root: Tripwire: MD5 : 3bc31d508d7f2532daf5dcffe8c5036c /opt/tripwire/etc/tw.pol
root: Tripwire: MD5 : 96590dad9dc50b6eaa5c0ebd9db2e7d2 /opt/tripwire/etc/tw.cfg
root: Tripwire: MD5 : 89b5c5f8aff59b90f5ac19809b81daff /opt/tripwire/sbin/tripwire
Note: Report is not encrypted.
Open Source Tripwire(R) 2.4.1 Integrity Check Report
Report generated by: root
Report created on: Mon Feb 8 03:43:33 2021
Database last updated on: Never
===============================================================================
Report Summary:
===============================================================================
Host name: div5.diviner.ucla.edu
Host IP address: 128.97.24.76
Host ID: None
Policy file used: /opt/tripwire/etc/tw.pol
Configuration file used: /opt/tripwire/etc/tw.cfg
Database file used: /opt/tripwire/db/div5.diviner.ucla.edu.twd
Command line used: /opt/tripwire/sbin/tripwire --check --cfgfile /opt/tripwire/etc/tw.cfg
===============================================================================
Rule Summary:
===============================================================================
-------------------------------------------------------------------------------
Section: Unix File System
-------------------------------------------------------------------------------
Rule Name Severity Level Added Removed Modified
--------- -------------- ----- ------- --------
Invariant Directories 66 0 0 0
* Tripwire Data Files 100 1 0 0
Critical devices 100 0 0 0
Tripwire Binaries 100 0 0 0
* User binaries 66 0 0 1
File System and Disk Administraton Programs
100 0 0 0
Kernel Administration Programs 100 0 0 0
Networking Programs 100 0 0 0
System Administration Programs 100 0 0 0
Hardware and Device Control Programs
100 0 0 0
System Information Programs 100 0 0 0
Application Information Programs
100 0 0 0
Critical Utility Sym-Links 100 0 0 0
* System boot changes 100 74 6 115
* Security Control 100 0 0 3
Login Scripts 100 0 0 0
* Critical configuration files 100 20 20 113
* OS executables and libraries 100 17 0 1
Operating System Utilities 100 0 0 0
Shell Binaries 100 0 0 0
* Libraries 66 35 0 1
Critical system boot files 100 0 0 0
(/boot)
* Root config files 100 238 1 3
Total objects scanned: 11023
Total violations found: 649
===============================================================================
Object Detail:
===============================================================================
-------------------------------------------------------------------------------
Section: Unix File System
-------------------------------------------------------------------------------
-------------------------------------------------------------------------------
Rule Name: Tripwire Data Files (/opt/tripwire/db)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 1
----------------------------------------
Added object name: /opt/tripwire/db/div5.diviner.ucla.edu.twd
-------------------------------------------------------------------------------
Rule Name: User binaries (/sbin)
Severity Level: 66
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /sbin
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:48:36 2013 Thu Oct 17 18:13:40 2013
-------------------------------------------------------------------------------
Rule Name: Security Control (/etc/group)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /etc/group
Property: Expected Observed
------------- ----------- -----------
* Inode Number 672728 672744
* Size 879 1441
* Modify Time Thu Apr 25 01:44:15 2013 Tue Jun 2 13:53:13 2020
* Change Time Thu Apr 25 01:44:15 2013 Tue Jun 2 13:53:13 2020
* CRC32 BGThFN AKm7O5
* MD5 CfD3401zMJIPtsSsh+PH+x D88qHtNYNANR8pexuvETnd
-------------------------------------------------------------------------------
Rule Name: Security Control (/etc/security)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 2
----------------------------------------
Modified object name: /etc/security/ca/ca.serial
Property: Expected Observed
------------- ----------- -----------
* Size 3 5
* Modify Time Thu Apr 25 01:42:01 2013 Sat Nov 21 14:45:24 2020
* Change Time Thu Apr 25 01:42:01 2013 Sat Nov 21 14:45:24 2020
* CRC32 Dg1W63 DJzWBU
* MD5 BysqyQ9/P/B1qTfWvo/D3D B9gQ119j9LQ/1QGALSLAU/
Modified object name: /etc/security/ca/new-certs
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:42:01 2013 Sat Nov 21 14:45:24 2020
* Change Time Thu Apr 25 01:42:01 2013 Sat Nov 21 14:45:24 2020
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/httpd/conf)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /etc/httpd/conf
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:43:47 2013 Mon May 13 09:22:19 2013
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/rc.d)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 19
----------------------------------------
Added object name: /etc/rc.d/rc6.d/K83named
Added object name: /etc/rc.d/rc2.d/K92iptables
Added object name: /etc/rc.d/rc2.d/S50snmptrapd
Added object name: /etc/rc.d/rc2.d/S23NetworkManager
Added object name: /etc/rc.d/rc2.d/S24named
Added object name: /etc/rc.d/rc1.d/K83named
Added object name: /etc/rc.d/rc0.d/K83named
Added object name: /etc/rc.d/rc5.d/K92iptables
Added object name: /etc/rc.d/rc5.d/S50snmptrapd
Added object name: /etc/rc.d/rc5.d/S23NetworkManager
Added object name: /etc/rc.d/rc5.d/S24named
Added object name: /etc/rc.d/rc4.d/K92iptables
Added object name: /etc/rc.d/rc4.d/S50snmptrapd
Added object name: /etc/rc.d/rc4.d/S23NetworkManager
Added object name: /etc/rc.d/rc4.d/S24named
Added object name: /etc/rc.d/rc3.d/K92iptables
Added object name: /etc/rc.d/rc3.d/S50snmptrapd
Added object name: /etc/rc.d/rc3.d/S23NetworkManager
Added object name: /etc/rc.d/rc3.d/S24named
----------------------------------------
Removed Objects: 20
----------------------------------------
Removed object name: /etc/rc.d/rc6.d/K87named
Removed object name: /etc/rc.d/rc2.d/K84NetworkManager
Removed object name: /etc/rc.d/rc2.d/K50snmptrapd
Removed object name: /etc/rc.d/rc2.d/S08iptables
Removed object name: /etc/rc.d/rc2.d/S13named
Removed object name: /etc/rc.d/rc1.d/K87named
Removed object name: /etc/rc.d/rc0.d/K87named
Removed object name: /etc/rc.d/rc5.d/K84NetworkManager
Removed object name: /etc/rc.d/rc5.d/K50snmptrapd
Removed object name: /etc/rc.d/rc5.d/S08iptables
Removed object name: /etc/rc.d/rc5.d/S13named
Removed object name: /etc/rc.d/rc4.d/K84NetworkManager
Removed object name: /etc/rc.d/rc4.d/K50snmptrapd
Removed object name: /etc/rc.d/rc4.d/S08iptables
Removed object name: /etc/rc.d/rc4.d/S13named
Removed object name: /etc/rc.d/rc3.d/K84NetworkManager
Removed object name: /etc/rc.d/rc3.d/K50snmptrapd
Removed object name: /etc/rc.d/rc3.d/S08iptables
Removed object name: /etc/rc.d/rc3.d/S13named
Removed object name: /etc/rc.d/rocksconfig.d/post-99-tripwire
----------------------------------------
Modified Objects: 94
----------------------------------------
Modified object name: /etc/rc.d/rc0.d
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K15411
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809558 809487
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K50mcelogd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 801502 801500
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K50sgemaster.div5
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809583 809371
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K50snmptrapd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:38:02 2013 Wed May 15 03:19:44 2013
Modified object name: /etc/rc.d/rc0.d/K73pcscd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K74ipmi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K83nfslock
