Top Runs Differences at: 2019-12-22 22.10.42
remark :
runtime : 24
count : 2
previous date : 2019-12-22
previous time : 22.10.21
software - installed-rpms - Applications/System
old: scc:1.26.2-1:noarch
new: scc:1.26.71-1:noarch
Top Runs Differences at: 2019-12-22 22.10.01
remark :
runtime : 18
count : 6
previous date : 2019-08-14
previous time : 21.57.56
hardware - dmidecode - general
old: 10 structures occupying 449 bytes.
new: 10 structures occupying 450 bytes.
hardware - dmidecode - OEM Strings
old: String 1: vboxVer_6.0.8
old: String 2: vboxRev_130520
new: String 1: vboxVer_6.0.14
new: String 2: vboxRev_133895
Top Runs Differences at: 2019-08-14 21.57.56
remark :
runtime : 51
count : 2
previous date : 2019-08-14
previous time : 21.57.05
software - installed-rpms - Applications/System
old: scc:1.25.33-1:noarch
new: scc:1.26.2-1:noarch
Top Runs Differences at: 2019-08-14 21.56.13
remark :
runtime : 46
count : 314
previous date : 2019-05-09
previous time : 20.35.14
boot - sysconfig - /etc/sysconfig/autologin
new: AUTOLOGIN=yes
hardware - cpu /proc/cpuinfo
old: flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc eagerfpu pni pclmulqdq monitor ssse3 cx16 pcid sse4_1 sse4_2 x2apic popcnt aes xsave avx rdrand hypervisor lahf_lm fsgsbase
new: flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc eagerfpu pni pclmulqdq monitor ssse3 cx16 pcid sse4_1 sse4_2 x2apic popcnt aes xsave avx rdrand hypervisor lahf_lm fsgsbase
hardware - lscpu - overview
old: Flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc eagerfpu pni pclmulqdq monitor ssse3 cx16 pcid sse4_1 sse4_2 x2apic popcnt aes xsave avx rdrand hypervisor lahf_lm fsgsbase
new: Flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc eagerfpu pni pclmulqdq monitor ssse3 cx16 pcid sse4_1 sse4_2 x2apic popcnt aes xsave avx rdrand hypervisor lahf_lm fsgsbase
hardware - dmidecode - general
old: 10 structures occupying 450 bytes.
new: 10 structures occupying 449 bytes.
hardware - dmidecode - System Information
old: UUID: 4CA6E62F-CF58-4A68-8D35-EE365FC5C3A8
new: UUID: C4DCC157-6DE9-4FAC-9D4B-E3A72017C9DA
hardware - dmidecode - OEM Strings
old: String 1: vboxVer_5.2.28
old: String 2: vboxRev_130011
new: String 1: vboxVer_6.0.8
new: String 2: vboxRev_130520
kernel - modules - fuse
old: parm max_user_bgreq : 318
old: parm max_user_congthresh : 318
kernel - modules - ip_set
old: parm max_sets : 0
Volume Management - file systems - mount
old: gvfsd-fuse on /run/user/0/gvfs type fuse.gvfsd-fuse (rw,nosuid,nodev,relatime,user_id=0,group_id=0)
network - bonding
old: The result of SIOCGIFHWADDR is type 1 08:00:27:6b:5b:a4.
new: The result of SIOCGIFHWADDR is type 1 08:00:27:e8:82:da.
old: The result of SIOCGIFHWADDR is type 1 08:00:27:2c:62:6e.
new: The result of SIOCGIFHWADDR is type 1 08:00:27:26:aa:52.
