Solving Libvirt virtualization issues under grsecurity RBAC (1)
( This page might be replaced, it's probably of little use and incomplete, and also unnecessary parts have not been removed. )
03:28:29 g0n kernel: [ 330.751495] grsec: (miro:U:/) exec of
/usr/local/bin/uncenz-1st (uncenz-1st ) by /usr/local/bin/uncenz-1st[bash:4684]
uid/euid:1000/1000 gid/egid:1000/1000, parent /bin/bash[bash:4556]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:29 g0n kernel: [ 330.760843] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-dumper_permanent ) by /bin/cat[uncenz-1st:4687] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:30 g0n kernel: [ 331.621719] grsec: (miro:U:/usr/bin/gpg2) exec of
/usr/bin/gpg2 (gpg --list-secret-keys --with-colon ) by
/usr/bin/gpg2[uncenz-1st:4688] uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:30 g0n kernel: [ 331.792279] grsec: (miro:U:/usr/bin/gpg2) chdir to / by
/usr/bin/gpg2[gpg:4689] uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/bin/gpg2[gpg:4688] uid/euid:1000/1000 gid/egid:1000/1000
03:28:30 g0n kernel: [ 331.794808] grsec: (miro:U:/usr/bin/gpg-agent) exec of
/usr/bin/gpg-agent (gpg-agent --homedir /home/miro/.gnupg --use-standard-socket
--daemon ) by /usr/bin/gpg-agent[gpg:4690] uid/euid:1000/1000
gid/egid:1000/1000, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0
03:28:31 g0n kernel: [ 331.838415] grsec: (miro:U:/usr/bin/gpg-agent) chdir to
/ by /usr/bin/gpg-agent[gpg-agent:4691] uid/euid:1000/1000 gid/egid:1000/1000,
parent /[gpg-agent:4690] uid/euid:1000/1000 gid/egid:1000/1000
03:28:32 g0n kernel: [ 332.891970] grsec: (miro:U:/bin/rm) exec of /bin/rm (rm
.gradm-S ) by /bin/rm[uncenz-1st:4693] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:32 g0n kernel: [ 332.896221] grsec: (miro:U:/usr/bin/sudo) exec of
/usr/bin/sudo (sudo -s gradm -S ) by /usr/bin/sudo[uncenz-1st:4694]
uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n sudo: miro : TTY=pts/14 ; PWD=/Cmn/mr ; USER=root ;
COMMAND=/bin/bash -c gradm -S
03:28:39 g0n kernel: [ 340.631527] grsec: (root:U:/bin/bash) exec of /bin/bash
(/bin/bash -c gradm -S ) by /bin/bash[sudo:4694] uid/euid:0/0 gid/egid:0/0,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.639578] grsec: (root:U:/sbin/gradm) exec of
/sbin/gradm (gradm -S ) by /sbin/gradm[bash:4694] uid/euid:0/0 gid/egid:0/0,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.643522] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .gradm-S ) by /bin/cat[uncenz-1st:4695] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.646939] grsec: (miro:U:/bin/hostname) exec of
/bin/hostname (hostname ) by /bin/hostname[uncenz-1st:4697] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4696]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.647599] grsec: (miro:U:/) exec of /bin/sed (sed
s/\(...\).*/\1/ ) by /bin/sed[uncenz-1st:4698] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4696]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.668106] grsec: (miro:U:/) exec of /usr/bin/pidof
(pidof ffmpeg ) by /usr/bin/pidof[uncenz-1st:4699] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.671060] grsec: (miro:U:/) denied open of
/sys/devices/system/cpu/online for reading by /usr/bin/pidof[pidof:4699]
uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.682505] grsec: (miro:U:/usr/bin/sudo) exec of
/usr/bin/sudo (sudo -s ps aux ) by /usr/bin/sudo[uncenz-1st:4701]
uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4700] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.682616] grsec: (miro:U:/) exec of /bin/egrep (egrep
ffmpeg ) by /bin/egrep[uncenz-1st:4702] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4700] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.682916] grsec: (miro:U:/) exec of /bin/grep (grep
x11grab ) by /bin/grep[uncenz-1st:4703] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4700] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.684312] grsec: (miro:U:/) exec of /usr/bin/gawk
(awk { print $2} ) by /usr/bin/gawk[uncenz-1st:4704] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4700]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.690789] grsec: (miro:U:/) exec of /bin/grep (grep
-E ffmpeg ) by /bin/grep[egrep:4702] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4700] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n sudo: miro : TTY=pts/14 ; PWD=/Cmn/mr ; USER=root ;
COMMAND=/bin/bash -c ps aux
03:28:39 g0n kernel: [ 340.693741] grsec: (root:U:/bin/bash) exec of /bin/bash
(/bin/bash -c ps aux ) by /bin/bash[sudo:4701] uid/euid:0/0 gid/egid:0/0,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4700] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.696202] grsec: (root:U:/bin/ps) exec of /bin/ps (ps
aux ) by /bin/ps[bash:4701] uid/euid:0/0 gid/egid:0/0, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4700] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.716057] grsec: (miro:U:/) exec of /usr/bin/pidof
(pidof dumpcap ) by /usr/bin/pidof[uncenz-1st:4705] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.717422] grsec: (miro:U:/) denied open of
/sys/devices/system/cpu/online for reading by /usr/bin/pidof[pidof:4705]
uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.722455] grsec: (miro:U:/bin/ps) exec of /bin/ps (ps
aux ) by /bin/ps[uncenz-1st:4706] uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.722799] grsec: (miro:U:/) exec of /usr/bin/gawk
(awk { print $2 } ) by /usr/bin/gawk[uncenz-1st:4708] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.724178] grsec: (miro:U:/) exec of /bin/grep (grep
[u]ncenz-1st ) by /bin/grep[uncenz-1st:4707] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.738545] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-1st.pid ) by /bin/cat[uncenz-1st:4709] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.741078] grsec: (miro:U:/) exec of
/usr/local/bin/uncenz-ts (uncenz-ts ) by
/usr/local/bin/uncenz-ts[uncenz-1st:4710] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.763534] grsec: (miro:U:/) exec of /bin/date (date
+%y%m%d_%H%M ) by /bin/date[uncenz-ts:4711] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-ts[uncenz-ts:4710]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.771416] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-ts ) by /bin/cat[uncenz-ts:4712] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-ts[uncenz-ts:4710]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.795544] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-ts ) by /bin/cat[uncenz-1st:4714] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4713]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:39 g0n kernel: [ 340.797603] grsec: (miro:U:/) exec of /bin/tail (tail
-1 /home/miro/.sslkey.log ) by /bin/tail[uncenz-1st:4713] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.822068] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-ts ) by /bin/cat[uncenz-1st:4715] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.826945] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-ts ) by /bin/cat[uncenz-1st:4716] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.829082] grsec: (miro:U:/) exec of /bin/chmod (chmod
600 /home/miro/SSLLAST_170311_0328_g0n.txt ) by /bin/chmod[uncenz-1st:4717]
uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.832121] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-ts.old ) by /bin/cat[uncenz-1st:4718] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.833809] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-ts ) by /bin/cat[uncenz-1st:4719] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.835600] grsec: (miro:U:/bin/ls) exec of /bin/ls (ls
-l /home/miro/SSLLAST_170310_2319_g0n.txt
/home/miro/SSLLAST_170311_0328_g0n.txt ) by /bin/ls[uncenz-1st:4720]
uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.839520] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-ts ) by /bin/cat[uncenz-1st:4725] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4724]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.853692] grsec: (miro:U:/) exec of /bin/cut (cut -d
-f1 ) by /bin/cut[uncenz-1st:4723] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4721] uid/euid:1000/1000
gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.866280] grsec: (miro:U:/usr/bin/sha256sum) exec of
/usr/bin/sha256sum (sha256sum /home/miro/SSLLAST_170311_0328_g0n.txt ) by
/usr/bin/sha256sum[uncenz-1st:4722] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4721] uid/euid:1000/1000
gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.874465] grsec: (miro:U:/) exec of /bin/cut (cut -d
-f1 ) by /bin/cut[uncenz-1st:4728] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4726] uid/euid:1000/1000
gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.875276] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-ts.old ) by /bin/cat[uncenz-1st:4730] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4729]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.879744] grsec: (miro:U:/usr/bin/sha256sum) exec of
/usr/bin/sha256sum (sha256sum /home/miro/SSLLAST_170310_2319_g0n.txt ) by
/usr/bin/sha256sum[uncenz-1st:4727] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4726] uid/euid:1000/1000
gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.882295] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-ts ) by /bin/cat[uncenz-1st:4731] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.884185] grsec: (miro:U:/usr/bin/sudo) exec of
/usr/bin/sudo (sudo -s touch dump_170311_0328_g0n.pcap ) by
/usr/bin/sudo[uncenz-1st:4732] uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:40 g0n sudo: miro : TTY=pts/14 ; PWD=/Cmn/mr ; USER=root ;
COMMAND=/bin/bash -c touch dump_170311_0328_g0n.pcap
03:28:40 g0n kernel: [ 340.888703] grsec: (root:U:/bin/bash) exec of /bin/bash
(/bin/bash -c touch dump_170311_0328_g0n\.pcap ) by /bin/bash[sudo:4732]
uid/euid:0/0 gid/egid:0/0, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.897394] grsec: (root:U:/bin/touch) exec of
/bin/touch (touch dump_170311_0328_g0n.pcap ) by /bin/touch[bash:4732]
uid/euid:0/0 gid/egid:0/0, parent /usr/local/bin/uncenz-1st[uncenz-1st:4684]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.902609] grsec: (miro:U:/usr/bin/sudo) exec of
/usr/bin/sudo (sudo -s dumpcap -i any -w dump_170311_0328_g0n.pcap ) by
/usr/bin/sudo[uncenz-1st:4733] uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.903325] grsec: (miro:U:/) exec of /bin/sleep (sleep
1.5 ) by /bin/sleep[uncenz-1st:4734] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:40 g0n sudo: miro : TTY=pts/14 ; PWD=/Cmn/mr ; USER=root ;
COMMAND=/bin/bash -c dumpcap -i any -w dump_170311_0328_g0n.pcap
03:28:40 g0n kernel: [ 340.907383] grsec: (root:U:/bin/bash) exec of /bin/bash
(/bin/bash -c dumpcap -i any -w dump_170311_0328_g0n\.pcap ) by
/bin/bash[sudo:4733] uid/euid:0/0 gid/egid:0/0, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:40 g0n kernel: [ 340.921231] grsec: (root:U:/usr/bin/dumpcap) exec of
/usr/bin/dumpcap (dumpcap -i any -w dump_170311_0328_g0n.pcap ) by
/usr/bin/dumpcap[bash:4733] uid/euid:0/0 gid/egid:0/0, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:41 g0n kernel: [ 342.407563] grsec: (miro:U:/) exec of /bin/sleep (sleep
1.5 ) by /bin/sleep[uncenz-1st:4736] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:41 g0n kernel: [ 342.408433] grsec: (miro:U:/bin/cat) exec of /bin/cat