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K83rpcgssd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K83rpcidmapd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K84NetworkManager
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:14:00 2013
Modified object name: /etc/rc.d/rc0.d/K84wpa_supplicant
Property: Expected Observed
------------- ----------- -----------
* Inode Number 796281 792913
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K88iscsi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc0.d/K90network
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:34:05 2013 Wed May 15 15:14:13 2013
Modified object name: /etc/rc.d/rc0.d/K92iptables
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:42:01 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K15411
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809574 809488
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K50mcelogd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 801503 801501
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K50sgemaster.div5
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809620 809372
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K50snmptrapd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:38:02 2013 Wed May 15 03:19:44 2013
Modified object name: /etc/rc.d/rc1.d/K73pcscd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K74ipmi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K83nfslock
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K83rpcgssd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K83rpcidmapd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K84NetworkManager
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:14:00 2013
Modified object name: /etc/rc.d/rc1.d/K84wpa_supplicant
Property: Expected Observed
------------- ----------- -----------
* Inode Number 798113 796281
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K88iscsi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc1.d/K90network
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:34:05 2013 Wed May 15 15:14:13 2013
Modified object name: /etc/rc.d/rc1.d/K92iptables
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:42:01 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d/K50mcelogd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809368 801502
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d/K50sgemaster.div5
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809643 809416
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d/K73pcscd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d/K74ipmi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d/K83nfslock
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d/K83rpcgssd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d/K83rpcidmapd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d/K84wpa_supplicant
Property: Expected Observed
------------- ----------- -----------
* Inode Number 801497 796788
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d/K88iscsi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc2.d/S10network
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:34:05 2013 Wed May 15 15:14:13 2013
Modified object name: /etc/rc.d/rc2.d/S65411
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809577 809489
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d/K73pcscd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d/K74ipmi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d/K84wpa_supplicant
Property: Expected Observed
------------- ----------- -----------
* Inode Number 801498 798113
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d/S10network
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:34:05 2013 Wed May 15 15:14:13 2013
Modified object name: /etc/rc.d/rc3.d/S13iscsi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d/S24nfslock
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d/S24rpcgssd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d/S24rpcidmapd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d/S50mcelogd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809369 801503
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d/S50sgemaster.div5
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809644 809418
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc3.d/S65411
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809579 809490
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d/K50mcelogd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809370 809368
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d/K50sgemaster.div5
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809645 809484
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d/K73pcscd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d/K74ipmi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d/K84wpa_supplicant
Property: Expected Observed
------------- ----------- -----------
* Inode Number 801499 801497
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d/S10network
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:34:05 2013 Wed May 15 15:14:13 2013
Modified object name: /etc/rc.d/rc4.d/S13iscsi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d/S24nfslock
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d/S24rpcgssd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d/S24rpcidmapd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc4.d/S65411
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809580 809491
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d/K73pcscd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d/K74ipmi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d/K84wpa_supplicant
Property: Expected Observed
------------- ----------- -----------
* Inode Number 801500 801498
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d/S10network
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:34:05 2013 Wed May 15 15:14:13 2013
Modified object name: /etc/rc.d/rc5.d/S13iscsi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d/S24nfslock
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d/S24rpcgssd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d/S24rpcidmapd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d/S50mcelogd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809371 809369
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d/S50sgemaster.div5
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809646 809485
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc5.d/S65411
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809581 809492
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K15411
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809582 809493
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K50mcelogd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809372 809370
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K50sgemaster.div5
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809647 809486
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K50snmptrapd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:38:02 2013 Wed May 15 03:19:44 2013
Modified object name: /etc/rc.d/rc6.d/K73pcscd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K74ipmi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K83nfslock
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K83rpcgssd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K83rpcidmapd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K84NetworkManager