network - interface - enp0s3 - ifconfig
old: link/ether 08:00:27:6b:5b:a4 brd ff:ff:ff:ff:ff:ff
new: link/ether 08:00:27:e8:82:da brd ff:ff:ff:ff:ff:ff
old: inet6 fe80::a00:27ff:fe6b:5ba4/64 scope link
new: inet6 fe80::a00:27ff:fee8:82da/64 scope link
network - interface - enp0s3 - maddr
old: inet6 ff02::1:ff6b:5ba4
new: inet6 ff02::1:ffe8:82da
old: link 33:33:ff:6b:5b:a4
new: link 33:33:ff:e8:82:da
network - interface - enp0s8 - ifconfig
old: link/ether 08:00:27:2c:62:6e brd ff:ff:ff:ff:ff:ff
new: link/ether 08:00:27:26:aa:52 brd ff:ff:ff:ff:ff:ff
old: inet6 fe80::a00:27ff:fe2c:626e/64 scope link
new: inet6 fe80::a00:27ff:fe26:aa52/64 scope link
network - interface - enp0s8 - maddr
old: inet6 ff02::1:ff2c:626e
new: inet6 ff02::1:ff26:aa52
old: link 33:33:ff:2c:62:6e
new: link 33:33:ff:26:aa:52
network - sysctl
old: net.ipv4.conf.all.log_martians = 0
new: net.ipv4.conf.all.log_martians = 1
old: net.ipv4.conf.all.rp_filter = 0
new: net.ipv4.conf.all.rp_filter = 1
old: net.ipv4.conf.default.log_martians = 1
new: net.ipv4.conf.default.log_martians = 0
old: net.ipv4.conf.default.rp_filter = 0
new: net.ipv4.conf.default.rp_filter = 1
software - iptables - rules
old: -A PREROUTING -j tcpre
old: -A INPUT -j tcin
old: -A FORWARD -j MARK --set-xmark 0x0/0xff
old: -A FORWARD -j tcfor
old: -A OUTPUT -j tcout
old: -A POSTROUTING -j tcpost
old: -A PREROUTING -p udp -m udp --dport 10080 -j CT --helper amanda
old: -A PREROUTING -p tcp -m tcp --dport 21 -j CT --helper ftp
old: -A PREROUTING -p udp -m udp --dport 1719 -j CT --helper RAS
old: -A PREROUTING -p tcp -m tcp --dport 1720 -j CT --helper Q.931
old: -A PREROUTING -p tcp -m tcp --dport 6667 -j CT --helper irc
old: -A PREROUTING -p udp -m udp --dport 137 -j CT --helper netbios-ns
old: -A PREROUTING -p tcp -m tcp --dport 1723 -j CT --helper pptp
old: -A PREROUTING -p tcp -m tcp --dport 6566 -j CT --helper sane
old: -A PREROUTING -p udp -m udp --dport 5060 -j CT --helper sip
old: -A PREROUTING -p udp -m udp --dport 161 -j CT --helper snmp
old: -A PREROUTING -p udp -m udp --dport 69 -j CT --helper tftp
old: -A OUTPUT -p udp -m udp --dport 10080 -j CT --helper amanda
old: -A OUTPUT -p tcp -m tcp --dport 21 -j CT --helper ftp
old: -A OUTPUT -p udp -m udp --dport 1719 -j CT --helper RAS
old: -A OUTPUT -p tcp -m tcp --dport 1720 -j CT --helper Q.931
old: -A OUTPUT -p tcp -m tcp --dport 6667 -j CT --helper irc
old: -A OUTPUT -p udp -m udp --dport 137 -j CT --helper netbios-ns
old: -A OUTPUT -p tcp -m tcp --dport 1723 -j CT --helper pptp
old: -A OUTPUT -p tcp -m tcp --dport 6566 -j CT --helper sane
old: -A OUTPUT -p udp -m udp --dport 5060 -j CT --helper sip
old: -A OUTPUT -p udp -m udp --dport 161 -j CT --helper snmp
old: -A OUTPUT -p udp -m udp --dport 69 -j CT --helper tftp
old: -A INPUT -j Ifw
old: -A INPUT -i enp0s3 -j enp0s3_in
old: -A INPUT -i enp0s8 -j enp0s8_in
old: -A INPUT -i lo -j ACCEPT
old: -A INPUT -j Reject
old: -A INPUT -j LOG --log-prefix "Shorewall:INPUT:REJECT:" --log-level 6
old: -A INPUT -g reject
old: -A FORWARD -i enp0s3 -j enp0s3_fwd
old: -A FORWARD -i enp0s8 -j enp0s8_fwd
old: -A FORWARD -j Reject
old: -A FORWARD -j LOG --log-prefix "Shorewall:FORWARD:REJECT:" --log-level 6
old: -A FORWARD -g reject
old: -A OUTPUT -o enp0s3 -j enp0s3_out
old: -A OUTPUT -o enp0s8 -j enp0s8_out
old: -A OUTPUT -o lo -j ACCEPT
old: -A OUTPUT -j Reject
old: -A OUTPUT -j LOG --log-prefix "Shorewall:OUTPUT:REJECT:" --log-level 6
old: -A OUTPUT -g reject
old: -A Broadcast -m addrtype --dst-type BROADCAST -j DROP
old: -A Broadcast -m addrtype --dst-type MULTICAST -j DROP
old: -A Broadcast -m addrtype --dst-type ANYCAST -j DROP
old: -A Drop
old: -A Drop -p icmp -m icmp --icmp-type 3/4 -m comment --comment "Needed ICMP types" -j ACCEPT
old: -A Drop -p icmp -m icmp --icmp-type 11 -m comment --comment "Needed ICMP types" -j ACCEPT