(cat .uncenz-ts ) by /bin/cat[uncenz-1st:4737] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4735]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:41 g0n kernel: [ 342.440856] grsec: (miro:U:/) exec of /usr/bin/ffmpeg
(ffmpeg -f x11grab -nostdin -loglevel quiet -s 1024x768 -r 25 -i :1.0 -c:v
libx264 -preset ultrafast -threads 0 Screen_170311_032) by
/usr/bin/ffmpeg[uncenz-1st:4735] uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.913749] grsec: (miro:U:/usr/bin/sudo) exec of
/usr/bin/sudo (sudo -s ps aux ) by /usr/bin/sudo[uncenz-1st:4739]
uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4738] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.913840] grsec: (miro:U:/) exec of /usr/bin/gawk
(awk { print $2} ) by /usr/bin/gawk[uncenz-1st:4742] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4738]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.914022] grsec: (miro:U:/) exec of /bin/egrep (egrep
ffmpeg ) by /bin/egrep[uncenz-1st:4740] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4738] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.914221] grsec: (miro:U:/) exec of /bin/grep (grep
x11grab ) by /bin/grep[uncenz-1st:4741] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4738] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.917016] grsec: (miro:U:/) exec of /bin/grep (grep
-E ffmpeg ) by /bin/grep[egrep:4740] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4738] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n sudo: miro : TTY=pts/14 ; PWD=/Cmn/mr ; USER=root ;
COMMAND=/bin/bash -c ps aux
03:28:43 g0n kernel: [ 343.920225] grsec: (root:U:/bin/bash) exec of /bin/bash
(/bin/bash -c ps aux ) by /bin/bash[sudo:4739] uid/euid:0/0 gid/egid:0/0,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4738] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.922606] grsec: (root:U:/bin/ps) exec of /bin/ps (ps
aux ) by /bin/ps[bash:4739] uid/euid:0/0 gid/egid:0/0, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4738] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.928929] grsec: (miro:U:/) denied open of
/sys/devices/system/cpu/online for reading by /usr/bin/ffmpeg[ffmpeg:4735]
uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4684] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.942846] grsec: (miro:U:/usr/bin/sudo) exec of
/usr/bin/sudo (sudo -s ps aux ) by /usr/bin/sudo[uncenz-1st:4749]
uid/euid:1000/1000 gid/egid:1000/1000, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4748] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.943230] grsec: (miro:U:/) exec of /usr/bin/gawk
(awk { print $2} ) by /usr/bin/gawk[uncenz-1st:4751] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4748]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.943720] grsec: (miro:U:/) exec of /bin/egrep (egrep
[d]umpcap ) by /bin/egrep[uncenz-1st:4750] uid/euid:1000/1000
gid/egid:1000/1000, parent /usr/local/bin/uncenz-1st[uncenz-1st:4748]
uid/euid:1000/1000 gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.945896] grsec: (miro:U:/) exec of /bin/grep (grep
-E [d]umpcap ) by /bin/grep[egrep:4750] uid/euid:1000/1000 gid/egid:1000/1000,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4748] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n sudo: miro : TTY=pts/14 ; PWD=/Cmn/mr ; USER=root ;
COMMAND=/bin/bash -c ps aux
03:28:43 g0n kernel: [ 343.947795] grsec: (root:U:/bin/bash) exec of /bin/bash
(/bin/bash -c ps aux ) by /bin/bash[sudo:4749] uid/euid:0/0 gid/egid:0/0,
parent /usr/local/bin/uncenz-1st[uncenz-1st:4748] uid/euid:1000/1000
gid/egid:1000/1000
03:28:43 g0n kernel: [ 343.950211] grsec: (root:U:/bin/ps) exec of /bin/ps (ps
aux ) by /bin/ps[bash:4749] uid/euid:0/0 gid/egid:0/0, parent
/usr/local/bin/uncenz-1st[uncenz-1st:4748] uid/euid:1000/1000
gid/egid:1000/1000
1 0.000000000 192.168.1.4 → 255.255.255.255 DHCP 408 DHCP Request - Transaction ID 0xc3a07981
03:28:44 g0n dhcpcd[2923]: eth1: carrier acquired 03:28:44 g0n kernel: [ 345.261808] sky2 0000:06:00.0 eth1: Link is up at 100 Mbps, full duplex, flow control both 03:28:44 g0n kernel: [ 345.261871] IPv6: ADDRCONF(NETDEV_CHANGE): eth1: link becomes ready 03:28:44 g0n kernel: [ 345.263303] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4759] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n dhcpcd[2923]: eth1: IAID 2e:ab:28:71 03:28:44 g0n dhcpcd[2923]: eth1: adding address fe80::30b7:84a9:5f50:6486 03:28:44 g0n dhcpcd[2923]: eth1: soliciting an IPv6 router 03:28:44 g0n dhcpcd[2923]: eth1: rebinding lease of 192.168.1.4 03:28:44 g0n kernel: [ 345.570183] mrfw_dropIN=eth1 OUT= MAC=00:0e:2e:ab:28:71:2c:95:7f:8b:44:87:08:00 SRC=192.168.1.1 DST=192.168.1.4 LEN=576 TOS=0x00 PREC=0x00 TTL=64 ID=0 PROTO=UDP SPT=67 DPT=68 LEN=556 03:28:44 g0n dhcpcd[2923]: eth1: leased 192.168.1.4 for infinity 03:28:44 g0n dhcpcd[2923]: eth1: adding route to 192.168.1.0/24 03:28:44 g0n dhcpcd[2923]: eth1: adding default route via 192.168.1.1 03:28:44 g0n kernel: [ 345.577919] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4760] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.595069] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4762] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4760] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.595760] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp ) by /bin/sed[dhcpcd-run-hook:4763] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4762] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.598900] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4764] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4760] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.599961] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp ) by /bin/sed[dhcpcd-run-hook:4765] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4764] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.602517] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4766] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4760] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.603136] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp ) by /bin/sed[dhcpcd-run-hook:4767] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4766] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.607127] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:4769] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4760] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.608865] grsec: (root:U:/) exec of /bin/cat (cat /run/dhcpcd/resolv.conf.eth1.dhcp ) by /bin/cat[dhcpcd-run-hook:4770] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4760] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n dnsmasq[4003]: reading /etc/resolv.conf 03:28:44 g0n dnsmasq[4003]: using nameserver 81.2.237.32#53 03:28:44 g0n dnsmasq[4003]: using nameserver 31.14.133.188#53 03:28:44 g0n dnsmasq[4003]: using nameserver 5.9.49.12#53 03:28:44 g0n kernel: [ 345.610713] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.dhcp ) by /bin/rm[dhcpcd-run-hook:4771] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4760] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.612373] grsec: (root:U:/bin/chmod) exec of /bin/chmod (chmod 644 /etc/resolv.conf ) by /bin/chmod[dhcpcd-run-hook:4772] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4760] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.613989] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.dhcp ) by /bin/rm[dhcpcd-run-hook:4773] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4760] uid/euid:0/0 gid/egid:0/0 03:28:44 g0n kernel: [ 345.617475] grsec: (root:U:/bin/hostname) exec of /bin/hostname (hostname ) by /bin/hostname[dhcpcd-run-hook:4775] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4774] uid/euid:0/0 gid/egid:0/0
Frame 1: 408 bytes on wire (3264 bits), 408 bytes captured (3264 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:28:44.732344381 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199324.732344381 seconds
[Time delta from previous captured frame: 0.000000000 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 0.000000000 seconds]
Frame Number: 1
Frame Length: 408 bytes (3264 bits)
Capture Length: 408 bytes (3264 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: EdimaxTe_ab:28:71 (00:0e:2e:ab:28:71)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 192.168.1.4, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 392
Identification: 0x4f2d (20269)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x688c [validation disabled]
[Header checksum status: Unverified]
Source: 192.168.1.4
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 372
Checksum: 0x8005 [unverified]
[Checksum Status: Unverified]
[Stream index: 0]
Bootstrap Protocol (Request)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xc3a07981
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 192.168.1.4
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: EdimaxTe_ab:28:71 (00:0e:2e:ab:28:71)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Request)
Length: 1
DHCP: Request (3)
Option: (61) Client identifier
Length: 19
IAID: 2efd249c
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
2 0.017181879 192.168.1.1 → 192.168.1.4 DHCP 592 DHCP ACK - Transaction ID 0xc3a07981
Frame 2: 592 bytes on wire (4736 bits), 592 bytes captured (4736 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:28:44.749526260 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199324.749526260 seconds
[Time delta from previous captured frame: 0.017181879 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 0.017181879 seconds]
Frame Number: 2
Frame Length: 592 bytes (4736 bits)
Capture Length: 592 bytes (4736 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Unicast to us (0)
Link-layer address type: 1
Link-layer address length: 6
Source: Zte_8b:44:87 (2c:95:7f:8b:44:87)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 192.168.1.1, Dst: 192.168.1.4
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 576
Identification: 0x0000 (0)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xf557 [validation disabled]
[Header checksum status: Unverified]
Source: 192.168.1.1
Destination: 192.168.1.4
User Datagram Protocol, Src Port: bootps (67), Dst Port: bootpc (68)
Source Port: bootps (67)
Destination Port: bootpc (68)
Length: 556
Checksum: 0x52ce [unverified]
[Checksum Status: Unverified]
[Stream index: 1]
Bootstrap Protocol (ACK)
Message type: Boot Reply (2)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xc3a07981
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 192.168.1.4
Your (client) IP address: 192.168.1.4
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: EdimaxTe_ab:28:71 (00:0e:2e:ab:28:71)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (ACK)
Length: 1
DHCP: ACK (5)
Option: (1) Subnet Mask
Length: 4
Subnet Mask: 255.255.255.0
Option: (3) Router
Length: 4
Router: 192.168.1.1
Option: (6) Domain Name Server
Length: 12
Domain Name Server: 81.2.237.32
Domain Name Server: 31.14.133.188
Domain Name Server: 5.9.49.12
Option: (54) DHCP Server Identifier
Length: 4
DHCP Server Identifier: 192.168.1.1
Option: (51) IP Address Lease Time
Length: 4
IP Address Lease Time: (4294967295s) infinity
Option: (125) V-I Vendor-specific Information
Length: 40
Enterprise: Canstar (17)
Length: 35
Option 125 Suboption: 50
Length: 67
[Expert Info (Error/Protocol): Suboption 50: no room left in option for suboption value]
[Suboption 50: no room left in option for suboption value]
[Severity level: Error]
[Group: Protocol]
Option: (255) End
Option End: 255
Padding: 000000000000000000000000000000000000000000000000...