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:41:25 2013 Wed May 15 15:14:00 2013
Modified object name: /etc/rc.d/rc6.d/K84wpa_supplicant
Property: Expected Observed
------------- ----------- -----------
* Inode Number 801501 801499
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K88iscsi
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:18 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rc6.d/K90network
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:34:05 2013 Wed May 15 15:14:13 2013
Modified object name: /etc/rc.d/rc6.d/K92iptables
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:42:01 2013 Wed May 15 15:35:21 2013
Modified object name: /etc/rc.d/rocksconfig.d
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:47:30 2013 Thu Apr 25 01:50:20 2013
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/sysconfig)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 1
----------------------------------------
Added object name: /etc/sysconfig/network-scripts/org.ifcfg-eth1
----------------------------------------
Modified Objects: 6
----------------------------------------
Modified object name: /etc/sysconfig
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:14 2013 Sat May 18 15:02:03 2019
Modified object name: /etc/sysconfig/clock
Property: Expected Observed
------------- ----------- -----------
* Inode Number 672555 658583
* Size 27 24
* Modify Time Thu Apr 25 01:41:21 2013 Thu May 16 02:03:21 2013
* CRC32 Ckicag D42DhS
* MD5 BYa4DY/c0LZDlWqOS4jYwK DfoolS6HHZUHaxItjMd1bz
Modified object name: /etc/sysconfig/dhcpd
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:47:29 2013 Sat Nov 21 14:44:39 2020
Modified object name: /etc/sysconfig/iptables
Property: Expected Observed
------------- ----------- -----------
* Size 1602 1590
* Modify Time Thu Apr 25 01:42:03 2013 Mon May 13 10:44:46 2013
* CRC32 D2oX0n DdBxnz
* MD5 Aq839VWmYaYka8O4jmGecO Bnd/mgqXZ3OKrQCAC2s2VI
Modified object name: /etc/sysconfig/network-scripts
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:43:49 2013 Thu Oct 17 17:49:08 2013
Modified object name: /etc/sysconfig/network-scripts/ifcfg-eth1
Property: Expected Observed
------------- ----------- -----------
* Inode Number 655376 672741
* Modify Time Thu Apr 25 01:41:56 2013 Thu Oct 17 17:54:51 2013
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/fstab)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /etc/fstab
Property: Expected Observed
------------- ----------- -----------
* Inode Number 666052 672776
* Size 1047 1568
* Modify Time Thu Apr 25 01:43:50 2013 Sat May 18 15:06:22 2019
* CRC32 CVcrHl Cwrolw
* MD5 CGk/Wpj38xS1DL2S/L7mTH Ah/Olsm2CUV7qYrqaeA4HV
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/group-)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /etc/group-
Property: Expected Observed
------------- ----------- -----------
* Size 875 879
* Modify Time Thu Apr 25 01:42:13 2013 Thu Apr 25 01:44:15 2013
* CRC32 BZuC15 BGThFN
* MD5 BRqJZUlI2xqik9MTDvZWg+ CfD3401zMJIPtsSsh+PH+x
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/hosts.allow)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /etc/hosts.allow
Property: Expected Observed
------------- ----------- -----------
* Inode Number 655395 672762
* Size 370 406
* Modify Time Tue Jan 12 05:28:22 2010 Thu Oct 8 18:49:27 2020
* CRC32 B9Fn57 AmVFcK
* MD5 A/t9GB4+YFypFUHA2CdTYW D8p+c6moDRxSA1KpJvpcHT
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/hosts.deny)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /etc/hosts.deny
Property: Expected Observed
------------- ----------- -----------
* Inode Number 655396 672763
* Size 460 27379
* Modify Time Tue Jan 12 05:28:22 2010 Thu Oct 8 18:49:18 2020
* Blocks 8 56
* CRC32 DI5Lsc CY8csh
* MD5 BPTofZ6bcj2iL4lJHLLXWN A0mh20hu0/u793p6VKkAXB
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/ssh)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 5
----------------------------------------
Modified object name: /etc/ssh
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:16 2013 Wed May 15 15:34:33 2013
Modified object name: /etc/ssh/authorized_keys
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:45:16 2013 Thu Apr 25 01:59:26 2013
Modified object name: /etc/ssh/shosts.equiv
Property: Expected Observed
------------- ----------- -----------
* Size 118 3999
* Modify Time Thu Apr 25 01:47:28 2013 Sat Nov 21 14:45:27 2020
* CRC32 ARMTln CzU2w5
* MD5 BNISOJDbpTv1vPakX46Xpb B/Nz+SATCwaNUJhl7PJiFH
Modified object name: /etc/ssh/ssh_known_hosts
Property: Expected Observed
------------- ----------- -----------
* Size 1742 128049
* Modify Time Thu Apr 25 01:47:29 2013 Sat Nov 21 14:45:27 2020
* Blocks 8 256
* CRC32 DYHDas B81z7E
* MD5 CGQ5aQXGdeBrzzlv050F4X AOZgAsfD/Psm9XbnQPCAA3
Modified object name: /etc/ssh/sshd_config
Property: Expected Observed
------------- ----------- -----------
* Inode Number 669702 672729
* Size 3923 3921
* Modify Time Thu Apr 25 01:43:49 2013 Mon May 13 10:45:46 2013
* CRC32 Cjac7C BKT+Bl
* MD5 DBKtIviQYzTrgYdtF4WKiu A6z2O2zWDEYJGNTg2M44V5
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/passwd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /etc/passwd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 672725 672742
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/hosts)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /etc/hosts
Property: Expected Observed
------------- ----------- -----------
* Inode Number 571915 672772
-------------------------------------------------------------------------------
Rule Name: Critical configuration files (/etc/resolv.conf)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /etc/resolv.conf
Property: Expected Observed
------------- ----------- -----------
* Inode Number 659486 655396
-------------------------------------------------------------------------------
Rule Name: Libraries (/usr/lib)
Severity Level: 66
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 35
----------------------------------------
Added object name: /usr/lib/openssl
Added object name: /usr/lib/openssl/engines
Added object name: /usr/lib/openssl/engines/libaep.so
Added object name: /usr/lib/openssl/engines/libnuron.so
Added object name: /usr/lib/openssl/engines/libubsec.so
Added object name: /usr/lib/openssl/engines/libpadlock.so
Added object name: /usr/lib/openssl/engines/libgmp.so
Added object name: /usr/lib/openssl/engines/libcswift.so
Added object name: /usr/lib/openssl/engines/libatalla.so
Added object name: /usr/lib/openssl/engines/libsureware.so
Added object name: /usr/lib/openssl/engines/lib4758cca.so
Added object name: /usr/lib/openssl/engines/libcapi.so
Added object name: /usr/lib/openssl/engines/libchil.so
Added object name: /usr/lib/libkdb5.so.5.0
Added object name: /usr/lib/krb5
Added object name: /usr/lib/krb5/plugins
Added object name: /usr/lib/krb5/plugins/authdata
Added object name: /usr/lib/krb5/plugins/kdb
Added object name: /usr/lib/krb5/plugins/kdb/db2.so
Added object name: /usr/lib/krb5/plugins/libkrb5
Added object name: /usr/lib/krb5/plugins/preauth
Added object name: /usr/lib/krb5/plugins/preauth/encrypted_challenge.so
Added object name: /usr/lib/.libcrypto.so.1.0.0.hmac
Added object name: /usr/lib/libkadm5srv_mit.so.8.0
Added object name: /usr/lib/.libssl.so.10.hmac
Added object name: /usr/lib/libkadm5srv_mit.so.8
Added object name: /usr/lib/libssl.so.10
Added object name: /usr/lib/libkdb5.so.5
Added object name: /usr/lib/libssl.so.1.0.0
Added object name: /usr/lib/libkadm5clnt_mit.so.8.0
Added object name: /usr/lib/.libcrypto.so.10.hmac
Added object name: /usr/lib/.libssl.so.1.0.0.hmac