old: -A Drop -j Broadcast
old: -A Drop -m conntrack --ctstate INVALID -j DROP
old: -A Drop -p udp -m multiport --dports 135,445 -m comment --comment SMB -j DROP
old: -A Drop -p udp -m udp --dport 137:139 -m comment --comment SMB -j DROP
old: -A Drop -p udp -m udp --sport 137 --dport 1024:65535 -m comment --comment SMB -j DROP
old: -A Drop -p tcp -m multiport --dports 135,139,445 -m comment --comment SMB -j DROP
old: -A Drop -p udp -m udp --dport 1900 -m comment --comment UPnP -j DROP
old: -A Drop -p tcp -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
old: -A Drop -p udp -m udp --sport 53 -m comment --comment "Late DNS Replies" -j DROP
old: -A Ifw -m set --match-set ifw_wl src -j RETURN
old: -A Ifw -m set --match-set ifw_bl src -j DROP
old: -A Ifw -m conntrack --ctstate INVALID,NEW -m psd--psd-weight-threshold 10 --psd-delay-threshold 10000 --psd-lo-ports-weight 2 --psd-hi-ports-weight 1 -j IFWLOG--log-prefix "SCAN"
old: -A Reject
old: -A Reject -p icmp -m icmp --icmp-type 3/4 -m comment --comment "Needed ICMP types" -j ACCEPT
old: -A Reject -p icmp -m icmp --icmp-type 11 -m comment --comment "Needed ICMP types" -j ACCEPT
old: -A Reject -j Broadcast
old: -A Reject -m conntrack --ctstate INVALID -j DROP
old: -A Reject -p udp -m multiport --dports 135,445 -m comment --comment SMB -g reject
old: -A Reject -p udp -m udp --dport 137:139 -m comment --comment SMB -g reject
old: -A Reject -p udp -m udp --sport 137 --dport 1024:65535 -m comment --comment SMB -g reject
old: -A Reject -p tcp -m multiport --dports 135,139,445 -m comment --comment SMB -g reject
old: -A Reject -p udp -m udp --dport 1900 -m comment --comment UPnP -j DROP
old: -A Reject -p tcp -m tcp ! --tcp-flags FIN,SYN,RST,ACK SYN -j DROP
old: -A Reject -p udp -m udp --sport 53 -m comment --comment "Late DNS Replies" -j DROP
old: -A enp0s3_fwd -o enp0s3 -g sfilter
old: -A enp0s3_fwd -m conntrack --ctstate INVALID,NEW,UNTRACKED -j dynamic
old: -A enp0s3_fwd -p tcp -j tcpflags
old: -A enp0s3_fwd -j net_frwd
old: -A enp0s3_in -m conntrack --ctstate INVALID,NEW,UNTRACKED -j dynamic
old: -A enp0s3_in -p tcp -j tcpflags
old: -A enp0s3_in -j net-fw
old: -A enp0s3_out -j fw-net
old: -A enp0s8_fwd -o enp0s8 -g sfilter
old: -A enp0s8_fwd -m conntrack --ctstate INVALID,NEW,UNTRACKED -j dynamic
old: -A enp0s8_fwd -p tcp -j tcpflags
old: -A enp0s8_fwd -j net_frwd
old: -A enp0s8_in -m conntrack --ctstate INVALID,NEW,UNTRACKED -j dynamic
old: -A enp0s8_in -p tcp -j tcpflags
old: -A enp0s8_in -j net-fw
old: -A enp0s8_out -j fw-net
old: -A fw-net -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
old: -A fw-net -j ACCEPT
old: -A logdrop -j DROP
old: -A logflags -j LOG --log-prefix "Shorewall:logflags:DROP:" --log-level 6 --log-ip-options
old: -A logflags -j DROP
old: -A logreject -j reject
old: -A net-fw -m conntrack --ctstate RELATED,ESTABLISHED -j ACCEPT
old: -A net-fw -j Drop
old: -A net-fw -j LOG --log-prefix "Shorewall:net-fw:DROP:" --log-level 6
old: -A net-fw -j DROP
old: -A net_frwd -o enp0s3 -j ACCEPT
old: -A net_frwd -o enp0s8 -j ACCEPT
old: -A reject -m addrtype --src-type BROADCAST -j DROP
old: -A reject -s 224.0.0.0/4 -j DROP
old: -A reject -p igmp -j DROP
old: -A reject -p tcp -j REJECT --reject-with tcp-reset
old: -A reject -p udp -j REJECT --reject-with icmp-port-unreachable
old: -A reject -p icmp -j REJECT --reject-with icmp-host-unreachable
old: -A reject -j REJECT --reject-with icmp-host-prohibited
old: -A sfilter -j LOG --log-prefix "Shorewall:sfilter:DROP:" --log-level 6
old: -A sfilter -j DROP
old: -A shorewall -m recent --set --name %CURRENTTIME --mask 255.255.255.255 --rsource
old: -A tcpflags -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG FIN,PSH,URG -g logflags
old: -A tcpflags -p tcp -m tcp --tcp-flags FIN,SYN,RST,PSH,ACK,URG NONE -g logflags