3 12.055496799 0.0.0.0 → 255.255.255.255 DHCP 410 DHCP Discover - Transaction ID 0xb6130e6e
Frame 3: 410 bytes on wire (3280 bits), 410 bytes captured (3280 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:28:56.787841180 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199336.787841180 seconds
[Time delta from previous captured frame: 12.038314920 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 12.055496799 seconds]
Frame Number: 3
Frame Length: 410 bytes (3280 bits)
Capture Length: 410 bytes (3280 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: 46:62:59:56:fe:4d (46:62:59:56:fe:4d)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 394
Identification: 0x5e9f (24223)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x1ac5 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 374
Checksum: 0xde57 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xb6130e6e
Seconds elapsed: 313
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: 46:62:59:56:fe:4d (46:62:59:56:fe:4d)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 5956fe4d
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
03:28:45 g0n dhcpcd[2923]: eth1: Router Advertisement from fe80::1 03:28:45 g0n dhcpcd[2923]: eth1: adding default route via fe80::1 03:28:45 g0n kernel: [ 346.538964] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4777] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.554561] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4779] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4777] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.555275] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.ra ) by /bin/sed[dhcpcd-run-hook:4780] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4779] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.558080] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4781] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4777] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.558877] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.ra ) by /bin/sed[dhcpcd-run-hook:4782] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4781] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.561632] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4783] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4777] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.562317] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.ra ) by /bin/sed[dhcpcd-run-hook:4784] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4783] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.566622] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1.ra ) by /usr/bin/cmp[dhcpcd-run-hook:4786] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4777] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.568318] grsec: (root:U:/) exec of /bin/cat (cat /run/dhcpcd/resolv.conf.eth1.ra ) by /bin/cat[dhcpcd-run-hook:4787] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4777] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n dnsmasq[4003]: reading /etc/resolv.conf 03:28:45 g0n dnsmasq[4003]: using nameserver 81.2.237.32#53 03:28:45 g0n dnsmasq[4003]: using nameserver 31.14.133.188#53 03:28:45 g0n dnsmasq[4003]: using nameserver 5.9.49.12#53 03:28:45 g0n dnsmasq[4003]: using nameserver fe80::1%eth1#53 03:28:45 g0n kernel: [ 346.570080] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.ra ) by /bin/rm[dhcpcd-run-hook:4788] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4777] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.571821] grsec: (root:U:/bin/chmod) exec of /bin/chmod (chmod 644 /etc/resolv.conf ) by /bin/chmod[dhcpcd-run-hook:4789] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4777] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.576691] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.ra ) by /bin/rm[dhcpcd-run-hook:4790] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4777] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n kernel: [ 346.585260] grsec: (root:U:/bin/hostname) exec of /bin/hostname (hostname ) by /bin/hostname[dhcpcd-run-hook:4792] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4791] uid/euid:0/0 gid/egid:0/0 03:28:45 g0n dhcpcd[2923]: eth1: requesting DHCPv6 information 03:28:46 g0n kernel: [ 347.041222] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4794] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.050403] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4796] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4794] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.051464] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4797] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4796] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.058350] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4798] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4794] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.059486] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4799] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4798] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.064912] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4800] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4794] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.066460] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4801] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4800] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.070806] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1.dhcp6 ) by /usr/bin/cmp[dhcpcd-run-hook:4803] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4794] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.072659] grsec: (root:U:/) exec of /bin/cat (cat /run/dhcpcd/resolv.conf.eth1.dhcp6 ) by /bin/cat[dhcpcd-run-hook:4804] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4794] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n dnsmasq[4003]: reading /etc/resolv.conf 03:28:46 g0n dnsmasq[4003]: using nameserver 81.2.237.32#53 03:28:46 g0n dnsmasq[4003]: using nameserver 31.14.133.188#53 03:28:46 g0n dnsmasq[4003]: using nameserver 5.9.49.12#53 03:28:46 g0n dnsmasq[4003]: using nameserver fe80::1%eth1#53 03:28:46 g0n kernel: [ 347.074546] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.dhcp6 ) by /bin/rm[dhcpcd-run-hook:4805] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4794] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.076062] grsec: (root:U:/bin/chmod) exec of /bin/chmod (chmod 644 /etc/resolv.conf ) by /bin/chmod[dhcpcd-run-hook:4806] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4794] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.077546] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.dhcp6 ) by /bin/rm[dhcpcd-run-hook:4807] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4794] uid/euid:0/0 gid/egid:0/0 03:28:46 g0n kernel: [ 347.080844] grsec: (root:U:/bin/hostname) exec of /bin/hostname (hostname ) by /bin/hostname[dhcpcd-run-hook:4809] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4808] uid/euid:0/0 gid/egid:0/0 03:28:57 g0n kernel: [ 358.150943] grsec: (miro:U:/) exec of /usr/local/bin/GentooVM22.sh (GentooVM22.sh ) by /usr/local/bin/GentooVM22.sh[bash:4811] uid/euid:1000/1000 gid/egid:1000/1000, parent /bin/bash[bash:4494] uid/euid:1000/1000 gid/egid:1000/1000 03:28:58 g0n kernel: [ 359.057576] grsec: (miro:U:/) exec of /usr/bin/qemu-img (qemu-img create -f qcow2 gentoo22.img 10G ) by /usr/bin/qemu-img[GentooVM22.sh:4814] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/local/bin/GentooVM22.sh[GentooVM22.sh:4811] uid/euid:1000/1000 gid/egid:1000/1000 03:28:58 g0n kernel: [ 359.113696] grsec: (miro:U:/usr/bin/virt-install) exec of /usr/bin/virt-install (virt-install --connect qemu:///system --machine q35 --virt-type kvm --name gentoo22 --disk gentoo22.img --memory 512 --network n) by /usr/bin/virt-install[GentooVM22.sh:4811] uid/euid:1000/1000 gid/egid:1000/1000, parent /bin/bash[bash:4494] uid/euid:1000/1000 gid/egid:1000/1000 03:28:58 g0n kernel: [ 359.142569] grsec: (miro:U:/) exec of /usr/share/virt-manager/virt-install (/usr/share/virt-manager/virt-install --connect qemu:///system --machine q35 --virt-type kvm --name gentoo22 --disk gentoo22.img ) by /usr/share/virt-manager/virt-install[virt-install:4811] uid/euid:1000/1000 gid/egid:1000/1000, parent /bin/bash[bash:4494] uid/euid:1000/1000 gid/egid:1000/1000 03:28:58 g0n kernel: [ 359.144195] grsec: (miro:U:/usr/bin/python2.7) exec of /usr/bin/python2.7 (python2.7 /usr/share/virt-manager/virt-install --connect qemu:///system --machine q35 --virt-type kvm --name gentoo22 --disk gen) by /usr/bin/python2.7[virt-install:4811] uid/euid:1000/1000 gid/egid:1000/1000, parent /bin/bash[bash:4494] uid/euid:1000/1000 gid/egid:1000/1000 03:29:00 g0n kernel: [ 360.834453] grsec: (miro:U:/sbin/ldconfig) exec of /sbin/ldconfig (/sbin/ldconfig -p ) by /sbin/ldconfig[python2.7:4815] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/python2.7[python2.7:4811] uid/euid:1000/1000 gid/egid:1000/1000 03:29:03 g0n kernel: [ 364.773958] grsec: (miro:U:/usr/bin/virt-viewer) exec of /usr/bin/virt-viewer (virt-viewer --version ) by /usr/bin/virt-viewer[python2.7:4823] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/python2.7[python2.7:4811] uid/euid:1000/1000 gid/egid:1000/1000
4 20.943716743 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x888639e4
03:29:05 g0n kernel: [ 365.823413] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4845] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.824353] grsec: (root:U:/) exec of /lib64/udev/net.sh (/lib/udev/net.sh vnet0 start ) by /lib64/udev/net.sh[udevd:4846] uid/euid:0/0 gid/egid:0/0, parent /sbin/udevd[udevd:4844] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.834110] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4847] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.840741] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4850] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4847] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.841536] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4851] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4850] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.844768] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4852] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4847] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.845688] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4853] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4852] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.847681] virbr0: port 2(vnet0) entered blocking state 03:29:05 g0n kernel: [ 365.847684] virbr0: port 2(vnet0) entered disabled state 03:29:05 g0n kernel: [ 365.847806] device vnet0 entered promiscuous mode 03:29:05 g0n kernel: [ 365.848744] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4854] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4847] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.849607] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4855] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4854] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.853140] virbr0: port 2(vnet0) entered blocking state 03:29:05 g0n kernel: [ 365.853144] virbr0: port 2(vnet0) entered listening state 03:29:05 g0n kernel: [ 365.855553] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:4857] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4847] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.859288] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:4858] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4847] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.860902] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:4859] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4847] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n dhcpcd[2923]: vnet0: waiting for carrier 03:29:05 g0n dhcpcd[2923]: vnet0: new hardware address: fe:54:00:98:2f:06 03:29:05 g0n dhcpcd[2923]: vnet0: carrier acquired 03:29:05 g0n kernel: [ 365.867042] grsec: (root:U:/usr/sbin/libvirtd) chdir to / by /usr/sbin/libvirtd[libvirtd:4861] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/libvirtd[libvirtd:3908] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.868042] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4862] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n kernel: [ 365.871017] cgroup: libvirtd (3908) created nested cgroup for controller "memory" which has incomplete hierarchy support. Nested cgroups may change behavior in the future. 03:29:05 g0n kernel: [ 365.871021] cgroup: "memory" requires setting use_hierarchy to 1 on the root 03:29:05 g0n dhcpcd[2923]: vnet0: IAID 00:98:2f:06 03:29:05 g0n dhcpcd[2923]: vnet0: adding address fe80::9326:ba01:4521:ee7f 03:29:05 g0n dhcpcd[2923]: vnet0: soliciting an IPv6 router 03:29:05 g0n kernel: [ 365.894433] grsec: (qemu:U:/) exec of /usr/bin/qemu-system-x86_64 (/usr/bin/qemu-system-x86_64 -name guest=gentoo22,debug-threads=on -S -object secret,id=masterKey0,format=raw,file=/var/lib/libvi) by /usr/bin/qemu-system-x86_64[libvirtd:4863] uid/euid:77/77 gid/egid:77/77, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0 03:29:05 g0n dhcpcd[2923]: vnet0: soliciting a DHCP lease 03:29:05 g0n qemu-system-x86_64: SQL engine 'mysql' not supported 03:29:05 g0n qemu-system-x86_64: auxpropfunc error no mechanism available 03:29:05 g0n qemu-system-x86_64: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: sql 03:29:05 g0n kernel: [ 366.680929] grsec: (miro:U:/usr/bin/virt-viewer) exec of /usr/bin/virt-viewer (virt-viewer --connect qemu:///system --wait gentoo22 ) by /usr/bin/virt-viewer[python2.7:4886] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/python2.7[python2.7:4811] uid/euid:1000/1000 gid/egid:1000/1000
Frame 4: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:05.676061124 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199345.676061124 seconds
[Time delta from previous captured frame: 8.888219944 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 20.943716743 seconds]
Frame Number: 4
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x79ba (31162)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xffa6 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xc4f9 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x888639e4
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
03:29:06 g0n kernel: [ 367.166459] grsec: (miro:U:/bin/bash) exec of /bin/bash (sh -c "/usr/bin/xkbcomp" -w 1 "-R/usr/share/X11/xkb" -xkm "-" -em1 "The XKEYBOARD keymap compiler (xkbcomp) reports:" -emp "> " ) by /bin/bash[X:4887] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/Xorg[X:4418] uid/euid:1000/0 gid/egid:1000/1000 03:29:06 g0n kernel: [ 367.176344] grsec: (miro:U:/) exec of /usr/bin/xkbcomp (/usr/bin/xkbcomp -w 1 -R/usr/share/X11/xkb -xkm - -em1 The XKEYBOARD keymap compiler (xkbcomp) reports: -emp > -eml Errors from) by /usr/bin/xkbcomp[sh:4887] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/Xorg[X:4418] uid/euid:1000/0 gid/egid:1000/1000 03:29:06 g0n kernel: [ 367.182513] grsec: (miro:U:/) chdir to /usr/share/X11/xkb by /usr/bin/xkbcomp[xkbcomp:4887] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/Xorg[X:4418] uid/euid:1000/0 gid/egid:1000/1000 03:29:07 g0n kernel: [ 367.913615] virbr0: port 2(vnet0) entered learning state 03:29:08 g0n kernel: [ 369.100959] kvm: zapping shadow pages for mmio generation wraparound 03:29:09 g0n dhcpcd[2923]: virbr0: carrier acquired 03:29:09 g0n kernel: [ 369.960661] virbr0: port 2(vnet0) entered forwarding state 03:29:09 g0n kernel: [ 369.960666] virbr0: topology change detected, propagating 03:29:09 g0n kernel: [ 369.962021] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4889] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:29:09 g0n dhcpcd[2923]: virbr0: IAID 00:ea:ee:e9 03:29:09 g0n dhcpcd[2923]: virbr0: IAID conflicts with one assigned to virbr0-nic 03:29:09 g0n dhcpcd[2923]: virbr0: adding address fe80::7e36:b0a1:9718:3d3a 03:29:09 g0n dhcpcd[2923]: if_addaddress6: Permission denied 03:29:09 g0n kernel: [ 370.011930] kvm [4863]: vcpu0, guest rIP: 0xffffffff8103a831 unhandled rdmsr: 0xc0010048 03:29:09 g0n kernel: [ 370.194165] kvm: zapping shadow pages for mmio generation wraparound