Added object name: /usr/lib/libcrypto.so.1.0.0
Added object name: /usr/lib/libkadm5clnt_mit.so.8
Added object name: /usr/lib/libcrypto.so.10
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /usr/lib
Property: Expected Observed
------------- ----------- -----------
* Num Links 31 33
* Modify Time Thu Apr 25 01:48:21 2013 Sat Apr 12 23:31:06 2014
-------------------------------------------------------------------------------
Rule Name: OS executables and libraries (/lib)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 17
----------------------------------------
Added object name: /lib/libkeyutils.so.1
Added object name: /lib/libk5crypto.so.3.1
Added object name: /lib/libkrb5support.so.0.1
Added object name: /lib/libkeyutils.so.1.3
Added object name: /lib/libkrb5.so.3
Added object name: /lib/libkrb5.so.3.3
Added object name: /lib/libselinux.so.1
Added object name: /lib/libkrb5support.so.0
Added object name: /lib/libcom_err.so.2.1
Added object name: /lib/libgssrpc.so.4.1
Added object name: /lib/libgssapi_krb5.so.2
Added object name: /lib/libz.so.1
Added object name: /lib/libgssapi_krb5.so.2.2
Added object name: /lib/libgssrpc.so.4
Added object name: /lib/libcom_err.so.2
Added object name: /lib/libz.so.1.2.3
Added object name: /lib/libk5crypto.so.3
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /lib
Property: Expected Observed
------------- ----------- -----------
* Modify Time Thu Apr 25 01:48:11 2013 Sat Apr 12 23:31:04 2014
-------------------------------------------------------------------------------
Rule Name: System boot changes (/lib/modules)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 14
----------------------------------------
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.alias
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809493 791448
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.alias.bin
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809494 809767
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.ccwmap
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809487 809882
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.dep
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809513 809879
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.dep.bin
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809484 791268
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.ieee1394map
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809488 809844
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.inputmap
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809490 791250
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.isapnpmap
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809489 791332
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.ofmap
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809491 791429
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.pcimap
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809485 809834
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.seriomap
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809492 809786
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.symbols
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809495 791248
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.symbols.bin
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809496 791313
Modified object name: /lib/modules/2.6.32-279.14.1.el6.x86_64/modules.usbmap
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809486 791246
-------------------------------------------------------------------------------
Rule Name: System boot changes (/dev/log)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /dev/log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 11858 699713642
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/log)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 67
----------------------------------------
Added object name: /var/log/sa/sar02
Added object name: /var/log/sa/sa03
Added object name: /var/log/sa/sar01
Added object name: /var/log/sa/sa31
Added object name: /var/log/sa/sa02
Added object name: /var/log/sa/sa07
Added object name: /var/log/sa/sa04
Added object name: /var/log/sa/sar03
Added object name: /var/log/sa/sar06
Added object name: /var/log/sa/sa08
Added object name: /var/log/sa/sa05
Added object name: /var/log/sa/sa06
Added object name: /var/log/sa/sar31
Added object name: /var/log/sa/sar04
Added object name: /var/log/sa/sar07
Added object name: /var/log/sa/sa01
Added object name: /var/log/sa/sar05
Added object name: /var/log/sa/sar30
Added object name: /var/log/gdm/:1-slave.log
Added object name: /var/log/gdm/:4.log.1
Added object name: /var/log/gdm/:0-greeter.log.2
Added object name: /var/log/gdm/:3.log
Added object name: /var/log/gdm/:0-greeter.log.1
Added object name: /var/log/gdm/:0.log.1
Added object name: /var/log/gdm/:1.log.2
Added object name: /var/log/gdm/:0-slave.log.2
Added object name: /var/log/gdm/:5-slave.log
Added object name: /var/log/gdm/:5-slave.log.1
Added object name: /var/log/gdm/:4.log
Added object name: /var/log/gdm/:2.log.1
Added object name: /var/log/gdm/:2.log
Added object name: /var/log/gdm/:4-slave.log.1
Added object name: /var/log/gdm/:0.log.4
Added object name: /var/log/gdm/:1-slave.log.1
Added object name: /var/log/gdm/:2-slave.log
Added object name: /var/log/gdm/:4-slave.log
Added object name: /var/log/gdm/:0-greeter.log.4
Added object name: /var/log/gdm/:5.log
Added object name: /var/log/gdm/:1-slave.log.2
Added object name: /var/log/gdm/:0.log.2
Added object name: /var/log/gdm/:5.log.1
Added object name: /var/log/gdm/:1.log.1
Added object name: /var/log/gdm/:0-slave.log.4
Added object name: /var/log/gdm/:3.log.1
Added object name: /var/log/gdm/:2-slave.log.1
Added object name: /var/log/gdm/:3-slave.log.1
Added object name: /var/log/gdm/:0-slave.log.1
Added object name: /var/log/gdm/:3-slave.log
Added object name: /var/log/gdm/:1-greeter.log
Added object name: /var/log/gdm/:1.log
Added object name: /var/log/gdm/:0-greeter.log.3
Added object name: /var/log/gdm/:0.log.3
Added object name: /var/log/gdm/:0-slave.log.3
Added object name: /var/log/Xorg.2.log.old
Added object name: /var/log/dmesg.old
Added object name: /var/log/Xorg.4.log
Added object name: /var/log/yum.log
Added object name: /var/log/Xorg.3.log.old
Added object name: /var/log/Xorg.0.log.old
Added object name: /var/log/Xorg.2.log
Added object name: /var/log/Xorg.3.log
Added object name: /var/log/Xorg.5.log
Added object name: /var/log/Xorg.1.log
Added object name: /var/log/Xorg.4.log.old
Added object name: /var/log/Xorg.5.log.old
Added object name: /var/log/Xorg.1.log.old
Added object name: /var/log/wpa_supplicant.log
----------------------------------------
Removed Objects: 3
----------------------------------------
Removed object name: /var/log/sa/sa25
Removed object name: /var/log/cron
Removed object name: /var/log/maillog
----------------------------------------
Modified Objects: 18
----------------------------------------
Modified object name: /var/log/Xorg.0.log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3057 3058
Modified object name: /var/log/boot.log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 30 1609
Modified object name: /var/log/btmp
Property: Expected Observed
------------- ----------- -----------
* Inode Number 1461 4599
Modified object name: /var/log/dmesg
Property: Expected Observed
------------- ----------- -----------
* Inode Number 23 30
Modified object name: /var/log/dracut.log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 1783 3188