old: -A tcpflags -p tcp -m tcp --tcp-flags SYN,RST SYN,RST -g logflags
old: -A tcpflags -p tcp -m tcp --tcp-flags FIN,RST FIN,RST -g logflags
old: -A tcpflags -p tcp -m tcp --tcp-flags FIN,SYN FIN,SYN -g logflags
old: -A tcpflags -p tcp -m tcp --tcp-flags FIN,PSH,ACK FIN,PSH -g logflags
old: -A tcpflags -p tcp -m tcp --sport 0 --tcp-flags FIN,SYN,RST,ACK SYN -g logflags
software - iptables - list
old: Chain INPUT (policy DROP)
new: Chain INPUT (policy ACCEPT)
old: Ifw all -- 0.0.0.0/0 0.0.0.0/0
old: enp0s3_in all -- 0.0.0.0/0 0.0.0.0/0
old: enp0s8_in all -- 0.0.0.0/0 0.0.0.0/0
old: ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
old: Reject all -- 0.0.0.0/0 0.0.0.0/0
old: LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:INPUT:REJECT:"
old: reject all -- 0.0.0.0/0 0.0.0.0/0 [goto]
old: Chain FORWARD (policy DROP)
new: Chain FORWARD (policy ACCEPT)
old: enp0s3_fwd all -- 0.0.0.0/0 0.0.0.0/0
old: enp0s8_fwd all -- 0.0.0.0/0 0.0.0.0/0
old: Reject all -- 0.0.0.0/0 0.0.0.0/0
old: LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:FORWARD:REJECT:"
old: reject all -- 0.0.0.0/0 0.0.0.0/0 [goto]
old: Chain OUTPUT (policy DROP)
new: Chain OUTPUT (policy ACCEPT)
old: enp0s3_out all -- 0.0.0.0/0 0.0.0.0/0
old: enp0s8_out all -- 0.0.0.0/0 0.0.0.0/0
old: ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
old: Reject all -- 0.0.0.0/0 0.0.0.0/0
old: LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:OUTPUT:REJECT:"
old: reject all -- 0.0.0.0/0 0.0.0.0/0 [goto]
old:
old: target prot opt source destination
old: DROP all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type BROADCAST
old: DROP all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type MULTICAST
old: DROP all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match dst-type ANYCAST
old:
old: target prot opt source destination
old: all -- 0.0.0.0/0 0.0.0.0/0
old: ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 3 code 4 /* Needed ICMP types */
old: ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 11 /* Needed ICMP types */
old: Broadcast all -- 0.0.0.0/0 0.0.0.0/0
old: DROP all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID
old: DROP udp -- 0.0.0.0/0 0.0.0.0/0 multiport dports 135,445 /* SMB */
old: DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpts:137:139 /* SMB */
old: DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:137 dpts:1024:65535 /* SMB */
old: DROP tcp -- 0.0.0.0/0 0.0.0.0/0 multiport dports 135,139,445 /* SMB */
old: DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 /* UPnP */
old: DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:!0x17/0x02
old: DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:53 /* Late DNS Replies */
old:
old: target prot opt source destination
old: RETURN all -- 0.0.0.0/0 0.0.0.0/0 match-set ifw_wl src
old: DROP all -- 0.0.0.0/0 0.0.0.0/0 match-set ifw_bl src
old: IFWLOG all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEWpsd weight-threshold: 10 delay-threshold: 10000 lo-ports-weight: 2 hi-ports-weight: 1 IFWLOG prefix 'SCAN'
old:
old: target prot opt source destination
old: all -- 0.0.0.0/0 0.0.0.0/0
old: ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 3 code 4 /* Needed ICMP types */
old: ACCEPT icmp -- 0.0.0.0/0 0.0.0.0/0 icmptype 11 /* Needed ICMP types */
old: Broadcast all -- 0.0.0.0/0 0.0.0.0/0
old: DROP all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID
old: reject udp -- 0.0.0.0/0 0.0.0.0/0 [goto] multiport dports 135,445 /* SMB */
old: reject udp -- 0.0.0.0/0 0.0.0.0/0 [goto] udp dpts:137:139 /* SMB */
old: reject udp -- 0.0.0.0/0 0.0.0.0/0 [goto] udp spt:137 dpts:1024:65535 /* SMB */
old: reject tcp -- 0.0.0.0/0 0.0.0.0/0 [goto] multiport dports 135,139,445 /* SMB */
old: DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp dpt:1900 /* UPnP */
old: DROP tcp -- 0.0.0.0/0 0.0.0.0/0 tcp flags:!0x17/0x02