5 25.355719253 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0xf8de1305
03:29:10 g0n dhcpcd[2923]: virbr0: soliciting a DHCP lease 03:29:10 g0n dhcpcd[2923]: virbr0: soliciting an IPv6 router 03:29:10 g0n dhcpcd[2923]: vnet0: probing for an IPv4LL address
Frame 5: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:10.088063634 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199350.088063634 seconds
[Time delta from previous captured frame: 4.412002510 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 25.355719253 seconds]
Frame Number: 5
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0xad51 (44369)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xcc0f [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xa715 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xf8de1305
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
6 25.355749574 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0xf8de1305
Frame 6: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:10.088093955 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199350.088093955 seconds
[Time delta from previous captured frame: 0.000030321 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 25.355749574 seconds]
Frame Number: 6
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0xad51 (44369)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xcc0f [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xa715 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xf8de1305
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
7 25.432225743 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x888639e4
Frame 7: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:10.164570124 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199350.164570124 seconds
[Time delta from previous captured frame: 0.076476169 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 25.432225743 seconds]
Frame Number: 7
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0xe38d (58253)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x95d3 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xc4f5 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x888639e4
Seconds elapsed: 4
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
8 29.064987915 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0xf8de1305
Frame 8: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:13.797332296 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199353.797332296 seconds
[Time delta from previous captured frame: 3.632762172 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 29.064987915 seconds]
Frame Number: 8
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x1c27 (7207)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x5d3a [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xa712 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xf8de1305
Seconds elapsed: 3
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
9 29.065008470 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0xf8de1305
Frame 9: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:13.797352851 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199353.797352851 seconds
[Time delta from previous captured frame: 0.000020555 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 29.065008470 seconds]
Frame Number: 9
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x1c27 (7207)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x5d3a [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xa712 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xf8de1305
Seconds elapsed: 3
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
03:29:15 g0n dhcpcd[2923]: virbr0: probing for an IPv4LL address 03:29:15 g0n dhcpcd[2923]: vnet0: using IPv4LL address 169.254.227.232 03:29:15 g0n dhcpcd[2923]: vnet0: adding route to 169.254.0.0/16 03:29:15 g0n kernel: [ 376.291255] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4890] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:29:15 g0n kernel: [ 376.303635] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4892] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4890] uid/euid:0/0 gid/egid:0/0 03:29:15 g0n kernel: [ 376.304413] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4893] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4892] uid/euid:0/0 gid/egid:0/0 03:29:15 g0n kernel: [ 376.307130] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4894] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4890] uid/euid:0/0 gid/egid:0/0 03:29:15 g0n kernel: [ 376.307829] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4895] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4894] uid/euid:0/0 gid/egid:0/0 03:29:15 g0n kernel: [ 376.310106] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4896] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4890] uid/euid:0/0 gid/egid:0/0 03:29:15 g0n kernel: [ 376.310793] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4897] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4896] uid/euid:0/0 gid/egid:0/0 03:29:15 g0n kernel: [ 376.314567] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.vnet0.ipv4ll ) by /usr/bin/cmp[dhcpcd-run-hook:4899] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4890] uid/euid:0/0 gid/egid:0/0 03:29:15 g0n kernel: [ 376.315973] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.ipv4ll ) by /bin/rm[dhcpcd-run-hook:4900] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4890] uid/euid:0/0 gid/egid:0/0 03:29:15 g0n kernel: [ 376.317280] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.ipv4ll ) by /bin/rm[dhcpcd-run-hook:4901] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4890] uid/euid:0/0 gid/egid:0/0 03:29:15 g0n kernel: [ 376.320479] grsec: (root:U:/bin/hostname) exec of /bin/hostname (hostname ) by /bin/hostname[dhcpcd-run-hook:4903] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4902] uid/euid:0/0 gid/egid:0/0
10 33.433120996 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x888639e4
03:29:18 g0n dhcpcd[2923]: vnet0: no IPv6 Routers available
Frame 10: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:18.165465377 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199358.165465377 seconds
[Time delta from previous captured frame: 4.368112526 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 33.433120996 seconds]
Frame Number: 10
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x69db (27099)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x0f86 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xc4ed [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x888639e4
Seconds elapsed: 12
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
11 36.780444651 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0xf8de1305
Frame 11: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:21.512789032 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199361.512789032 seconds
[Time delta from previous captured frame: 3.347323655 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 36.780444651 seconds]
Frame Number: 11
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x0b49 (2889)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x6e18 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xa70a [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xf8de1305
Seconds elapsed: 11
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
12 36.780462804 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0xf8de1305
Frame 12: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:21.512807185 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199361.512807185 seconds
[Time delta from previous captured frame: 0.000018153 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 36.780462804 seconds]
Frame Number: 12
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x0b49 (2889)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x6e18 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xa70a [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xf8de1305
Seconds elapsed: 11
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
13 49.497369155 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x888639e4
Frame 13: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:34.229713536 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199374.229713536 seconds
[Time delta from previous captured frame: 12.716906351 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 49.497369155 seconds]
Frame Number: 13
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x9d62 (40290)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xdbfe [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xc4dd [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x888639e4
Seconds elapsed: 28
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
14 52.574444588 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0xf8de1305
Frame 14: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:37.306788969 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199377.306788969 seconds
[Time delta from previous captured frame: 3.077075433 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 52.574444588 seconds]
Frame Number: 14
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x2368 (9064)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x55f9 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xa6fa [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xf8de1305
Seconds elapsed: 27
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
15 52.574472598 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0xf8de1305
Frame 15: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:37.306816979 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199377.306816979 seconds
[Time delta from previous captured frame: 0.000028010 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 52.574472598 seconds]
Frame Number: 15
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x2368 (9064)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x55f9 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xa6fa [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xf8de1305
Seconds elapsed: 27
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
03:29:20 g0n dhcpcd[2923]: virbr0: using IPv4LL address 169.254.64.126 03:29:20 g0n dhcpcd[2923]: virbr0: adding route to 169.254.0.0/16 03:29:20 g0n dnsmasq[4003]: failed to create listening socket for 169.254.64.126: Permission denied 03:29:20 g0n dnsmasq[4003]: failed to create listening socket for 169.254.64.126: Permission denied 03:29:20 g0n kernel: [ 381.096891] grsec: (default:D:/) use of CAP_NET_BIND_SERVICE denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.096997] grsec: (default:D:/) use of CAP_NET_BIND_SERVICE denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.098800] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4905] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.112837] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4908] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4905] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.113586] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4909] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4908] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.118039] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4910] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4905] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.119136] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4911] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4910] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.122311] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4912] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4905] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.123997] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4913] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4912] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.128458] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.virbr0.ipv4ll ) by /usr/bin/cmp[dhcpcd-run-hook:4915] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4905] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.130100] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.virbr0.ipv4ll ) by /bin/rm[dhcpcd-run-hook:4916] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4905] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.131800] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.virbr0.ipv4ll ) by /bin/rm[dhcpcd-run-hook:4917] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4905] uid/euid:0/0 gid/egid:0/0 03:29:20 g0n kernel: [ 381.138452] grsec: (root:U:/bin/hostname) exec of /bin/hostname (hostname ) by /bin/hostname[dhcpcd-run-hook:4919] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4918] uid/euid:0/0 gid/egid:0/0 03:29:26 g0n kernel: [ 387.229741] mrfw_dropIN=eth1 OUT= MAC=01:00:5e:00:00:01:24:9e:ab:c9:3d:77:08:00 SRC=192.168.1.1 DST=224.0.0.1 LEN=32 TOS=0x00 PREC=0x00 TTL=1 ID=47409 PROTO=2
16 53.808148911 0.0.0.0 → 255.255.255.255 DHCP 401 DHCP Discover - Transaction ID 0x10e1befc
03:29:38 g0n dnsmasq-dhcp[4003]: DHCPDISCOVER(virbr0) 52:54:00:98:2f:06 03:29:38 g0n dnsmasq-dhcp[4003]: DHCPOFFER(virbr0) 192.168.122.85 52:54:00:98:2f:06 03:29:38 g0n dnsmasq-dhcp[4003]: ARP-cache injection failed: Operation not permitted 03:29:38 g0n kernel: [ 399.362186] grsec: (default:D:/) use of CAP_NET_RAW denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0 03:29:38 g0n kernel: [ 399.362289] grsec: (default:D:/) use of CAP_NET_ADMIN denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0
Frame 16: 401 bytes on wire (3208 bits), 401 bytes captured (3208 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:38.540493292 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199378.540493292 seconds
[Time delta from previous captured frame: 1.233676313 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 53.808148911 seconds]
Frame Number: 16
Frame Length: 401 bytes (3208 bits)
Capture Length: 401 bytes (3208 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Broadcast (1)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 385
Identification: 0xe24d (57933)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x971f [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 365
Checksum: 0x8b6d [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 542514577
Link layer address: 52:54:00:98:2f:06