Modified object name: /var/log/gdm/:0-greeter.log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3067 3121
Modified object name: /var/log/gdm/:0-slave.log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3055 3207
Modified object name: /var/log/gdm/:0.log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3056 3241
Modified object name: /var/log/httpd/access_log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3008 5088
Modified object name: /var/log/httpd/error_log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3006 5168
Modified object name: /var/log/httpd/mod_jk.log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3011 5169
Modified object name: /var/log/httpd/ssl_access_log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3009 5170
Modified object name: /var/log/httpd/ssl_error_log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3007 5171
Modified object name: /var/log/httpd/ssl_request_log
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3010 5172
Modified object name: /var/log/messages
Property: Expected Observed
------------- ----------- -----------
* Inode Number 1608 4198
* Mode -rw------- -rw-r--r--
Modified object name: /var/log/secure
Property: Expected Observed
------------- ----------- -----------
* Inode Number 1609 4393
Modified object name: /var/log/spooler
Property: Expected Observed
------------- ----------- -----------
* Inode Number 1611 4394
Modified object name: /var/log/wtmp
Property: Expected Observed
------------- ----------- -----------
* Inode Number 1459 4141
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/iptables)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Removed Objects: 1
----------------------------------------
Removed object name: /var/lock/subsys/iptables
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/rpc.statd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/rpc.statd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2937 2964
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/local)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/local
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3044 3175
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/network)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/network
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2901 2903
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/rsyslog)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/rsyslog
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2907 4203
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/atd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/atd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3026 3101
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/crond)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/crond
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3018 3123
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/httpd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/httpd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3014 3116
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/autofs)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/autofs
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2951 3006
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/netfs)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/netfs
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2939 2967
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/xinetd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/xinetd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2970 3043
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/acpid)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/acpid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2941 2969
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/dhcpd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/dhcpd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2977 3088
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/fcoe)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/fcoe
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2928 2945
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/foundation-mysql)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/foundation-mysql
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2975 3082
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/ganglia-restore-rrds)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/ganglia-restore-rrds
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2920 2935
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/gmetad)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/gmetad
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2921 2937
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/gmond)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/gmond
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2978 3097
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/haldaemon)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/haldaemon
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2945 2975
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/libvirt-guests)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/libvirt-guests
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3040 3165
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/lldpad)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/lldpad
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2924 2940
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/lvm2-monitor)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/lvm2-monitor
Property: Expected Observed
------------- ----------- -----------
* Inode Number 1460 2882
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/mcelogd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/mcelogd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2961 3024
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/messagebus)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/messagebus
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2933 2949
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/named)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/named
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2913 2959
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/nfsd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/nfsd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2957 3017
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/postfix)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/postfix
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2980 3099
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/pppoe-server)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/pppoe-server
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2902 2904
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/rpcbind)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/rpcbind
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2916 2929
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/rpc.idmapd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/rpc.idmapd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2938 2966
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/rpc.mountd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/rpc.mountd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2956 3016
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/rpc.rquotad)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/rpc.rquotad
Property: Expected Observed
------------- ----------- -----------
