Jan 31 02:32:26 g0n kernel: [72387.381854] grsec: exec of /usr/bin/ffmpeg (ffmpeg -f x11grab -s 1024x768 -r 25 -i :0.0 -c:v libx264 -g 10 -preset ultrafast -threads 0 Screen_150131_0232_g0n.mkv ) by /usr/bin/ffmpeg[bash:17155] uid/euid:1000/1000 gid/egid:1000/1000, parent /bin/bash[bash:9794] uid/euid:1000/1000 gid/egid:1000/1000
Jan 31 02:32:29 g0n kernel: [72389.628376] grsec: exec of /bin/date (date +%y%m%d_%H%M ) by /bin/date[bash:17169] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[bash:17168] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:29 g0n kernel: [72389.629675] grsec: exec of /bin/hostname (hostname ) by /bin/hostname[bash:17170] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[bash:17168] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:29 g0n kernel: [72389.630964] grsec: exec of /bin/touch (touch dump_150131_0232_g0n.pcap ) by /bin/touch[bash:17171] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[bash:17168] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:29 g0n kernel: [72389.632155] grsec: exec of /bin/date (date +%y%m%d_%H%M ) by /bin/date[bash:17172] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[bash:17168] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:29 g0n kernel: [72389.633542] grsec: exec of /bin/hostname (hostname ) by /bin/hostname[bash:17173] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[bash:17168] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:29 g0n kernel: [72389.634815] grsec: exec of /usr/bin/dumpcap (dumpcap -i any -w dump_150131_0232_g0n.pcap ) by /usr/bin/dumpcap[bash:17174] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[bash:17168] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:31 g0n kernel: [72392.214840] 8139too 0000:04:06.0 eth1: link up, 100Mbps, full-duplex, lpa 0x45E1
Jan 31 02:32:31 g0n dhcpcd[10109]: eth1: carrier acquired
Jan 31 02:32:31 g0n kernel: [72392.215811] grsec: exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:17175] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:10109] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:31 g0n dhcpcd[10109]: eth1: IAID 2e:00:80:45
Jan 31 02:32:32 g0n dhcpcd[10109]: eth1: rebinding lease of 192.168.1.2
Jan 31 02:32:32 g0n dhcpcd[10109]: eth1: soliciting an IPv6 router
Jan 31 02:32:32 g0n dhcpcd[10109]: eth1: Router Advertisement from fe80::1
Jan 31 02:32:32 g0n dhcpcd[10109]: eth1: adding default route via fe80::1
Jan 31 02:32:32 g0n kernel: [72392.987103] grsec: exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:17178] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:10109] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.000890] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17180] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17178] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.001629] grsec: exec of /bin/sed (sed -n s/^domain //p eth1:ra ) by /bin/sed[dhcpcd-run-hook:17181] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17180] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.003959] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17182] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17178] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.004714] grsec: exec of /bin/sed (sed -n s/^search //p eth1:ra ) by /bin/sed[dhcpcd-run-hook:17183] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17182] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.006944] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17184] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17178] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.007647] grsec: exec of /bin/sed (sed -n s/^nameserver //p eth1:ra ) by /bin/sed[dhcpcd-run-hook:17185] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17184] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.011446] grsec: exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1:ra ) by /usr/bin/cmp[dhcpcd-run-hook:17187] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17178] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.012965] grsec: exec of /bin/cat (cat /run/dhcpcd/resolv.conf.eth1:ra ) by /bin/cat[dhcpcd-run-hook:17188] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17178] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.014142] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1:ra ) by /bin/rm[dhcpcd-run-hook:17189] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17178] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.015226] grsec: exec of /bin/chmod (chmod 644 /etc/resolv.conf ) by /bin/chmod[dhcpcd-run-hook:17190] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17178] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.016050] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1:ra ) by /bin/rm[dhcpcd-run-hook:17191] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17178] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n kernel: [72393.018517] grsec: exec of /bin/hostname (hostname ) by /bin/hostname[dhcpcd-run-hook:17193] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17192] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:32 g0n dhcpcd[10109]: eth1: requesting DHCPv6 information