old: DROP udp -- 0.0.0.0/0 0.0.0.0/0 udp spt:53 /* Late DNS Replies */
old:
old: target prot opt source destination
old:
old: target prot opt source destination
old: sfilter all -- 0.0.0.0/0 0.0.0.0/0 [goto]
old: dynamic all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW,UNTRACKED
old: tcpflags tcp -- 0.0.0.0/0 0.0.0.0/0
old: net_frwd all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: dynamic all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW,UNTRACKED
old: tcpflags tcp -- 0.0.0.0/0 0.0.0.0/0
old: net-fw all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: fw-net all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: sfilter all -- 0.0.0.0/0 0.0.0.0/0 [goto]
old: dynamic all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW,UNTRACKED
old: tcpflags tcp -- 0.0.0.0/0 0.0.0.0/0
old: net_frwd all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: dynamic all -- 0.0.0.0/0 0.0.0.0/0 ctstate INVALID,NEW,UNTRACKED
old: tcpflags tcp -- 0.0.0.0/0 0.0.0.0/0
old: net-fw all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: fw-net all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
old: ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: DROP all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 4 level 6 prefix "Shorewall:logflags:DROP:"
old: DROP all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: reject all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: ACCEPT all -- 0.0.0.0/0 0.0.0.0/0 ctstate RELATED,ESTABLISHED
old: Drop all -- 0.0.0.0/0 0.0.0.0/0
old: LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:net-fw:DROP:"
old: DROP all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: ACCEPT all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old: DROP all -- 0.0.0.0/0 0.0.0.0/0 ADDRTYPE match src-type BROADCAST
old: DROP all -- 224.0.0.0/4 0.0.0.0/0
old: DROP 2 -- 0.0.0.0/0 0.0.0.0/0
old: REJECT tcp -- 0.0.0.0/0 0.0.0.0/0 reject-with tcp-reset
old: REJECT udp -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-port-unreachable
old: REJECT icmp -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-unreachable
old: REJECT all -- 0.0.0.0/0 0.0.0.0/0 reject-with icmp-host-prohibited
old:
old: target prot opt source destination
old: LOG all -- 0.0.0.0/0 0.0.0.0/0 LOG flags 0 level 6 prefix "Shorewall:sfilter:DROP:"
old: DROP all -- 0.0.0.0/0 0.0.0.0/0
old:
old: target prot opt source destination
old:
old: target prot opt source destination
old:
old: target prot opt source destination
old: all -- 0.0.0.0/0 0.0.0.0/0 recent: SET name: %CURRENTTIME side: source mask: 255.255.255.255
old:
old: target prot opt source destination
old: logflags tcp -- 0.0.0.0/0 0.0.0.0/0 [goto] tcp flags:0x3F/0x29
old: logflags tcp -- 0.0.0.0/0 0.0.0.0/0 [goto] tcp flags:0x3F/0x00
old: logflags tcp -- 0.0.0.0/0 0.0.0.0/0 [goto] tcp flags:0x06/0x06
old: logflags tcp -- 0.0.0.0/0 0.0.0.0/0 [goto] tcp flags:0x05/0x05
old: logflags tcp -- 0.0.0.0/0 0.0.0.0/0 [goto] tcp flags:0x03/0x03
old: logflags tcp -- 0.0.0.0/0 0.0.0.0/0 [goto] tcp flags:0x19/0x09
old: logflags tcp -- 0.0.0.0/0 0.0.0.0/0 [goto] tcp spt:0 flags:0x17/0x02
software - openssh2 - sshd_config
new: PermitRootLogin without-password
software - shorewall - /etc/shorewall/rules
new: open all 192.168.56.24 tcp 22
software - sudo
new: /etc/sudoers scc ALL=(ALL) NOPASSWD: ALL
permissions - boot
new: -rw-r--r-- root root /etc/sysconfig/autologin
Top Runs Differences at: 2019-05-09 20.35.14
remark :
runtime : 50
count : 2
previous date : 2019-05-09
previous time : 20.34.27
software - installed-rpms - Applications/System
old: scc:1.24.236-1:noarch
new: scc:1.25.33-1:noarch
Top Runs Differences at: 2019-05-09 20.33.39
remark :
runtime : 42
count : 13
previous date : 2018-04-26
previous time : 21.46.51
hardware - dmidecode - general
old: 10 structures occupying 449 bytes.
