init.d/ntpd: should be 744
Wrong group of /var/log/lastlog: should be adm
Wrong permissions of /var/log/ConsoleKit/history: should be 640
Wrong permissions of /etc/rc.d/init.d/cups: should be 744
Wrong group of /var/log/auth.log: should be adm
Wrong permissions of /etc/rc.d/init.d/virtualbox: should be 744
Wrong permissions of /dev: should be 755
Wrong group of /var/log/prcsys.log: should be adm
Wrong permissions of /var/log/prcsys.log: should be 640
Wrong group of /var/log/preload.log: should be adm
Wrong permissions of /var/log/preload.log: should be 640
Wrong group of /var/log/pm-suspend.log: should be adm
Wrong permissions of /etc/rc.d/init.d/mandi: should be 744
Wrong permissions of /etc/rc.d/init.d/shorewall: should be 744
These are the ports listening on your machine :
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:ipp *:* LISTEN 3097/cupsd
tcp 0 0 *:ipp *:* LISTEN 3097/cupsd
udp 0 0 *:47165 *:* 2992/avahi-daemon:
udp 0 0 *:bootpc *:* 2824/dhclient
udp 0 0 *:5353 *:* 2992/avahi-daemon:
udp 0 0 *:ipp *:* 3097/cupsd
udp 0 0 user-PC.lan:ntp *:* 3343/ntpd
udp 0 0 localhost:ntp *:* 3343/ntpd
udp 0 0 *:ntp *:* 3343/ntpd
udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3343/ntpd
udp 0 0 ::1:ntp *:* 3343/ntpd
udp 0 0 *:ntp *:* 3343/ntpd
*** Diff Check, Sat May 30 11:18:57 CEST 2009 ***
Security Warning: There are modifications for port listening on your machine :
- Opened ports : tcp 0 0 *:ipp *:* LISTEN 3239/cupsd
- Opened ports : tcp 0 0 *:ipp *:* LISTEN 3239/cupsd
- Opened ports : udp 0 0 *:34743 *:* 3182/avahi-daemon:
- Opened ports : udp 0 0 *:bootpc *:* 3064/dhclient
- Opened ports : udp 0 0 *:5353 *:* 3182/avahi-daemon:
- Opened ports : udp 0 0 *:ipp *:* 3239/cupsd
- Opened ports : udp 0 0 user-PC.lan:ntp *:* 3511/ntpd
- Opened ports : udp 0 0 localhost:ntp *:* 3511/ntpd
- Opened ports : udp 0 0 *:ntp *:* 3511/ntpd
- Opened ports : udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3511/ntpd
- Opened ports : udp 0 0 ::1:ntp *:* 3511/ntpd
- Opened ports : udp 0 0 *:ntp *:* 3511/ntpd
- Closed ports : tcp 0 0 *:ipp *:* LISTEN 3097/cupsd
- Closed ports : tcp 0 0 *:ipp *:* LISTEN 3097/cupsd
- Closed ports : udp 0 0 *:47165 *:* 2992/avahi-daemon:
- Closed ports : udp 0 0 *:bootpc *:* 2824/dhclient
- Closed ports : udp 0 0 *:5353 *:* 2992/avahi-daemon:
- Closed ports : udp 0 0 *:ipp *:* 3097/cupsd
- Closed ports : udp 0 0 user-PC.lan:ntp *:* 3343/ntpd
- Closed ports : udp 0 0 localhost:ntp *:* 3343/ntpd
- Closed ports : udp 0 0 *:ntp *:* 3343/ntpd
- Closed ports : udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3343/ntpd
- Closed ports : udp 0 0 ::1:ntp *:* 3343/ntpd
- Closed ports : udp 0 0 *:ntp *:* 3343/ntpd
*** Security Check, Sat May 30 11:18:58 CEST 2009 ***
Security Warning: World Writable files found :
- /
- /live/memory
- /tmp/.ICE-unix
- /tmp/.X11-unix
- /var/lib/lock/sane
- /var/lib/xkb
- /var/spool/spamassassin
Security Warning: these home directory should not be owned by someone else or writable :
user=nobody(65534) : home directory is group writable.
user=nobody(65534) : home directory is other writable.
user=messagebus(13) : home directory is group writable.
user=messagebus(13) : home directory is other writable.
user=polkituser(14) : home directory is group writable.
user=polkituser(14) : home directory is other writable.
user=haldaemon(15) : home directory is group writable.
user=haldaemon(15) : home directory is other writable.
user=rpc(19) : home directory is group writable.
user=rpc(19) : home directory is other writable.
user=gdm(70) : home directory is group writable.