* Inode Number 1692 3014
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/sec_channel_server)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/sec_channel_server
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2925 2941
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/sgemaster)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/sgemaster
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3059 3025
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/snmpd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/snmpd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2966 3022
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/sshd)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/sshd
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2968 3039
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/lock/subsys/tracker-server)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /var/lock/subsys/tracker-server
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3052 3217
-------------------------------------------------------------------------------
Rule Name: System boot changes (/var/run)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 7
----------------------------------------
Added object name: /var/run/gdm/auth-for-gdm-rRzkJw
Added object name: /var/run/gdm/auth-for-gdm-rRzkJw/database
Added object name: /var/run/sudo
Added object name: /var/run/sudo/root
Added object name: /var/run/NetworkManager/NetworkManager.pid
Added object name: /var/run/wpa_supplicant.pid
Added object name: /var/run/snmptrapd.pid
----------------------------------------
Removed Objects: 2
----------------------------------------
Removed object name: /var/run/gdm/auth-for-gdm-nqEKL8
Removed object name: /var/run/gdm/auth-for-gdm-nqEKL8/database
----------------------------------------
Modified Objects: 46
----------------------------------------
Modified object name: /var/run
Property: Expected Observed
------------- ----------- -----------
* Num Links 30 31
Modified object name: /var/run/ConsoleKit/database
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3061 3300
Modified object name: /var/run/acpid.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2942 2971
Modified object name: /var/run/acpid.socket
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2940 2968
Modified object name: /var/run/atd.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3024 3134
Modified object name: /var/run/autofs-running
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2947 2976
Modified object name: /var/run/autofs.fifo-home
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2950 2980
Modified object name: /var/run/autofs.fifo-share
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2949 2978
Modified object name: /var/run/autofs.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2948 2977
Modified object name: /var/run/console-kit-daemon.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3062 3364
Modified object name: /var/run/cron.reboot
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3019 3133
Modified object name: /var/run/crond.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3017 3120
Modified object name: /var/run/dbus/system_bus_socket
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2930 2947
Modified object name: /var/run/dhcpd.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 1769 2936
Modified object name: /var/run/fcm
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2927 2943
Modified object name: /var/run/fcm/fcm_clif
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2929 2946
Modified object name: /var/run/fcoemon.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2926 2942
Modified object name: /var/run/gdm/greeter
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3063 3143
Modified object name: /var/run/gdm.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3054 3295
Modified object name: /var/run/haldaemon.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2943 2974
Modified object name: /var/run/httpd/httpd.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3020 3135
Modified object name: /var/run/irqbalance.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2909 2917
Modified object name: /var/run/ksmtune.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3015 3109
Modified object name: /var/run/libvirt/libvirt-sock
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3035 3141
Modified object name: /var/run/libvirt/libvirt-sock-ro
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3036 3159
Modified object name: /var/run/libvirt/network/default.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3042 1692
Modified object name: /var/run/libvirtd.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 3034 3131
Modified object name: /var/run/lldpad.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2922 2939
Modified object name: /var/run/mcelog-client
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2959 3018
Modified object name: /var/run/mcelog.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2960 3023
Modified object name: /var/run/messagebus.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2932 2948
Modified object name: /var/run/named/named.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2910 2954
Modified object name: /var/run/named/session.key
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2911 2956
Modified object name: /var/run/named.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2912 2957
Modified object name: /var/run/ntpd.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2971 3050
Modified object name: /var/run/portreserve/socket
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2904 2906
Modified object name: /var/run/portreserve.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2903 2905
Modified object name: /var/run/rpc.statd.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2934 2960
Modified object name: /var/run/rpcbind.lock
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2914 2920
Modified object name: /var/run/rpcbind.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2917 2933
Modified object name: /var/run/rpcbind.sock
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2915 2921
Modified object name: /var/run/sm-notify.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2935 2961
Modified object name: /var/run/snmpd.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2964 3026
Modified object name: /var/run/sshd.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2967 3035
Modified object name: /var/run/syslogd.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2905 2912
Modified object name: /var/run/xinetd.pid
Property: Expected Observed
------------- ----------- -----------
* Inode Number 2969 3042
-------------------------------------------------------------------------------
Rule Name: Root config files (/root)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 232
----------------------------------------
Added object name: /root/temp.sh
Added object name: /root/dotime
Added object name: /root/out1
Added object name: /root/mem.after
Added object name: /root/.nautilus
Added object name: /root/.gvfs
Added object name: /root/check_tesla_temp.NOAUG
Added object name: /root/delete_eqw
Added object name: /root/.redhat
Added object name: /root/.redhat/esc
Added object name: /root/.xsession-errors
Added object name: /root/.pulse
Added object name: /root/.pulse/7b14cbd74472e1bb6c74dec100000021-runtime
Added object name: /root/down2
Added object name: /root/.dbus