new: 10 structures occupying 450 bytes.
hardware - dmidecode - OEM Strings
old: String 1: vboxVer_5.2.8
old: String 2: vboxRev_121009
new: String 1: vboxVer_5.2.28
new: String 2: vboxRev_130011
hardware - memory /proc/iomem
old: 39000000-397527f2 : Kernel code
old: 397527f3-39d314ff : Kernel data
old: 39e9c000-39f62fff : Kernel bss
new: 33000000-337527f2 : Kernel code
new: 337527f3-33d314ff : Kernel data
new: 33e9c000-33f62fff : Kernel bss
network - file - /etc/hosts
new: 192.168.56.45 fc29srv
Top Runs Differences at: 2018-04-26 21.46.51
remark :
runtime : 65
count : 2
previous date : 2018-04-26
previous time : 21.45.50
software - installed-rpms - Applications/System
old: scc:1.24.185-1:noarch
new: scc:1.24.236-1:noarch
Top Runs Differences at: 2018-04-26 21.44.53
remark :
runtime : 49
count : 14
previous date : 2018-03-04
previous time : 21.33.45
hardware - cpu /proc/cpuinfo
old: flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc eagerfpu pni pclmulqdq monitor ssse3 cx16 sse4_1 sse4_2 x2apic popcnt aes xsave avx rdrand hypervisor lahf_lm
new: flags : fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc eagerfpu pni pclmulqdq monitor ssse3 cx16 pcid sse4_1 sse4_2 x2apic popcnt aes xsave avx rdrand hypervisor lahf_lm fsgsbase
hardware - lscpu - overview
old: Flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc eagerfpu pni pclmulqdq monitor ssse3 cx16 sse4_1 sse4_2 x2apic popcnt aes xsave avx rdrand hypervisor lahf_lm
new: Flags: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 syscall nx rdtscp lm constant_tsc rep_good nopl xtopology nonstop_tsc eagerfpu pni pclmulqdq monitor ssse3 cx16 pcid sse4_1 sse4_2 x2apic popcnt aes xsave avx rdrand hypervisor lahf_lm fsgsbase
hardware - dmidecode - OEM Strings
old: String 1: vboxVer_5.2.6
old: String 2: vboxRev_120293
new: String 1: vboxVer_5.2.8
new: String 2: vboxRev_121009
hardware - memory /proc/iomem
old: 2c000000-2c7527f2 : Kernel code
old: 2c7527f3-2cd314ff : Kernel data
old: 2ce9c000-2cf62fff : Kernel bss
new: 39000000-397527f2 : Kernel code
new: 397527f3-39d314ff : Kernel data
new: 39e9c000-39f62fff : Kernel bss
Top Runs Differences at: 2018-03-04 21.33.45
remark : yum changes are ignored on the first run after the initial install
runtime : 20
count : 3
previous date : 2018-03-04
previous time : 21.33.27
software - installed-rpms - Applications/System
old: scc:1.24.132-1:noarch
new: scc:1.24.185-1:noarch
software - yum - channel in use
new: System
Top Runs Differences at: 2018-03-04 21.33.08
remark :
runtime : 17
count : 29
previous date : 2017-12-31
previous time : 16.53.04
hardware - dmidecode - general
old: 10 structures occupying 450 bytes.
new: 10 structures occupying 449 bytes.