Jan 31 02:32:37 g0n dhcpcd[10109]: eth1: leased 192.168.1.2 for 86400 seconds
Jan 31 02:32:37 g0n dhcpcd[10109]: eth1: adding route to 192.168.1.0/24
Jan 31 02:32:37 g0n dhcpcd[10109]: eth1: adding default route via 192.168.1.1
Jan 31 02:32:37 g0n kernel: [72398.075279] grsec: exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:17199] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:10109] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.085602] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17201] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17199] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.086234] grsec: exec of /bin/sed (sed -n s/^domain //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17202] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17201] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.088284] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17203] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17199] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.088879] grsec: exec of /bin/sed (sed -n s/^search //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17204] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17203] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.090930] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17205] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17199] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.091485] grsec: exec of /bin/sed (sed -n s/^nameserver //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17206] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17205] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.094651] grsec: exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1 ) by /usr/bin/cmp[dhcpcd-run-hook:17208] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17199] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.095891] grsec: exec of /bin/cat (cat /run/dhcpcd/resolv.conf.eth1 ) by /bin/cat[dhcpcd-run-hook:17209] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17199] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.097295] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1 ) by /bin/rm[dhcpcd-run-hook:17210] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17199] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.098474] grsec: exec of /bin/chmod (chmod 644 /etc/resolv.conf ) by /bin/chmod[dhcpcd-run-hook:17211] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17199] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.099576] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1 ) by /bin/rm[dhcpcd-run-hook:17212] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17199] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:37 g0n kernel: [72398.102415] grsec: exec of /bin/hostname (hostname ) by /bin/hostname[dhcpcd-run-hook:17214] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17213] uid/euid:0/0 gid/egid:0/0
Jan 31 02:32:47 g0n kernel: [72408.029779] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:3c:94:d5:cf:8f:f0:08:00 SRC=10.16.96.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0xC0 TTL=1 ID=12346 PROTO=2 
Jan 31 02:34:52 g0n kernel: [72533.103723] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:3c:94:d5:cf:8f:f0:08:00 SRC=10.16.96.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0xC0 TTL=1 ID=31863 PROTO=2 
Jan 31 02:36:57 g0n kernel: [72658.178132] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:3c:94:d5:cf:8f:f0:08:00 SRC=10.16.96.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0xC0 TTL=1 ID=42493 PROTO=2 