Added object name: /root/.dbus/session-bus
Added object name: /root/.dbus/session-bus/7b14cbd74472e1bb6c74dec100000021-0
Added object name: /root/.imsettings.log
Added object name: /root/.recently-used.xbel
Added object name: /root/lsall
Added object name: /root/out.kaka
Added object name: /root/up2
Added object name: /root/.dmrc
Added object name: /root/.gnome2_private
Added object name: /root/donlon
Added object name: /root/donodes_long
Added object name: /root/trappy_cluster.C1
Added object name: /root/.mozilla
Added object name: /root/.mozilla/firefox
Added object name: /root/.mozilla/firefox/profiles.ini
Added object name: /root/.mozilla/firefox/tz7dybrs.default
Added object name: /root/.mozilla/firefox/tz7dybrs.default/extensions.sqlite
Added object name: /root/.mozilla/firefox/tz7dybrs.default/compatibility.ini
Added object name: /root/.mozilla/firefox/tz7dybrs.default/extensions.ini
Added object name: /root/.mozilla/firefox/tz7dybrs.default/search.json
Added object name: /root/.mozilla/firefox/tz7dybrs.default/content-prefs.sqlite
Added object name: /root/.mozilla/firefox/tz7dybrs.default/search.sqlite
Added object name: /root/.mozilla/firefox/tz7dybrs.default/key3.db
Added object name: /root/.mozilla/firefox/tz7dybrs.default/prefs.js
Added object name: /root/.mozilla/firefox/tz7dybrs.default/permissions.sqlite
Added object name: /root/.mozilla/firefox/tz7dybrs.default/urlclassifier3.sqlite
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/0
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/D
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/_CACHE_001_
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/_CACHE_MAP_
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/C
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/5
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/A
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/B
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/_CACHE_002_
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/1
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/_CACHE_003_
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/F
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/4
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/E
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/3
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/2
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/6
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/8
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/7
Added object name: /root/.mozilla/firefox/tz7dybrs.default/Cache/9
Added object name: /root/.mozilla/firefox/tz7dybrs.default/urlclassifier.pset
Added object name: /root/.mozilla/firefox/tz7dybrs.default/localstore.rdf
Added object name: /root/.mozilla/firefox/tz7dybrs.default/cert8.db
Added object name: /root/.mozilla/firefox/tz7dybrs.default/cookies.sqlite
Added object name: /root/.mozilla/firefox/tz7dybrs.default/sessionstore.js
Added object name: /root/.mozilla/firefox/tz7dybrs.default/chromeappsstore.sqlite
Added object name: /root/.mozilla/firefox/tz7dybrs.default/secmod.db
Added object name: /root/.mozilla/firefox/tz7dybrs.default/bookmarkbackups
Added object name: /root/.mozilla/firefox/tz7dybrs.default/bookmarkbackups/bookmarks-2013-05-15.json
Added object name: /root/.mozilla/firefox/tz7dybrs.default/.parentlock
Added object name: /root/.mozilla/firefox/tz7dybrs.default/startupCache
Added object name: /root/.mozilla/firefox/tz7dybrs.default/startupCache/startupCache.8.little
Added object name: /root/.mozilla/firefox/tz7dybrs.default/places.sqlite
Added object name: /root/.mozilla/firefox/tz7dybrs.default/webappsstore.sqlite
Added object name: /root/.mozilla/extensions
Added object name: /root/.mozilla/extensions/{ec8030f7-c20a-464f-9b0e-13a3a9e97384}
Added object name: /root/don
Added object name: /root/cg_ok
Added object name: /root/down1
Added object name: /root/.ICEauthority
Added object name: /root/badnodes
Added object name: /root/old
Added object name: /root/old/pi_tesla
Added object name: /root/old/pi_gen
Added object name: /root/old/create_user
Added object name: /root/old/trappy
Added object name: /root/Desktop
Added object name: /root/Desktop/untitled folder
Added object name: /root/Desktop/gnome-terminal.desktop
Added object name: /root/Desktop/nm-connection-editor.desktop
Added object name: /root/notes
Added object name: /root/ok2
Added object name: /root/trappy_cluster.NOFRONT
Added object name: /root/ok1
Added object name: /root/donodes.TIMED
Added object name: /root/.gconf
Added object name: /root/.gconf/desktop
Added object name: /root/.gconf/desktop/%gconf.xml
Added object name: /root/.gconf/desktop/gnome
Added object name: /root/.gconf/desktop/gnome/%gconf.xml
Added object name: /root/.gconf/desktop/gnome/session
Added object name: /root/.gconf/desktop/gnome/session/%gconf.xml
Added object name: /root/.gconf/desktop/gnome/accessibility
Added object name: /root/.gconf/desktop/gnome/accessibility/%gconf.xml
Added object name: /root/.gconf/desktop/gnome/accessibility/keyboard
Added object name: /root/.gconf/desktop/gnome/accessibility/keyboard/%gconf.xml
Added object name: /root/.gconf/desktop/gnome/interface
Added object name: /root/.gconf/desktop/gnome/interface/%gconf.xml
Added object name: /root/.gconf/desktop/gnome/peripherals
Added object name: /root/.gconf/desktop/gnome/peripherals/%gconf.xml
Added object name: /root/.gconf/desktop/gnome/peripherals/keyboard
Added object name: /root/.gconf/desktop/gnome/peripherals/keyboard/%gconf.xml
Added object name: /root/.gconf/desktop/gnome/peripherals/keyboard/host-div5@46@diviner@46@ucla@46@edu
Added object name: /root/.gconf/desktop/gnome/peripherals/keyboard/host-div5@46@diviner@46@ucla@46@edu/0
Added object name: /root/.gconf/desktop/gnome/peripherals/keyboard/host-div5@46@diviner@46@ucla@46@edu/0/%gconf.xml
Added object name: /root/.gconf/desktop/gnome/peripherals/keyboard/host-div5@46@diviner@46@ucla@46@edu/%gconf.xml
Added object name: /root/.gconf/apps
Added object name: /root/.gconf/apps/%gconf.xml
Added object name: /root/.gconf/apps/nm-applet
Added object name: /root/.gconf/apps/nm-applet/%gconf.xml
Added object name: /root/.gconf/apps/gnome-screenshot
Added object name: /root/.gconf/apps/gnome-screenshot/%gconf.xml
Added object name: /root/.gconf/apps/nautilus
Added object name: /root/.gconf/apps/nautilus/%gconf.xml
Added object name: /root/.gconf/apps/nautilus/desktop-metadata
Added object name: /root/.gconf/apps/nautilus/desktop-metadata/home
Added object name: /root/.gconf/apps/nautilus/desktop-metadata/home/%gconf.xml
Added object name: /root/.gconf/apps/nautilus/desktop-metadata/%gconf.xml
Added object name: /root/.gconf/apps/nautilus/desktop-metadata/trash
Added object name: /root/.gconf/apps/nautilus/desktop-metadata/trash/%gconf.xml
Added object name: /root/.gconf/apps/nautilus/desktop-metadata/computer
Added object name: /root/.gconf/apps/nautilus/desktop-metadata/computer/%gconf.xml
Added object name: /root/.gconf/apps/nautilus/desktop-metadata/directory
Added object name: /root/.gconf/apps/nautilus/desktop-metadata/directory/%gconf.xml
Added object name: /root/.gconf/apps/gnome-screensaver
Added object name: /root/.gconf/apps/gnome-screensaver/%gconf.xml
Added object name: /root/.gconf/apps/gnome-terminal
Added object name: /root/.gconf/apps/gnome-terminal/%gconf.xml
Added object name: /root/.gconf/apps/gnome-terminal/profiles
Added object name: /root/.gconf/apps/gnome-terminal/profiles/%gconf.xml
Added object name: /root/.gconf/apps/gnome-terminal/profiles/Default