hardware - dmidecode - OEM Strings
old: String 1: vboxVer_5.1.30
old: String 2: vboxRev_118389
new: String 1: vboxVer_5.2.6
new: String 2: vboxRev_120293
hardware - /proc/ioports
new: d250-d253 : 0000:00:0d.0
new: d250-d253 : ahci
new: d260-d263 : 0000:00:0d.0
new: d260-d263 : ahci
hardware - memory /proc/iomem
old: 16000000-167527f2 : Kernel code
old: 167527f3-16d314ff : Kernel data
old: 16e9c000-16f62fff : Kernel bss
new: 2c000000-2c7527f2 : Kernel code
new: 2c7527f3-2cd314ff : Kernel data
new: 2ce9c000-2cf62fff : Kernel bss
old: 40000000-ffdfffff : PCI Bus 0000:00
new: 40000000-fdffffff : PCI Bus 0000:00
old: fec00000-fec00fff : reserved
old: fec00000-fec003ff : IOAPIC 0
old: fee00000-fee00fff : Local APIC
old: fee00000-fee00fff : reserved
new: fec00000-fec00fff : reserved
new: fec00000-fec003ff : IOAPIC 0
new: fee00000-fee00fff : Local APIC
new: fee00000-fee00fff : reserved
network - file - /etc/hosts
new: 192.168.56.39 fc27srv
network - interface - enp0s3 - ifconfig
old: inet 192.168.0.66/24 brd 192.168.0.255 scope global enp0s3
new: inet 192.168.0.70/24 brd 192.168.0.255 scope global enp0s3
Top Runs Differences at: 2017-12-31 16.53.04
remark :
runtime : 15
count : 2
previous date : 2017-12-31
previous time : 16.52.47
software - installed-rpms - Applications/System
old: scc:1.24.98-1:noarch
new: scc:1.24.132-1:noarch
Top Runs Differences at: 2017-12-31 16.52.28
remark :
runtime : 18
count : 6
previous date : 2017-12-14
previous time : 21.50.07
hardware - memory /proc/iomem
old: 27000000-277527f2 : Kernel code
old: 277527f3-27d314ff : Kernel data
old: 27e9c000-27f62fff : Kernel bss
new: 16000000-167527f2 : Kernel code
new: 167527f3-16d314ff : Kernel data
new: 16e9c000-16f62fff : Kernel bss
Top Runs Differences at: 2017-12-14 21.50.07
remark :
runtime : 16
count : 2
previous date : 2017-12-14
previous time : 21.49.49
software - installed-rpms - Applications/System
old: scc:1.24.86-1:noarch
new: scc:1.24.98-1:noarch
Top Runs Differences at: 2017-12-14 21.49.31
remark :
runtime : 16
count : 6
previous date : 2017-11-29
previous time : 20.52.27
hardware - memory /proc/iomem
old: 25000000-257527f2 : Kernel code
old: 257527f3-25d314ff : Kernel data
old: 25e9c000-25f62fff : Kernel bss
new: 27000000-277527f2 : Kernel code
new: 277527f3-27d314ff : Kernel data
new: 27e9c000-27f62fff : Kernel bss
Top Runs Differences at: 2017-11-29 20.52.27
remark : yum changes are ignored on the first run after the initial install
runtime : 18
count : 3
previous date : 2017-11-29
previous time : 20.49.24
software - installed-rpms - Applications/System
old: scc:1.24.18-1:noarch
new: scc:1.24.86-1:noarch
software - installed-rpms - System/Servers
new: openssh-server:7.5p1-2.mga6:x86_64
Top Runs Differences at: 2017-11-29 20.49.06
remark : yum changes are ignored on the first run after the initial install
runtime : 16
count : 103
previous date : 2017-07-25
previous time : 22.21.49
boot - systemd - system - dependencies - /etc/systemd/system/multi-user.target.wants
new: sshd.service -> /usr/lib/systemd/system/sshd.service
boot - systemd - system - unit - /lib/systemd/system/sshd-keygen.service
new: [Unit]
new: Description=OpenSSH Server Key Generation
new: ConditionPathExists=|!/etc/ssh/ssh_host_rsa_key
new: ConditionPathExists=|!/etc/ssh/ssh_host_ecdsa_key
new: ConditionPathExists=|!/etc/ssh/ssh_host_ed25519_key
new: PartOf=sshd.service sshd.socket
new: [Service]
new: ExecStart=/usr/sbin/sshd-keygen
new: Type=oneshot
new: RemainAfterExit=yes
boot - systemd - system - unit - /lib/systemd/system/sshd.service
new: [Unit]
new: Description=OpenSSH server daemon
new: Documentation=man:sshd(8) man:sshd_config(5)