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 53
Vendor class identifier: dhcpcd-6.11.3:Linux-4.4.39-gentoo:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 6
Host Name: livecd
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
17 53.808148911 0.0.0.0 → 255.255.255.255 DHCP 401 DHCP Discover - Transaction ID 0x10e1befc
Frame 17: 401 bytes on wire (3208 bits), 401 bytes captured (3208 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:38.540493292 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199378.540493292 seconds
[Time delta from previous captured frame: 0.000000000 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 53.808148911 seconds]
Frame Number: 17
Frame Length: 401 bytes (3208 bits)
Capture Length: 401 bytes (3208 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Broadcast (1)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 385
Identification: 0xe24d (57933)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x971f [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 365
Checksum: 0x8b6d [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 542514577
Link layer address: 52:54:00:98:2f:06
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 53
Vendor class identifier: dhcpcd-6.11.3:Linux-4.4.39-gentoo:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 6
Host Name: livecd
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
18 56.919482672 192.168.122.1 → 192.168.122.1 ICMP 372 Destination unreachable (Host unreachable)
Frame 18: 372 bytes on wire (2976 bits), 372 bytes captured (2976 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:41.651827053 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199381.651827053 seconds
[Time delta from previous captured frame: 3.111333761 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 56.919482672 seconds]
Frame Number: 18
Frame Length: 372 bytes (2976 bits)
Capture Length: 372 bytes (2976 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:icmp:ip:udp:bootp]
Linux cooked capture
Packet type: Unicast to us (0)
Link-layer address type: 772
Link-layer address length: 6
Source: 00:00:00_00:00:00 (00:00:00:00:00:00)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 192.168.122.1, Dst: 192.168.122.1
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0xc0 (DSCP: CS6, ECN: Not-ECT)
1100 00.. = Differentiated Services Codepoint: Class Selector 6 (48)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 356
Identification: 0xc707 (50951)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: ICMP (1)
Header checksum: 0x3c7e [validation disabled]
[Header checksum status: Unverified]
Source: 192.168.122.1
Destination: 192.168.122.1
Internet Control Message Protocol
Type: 3 (Destination unreachable)
Code: 1 (Host unreachable)
Checksum: 0x73ec [correct]
[Checksum Status: Good]
Unused: 00000000
Internet Protocol Version 4, Src: 192.168.122.1, Dst: 192.168.122.85
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0xc0 (DSCP: CS6, ECN: Not-ECT)
1100 00.. = Differentiated Services Codepoint: Class Selector 6 (48)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 328
Identification: 0xcd8b (52619)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x35b2 [validation disabled]
[Header checksum status: Unverified]
Source: 192.168.122.1
Destination: 192.168.122.85
User Datagram Protocol, Src Port: bootps (67), Dst Port: bootpc (68)
Source Port: bootps (67)
Destination Port: bootpc (68)
Length: 308
Checksum: 0x99e7 [unverified]
[Checksum Status: Unverified]
[Stream index: 3]
Bootstrap Protocol (Offer)
Message type: Boot Reply (2)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 192.168.122.85
Next server IP address: 192.168.122.1
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Offer)
Length: 1
DHCP: Offer (2)
Option: (54) DHCP Server Identifier
Length: 4
DHCP Server Identifier: 192.168.122.1
Option: (51) IP Address Lease Time
Length: 4
IP Address Lease Time: (3600s) 1 hour
Option: (58) Renewal Time Value
Length: 4
Renewal Time Value: (1800s) 30 minutes
Option: (59) Rebinding Time Value
Length: 4
Rebinding Time Value: (3150s) 52 minutes, 30 seconds
Option: (1) Subnet Mask
Length: 4
Subnet Mask: 255.255.255.0
Option: (28) Broadcast Address
Length: 4
Broadcast Address: 192.168.122.255
Option: (3) Router
Length: 4
Router: 192.168.122.1
Option: (6) Domain Name Server
Length: 4
Domain Name Server: 192.168.122.1
Option: (255) End
Option End: 255
Padding: 0000000000000000
19 58.489968584 0.0.0.0 → 255.255.255.255 DHCP 401 DHCP Discover - Transaction ID 0x10e1befc
03:29:43 g0n dnsmasq-dhcp[4003]: DHCPDISCOVER(virbr0) 52:54:00:98:2f:06 03:29:43 g0n dnsmasq-dhcp[4003]: DHCPOFFER(virbr0) 192.168.122.85 52:54:00:98:2f:06 03:29:43 g0n dnsmasq-dhcp[4003]: ARP-cache injection failed: Operation not permitted 03:29:43 g0n kernel: [ 404.044711] grsec: (default:D:/) use of CAP_NET_ADMIN denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0
Frame 19: 401 bytes on wire (3208 bits), 401 bytes captured (3208 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:43.222312965 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199383.222312965 seconds
[Time delta from previous captured frame: 1.570485912 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 58.489968584 seconds]
Frame Number: 19
Frame Length: 401 bytes (3208 bits)
Capture Length: 401 bytes (3208 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Broadcast (1)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 385
Identification: 0x614c (24908)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x1821 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 365
Checksum: 0x8b69 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 4
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 542514577
Link layer address: 52:54:00:98:2f:06
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 53
Vendor class identifier: dhcpcd-6.11.3:Linux-4.4.39-gentoo:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 6
Host Name: livecd
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
20 58.489968584 0.0.0.0 → 255.255.255.255 DHCP 401 DHCP Discover - Transaction ID 0x10e1befc
Frame 20: 401 bytes on wire (3208 bits), 401 bytes captured (3208 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:43.222312965 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199383.222312965 seconds
[Time delta from previous captured frame: 0.000000000 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 58.489968584 seconds]
Frame Number: 20
Frame Length: 401 bytes (3208 bits)
Capture Length: 401 bytes (3208 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Broadcast (1)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 385
Identification: 0x614c (24908)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x1821 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 365
Checksum: 0x8b69 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 4
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 542514577
Link layer address: 52:54:00:98:2f:06
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 53
Vendor class identifier: dhcpcd-6.11.3:Linux-4.4.39-gentoo:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 6
Host Name: livecd
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
21 61.591445548 192.168.122.1 → 192.168.122.1 ICMP 372 Destination unreachable (Host unreachable)
Frame 21: 372 bytes on wire (2976 bits), 372 bytes captured (2976 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:46.323789929 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199386.323789929 seconds
[Time delta from previous captured frame: 3.101476964 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 61.591445548 seconds]
Frame Number: 21
Frame Length: 372 bytes (2976 bits)
Capture Length: 372 bytes (2976 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:icmp:ip:udp:bootp]
Linux cooked capture
Packet type: Unicast to us (0)
Link-layer address type: 772
Link-layer address length: 6
Source: 00:00:00_00:00:00 (00:00:00:00:00:00)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 192.168.122.1, Dst: 192.168.122.1
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0xc0 (DSCP: CS6, ECN: Not-ECT)
1100 00.. = Differentiated Services Codepoint: Class Selector 6 (48)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 356
Identification: 0xd3d3 (54227)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: ICMP (1)
Header checksum: 0x2fb2 [validation disabled]
[Header checksum status: Unverified]
Source: 192.168.122.1
Destination: 192.168.122.1
Internet Control Message Protocol
Type: 3 (Destination unreachable)
Code: 1 (Host unreachable)
Checksum: 0x73ec [correct]
[Checksum Status: Good]
Unused: 00000000
Internet Protocol Version 4, Src: 192.168.122.1, Dst: 192.168.122.85
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0xc0 (DSCP: CS6, ECN: Not-ECT)
1100 00.. = Differentiated Services Codepoint: Class Selector 6 (48)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 328
Identification: 0xd172 (53618)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x31cb [validation disabled]
[Header checksum status: Unverified]
Source: 192.168.122.1
Destination: 192.168.122.85
User Datagram Protocol, Src Port: bootps (67), Dst Port: bootpc (68)
Source Port: bootps (67)
Destination Port: bootpc (68)
Length: 308
Checksum: 0x99e3 [unverified]
[Checksum Status: Unverified]
[Stream index: 3]
Bootstrap Protocol (Offer)
Message type: Boot Reply (2)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 4
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 192.168.122.85
Next server IP address: 192.168.122.1
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Offer)
Length: 1
DHCP: Offer (2)
Option: (54) DHCP Server Identifier
Length: 4
DHCP Server Identifier: 192.168.122.1
Option: (51) IP Address Lease Time
Length: 4
IP Address Lease Time: (3600s) 1 hour
Option: (58) Renewal Time Value
Length: 4
Renewal Time Value: (1800s) 30 minutes
Option: (59) Rebinding Time Value
Length: 4
Rebinding Time Value: (3150s) 52 minutes, 30 seconds
Option: (1) Subnet Mask
Length: 4
Subnet Mask: 255.255.255.0
Option: (28) Broadcast Address
Length: 4
Broadcast Address: 192.168.122.255
Option: (3) Router
Length: 4
Router: 192.168.122.1
Option: (6) Domain Name Server
Length: 4
Domain Name Server: 192.168.122.1
Option: (255) End
Option End: 255
Padding: 0000000000000000
22 66.162470572 0.0.0.0 → 255.255.255.255 DHCP 401 DHCP Discover - Transaction ID 0x10e1befc
03:29:50 g0n dnsmasq-dhcp[4003]: DHCPDISCOVER(virbr0) 52:54:00:98:2f:06 03:29:50 g0n dnsmasq-dhcp[4003]: DHCPOFFER(virbr0) 192.168.122.85 52:54:00:98:2f:06 03:29:50 g0n dnsmasq-dhcp[4003]: ARP-cache injection failed: Operation not permitted 03:29:50 g0n kernel: [ 411.716861] grsec: (default:D:/) use of CAP_NET_ADMIN denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0
Frame 22: 401 bytes on wire (3208 bits), 401 bytes captured (3208 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:50.894814953 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199390.894814953 seconds
[Time delta from previous captured frame: 4.571025024 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 66.162470572 seconds]
Frame Number: 22
Frame Length: 401 bytes (3208 bits)
Capture Length: 401 bytes (3208 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Broadcast (1)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 385
Identification: 0xa84c (43084)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xd120 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 365
Checksum: 0x8b61 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 12
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 542514577
Link layer address: 52:54:00:98:2f:06
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 53
Vendor class identifier: dhcpcd-6.11.3:Linux-4.4.39-gentoo:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 6
Host Name: livecd
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
23 66.162470572 0.0.0.0 → 255.255.255.255 DHCP 401 DHCP Discover - Transaction ID 0x10e1befc
Frame 23: 401 bytes on wire (3208 bits), 401 bytes captured (3208 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:50.894814953 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199390.894814953 seconds
[Time delta from previous captured frame: 0.000000000 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 66.162470572 seconds]
Frame Number: 23
Frame Length: 401 bytes (3208 bits)
Capture Length: 401 bytes (3208 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Broadcast (1)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 385
Identification: 0xa84c (43084)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xd120 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 365
Checksum: 0x8b61 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 12
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 542514577
Link layer address: 52:54:00:98:2f:06
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 53
Vendor class identifier: dhcpcd-6.11.3:Linux-4.4.39-gentoo:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 6
Host Name: livecd
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
24 69.271481552 192.168.122.1 → 192.168.122.1 ICMP 372 Destination unreachable (Host unreachable)
Frame 24: 372 bytes on wire (2976 bits), 372 bytes captured (2976 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:29:54.003825933 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199394.003825933 seconds
[Time delta from previous captured frame: 3.109010980 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 69.271481552 seconds]
Frame Number: 24
Frame Length: 372 bytes (2976 bits)
Capture Length: 372 bytes (2976 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:icmp:ip:udp:bootp]
Linux cooked capture
Packet type: Unicast to us (0)
Link-layer address type: 772
Link-layer address length: 6
Source: 00:00:00_00:00:00 (00:00:00:00:00:00)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 192.168.122.1, Dst: 192.168.122.1
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0xc0 (DSCP: CS6, ECN: Not-ECT)
1100 00.. = Differentiated Services Codepoint: Class Selector 6 (48)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 356
Identification: 0xe9a5 (59813)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: ICMP (1)
Header checksum: 0x19e0 [validation disabled]
[Header checksum status: Unverified]
Source: 192.168.122.1
Destination: 192.168.122.1
Internet Control Message Protocol
Type: 3 (Destination unreachable)
Code: 1 (Host unreachable)
Checksum: 0x73ec [correct]
[Checksum Status: Good]
Unused: 00000000
Internet Protocol Version 4, Src: 192.168.122.1, Dst: 192.168.122.85
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0xc0 (DSCP: CS6, ECN: Not-ECT)
1100 00.. = Differentiated Services Codepoint: Class Selector 6 (48)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 328
Identification: 0xddf4 (56820)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x2549 [validation disabled]
[Header checksum status: Unverified]
Source: 192.168.122.1
Destination: 192.168.122.85
User Datagram Protocol, Src Port: bootps (67), Dst Port: bootpc (68)
Source Port: bootps (67)
Destination Port: bootpc (68)
Length: 308
Checksum: 0x99db [unverified]
[Checksum Status: Unverified]
[Stream index: 3]
Bootstrap Protocol (Offer)
Message type: Boot Reply (2)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 12