Jan 31 02:37:11 g0n kernel: [72672.033363] grsec: exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:17233] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:10109] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.042136] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf/eth1:ra ) by /bin/rm[dhcpcd-run-hook:17235] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17233] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.046038] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17238] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17233] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.046937] grsec: exec of /bin/sed (sed -n s/^domain //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17239] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17238] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.050561] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17241] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17233] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.051203] grsec: exec of /bin/sed (sed -n s/^search //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17242] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17241] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.053689] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17243] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17233] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.054283] grsec: exec of /bin/sed (sed -n s/^nameserver //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17244] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17243] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.059461] grsec: exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1:ra ) by /usr/bin/cmp[dhcpcd-run-hook:17246] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17233] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.061064] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1:ra ) by /bin/rm[dhcpcd-run-hook:17247] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17233] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.063537] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1:ra ) by /bin/rm[dhcpcd-run-hook:17248] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17233] uid/euid:0/0 gid/egid:0/0
Jan 31 02:37:11 g0n kernel: [72672.067951] grsec: exec of /bin/hostname (hostname ) by /bin/hostname[dhcpcd-run-hook:17250] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17249] uid/euid:0/0 gid/egid:0/0
Jan 31 02:38:20 g0n kernel: [72741.746764] mrfw_dropIN=eth1 OUT= MAC=00:0e:2e:00:80:45:2c:95:7f:14:4e:c6:08:00 SRC=173.194.112.109 DST=192.168.1.2 LEN=40 TOS=0x00 PREC=0x00 TTL=55 ID=55230 PROTO=TCP SPT=443 DPT=37586 WINDOW=0 RES=0x00 RST URGP=0 
Jan 31 02:39:02 g0n kernel: [72783.252133] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:3c:94:d5:cf:8f:f0:08:00 SRC=10.16.96.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0xC0 TTL=1 ID=48376 PROTO=2 
Jan 31 02:40:01 g0n kernel: [72842.652389] grsec: chdir to /root by /usr/sbin/crond[crond:17256] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/crond[crond:2440] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.652629] grsec: exec of /bin/bash (/bin/sh -c test -x /usr/sbin/run-crons && /usr/sbin/run-crons ) by /bin/bash[crond:17256] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/crond[crond:2440] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.658126] grsec: exec of /usr/sbin/run-crons (/usr/sbin/run-crons ) by /usr/sbin/run-crons[sh:17260] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:17256] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.664175] grsec: exec of /bin/mkdir (mkdir -p /var/spool/cron/lastrun ) by /bin/mkdir[run-crons:17261] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.664753] grsec: chdir to /var by /bin/mkdir[mkdir:17261] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.664766] grsec: chdir to /var/spool by /bin/mkdir[mkdir:17261] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.664776] grsec: chdir to /var/spool/cron by /bin/mkdir[mkdir:17261] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.666066] grsec: exec of /bin/ln (ln -sn 17260 /var/spool/cron/lastrun/lock ) by /bin/ln[run-crons:17262] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.668025] grsec: exec of /usr/bin/find (find /var/spool/cron/lastrun -name cron.hourly -cmin +65 -exec rm {} ; ) by /usr/bin/find[run-crons:17263] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.668880] grsec: chdir to /root by /usr/bin/find[find:17263] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.669898] grsec: exec of /usr/bin/find (find /var/spool/cron/lastrun -name cron.daily -cmin +1445 -exec rm {} ; ) by /usr/bin/find[run-crons:17264] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.670740] grsec: chdir to /root by /usr/bin/find[find:17264] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.671789] grsec: exec of /usr/bin/find (find /var/spool/cron/lastrun -name cron.weekly -cmin +10085 -exec rm {} ; ) by /usr/bin/find[run-crons:17265] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.672598] grsec: chdir to /root by /usr/bin/find[find:17265] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.673588] grsec: exec of /usr/bin/find (find /var/spool/cron/lastrun -name cron.monthly -cmin +44645 -exec rm {} ; ) by /usr/bin/find[run-crons:17266] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.674331] grsec: chdir to /root by /usr/bin/find[find:17266] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.675521] grsec: exec of /bin/touch (touch /var/spool/cron/lastrun ) by /bin/touch[run-crons:17267] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.677527] grsec: exec of /usr/bin/find (find /var/spool/cron/lastrun -newer /var/spool/cron/lastrun -exec /bin/rm -f {} ; ) by /usr/bin/find[run-crons:17268] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.680284] grsec: chdir to /root by /usr/bin/find[find:17268] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:01 g0n kernel: [72842.681400] grsec: exec of /bin/rm (rm -f /var/spool/cron/lastrun/lock ) by /bin/rm[run-crons:17269] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17260] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.150451] grsec: exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:17270] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:10109] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.157086] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf/eth1:ra ) by /bin/rm[dhcpcd-run-hook:17273] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17270] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.159766] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17275] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17270] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.161050] grsec: exec of /bin/sed (sed -n s/^domain //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17276] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17275] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.164025] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17277] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17270] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.165257] grsec: exec of /bin/sed (sed -n s/^search //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17278] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17277] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.169013] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17279] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17270] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.169642] grsec: exec of /bin/sed (sed -n s/^nameserver //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17280] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17279] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.174849] grsec: exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1:ra ) by /usr/bin/cmp[dhcpcd-run-hook:17282] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17270] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.176725] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1:ra ) by /bin/rm[dhcpcd-run-hook:17283] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17270] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.179317] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1:ra ) by /bin/rm[dhcpcd-run-hook:17284] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17270] uid/euid:0/0 gid/egid:0/0
Jan 31 02:40:34 g0n kernel: [72875.184406] grsec: exec of /bin/hostname (hostname ) by /bin/hostname[dhcpcd-run-hook:17286] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17285] uid/euid:0/0 gid/egid:0/0
Jan 31 02:41:07 g0n kernel: [72908.326556] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:3c:94:d5:cf:8f:f0:08:00 SRC=10.16.96.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0xC0 TTL=1 ID=15678 PROTO=2 
Jan 31 02:42:02 g0n postfix/qmgr[2736]: 2A8B238092F: from=<miroslav.rovis1@zg.ht.hr>, size=2792, nrcpt=1 (queue active)
Jan 31 02:42:02 g0n kernel: [72963.023480] grsec: exec of /usr/libexec/postfix/trivial-rewrite (trivial-rewrite -n rewrite -t unix -u -D ) by /usr/libexec/postfix/trivial-rewrite[master:17294] uid/euid:0/0 gid/egid:0/0, parent /usr/libexec/postfix/master[master:2734] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:02 g0n postfix/trivial-rewrite[17294]: running: PATH=/bin:/usr/bin:/usr/local/bin; export PATH; (echo cont;?echo where) | gdb /usr/libexec/postfix/trivial-rewrite 17294 2>&1?>/etc/postfix/trivial-rewrite.17294.log & sleep 5