Permissions changes on system files:
Wrong permissions of /var/log/cups/page_log: should be 640
Wrong group of /var/log/faillog: should be adm
Wrong group of /var/log/boot.log: should be adm
Wrong permissions of /var/log/gdm/:0.log.1: should be 640
Wrong permissions of /var/log/gdm/:0.log.2: should be 640
Wrong permissions of /var/log/gdm/:0.log.3: should be 640
Wrong group of /var/log/syslog: should be adm
Wrong permissions of /etc/rc.d/init.d/acpid: should be 744
Wrong group of /var/log/explanations: should be adm
Wrong permissions of /var/log/explanations: should be 640
Wrong group of /var/log/rpmpkgs: should be adm
Wrong permissions of /var/log/rpmpkgs: should be 640
Wrong permissions of /var/log/gdm/:0.log.4: should be 640
Wrong group of /: should be adm
Wrong permissions of /: should be 755
Wrong permissions of /var/log/cups/access_log: should be 640
Wrong group of /var/log/drakxtools.log: should be adm
Wrong permissions of /etc/rc.d/init.d/portreserve: should be 744
Wrong group of /var/log/dmesg: should be adm
Wrong permissions of /var/log/dmesg: should be 640
Wrong permissions of /var/log/cups/error_log: should be 640
Wrong group of /var/log/user.log: should be adm
Wrong permissions of /etc/rc.d/init.d/ip6tables: should be 744
Wrong group of /var/log/tallylog: should be adm
Wrong group of /var/log/Xorg.0.log.old: should be adm
Wrong permissions of /var/log/Xorg.0.log.old: should be 640
Wrong permissions of /etc/rc.d/init.d/wine: should be 744
Wrong permissions of /var/log/gdm/:0.log: should be 640
Wrong group of /var/log/messages: should be adm
Wrong group of /var/log/dmesg.old: should be adm
Wrong permissions of /var/log/dmesg.old: should be 640
Wrong permissions of /etc/rc.d/init.d/iptables: should be 744
Wrong permissions of /home/lost+found: should be 755
Wrong permissions of /etc/rc.d/init.d/ntpd: should be 744
Wrong group of /var/log/lastlog: should be adm
Wrong permissions of /var/log/ConsoleKit/history: should be 640
Wrong permissions of /etc/rc.d/init.d/cups: should be 744
Wrong group of /var/log/auth.log: should be adm
Wrong permissions of /etc/rc.d/init.d/virtualbox: should be 744
Wrong permissions of /dev: should be 755
Wrong group of /var/log/prcsys.log: should be adm
Wrong permissions of /var/log/prcsys.log: should be 640
Wrong group of /var/log/preload.log: should be adm
Wrong permissions of /var/log/preload.log: should be 640
Wrong group of /var/log/pm-suspend.log: should be adm
Wrong permissions of /etc/rc.d/init.d/mandi: should be 744
Wrong permissions of /etc/rc.d/init.d/shorewall: should be 744
These are the ports listening on your machine :
Active Internet connections (only servers)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:ipp *:* LISTEN 3239/cupsd
tcp 0 0 *:ipp *:* LISTEN 3239/cupsd
udp 0 0 *:34743 *:* 3182/avahi-daemon:
udp 0 0 *:bootpc *:* 3064/dhclient
udp 0 0 *:5353 *:* 3182/avahi-daemon:
udp 0 0 *:ipp *:* 3239/cupsd
udp 0 0 user-PC.lan:ntp *:* 3511/ntpd
udp 0 0 localhost:ntp *:* 3511/ntpd
udp 0 0 *:ntp *:* 3511/ntpd
udp 0 0 fe80::219:d1ff:fe8c:ntp *:* 3511/ntpd
udp 0 0 ::1:ntp *:* 3511/ntpd
udp 0 0 *:ntp *:* 3511/ntpd
Admin: velike tekstove ubuduće stavljati u "Code" radi preglednosti.
Re: Secutity check
30 svi 2009, 11:37
izgleda koda si promjenio premissionse od nekih direktorija.
ono, var si oduzeo root-u i dodjelo ga sebi i svojoj grupi, pa koliko vidim obeavestava te da to nevalja i za savjetuje ti koji bi trebali biti permission za koji fajl, folder, i ko bi trebo biti njegov vljasnik.
npr.
Wrong permissions of /var/log/preload.log: should be 640
Wrong group of /var/log/pm-suspend.log: should be adm
il ono na pocetku, kaze da nesmiju biti u nicijem vlasnistvu nego do root. i tak.
nasto si gadno sje....
il si pokupio neki virus.
ono, var si oduzeo root-u i dodjelo ga sebi i svojoj grupi, pa koliko vidim obeavestava te da to nevalja i za savjetuje ti koji bi trebali biti permission za koji fajl, folder, i ko bi trebo biti njegov vljasnik.
npr.
Wrong permissions of /var/log/preload.log: should be 640
Wrong group of /var/log/pm-suspend.log: should be adm
il ono na pocetku, kaze da nesmiju biti u nicijem vlasnistvu nego do root. i tak.
nasto si gadno sje....
il si pokupio neki virus.
Re: Secutity check
30 svi 2009, 12:27
Admin - sry! Htio sam ga staviti ko privitak, ali ne prihvaća dizanje ni log ni txt extenzije.
Iimke - nisšta nisam mjenjao, tako je odmah po installu. Ali upravo sam zapekao Mint 7, pa ću ga popodne staviti. Žao mi je Mandrive. S njom se povremeno družim već godinama i bio sam zadovoljan.
Iimke - nisšta nisam mjenjao, tako je odmah po installu. Ali upravo sam zapekao Mint 7, pa ću ga popodne staviti. Žao mi je Mandrive. S njom se povremeno družim već godinama i bio sam zadovoljan.