0.00
0 читателей, 27 топиков

clamav + postfix

в сабжевой связке замечен косяк при пересылке писем с доками word
в логах clamav

Wed Aug 10 16:01:55 2016 -> fd[11]: Win.Exploit.CVE_2016_3316-1(37b7ca2261b536a9dafedf08954ddba8:344870) FOUND
Wed Aug 10 16:13:47 2016 -> fd[11]: Win.Exploit.CVE_2016_3316-1(1037b03d52448b35e8d3ace6eeda34ce:344866) FOUND
Wed Aug 10 16:16:50 2016 -> fd[11]: Win.Exploit.CVE_2016_3316-1(33a199d5f3f1f93f2573ed7b8769e8fa:344633) FOUND
Wed Aug 10 16:17:47 2016 -> fd[11]: Win.Exploit.CVE_2016_3316-1(565c447469f623c60fe1f44099528e84:344882) FOUND


Читать дальше →

/dev/sd* UUID

root@mx:/etc# blkid
/dev/sda1: LABEL="boot" UUID="e40fb979-51bf-4b8d-b09f-77eda3e74cf0" SEC_TYPE="ext2" TYPE="ext3"
/dev/sdb: UUID="1c01e3cb-3930-4cc2-8da2-4cc6acff4adb" SEC_TYPE="ext2" TYPE="ext3"
root@mx:/etc#

ssh bruteforce

просто и без лишних движений.
iptables -A INPUT -p tcp -m state --state NEW --dport 22 -m recent --update --seconds 90 -j DROP
iptables -A INPUT -p tcp -m state --state NEW --dport 22 -m recent --set -j ACCEPT

определить железо

[root@vds02 ~]# dmidecode |less
# dmidecode 2.11
SMBIOS 2.4 present.
45 structures occupying 1406 bytes.
Table at 0xCFF6A000.

Handle 0x0000, DMI type 0, 24 bytes
BIOS Information
        Vendor: Phoenix Technologies LTD
        Version: 6.00
        Release Date: 05/29/2007
        Address: 0xE54F0
        Runtime Size: 109328 bytes
        ROM Size: 1024 kB
        Characteristics:
                PCI is supported
                PNP is supported
                BIOS is upgradeable
                BIOS shadowing is allowed
                ESCD support is available
                Boot from CD is supported
                Selectable boot is supported
                EDD is supported
                3.5"/2.88 MB floppy services are supported (int 13h)
                ACPI is supported
                USB legacy is supported
                LS-120 boot is supported
                ATAPI Zip drive boot is supported
                BIOS boot specification is supported
                Targeted content distribution is supported

Handle 0x0001, DMI type 1, 27 bytes
System Information
        Manufacturer: Supermicro
        Product Name: X7DBR-3
        Version: 0123456789
        Serial Number: 0123456789
        UUID: 53D19F64-D663-A017-8922-003048325CFA
        Wake-up Type: Power Switch
        SKU Number: Not Specified
        Family: Not Specified

Handle 0x0002, DMI type 2, 8 bytes
Base Board Information
        Manufacturer: Supermicro
        Product Name: X7DBR-3
        Version: PCB Version
        Serial Number: 0123456789
.....................................

ubuntu adaptec arcconf

берем утилиту с оф.сайта адптека «Adaptec Storage Manager»
забираем.

chmod +x arcconf
apt-get install libstdc++5
./arcconf GETCONFIG 1


видим
Controllers found: 1
----------------------------------------------------------------------
Controller information
----------------------------------------------------------------------
   Controller Status                        : Optimal
   Channel description                      : SAS/SATA
   Controller Model                         : Adaptec 5405
   Controller Serial Number                 : 3E0213008F5
   Physical Slot                            : 6
   Temperature                              : 44 C/ 111 F (Normal)
   Installed memory                         : 256 MB
   Copyback                                 : Disabled
   Background consistency check             : Disabled
   Automatic Failover                       : Enabled
   Global task priority                     : High
   Performance Mode                         : Default/Dynamic
   Stayawake period                         : Disabled
   Spinup limit internal drives             : 0
   Spinup limit external drives             : 0
   Defunct disk drive count                 : 0
   Logical devices/Failed/Degraded          : 1/0/1
   SSDs assigned to MaxCache pool           : 0
   Maximum SSDs allowed in MaxCache pool    : 8
   MaxCache Read Cache Pool Size            : 0.000 GB
   MaxCache flush and fetch rate            : 0
   MaxCache Read, Write Balance Factor      : 3,1
   NCQ status                               : Enabled
   Statistics data collection mode          : Enabled
   --------------------------------------------------------
   Controller Version Information
   --------------------------------------------------------
   BIOS                                     : 5.2-0 (18937)
   Firmware                                 : 5.2-0 (18937)
   Driver                                   : 1.2-0 (29801)
   Boot Flash                               : 5.2-0 (18937)
   --------------------------------------------------------
   Controller Battery Information
   --------------------------------------------------------
   Status                                   : Not Installed

----------------------------------------------------------------------
Logical device information
----------------------------------------------------------------------
Logical device number 0
   Logical device name                      : raid6
   RAID level                               : 6 Reed-Solomon
   Status of logical device                 : Suboptimal, Fault Tolerant
   Size                                     : 12393462 MB
   Stripe-unit size                         : 64 KB
   Read-cache mode                          : Enabled
   MaxCache preferred read cache setting    : Disabled
   MaxCache read cache setting              : Disabled
   Write-cache mode                         : Disabled (write-through)
   Write-cache setting                      : Disabled (write-through)
   Partitioned                              : Yes
   Protected by Hot-Spare                   : No
   Bootable                                 : Yes
   Failed stripes                           : No
   Power settings                           : Disabled
   --------------------------------------------------------
   Logical device segment information
   --------------------------------------------------------
... skip ...
Command completed successfully.



Читать дальше

Ubuntu

в логах
May 10 03:49:47 mx rsyslogd-2039: Could not open output pipe '/dev/xconsole' [try http://www.rsyslog.com/e/2039 ]


идем в
/etc/rsyslog.d


убираем в 50-default.conf
##daemon.*;mail.*;\
##      news.err;\
##      *.=debug;*.=info;\
##      *.=notice;*.=warn       |/dev/xconsole

ubuntu update

делаем
apt-get update

получаем
W: Не удалось получить gzip:/var/lib/apt/lists/partial/ru.archive.ubuntu.com_ubuntu_dists_quantal_main_source_Sources  Хеш сумма не совпадает

W: Не удалось получить gzip:/var/lib/apt/lists/partial/ru.archive.ubuntu.com_ubuntu_dists_quantal_main_binary-amd64_Packages  Хеш сумма не совпадает

W: Не удалось получить gzip:/var/lib/apt/lists/partial/ru.archive.ubuntu.com_ubuntu_dists_quantal_universe_binary-amd64_Packages  Хеш сумма не совпадает

W: Не удалось получить gzip:/var/lib/apt/lists/partial/ru.archive.ubuntu.com_ubuntu_dists_quantal_multiverse_binary-amd64_Packages  Хеш сумма не совпадает

W: Не удалось получить gzip:/var/lib/apt/lists/partial/ru.archive.ubuntu.com_ubuntu_dists_quantal_universe_binary-i386_Packages  Хеш сумма не совпадает

E: Некоторые индексные файлы не скачались. Они были проигнорированы или вместо них были использованы старые версии.


rm /var/lib/apt/lists/* -vf