Jan 31 02:42:02 g0n kernel: [72963.026969] grsec: exec of /bin/bash (sh -c PATH=/bin:/usr/bin:/usr/local/bin; export PATH; (echo cont; echo where) | gdb /usr/libexec/postfix/trivial-rewrite 17294 2) by /bin/bash[trivial-rewrite:17295] uid/euid:0/0 gid/egid:0/0, parent /usr/libexec/postfix/trivial-rewrite[trivial-rewrite:17294] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:02 g0n kernel: [72963.030335] grsec: exec of /usr/bin/gdb (gdb /usr/libexec/postfix/trivial-rewrite 17294 ) by /usr/bin/gdb[sh:17297] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:17295] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:02 g0n kernel: [72963.030717] grsec: exec of /bin/sleep (sleep 5 ) by /bin/sleep[sh:17298] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:17295] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:02 g0n kernel: [72963.035378] grsec: exec of /usr/bin/iconv (iconv -l ) by /usr/bin/iconv[gdb:17299] uid/euid:0/0 gid/egid:0/0, parent /usr/bin/gdb[gdb:17297] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:02 g0n kernel: [72963.063577] grsec: process /usr/libexec/postfix/trivial-rewrite(trivial-rewrite:17294) attached to via ptrace by /usr/bin/gdb[gdb:17297] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:17295] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:02 g0n kernel: [72963.067999] PAX: execution attempt in: <anonymous mapping>, 2e634897000-2e63489a000 2e634897000
Jan 31 02:42:02 g0n kernel: [72963.068016] PAX: terminating task: /usr/bin/gdb(gdb):17302, uid/euid: 0/0, PC: 000002e634897000, SP: 000003a4bba94d60
Jan 31 02:42:02 g0n kernel: [72963.068027] PAX: bytes at PC: cc 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
Jan 31 02:42:02 g0n kernel: [72963.068062] PAX: bytes at SP-8: 000002e634897000 00000067ca23eec0 407b841fdd7bc800 00000067c9c0b0e0 00000067ca23f000 00000067ca23eec0 00000067cdc84730 00000067c9c0b0e0 0000000000000000 000003a4bba94e30 00000067c9bb69a1 
Jan 31 02:42:02 g0n kernel: [72963.068116] grsec: bruteforce prevention initiated for the next 30 minutes or until service restarted, stalling each fork 30 seconds.  Please investigate the crash report for /usr/bin/gdb[gdb:17302] uid/euid:0/0 gid/egid:0/0, parent /usr/bin/gdb[gdb:17297] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:02 g0n kernel: [72963.068154] grsec: denied resource overstep by requesting 4096 for RLIMIT_CORE against limit 0 for /usr/bin/gdb[gdb:17302] uid/euid:0/0 gid/egid:0/0, parent /usr/bin/gdb[gdb:17297] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:07 g0n kernel: [72968.035407] grsec: chdir to /var/spool/postfix by /usr/libexec/postfix/trivial-rewrite[trivial-rewrite:17294] uid/euid:0/0 gid/egid:0/0, parent /usr/libexec/postfix/master[master:2734] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:07 g0n kernel: [72968.037221] grsec: exec of /usr/libexec/postfix/smtp (smtp -t unix -u -D ) by /usr/libexec/postfix/smtp[master:17303] uid/euid:0/0 gid/egid:0/0, parent /usr/libexec/postfix/master[master:2734] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:07 g0n postfix/smtp[17303]: running: PATH=/bin:/usr/bin:/usr/local/bin; export PATH; (echo cont;?echo where) | gdb /usr/libexec/postfix/smtp 17303 2>&1?>/etc/postfix/smtp.17303.log & sleep 5
Jan 31 02:42:07 g0n kernel: [72968.041865] grsec: exec of /bin/bash (sh -c PATH=/bin:/usr/bin:/usr/local/bin; export PATH; (echo cont; echo where) | gdb /usr/libexec/postfix/smtp 17303 2>&1 >/etc/p) by /bin/bash[smtp:17304] uid/euid:0/0 gid/egid:0/0, parent /usr/libexec/postfix/smtp[smtp:17303] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:07 g0n kernel: [72968.044383] grsec: exec of /usr/bin/gdb (gdb /usr/libexec/postfix/smtp 17303 ) by /usr/bin/gdb[sh:17306] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:17304] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:07 g0n kernel: [72968.044404] grsec: exec of /bin/sleep (sleep 5 ) by /bin/sleep[sh:17307] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:17304] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:07 g0n kernel: [72968.049878] grsec: exec of /usr/bin/iconv (iconv -l ) by /usr/bin/iconv[gdb:17308] uid/euid:0/0 gid/egid:0/0, parent /usr/bin/gdb[gdb:17306] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:07 g0n kernel: [72968.077386] grsec: process /usr/libexec/postfix/smtp(smtp:17303) attached to via ptrace by /usr/bin/gdb[gdb:17306] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:17304] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:07 g0n kernel: [72968.082245] PAX: execution attempt in: <anonymous mapping>, 36d3df60000-36d3df63000 36d3df60000
Jan 31 02:42:07 g0n kernel: [72968.082260] PAX: terminating task: /usr/bin/gdb(gdb):17311, uid/euid: 0/0, PC: 0000036d3df60000, SP: 00000388daa81d10
Jan 31 02:42:07 g0n kernel: [72968.082269] PAX: bytes at PC: cc 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 
Jan 31 02:42:07 g0n kernel: [72968.082303] PAX: bytes at SP-8: 0000036d3df60000 00000053c1b79ec0 dd662089ca839200 00000053c15460e0 00000053c1b7a000 00000053c1b79ec0 00000053c5129920 00000053c15460e0 0000000000000000 00000388daa81de0 00000053c14f19a1 