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 192.168.122.85
Next server IP address: 192.168.122.1
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Offer)
Length: 1
DHCP: Offer (2)
Option: (54) DHCP Server Identifier
Length: 4
DHCP Server Identifier: 192.168.122.1
Option: (51) IP Address Lease Time
Length: 4
IP Address Lease Time: (3600s) 1 hour
Option: (58) Renewal Time Value
Length: 4
Renewal Time Value: (1800s) 30 minutes
Option: (59) Rebinding Time Value
Length: 4
Rebinding Time Value: (3150s) 52 minutes, 30 seconds
Option: (1) Subnet Mask
Length: 4
Subnet Mask: 255.255.255.0
Option: (28) Broadcast Address
Length: 4
Broadcast Address: 192.168.122.255
Option: (3) Router
Length: 4
Router: 192.168.122.1
Option: (6) Domain Name Server
Length: 4
Domain Name Server: 192.168.122.1
Option: (255) End
Option End: 255
Padding: 0000000000000000
25 75.965658519 0.0.0.0 → 255.255.255.255 DHCP 410 DHCP Discover - Transaction ID 0xb6130e6e
Frame 25: 410 bytes on wire (3280 bits), 410 bytes captured (3280 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:00.698002900 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199400.698002900 seconds
[Time delta from previous captured frame: 6.694176967 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 75.965658519 seconds]
Frame Number: 25
Frame Length: 410 bytes (3280 bits)
Capture Length: 410 bytes (3280 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: 46:62:59:56:fe:4d (46:62:59:56:fe:4d)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 394
Identification: 0x241c (9244)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x5548 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 374
Checksum: 0xde17 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xb6130e6e
Seconds elapsed: 377
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: 46:62:59:56:fe:4d (46:62:59:56:fe:4d)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 5956fe4d
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
26 81.086360528 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x888639e4
Frame 26: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:05.818704909 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199405.818704909 seconds
[Time delta from previous captured frame: 5.120702009 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 81.086360528 seconds]
Frame Number: 26
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x29ef (10735)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x4f72 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xc4bd [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x888639e4
Seconds elapsed: 60
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
03:30:01 g0n kernel: [ 422.280796] grsec: (root:U:/usr/sbin/crond) chdir to
/root by /usr/sbin/crond[crond:4930] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/crond[crond:3638] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.281042] grsec: (root:U:/bin/bash) exec of /bin/bash
(/bin/sh -c test -x /usr/sbin/run-crons && /usr/sbin/run-crons ) by
/bin/bash[crond:4930] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/crond[crond:3638] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.302554] grsec: (root:U:/usr/sbin/run-crons) exec of
/usr/sbin/run-crons (/usr/sbin/run-crons ) by /usr/sbin/run-crons[sh:4930]
uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/crond[crond:3638] uid/euid:0/0
gid/egid:0/0
03:30:01 g0n kernel: [ 422.306215] grsec: (root:U:/bin/mkdir) exec of
/bin/mkdir (mkdir -p /var/spool/cron/lastrun ) by /bin/mkdir[run-crons:4933]
uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:4930]
uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.307007] grsec: (root:U:/bin/mkdir) chdir to /var by
/bin/mkdir[mkdir:4933] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.307021] grsec: (root:U:/bin/mkdir) chdir to
/var/spool by /bin/mkdir[mkdir:4933] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.307034] grsec: (root:U:/bin/mkdir) chdir to
/var/spool/cron by /bin/mkdir[mkdir:4933] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.308331] grsec: (root:U:/bin/ln) exec of /bin/ln (ln
-sn 4930 /var/spool/cron/lastrun/lock ) by /bin/ln[run-crons:4934] uid/euid:0/0
gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:4930] uid/euid:0/0
gid/egid:0/0
03:30:01 g0n kernel: [ 422.325074] grsec: (root:U:/) exec of /bin/readlink
(readlink /var/spool/cron/lastrun/lock ) by /bin/readlink[run-crons:4936]
uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:4935]
uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.334148] grsec: (root:U:/bin/rm) exec of /bin/rm (rm
-f /var/spool/cron/lastrun/lock ) by /bin/rm[run-crons:4939] uid/euid:0/0
gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:4930] uid/euid:0/0
gid/egid:0/0
03:30:01 g0n kernel: [ 422.336386] grsec: (root:U:/bin/ln) exec of /bin/ln (ln
-sn 4930 /var/spool/cron/lastrun/lock ) by /bin/ln[run-crons:4940] uid/euid:0/0
gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:4930] uid/euid:0/0
gid/egid:0/0
03:30:01 g0n kernel: [ 422.339051] grsec: (root:U:/bin/touch) exec of
/bin/touch (touch /var/spool/cron/lastrun/cron.hourly ) by
/bin/touch[run-crons:4941] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.361469] grsec: (root:U:/) exec of /usr/bin/find
(find /var/spool/cron/lastrun -name cron.daily -cmin +1445 -exec rm {} ; ) by
/usr/bin/find[run-crons:4942] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.363473] grsec: (root:U:/) chdir to /root by
/usr/bin/find[find:4942] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.365090] grsec: (root:U:/) exec of /usr/bin/find
(find /var/spool/cron/lastrun -name cron.weekly -cmin +10085 -exec rm {} ; ) by
/usr/bin/find[run-crons:4943] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.366284] grsec: (root:U:/) chdir to /root by
/usr/bin/find[find:4943] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.367720] grsec: (root:U:/) exec of /usr/bin/find
(find /var/spool/cron/lastrun -name cron.monthly -cmin +44645 -exec rm {} ; )
by /usr/bin/find[run-crons:4944] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.368871] grsec: (root:U:/) chdir to /root by
/usr/bin/find[find:4944] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.369868] grsec: (root:U:/bin/touch) exec of
/bin/touch (touch /var/spool/cron/lastrun ) by /bin/touch[run-crons:4945]
uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:4930]
uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.371759] grsec: (root:U:/) exec of /usr/bin/find
(find /var/spool/cron/lastrun -newer /var/spool/cron/lastrun -exec /bin/rm -f
{} ; ) by /usr/bin/find[run-crons:4946] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.373106] grsec: (root:U:/) chdir to /root by
/usr/bin/find[find:4946] uid/euid:0/0 gid/egid:0/0, parent
/usr/sbin/run-crons[run-crons:4930] uid/euid:0/0 gid/egid:0/0
03:30:01 g0n kernel: [ 422.374379] grsec: (root:U:/bin/rm) exec of /bin/rm (rm
-f /var/spool/cron/lastrun/lock ) by /bin/rm[run-crons:4947] uid/euid:0/0
gid/egid:0/0, parent /usr/sbin/run-crons[run-crons:4930] uid/euid:0/0
gid/egid:0/0
27 81.508068401 0.0.0.0 → 255.255.255.255 DHCP 401 DHCP Discover - Transaction ID 0x10e1befc
03:30:06 g0n kernel: [ 427.062708] grsec: (default:D:/) use of CAP_NET_ADMIN denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0 03:30:06 g0n dnsmasq-dhcp[4003]: DHCPDISCOVER(virbr0) 52:54:00:98:2f:06 03:30:06 g0n dnsmasq-dhcp[4003]: DHCPOFFER(virbr0) 192.168.122.85 52:54:00:98:2f:06 03:30:06 g0n dnsmasq-dhcp[4003]: ARP-cache injection failed: Operation not permitted
Frame 27: 401 bytes on wire (3208 bits), 401 bytes captured (3208 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:06.240412782 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199406.240412782 seconds
[Time delta from previous captured frame: 0.421707873 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 81.508068401 seconds]
Frame Number: 27
Frame Length: 401 bytes (3208 bits)
Capture Length: 401 bytes (3208 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Broadcast (1)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 385
Identification: 0x9266 (37478)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xe706 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 365
Checksum: 0x8b52 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 27
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 542514577
Link layer address: 52:54:00:98:2f:06
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 53
Vendor class identifier: dhcpcd-6.11.3:Linux-4.4.39-gentoo:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 6
Host Name: livecd
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
28 81.508068401 0.0.0.0 → 255.255.255.255 DHCP 401 DHCP Discover - Transaction ID 0x10e1befc
Frame 28: 401 bytes on wire (3208 bits), 401 bytes captured (3208 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:06.240412782 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199406.240412782 seconds
[Time delta from previous captured frame: 0.000000000 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 81.508068401 seconds]
Frame Number: 28
Frame Length: 401 bytes (3208 bits)
Capture Length: 401 bytes (3208 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Broadcast (1)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 385
Identification: 0x9266 (37478)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xe706 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 365
Checksum: 0x8b52 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 27
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 542514577
Link layer address: 52:54:00:98:2f:06
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 53
Vendor class identifier: dhcpcd-6.11.3:Linux-4.4.39-gentoo:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 6
Host Name: livecd
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
29 84.121686987 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0xf8de1305
Frame 29: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:08.854031368 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199408.854031368 seconds
[Time delta from previous captured frame: 2.613618586 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 84.121686987 seconds]
Frame Number: 29
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x798e (31118)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xffd2 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xa6db [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xf8de1305
Seconds elapsed: 58
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
30 84.121729495 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0xf8de1305
Frame 30: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:08.854073876 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199408.854073876 seconds
[Time delta from previous captured frame: 0.000042508 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 84.121729495 seconds]
Frame Number: 30
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x798e (31118)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xffd2 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xa6db [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0xf8de1305
Seconds elapsed: 58
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
31 84.567463765 192.168.122.1 → 192.168.122.1 ICMP 372 Destination unreachable (Host unreachable)
Frame 31: 372 bytes on wire (2976 bits), 372 bytes captured (2976 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:09.299808146 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199409.299808146 seconds
[Time delta from previous captured frame: 0.445734270 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 84.567463765 seconds]
Frame Number: 31
Frame Length: 372 bytes (2976 bits)
Capture Length: 372 bytes (2976 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:icmp:ip:udp:bootp]
Linux cooked capture
Packet type: Unicast to us (0)
Link-layer address type: 772
Link-layer address length: 6
Source: 00:00:00_00:00:00 (00:00:00:00:00:00)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 192.168.122.1, Dst: 192.168.122.1
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0xc0 (DSCP: CS6, ECN: Not-ECT)
1100 00.. = Differentiated Services Codepoint: Class Selector 6 (48)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 356
Identification: 0x0cb4 (3252)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: ICMP (1)
Header checksum: 0xf6d1 [validation disabled]
[Header checksum status: Unverified]
Source: 192.168.122.1
Destination: 192.168.122.1
Internet Control Message Protocol
Type: 3 (Destination unreachable)
Code: 1 (Host unreachable)
Checksum: 0x73ec [correct]
[Checksum Status: Good]
Unused: 00000000
Internet Protocol Version 4, Src: 192.168.122.1, Dst: 192.168.122.85
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0xc0 (DSCP: CS6, ECN: Not-ECT)
1100 00.. = Differentiated Services Codepoint: Class Selector 6 (48)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 328
Identification: 0x0829 (2089)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xfb14 [validation disabled]
[Header checksum status: Unverified]
Source: 192.168.122.1
Destination: 192.168.122.85
User Datagram Protocol, Src Port: bootps (67), Dst Port: bootpc (68)
Source Port: bootps (67)
Destination Port: bootpc (68)
Length: 308
Checksum: 0x99cc [unverified]
[Checksum Status: Unverified]
[Stream index: 3]
Bootstrap Protocol (Offer)
Message type: Boot Reply (2)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x10e1befc
Seconds elapsed: 27
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 192.168.122.85
Next server IP address: 192.168.122.1
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_98:2f:06 (52:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Offer)
Length: 1
DHCP: Offer (2)
Option: (54) DHCP Server Identifier
Length: 4
DHCP Server Identifier: 192.168.122.1
Option: (51) IP Address Lease Time
Length: 4
IP Address Lease Time: (3600s) 1 hour
Option: (58) Renewal Time Value
Length: 4
Renewal Time Value: (1800s) 30 minutes
Option: (59) Rebinding Time Value
Length: 4
Rebinding Time Value: (3150s) 52 minutes, 30 seconds
Option: (1) Subnet Mask
Length: 4
Subnet Mask: 255.255.255.0
Option: (28) Broadcast Address
Length: 4
Broadcast Address: 192.168.122.255
Option: (3) Router
Length: 4
Router: 192.168.122.1
Option: (6) Domain Name Server
Length: 4
Domain Name Server: 192.168.122.1
Option: (255) End
Option End: 255
Padding: 0000000000000000