Added object name: /root/.gconf/apps/gnome-terminal/profiles/Default/%gconf.xml
Added object name: /root/.gconf/apps/gnome-session
Added object name: /root/.gconf/apps/gnome-session/%gconf.xml
Added object name: /root/.gconf/apps/gnome-session/options
Added object name: /root/.gconf/apps/gnome-session/options/%gconf.xml
Added object name: /root/.gconf/apps/panel
Added object name: /root/.gconf/apps/panel/%gconf.xml
Added object name: /root/.gconf/apps/panel/applets
Added object name: /root/.gconf/apps/panel/applets/clock
Added object name: /root/.gconf/apps/panel/applets/clock/%gconf.xml
Added object name: /root/.gconf/apps/panel/applets/clock/prefs
Added object name: /root/.gconf/apps/panel/applets/clock/prefs/%gconf.xml
Added object name: /root/.gconf/apps/panel/applets/%gconf.xml
Added object name: /root/.gconf/apps/panel/applets/window_list
Added object name: /root/.gconf/apps/panel/applets/window_list/%gconf.xml
Added object name: /root/.gconf/apps/panel/applets/window_list/prefs
Added object name: /root/.gconf/apps/panel/applets/window_list/prefs/%gconf.xml
Added object name: /root/.gconf/apps/panel/applets/workspace_switcher
Added object name: /root/.gconf/apps/panel/applets/workspace_switcher/%gconf.xml
Added object name: /root/.gconf/apps/panel/applets/workspace_switcher/prefs
Added object name: /root/.gconf/apps/panel/applets/workspace_switcher/prefs/%gconf.xml
Added object name: /root/don~
Added object name: /root/snmptrapd.conf
Added object name: /root/.pulse-cookie
Added object name: /root/out.t
Added object name: /root/.gnome2
Added object name: /root/.gnome2/yelp
Added object name: /root/.gnome2/accels
Added object name: /root/.gnome2/accels/nautilus
Added object name: /root/.gnome2/panel2.d
Added object name: /root/.gnome2/panel2.d/default
Added object name: /root/.gnome2/panel2.d/default/launchers
Added object name: /root/.gnome2/keyrings
Added object name: /root/.gnome2/keyrings/login.keyring
Added object name: /root/.gnome2/nautilus-scripts
Added object name: /root/.local
Added object name: /root/.local/share
Added object name: /root/.local/share/.converted-launchers
Added object name: /root/.local/share/applications
Added object name: /root/.local/share/applications/preferred-web-browser.desktop
Added object name: /root/.local/share/applications/preferred-mail-reader.desktop
Added object name: /root/.local/share/gvfs-metadata
Added object name: /root/.local/share/gvfs-metadata/home
Added object name: /root/.local/share/gvfs-metadata/home-86b144fe.log
Added object name: /root/.local/share/gvfs-metadata/trash:-8d910e55.log
Added object name: /root/.local/share/gvfs-metadata/trash:
Added object name: /root/delete_1000
Added object name: /root/.config
Added object name: /root/.config/gnome-session
Added object name: /root/.config/gnome-session/saved-session
Added object name: /root/out
Added object name: /root/check9
Added object name: /root/Eqw.txt
Added object name: /root/check_tesla_temp
Added object name: /root/delnode
Added object name: /root/ttt
Added object name: /root/check_varlog
Added object name: /root/findbad
Added object name: /root/mem.before
Added object name: /root/ct_ok
Added object name: /root/front_disable_reinstall
Added object name: /root/.history
Added object name: /root/.xauthA6zv5M
Added object name: /root/.xsession-errors.old
Added object name: /root/ooo
Added object name: /root/trappy_cluster
Added object name: /root/checku
Added object name: /root/cg
Added object name: /root/fix_ganglia
Added object name: /root/umountall
Added object name: /root/don.TIMED
Added object name: /root/ctn
Added object name: /root/dothis
Added object name: /root/trappy_cluster.68
Added object name: /root/ct
Added object name: /root/check_logins
Added object name: /root/donodes
Added object name: /root/up1
Added object name: /root/fsu
Added object name: /root/.gconfd
Added object name: /root/.gconfd/saved_state
Added object name: /root/dolinks
Added object name: /root/out2
Added object name: /root/.xauthpwAwHP
Added object name: /root/beware
Added object name: /root/beware/remmy
Added object name: /root/front_setup_u
Added object name: /root/loggy
Added object name: /root/foo
----------------------------------------
Removed Objects: 1
----------------------------------------
Removed object name: /root/.tcshrc
----------------------------------------
Modified Objects: 2
----------------------------------------
Modified object name: /root
Property: Expected Observed
------------- ----------- -----------
* Num Links 3 18
* Change Time Thu Apr 25 01:45:14 2013 Mon Dec 21 17:05:30 2020
Modified object name: /root/.cshrc
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809417 809875
* Size 100 1097
* Change Time Thu Apr 25 01:39:02 2013 Wed Feb 6 12:29:33 2019
* CRC32 Bose1R BqQQvi
* MD5 AvY+cHRDswTW+HI3kMD3tO B6rmI7YQpJF53wqf5W/jDO
-------------------------------------------------------------------------------
Rule Name: Root config files (/root/.bashrc)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Modified Objects: 1
----------------------------------------
Modified object name: /root/.bashrc
Property: Expected Observed
------------- ----------- -----------
* Inode Number 809416 792911
-------------------------------------------------------------------------------
Rule Name: Root config files (/root/.bash_history)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 1
----------------------------------------
Added object name: /root/.bash_history
-------------------------------------------------------------------------------
Rule Name: Root config files (/root/.ssh)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 2
----------------------------------------
Added object name: /root/.ssh/not
Added object name: /root/.ssh/kkk
-------------------------------------------------------------------------------
Rule Name: Root config files (/root/.ssh/authorized_keys)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 1
----------------------------------------
Added object name: /root/.ssh/authorized_keys
-------------------------------------------------------------------------------
Rule Name: Root config files (/root/.ssh/id_rsa)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 1
----------------------------------------
Added object name: /root/.ssh/id_rsa
-------------------------------------------------------------------------------
Rule Name: Root config files (/root/.ssh/id_rsa.pub)
Severity Level: 100
-------------------------------------------------------------------------------
----------------------------------------
Added Objects: 1
----------------------------------------
Added object name: /root/.ssh/id_rsa.pub
===============================================================================
Error Report:
===============================================================================
-------------------------------------------------------------------------------
Section: Unix File System
-------------------------------------------------------------------------------
1. File system error.
Filename: /var/lock/subsys/iptables
No such file or directory
2. File system error.
Filename: /var/lock/subsys/ipmi
No such file or directory
-------------------------------------------------------------------------------
*** End of report ***
Open Source Tripwire 2.4 Portions copyright 2000 Tripwire, Inc. Tripwire is a registered
trademark of Tripwire, Inc. This software comes with ABSOLUTELY NO WARRANTY;
for details use --version. This is free software which may be redistributed
or modified only under certain conditions; see COPYING for details.
All rights reserved.