Jan 31 02:42:07 g0n kernel: [72968.082355] grsec: bruteforce prevention initiated for the next 30 minutes or until service restarted, stalling each fork 30 seconds.  Please investigate the crash report for /usr/bin/gdb[gdb:17311] uid/euid:0/0 gid/egid:0/0, parent /usr/bin/gdb[gdb:17306] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:07 g0n kernel: [72968.082391] grsec: denied resource overstep by requesting 4096 for RLIMIT_CORE against limit 0 for /usr/bin/gdb[gdb:17311] uid/euid:0/0 gid/egid:0/0, parent /usr/bin/gdb[gdb:17306] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:12 g0n kernel: [72973.048584] grsec: chdir to /var/spool/postfix by /usr/libexec/postfix/smtp[smtp:17303] uid/euid:0/0 gid/egid:0/0, parent /usr/libexec/postfix/master[master:2734] uid/euid:0/0 gid/egid:0/0
Jan 31 02:42:12 g0n postfix/smtp[17303]: smtp_stream_setup: maxtime=300 enable_deadline=0
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 220 ls266.t-com.hr ESMTP Rock and Roll
Jan 31 02:42:12 g0n postfix/smtp[17303]: > mail.t-com.hr[195.29.150.5]:25: EHLO g0n.localdomain
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-ls266.t-com.hr
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-PIPELINING
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-SIZE 15728640
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-ETRN
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-STARTTLS
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-ENHANCEDSTATUSCODES
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250 8BITMIME
Jan 31 02:42:12 g0n postfix/smtp[17303]: server features: 0x101f size 15728640
Jan 31 02:42:12 g0n postfix/smtp[17303]: Using ESMTP PIPELINING, TCP send buffer size is 46080, PIPELINING buffer size is 4096
Jan 31 02:42:12 g0n postfix/smtp[17303]: smtp_stream_setup: maxtime=300 enable_deadline=0
Jan 31 02:42:12 g0n postfix/smtp[17303]: > mail.t-com.hr[195.29.150.5]:25: STARTTLS
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 220 2.0.0 Ready to start TLS
Jan 31 02:42:12 g0n postfix/smtp[17303]: send attr request = seed
Jan 31 02:42:12 g0n postfix/smtp[17303]: send attr size = 32
Jan 31 02:42:12 g0n postfix/smtp[17303]: private/tlsmgr: wanted attribute: status
Jan 31 02:42:12 g0n postfix/smtp[17303]: input attribute name: status
Jan 31 02:42:12 g0n postfix/smtp[17303]: input attribute value: 0
Jan 31 02:42:12 g0n postfix/smtp[17303]: private/tlsmgr: wanted attribute: seed
Jan 31 02:42:12 g0n postfix/smtp[17303]: input attribute name: seed
Jan 31 02:42:12 g0n postfix/smtp[17303]: input attribute value: 6d5WML+LiHqL7lw5eemBsxEU7dHIiXvkDaX4UYl4h5k=
Jan 31 02:42:12 g0n postfix/smtp[17303]: private/tlsmgr: wanted attribute: (list terminator)
Jan 31 02:42:12 g0n postfix/smtp[17303]: input attribute name: (end)
Jan 31 02:42:12 g0n postfix/smtp[17303]: smtp_stream_setup: maxtime=300 enable_deadline=0
Jan 31 02:42:12 g0n postfix/smtp[17303]: > mail.t-com.hr[195.29.150.5]:25: EHLO g0n.localdomain
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-ls266.t-com.hr
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-PIPELINING
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-SIZE 15728640
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-ETRN
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250-ENHANCEDSTATUSCODES
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250 8BITMIME
Jan 31 02:42:12 g0n postfix/smtp[17303]: server features: 0x100f size 15728640
Jan 31 02:42:12 g0n postfix/smtp[17303]: Using ESMTP PIPELINING, TCP send buffer size is 46080, PIPELINING buffer size is 4096
Jan 31 02:42:12 g0n postfix/smtp[17303]: smtp_stream_setup: maxtime=300 enable_deadline=0
Jan 31 02:42:12 g0n postfix/smtp[17303]: > mail.t-com.hr[195.29.150.5]:25: MAIL FROM:<miroslav.rovis1@zg.ht.hr> SIZE=2792
Jan 31 02:42:12 g0n postfix/smtp[17303]: > mail.t-com.hr[195.29.150.5]:25: RCPT TO:<ElektraZagreb@hep.hr>
Jan 31 02:42:12 g0n postfix/smtp[17303]: > mail.t-com.hr[195.29.150.5]:25: DATA
Jan 31 02:42:12 g0n postfix/smtp[17303]: smtp_stream_setup: maxtime=300 enable_deadline=0
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250 2.1.0 Ok
Jan 31 02:42:12 g0n postfix/smtp[17303]: smtp_stream_setup: maxtime=300 enable_deadline=0
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250 2.1.5 Ok
Jan 31 02:42:12 g0n postfix/smtp[17303]: smtp_stream_setup: maxtime=120 enable_deadline=0
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 354 End data with <CR><LF>.<CR><LF>
Jan 31 02:42:12 g0n postfix/smtp[17303]: smtp_stream_setup: maxtime=180 enable_deadline=0
Jan 31 02:42:12 g0n postfix/smtp[17303]: > mail.t-com.hr[195.29.150.5]:25: .