03:30:20 g0n dhcpcd[2923]: vnet0: carrier lost 03:30:20 g0n kernel: [ 441.690116] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4950] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.701640] virbr0: port 2(vnet0) entered disabled state 03:30:20 g0n kernel: [ 441.701899] device vnet0 left promiscuous mode 03:30:20 g0n kernel: [ 441.701903] virbr0: port 2(vnet0) entered disabled state 03:30:20 g0n dnsmasq[4003]: failed to create listening socket for 169.254.64.126: Permission denied 03:30:20 g0n dnsmasq[4003]: failed to create listening socket for 169.254.64.126: Permission denied 03:30:20 g0n dnsmasq[4003]: failed to create listening socket for 169.254.64.126: Permission denied 03:30:20 g0n dnsmasq[4003]: failed to create listening socket for 169.254.64.126: Permission denied 03:30:20 g0n kernel: [ 441.703625] grsec: (default:D:/) use of CAP_NET_BIND_SERVICE denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.703693] grsec: (default:D:/) use of CAP_NET_BIND_SERVICE denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.703814] grsec: (default:D:/) use of CAP_NET_BIND_SERVICE denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.703845] grsec: (default:D:/) use of CAP_NET_BIND_SERVICE denied for /usr/sbin/dnsmasq[dnsmasq:4003] uid/euid:65534/65534 gid/egid:65534/65534, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.705250] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4958] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4950] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.705902] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4959] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4958] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.707211] grsec: (root:U:/) exec of /lib64/udev/net.sh (/lib/udev/net.sh vnet0 stop ) by /lib64/udev/net.sh[udevd:4960] uid/euid:0/0 gid/egid:0/0, parent /sbin/udevd[udevd:4957] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.709043] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4961] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4950] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.709688] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4963] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4961] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.712167] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4964] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4950] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.712771] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4965] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4964] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.720910] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:4967] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4950] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.724071] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:4968] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4950] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.725967] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:4969] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4950] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n dhcpcd[2923]: vnet0: deleting address fe80::9326:ba01:4521:ee7f 03:30:20 g0n dhcpcd[2923]: vnet0: deleting route to 169.254.0.0/16 03:30:20 g0n kernel: [ 441.737399] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4971] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.747670] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4973] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4971] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.748481] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4974] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4973] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.751688] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4975] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4971] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.752638] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4976] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4975] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.757822] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4977] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4971] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.758546] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4978] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4977] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.763807] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.vnet0.ipv4ll ) by /usr/bin/cmp[dhcpcd-run-hook:4980] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4971] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.765150] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.ipv4ll ) by /bin/rm[dhcpcd-run-hook:4981] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4971] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.766449] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.ipv4ll ) by /bin/rm[dhcpcd-run-hook:4982] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4971] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.778560] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4984] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.790709] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4986] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4984] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.792474] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4987] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4986] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.795640] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4988] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4984] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.796445] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4989] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4988] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.799722] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4990] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4984] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.800559] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:4991] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4990] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.805840] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:4993] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4984] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.807736] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:4994] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4984] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n kernel: [ 441.809508] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:4995] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4984] uid/euid:0/0 gid/egid:0/0 03:30:20 g0n dhcpcd[2923]: vnet0: removing interface 03:30:20 g0n kernel: [ 441.821115] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:4997] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.831530] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4999] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4997] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.832332] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5000] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4999] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.835379] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5001] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4997] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.836571] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5002] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5001] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.840288] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5003] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4997] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.841405] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5004] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5003] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.848683] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:5006] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4997] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.850366] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:5007] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4997] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.851966] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:5008] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:4997] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.859870] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5010] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.870610] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5012] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5010] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.873003] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5013] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5012] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.877263] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5014] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5010] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.878208] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5015] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5014] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.881436] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5016] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5010] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.882119] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5017] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5016] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.886571] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:5019] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5010] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.888495] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:5020] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5010] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.890378] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:5021] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5010] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n dhcpcd[2923]: virbr0: carrier lost 03:30:21 g0n kernel: [ 441.898819] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5023] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.911443] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5025] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5023] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.913946] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5026] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5025] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.919722] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5027] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5023] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.921244] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5028] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5027] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.924980] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5029] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5023] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.925709] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5030] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5029] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.930693] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.virbr0.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:5032] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5023] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.932614] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.virbr0.dhcp ) by /bin/rm[dhcpcd-run-hook:5033] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5023] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.934725] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.virbr0.dhcp ) by /bin/rm[dhcpcd-run-hook:5034] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5023] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.951220] grsec: (miro:U:/bin/bash) exec of /bin/bash (sh -c "/usr/bin/xkbcomp" -w 1 "-R/usr/share/X11/xkb" -xkm "-" -em1 "The XKEYBOARD keymap compiler (xkbcomp) reports:" -emp "> " ) by /bin/bash[X:5036] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/Xorg[X:4418] uid/euid:1000/0 gid/egid:1000/1000 03:30:21 g0n kernel: [ 441.955747] grsec: (miro:U:/) exec of /usr/bin/xkbcomp (/usr/bin/xkbcomp -w 1 -R/usr/share/X11/xkb -xkm - -em1 The XKEYBOARD keymap compiler (xkbcomp) reports: -emp > -eml Errors from) by /usr/bin/xkbcomp[sh:5036] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/Xorg[X:4418] uid/euid:1000/0 gid/egid:1000/1000 03:30:21 g0n dhcpcd[2923]: virbr0: deleting route to 169.254.0.0/16 03:30:21 g0n kernel: [ 441.956752] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5037] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.957521] grsec: (miro:U:/) chdir to /usr/share/X11/xkb by /usr/bin/xkbcomp[xkbcomp:5036] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/Xorg[X:4418] uid/euid:1000/0 gid/egid:1000/1000 03:30:21 g0n kernel: [ 441.965249] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5039] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5037] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.965940] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5040] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5039] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.968047] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5041] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5037] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.968761] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5042] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5041] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.971411] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5043] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5037] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.972208] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5044] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5043] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.976702] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.virbr0.ipv4ll ) by /usr/bin/cmp[dhcpcd-run-hook:5046] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5037] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.978423] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.virbr0.ipv4ll ) by /bin/rm[dhcpcd-run-hook:5047] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5037] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.979896] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.virbr0.ipv4ll ) by /bin/rm[dhcpcd-run-hook:5048] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5037] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 441.991376] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5050] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.002264] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5052] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5050] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.002987] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5053] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5052] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.005660] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5054] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5050] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.006436] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5055] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5054] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.008808] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5056] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5050] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.009400] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5057] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5056] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.013180] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.virbr0.