new: After=network.target sshd-keygen.service
new: Wants=sshd-keygen.service
new: [Service]
new: Type=notify
new: EnvironmentFile=-/etc/sysconfig/sshd
new: ExecStart=/usr/sbin/sshd -D $OPTIONS
new: ExecReload=/bin/kill -HUP $MAINPID
new: KillMode=process
new: Restart=on-failure
new: RestartSec=42s
new: [Install]
new: WantedBy=multi-user.target
boot - systemd - system - unit - /lib/systemd/system/sshd.socket
new: [Unit]
new: Description=OpenSSH Server Socket
new: Documentation=man:sshd(8) man:sshd_config(5)
new: Conflicts=sshd.service
new: [Socket]
new: ListenStream=22
new: Accept=yes
new: [Install]
new: WantedBy=sockets.target
boot - systemd - system - unit - /lib/systemd/system/sshd@.service
new: [Unit]
new: Description=OpenSSH per-connection server daemon
new: Documentation=man:sshd(8) man:sshd_config(5)
new: Wants=sshd-keygen.service
new: After=sshd-keygen.service
new: [Service]
new: EnvironmentFile=-/etc/sysconfig/sshd
new: ExecStart=-/usr/sbin/sshd -i $OPTIONS
new: StandardInput=socket
boot - systemd - list-unit-files
new: sshd-keygen.service static
new: sshd.service enabled
new: sshd.socket disabled
new: sshd@.service static
hardware - /proc/devices
old: 249 tpm
old: 250 hidraw
new: 249 hidraw
new: 250 tpm
hardware - dmidecode - OEM Strings
old: String 1: vboxVer_5.1.22
old: String 2: vboxRev_115126
new: String 1: vboxVer_5.1.30
new: String 2: vboxRev_118389
hardware - memory /proc/iomem
old: 26000000-267527f2 : Kernel code
old: 267527f3-26d314ff : Kernel data
old: 26e9c000-26f62fff : Kernel bss
new: 25000000-257527f2 : Kernel code
new: 257527f3-25d314ff : Kernel data
new: 25e9c000-25f62fff : Kernel bss
network - avahi - /etc/avahi/services/openssh.service
new: <?xml version="1.0" standalone='no'?>
new: <!DOCTYPE service-group SYSTEM "avahi-service.dtd">
new: <service-group>
new: <name replace-wildcards="yes">Remote Access on %h</name>
new: <service>
new: <type>_ssh._tcp</type>
new: <port>22</port>
new: </service>
new: <service>
new: <type>_sftp-ssh._tcp</type>
new: <port>22</port>
new: </service>
new: </service-group>
network - file - /etc/hosts
new: 192.168.56.10 centos64
network - interface - enp0s8 - ifcfg script
old: GATEWAY=192.168.56.1
network - ports
new: ssh 22
network - netstat-route
old: default:gateway:0.0.0.0:ug:0:enp0s8
software - openssh2 - sshd_config
new: HostKey /etc/ssh/ssh_host_rsa_key
new: HostKey /etc/ssh/ssh_host_ecdsa_key
new: HostKey /etc/ssh/ssh_host_ed25519_key
new: AuthorizedKeysFile .ssh/authorized_keys
new: UsePAM yes
new: AcceptEnv LANG LC_CTYPE LC_NUMERIC LC_TIME LC_COLLATE LC_MONETARY LC_MESSAGES
new: AcceptEnv LC_PAPER LC_NAME LC_ADDRESS LC_TELEPHONE LC_MEASUREMENT
new: AcceptEnv LC_IDENTIFICATION LC_ALL
new: X11Forwarding yes
new: Subsystem sftp /usr/libexec/openssh/sftp-server
software - pam - /etc/pam.d/sshd
new: auth required pam_listfile.so item=user sense=deny file=/etc/ssh/denyusers
new: auth include system-auth
new: account required pam_nologin.so
new: account include system-auth
new: password include system-auth
new: session include system-auth
permissions - boot
new: -rw-r--r-- root root /etc/sysconfig/sshd
new: -rw-r--r-- root root /lib/systemd/system/sshd-keygen.service
new: -rw-r--r-- root root /lib/systemd/system/sshd.service
new: -rw-r--r-- root root /lib/systemd/system/sshd.socket
new: -rw-r--r-- root root /lib/systemd/system/sshd@.service
permissions - network
new: -rw-r--r-- root root /etc/avahi/services/openssh.service
permissions - software
new: -rw------- root root /etc/pam.d/sshd
new: -rw------- root root /etc/ssh/sshd_config
Generated by SCC version 1.26.71 (© Siem Korteweg) on Sun Dec 22 22:11:08 CET 2019