Jan 31 02:42:12 g0n postfix/smtp[17303]: > mail.t-com.hr[195.29.150.5]:25: QUIT
Jan 31 02:42:12 g0n postfix/smtp[17303]: smtp_stream_setup: maxtime=600 enable_deadline=0
Jan 31 02:42:12 g0n postfix/smtp[17303]: < mail.t-com.hr[195.29.150.5]:25: 250 2.0.0 Ok: queued as 12A9B120224
Jan 31 02:42:12 g0n postfix/smtp[17303]: 2A8B238092F: to=<ElektraZagreb@hep.hr>, relay=mail.t-com.hr[195.29.150.5]:25, delay=4629, delays=4619/10/0.27/0.07, dsn=2.0.0, status=sent (250 2.0.0 Ok: queued as 12A9B120224)
Jan 31 02:42:12 g0n postfix/smtp[17303]: name_mask: resource
Jan 31 02:42:12 g0n postfix/smtp[17303]: name_mask: software
Jan 31 02:42:12 g0n postfix/qmgr[2736]: 2A8B238092F: removed
Jan 31 02:42:12 g0n kernel: [72973.410867] mrfw_dropIN=eth1 OUT= MAC=00:0e:2e:00:80:45:2c:95:7f:14:4e:c6:08:00 SRC=195.29.150.5 DST=192.168.1.2 LEN=40 TOS=0x00 PREC=0x00 TTL=60 ID=0 DF PROTO=TCP SPT=25 DPT=35796 WINDOW=0 RES=0x00 RST URGP=0 
Jan 31 02:43:12 g0n kernel: [73033.401105] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:3c:94:d5:cf:8f:f0:08:00 SRC=10.16.96.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0xC0 TTL=1 ID=6346 PROTO=2 
Jan 31 02:45:17 g0n kernel: [73158.475672] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:3c:94:d5:cf:8f:f0:08:00 SRC=10.16.96.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0xC0 TTL=1 ID=12775 PROTO=2 
Jan 31 02:47:22 g0n kernel: [73283.550664] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:3c:94:d5:cf:8f:f0:08:00 SRC=10.16.96.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0xC0 TTL=1 ID=10386 PROTO=2 
Jan 31 02:49:27 g0n kernel: [73408.625489] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:3c:94:d5:cf:8f:f0:08:00 SRC=10.16.96.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0xC0 TTL=1 ID=20984 PROTO=2 
Jan 31 02:50:01 g0n kernel: [73443.025232] grsec: chdir to /root by /usr/sbin/crond[crond:17327] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/crond[crond:2440] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.025354] grsec: exec of /bin/bash (/bin/sh -c test -x /usr/sbin/run-crons && /usr/sbin/run-crons ) by /bin/bash[crond:17327] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/crond[crond:2440] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.028050] grsec: exec of /usr/sbin/run-crons (/usr/sbin/run-crons ) by /usr/sbin/run-crons[sh:17331] uid/euid:0/0 gid/egid:0/0, parent /bin/bash[sh:17327] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.030445] grsec: exec of /bin/mkdir (mkdir -p /var/spool/cron/lastrun ) by /bin/mkdir[run-crons:17332] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.031080] grsec: chdir to /var by /bin/mkdir[mkdir:17332] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.031095] grsec: chdir to /var/spool by /bin/mkdir[mkdir:17332] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.031107] grsec: chdir to /var/spool/cron by /bin/mkdir[mkdir:17332] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.031738] grsec: exec of /bin/ln (ln -sn 17331 /var/spool/cron/lastrun/lock ) by /bin/ln[run-crons:17333] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.033640] grsec: exec of /usr/bin/find (find /var/spool/cron/lastrun -name cron.hourly -cmin +65 -exec rm {} ; ) by /usr/bin/find[run-crons:17334] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.034459] grsec: chdir to /root by /usr/bin/find[find:17334] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.035111] grsec: exec of /usr/bin/find (find /var/spool/cron/lastrun -name cron.daily -cmin +1445 -exec rm {} ; ) by /usr/bin/find[run-crons:17335] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.035883] grsec: chdir to /root by /usr/bin/find[find:17335] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.036512] grsec: exec of /usr/bin/find (find /var/spool/cron/lastrun -name cron.weekly -cmin +10085 -exec rm {} ; ) by /usr/bin/find[run-crons:17336] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.037379] grsec: chdir to /root by /usr/bin/find[find:17336] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.038047] grsec: exec of /usr/bin/find (find /var/spool/cron/lastrun -name cron.monthly -cmin +44645 -exec rm {} ; ) by /usr/bin/find[run-crons:17337] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.038793] grsec: chdir to /root by /usr/bin/find[find:17337] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.039354] grsec: exec of /bin/touch (touch /var/spool/cron/lastrun ) by /bin/touch[run-crons:17338] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.040457] grsec: exec of /usr/bin/find (find /var/spool/cron/lastrun -newer /var/spool/cron/lastrun -exec /bin/rm -f {} ; ) by /usr/bin/find[run-crons:17339] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.041240] grsec: chdir to /root by /usr/bin/find[find:17339] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:01 g0n kernel: [73443.041741] grsec: exec of /bin/rm (rm -f /var/spool/cron/lastrun/lock ) by /bin/rm[run-crons:17340] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:17331] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.283949] grsec: exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:17344] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:10109] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.290047] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf/eth1:ra ) by /bin/rm[dhcpcd-run-hook:17347] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17344] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.294768] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17349] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17344] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.295298] grsec: exec of /bin/sed (sed -n s/^domain //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17350] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17349] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.297320] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17351] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17344] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.297794] grsec: exec of /bin/sed (sed -n s/^search //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17352] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17351] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.299850] grsec: chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17353] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17344] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.300343] grsec: exec of /bin/sed (sed -n s/^nameserver //p eth1 eth1:ra ) by /bin/sed[dhcpcd-run-hook:17354] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17353] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.304641] grsec: exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1:ra ) by /usr/bin/cmp[dhcpcd-run-hook:17356] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17344] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.307546] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1:ra ) by /bin/rm[dhcpcd-run-hook:17357] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17344] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.310208] grsec: exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1:ra ) by /bin/rm[dhcpcd-run-hook:17358] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17344] uid/euid:0/0 gid/egid:0/0
Jan 31 02:50:19 g0n kernel: [73460.316459] grsec: exec of /bin/hostname (hostname ) by /bin/hostname[dhcpcd-run-hook:17360] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:17359] uid/euid:0/0 gid/egid:0/0
Jan 31 02:51:32 g0n kernel: [73533.710022] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:3c:94:d5:cf:8f:f0:08:00 SRC=10.16.96.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0xC0 TTL=1 ID=38749 PROTO=2 
Jan 31 02:53:27 g0n kernel: [73648.362548] 8139too 0000:04:06.0 eth1: link down
Jan 31 02:53:27 g0n dhcpcd[10109]: eth1: carrier lost