From owner-freebsd-security@freebsd.org Wed Jul 18 23:41:47 2018 Return-Path: Delivered-To: freebsd-security@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 5D2F3103C11E for ; Wed, 18 Jul 2018 23:41:47 +0000 (UTC) (envelope-from jhellenthal@dataix.net) Received: from mail-it0-x234.google.com (mail-it0-x234.google.com [IPv6:2607:f8b0:4001:c0b::234]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G2" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id F060A72FCF for ; Wed, 18 Jul 2018 23:41:46 +0000 (UTC) (envelope-from jhellenthal@dataix.net) Received: by mail-it0-x234.google.com with SMTP id j185-v6so6845827ite.1 for ; Wed, 18 Jul 2018 16:41:46 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=dataix.net; s=net; h=mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=XIp3y3jMBgv40UcYSBHkMc18jkceuTObP1DXSZiDCYs=; b=E+vaAuQxy0eHRWT9EWulTcLf/EReVb0wEz6KHOcUartNgepb5TyAlHyO0xkEAqEKI9 rULLtfQL+Nv+3/FZnmfmusD3ZXfi8xhnK4j4trBtuHADqUAdZ3heQ403B/VkRcP2Hhel FMgmKOT4yuDE6h8YPHiL8A/B44B9G1qjJTVn0= X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:subject:from:in-reply-to:date:cc :content-transfer-encoding:message-id:references:to; bh=XIp3y3jMBgv40UcYSBHkMc18jkceuTObP1DXSZiDCYs=; b=ZtdVrsp6bMzFUiieqN4G30wiKbTZlX6TyVKinybk/t0yfFQdTdJuOs4hFxnz5Vdzym Sckw/ZSa4g4NsykYq8a8XGuYQgzz52frBJbboWfkV5NzvMj73dKRawPzAQqlwhB2TxCP AwvSxRdMdQnNRME40xB99gKLNaAl/KYY9cFLJGKpYu4YZmxOsO5nhPqvUL/3O8+6Xr29 0LrRjLHgbLdk5GDx/By94Gx8G8MHEzxd0Iyw588COVXDUSn7VJwxKPmgss6jbr0EURun 0hphTFrqOIkYa7ncRCVjRcaxACd52Ln5AbpI180fC4xnlkFtoRBoY2D+VVTHTShj22Rv zJ6g== X-Gm-Message-State: AOUpUlGK8meoeHelmGDFA4ZfZOEd3LrjmkF4LHeurLGHG/OR235YWCWD sYxX1z/XjKzygUFd3nRpHODT110nNrY= X-Google-Smtp-Source: AAOMgpdNO1cLeydkg822Af/bwnHrjeWMcdyQuOhlW8yNlZw5OfeZbeyfDH9reE5lBNASUO0bUi/+DQ== X-Received: by 2002:a24:4118:: with SMTP id x24-v6mr3981699ita.71.1531957306014; Wed, 18 Jul 2018 16:41:46 -0700 (PDT) Received: from ?IPv6:2600:1008:b16c:2f78:483b:e2e6:ad5:d772? ([2600:1008:b16c:2f78:483b:e2e6:ad5:d772]) by smtp.gmail.com with ESMTPSA id x67-v6sm2112926ita.11.2018.07.18.16.41.44 (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Wed, 18 Jul 2018 16:41:44 -0700 (PDT) Content-Type: text/plain; charset=us-ascii Mime-Version: 1.0 (1.0) Subject: Re: Possible break-in attempt? From: Jason Hellenthal X-Mailer: iPhone Mail (15G5077a) In-Reply-To: Date: Wed, 18 Jul 2018 18:41:43 -0500 Cc: freebsd-security@freebsd.org Content-Transfer-Encoding: quoted-printable Message-Id: References: <594ba84b-0691-8471-4bd4-076d0ae3da98@gjunka.com> <368EABCF-A10A-49E9-9473-7753F6BEAA50@patpro.net> <8EDDBDB2-77F5-4CF5-8744-41BEA187C08A@FreeBSD.org> To: Grzegorz Junka X-BeenThere: freebsd-security@freebsd.org X-Mailman-Version: 2.1.27 Precedence: list List-Id: "Security issues \[members-only posting\]" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 18 Jul 2018 23:41:47 -0000 See etc/periodic/... security related scripts. Should get you on a good star= t. --=20 The fact that there's a highway to Hell but only a stairway to Heaven says a= lot about anticipated traffic volume. > On Jul 18, 2018, at 16:47, Grzegorz Junka wrote: >=20 >=20 > Thank you Patrick, Simon and Dimitry for a quick follow up and the explana= tion. >=20 > Is it possible to figure out which parts of the security run output emails= are produced by which tools (I assume that each part is a separate check)? C= ould be useful to know when checking other messages in that email. Is there s= ome kind of email template or script that generates these emails? > GrzegorzJ > _______________________________________________ > freebsd-security@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-security > To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org= "