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:5059] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5050] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.014587] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.virbr0.dhcp ) by /bin/rm[dhcpcd-run-hook:5060] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5050] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.015849] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.virbr0.dhcp ) by /bin/rm[dhcpcd-run-hook:5061] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5050] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.282390] grsec: (root:U:/) exec of /lib64/udev/net.sh (/lib/udev/net.sh vnet0 start ) by /lib64/udev/net.sh[udevd:5088] uid/euid:0/0 gid/egid:0/0, parent /sbin/udevd[udevd:4957] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.282999] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5089] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.293768] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5090] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.306449] virbr0: port 2(vnet0) entered blocking state 03:30:21 g0n kernel: [ 442.306454] virbr0: port 2(vnet0) entered disabled state 03:30:21 g0n kernel: [ 442.306618] device vnet0 entered promiscuous mode 03:30:21 g0n kernel: [ 442.308294] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5092] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5090] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.308929] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5093] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5092] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.310160] virbr0: port 2(vnet0) entered blocking state 03:30:21 g0n kernel: [ 442.310165] virbr0: port 2(vnet0) entered listening state 03:30:21 g0n kernel: [ 442.311576] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5094] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5090] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.312250] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5095] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5094] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.314750] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5096] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5090] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.315377] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5097] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5096] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.319409] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:5099] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5090] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.320751] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:5100] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5090] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.322266] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.vnet0.dhcp ) by /bin/rm[dhcpcd-run-hook:5101] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5090] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.325135] grsec: (root:U:/usr/sbin/libvirtd) chdir to / by /usr/sbin/libvirtd[libvirtd:5102] uid/euid:0/0 gid/egid:0/0, parent /usr/sbin/libvirtd[libvirtd:3907] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n dhcpcd[2923]: vnet0: waiting for carrier 03:30:21 g0n dhcpcd[2923]: vnet0: carrier acquired 03:30:21 g0n kernel: [ 442.329389] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5105] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.329901] grsec: (qemu:U:/) exec of /usr/bin/qemu-system-x86_64 (/usr/bin/qemu-system-x86_64 -name guest=gentoo22,debug-threads=on -S -object secret,id=masterKey0,format=raw,file=/var/lib/libvi) by /usr/bin/qemu-system-x86_64[libvirtd:5104] uid/euid:77/77 gid/egid:77/77, parent /sbin/init[init:1] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n dhcpcd[2923]: vnet0: IAID 00:98:2f:06 03:30:21 g0n dhcpcd[2923]: vnet0: adding address fe80::9326:ba01:4521:ee7f 03:30:21 g0n qemu-system-x86_64: SQL engine 'mysql' not supported 03:30:21 g0n qemu-system-x86_64: auxpropfunc error no mechanism available 03:30:21 g0n qemu-system-x86_64: _sasl_plugin_load failed on sasl_auxprop_plug_init for plugin: sql 03:30:21 g0n kernel: [ 442.458808] grsec: (miro:U:/usr/bin/virt-viewer) exec of /usr/bin/virt-viewer (virt-viewer --connect qemu:///system --wait gentoo22 ) by /usr/bin/virt-viewer[python2.7:5111] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/python2.7[python2.7:4811] uid/euid:1000/1000 gid/egid:1000/1000 03:30:21 g0n kernel: [ 442.541004] grsec: (miro:U:/bin/bash) exec of /bin/bash (sh -c "/usr/bin/xkbcomp" -w 1 "-R/usr/share/X11/xkb" -xkm "-" -em1 "The XKEYBOARD keymap compiler (xkbcomp) reports:" -emp "> " ) by /bin/bash[X:5112] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/Xorg[X:4418] uid/euid:1000/0 gid/egid:1000/1000 03:30:21 g0n kernel: [ 442.545528] grsec: (miro:U:/) exec of /usr/bin/xkbcomp (/usr/bin/xkbcomp -w 1 -R/usr/share/X11/xkb -xkm - -em1 The XKEYBOARD keymap compiler (xkbcomp) reports: -emp > -eml Errors from) by /usr/bin/xkbcomp[sh:5112] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/Xorg[X:4418] uid/euid:1000/0 gid/egid:1000/1000 03:30:21 g0n kernel: [ 442.548114] grsec: (miro:U:/) chdir to /usr/share/X11/xkb by /usr/bin/xkbcomp[xkbcomp:5112] uid/euid:1000/1000 gid/egid:1000/1000, parent /usr/bin/Xorg[X:4418] uid/euid:1000/0 gid/egid:1000/1000 03:30:21 g0n kernel: [ 442.755039] sky2 0000:06:00.0 eth1: Link is down 03:30:21 g0n dhcpcd[2923]: eth1: carrier lost 03:30:21 g0n kernel: [ 442.758720] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5115] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.766712] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf/eth1.dhcp ) by /bin/rm[dhcpcd-run-hook:5116] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5115] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.771552] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5118] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5115] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.772536] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5119] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5118] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.778385] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5120] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5115] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.779047] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5121] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5120] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.781864] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5122] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5115] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.782643] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.dhcp6 eth1.ra ) by /bin/sed[dhcpcd-run-hook:5123] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5122] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.787964] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:5125] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5115] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.790971] grsec: (root:U:/) exec of /bin/cat (cat /run/dhcpcd/resolv.conf.eth1.dhcp ) by /bin/cat[dhcpcd-run-hook:5126] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5115] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n dnsmasq[4003]: reading /etc/resolv.conf 03:30:21 g0n dnsmasq[4003]: using nameserver fe80::1%eth1#53 03:30:21 g0n kernel: [ 442.794962] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.dhcp ) by /bin/rm[dhcpcd-run-hook:5127] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5115] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.796712] grsec: (root:U:/bin/chmod) exec of /bin/chmod (chmod 644 /etc/resolv.conf ) by /bin/chmod[dhcpcd-run-hook:5128] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5115] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.798220] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.dhcp ) by /bin/rm[dhcpcd-run-hook:5129] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5115] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.805134] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5131] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.812718] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf/eth1.dhcp6 ) by /bin/rm[dhcpcd-run-hook:5132] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5131] uid/euid:0/0 gid/egid:0/0 03:30:21 g0n kernel: [ 442.820550] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5134] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5131] uid/euid:0/0 gid/egid:0/0
32 97.469649504 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x4198f255
03:30:22 g0n kernel: [ 442.822417] grsec: (root:U:/) exec of /bin/sed (sed -n s/^domain //p eth1.ra ) by /bin/sed[dhcpcd-run-hook:5135] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5134] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.825112] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5136] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5131] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.825704] grsec: (root:U:/) exec of /bin/sed (sed -n s/^search //p eth1.ra ) by /bin/sed[dhcpcd-run-hook:5137] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5136] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.827993] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) chdir to /run/dhcpcd/resolv.conf by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5138] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5131] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.828523] grsec: (root:U:/) exec of /bin/sed (sed -n s/^nameserver //p eth1.ra ) by /bin/sed[dhcpcd-run-hook:5139] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5138] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.831779] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1.dhcp6 ) by /usr/bin/cmp[dhcpcd-run-hook:5141] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5131] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.833145] grsec: (root:U:/) exec of /bin/cat (cat /run/dhcpcd/resolv.conf.eth1.dhcp6 ) by /bin/cat[dhcpcd-run-hook:5142] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5131] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n dnsmasq[4003]: reading /etc/resolv.conf 03:30:22 g0n dnsmasq[4003]: using nameserver fe80::1%eth1#53 03:30:22 g0n kernel: [ 442.834773] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.dhcp6 ) by /bin/rm[dhcpcd-run-hook:5143] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5131] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.836503] grsec: (root:U:/bin/chmod) exec of /bin/chmod (chmod 644 /etc/resolv.conf ) by /bin/chmod[dhcpcd-run-hook:5144] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5131] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.837962] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.dhcp6 ) by /bin/rm[dhcpcd-run-hook:5145] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5131] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n dhcpcd[2923]: eth1: deleting default route via fe80::1 03:30:22 g0n kernel: [ 442.843945] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5147] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.850638] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf/eth1.ra ) by /bin/rm[dhcpcd-run-hook:5148] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5147] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.854258] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1.ra ) by /usr/bin/cmp[dhcpcd-run-hook:5150] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5147] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.856068] grsec: (root:U:/) exec of /bin/cat (cat /run/dhcpcd/resolv.conf.eth1.ra ) by /bin/cat[dhcpcd-run-hook:5151] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5147] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n dnsmasq[4003]: no servers found in /etc/resolv.conf, will retry 03:30:22 g0n kernel: [ 442.858066] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.ra ) by /bin/rm[dhcpcd-run-hook:5152] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5147] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.859615] grsec: (root:U:/bin/chmod) exec of /bin/chmod (chmod 644 /etc/resolv.conf ) by /bin/chmod[dhcpcd-run-hook:5153] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5147] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.861199] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.ra ) by /bin/rm[dhcpcd-run-hook:5154] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5147] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n dhcpcd[2923]: eth1: deleting address fe80::30b7:84a9:5f50:6486 03:30:22 g0n dhcpcd[2923]: eth1: deleting default route via 192.168.1.1 03:30:22 g0n dhcpcd[2923]: eth1: deleting route to 192.168.1.0/24 03:30:22 g0n kernel: [ 442.889646] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5156] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.905676] grsec: (root:U:/) exec of /usr/bin/cmp (cmp -s /etc/resolv.conf /run/dhcpcd/resolv.conf.eth1.dhcp ) by /usr/bin/cmp[dhcpcd-run-hook:5158] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5156] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.907581] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.dhcp ) by /bin/rm[dhcpcd-run-hook:5159] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5156] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n kernel: [ 442.912987] grsec: (root:U:/bin/rm) exec of /bin/rm (rm -f /run/dhcpcd/resolv.conf.eth1.dhcp ) by /bin/rm[dhcpcd-run-hook:5160] uid/euid:0/0 gid/egid:0/0, parent /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd-run-hook:5156] uid/euid:0/0 gid/egid:0/0 03:30:22 g0n dhcpcd[2923]: vnet0: soliciting a DHCP lease 03:30:22 g0n dhcpcd[2923]: vnet0: soliciting an IPv6 router
Frame 32: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:22.201993885 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199422.201993885 seconds
[Time delta from previous captured frame: 12.902185739 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 97.469649504 seconds]
Frame Number: 32
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x9608 (38408)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xe358 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0x5376 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x4198f255
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
03:30:23 g0n kernel: [ 443.881944] sky2 0000:06:00.0 eth1: hung mac 0:74 fifo 74 (48:122) 03:30:23 g0n kernel: [ 443.881958] sky2 0000:06:00.0 eth1: receiver hang detected 03:30:23 g0n kernel: [ 444.329973] virbr0: port 2(vnet0) entered learning state
33 100.767416493 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x4198f255
03:30:25 g0n kernel: [ 446.377988] virbr0: port 2(vnet0) entered forwarding state 03:30:25 g0n kernel: [ 446.378026] virbr0: topology change detected, propagating 03:30:25 g0n dhcpcd[2923]: virbr0: carrier acquired 03:30:25 g0n kernel: [ 446.379529] grsec: (root:U:/lib64/dhcpcd/dhcpcd-run-hooks) exec of /lib64/dhcpcd/dhcpcd-run-hooks (/lib/dhcpcd/dhcpcd-run-hooks ) by /lib64/dhcpcd/dhcpcd-run-hooks[dhcpcd:5162] uid/euid:0/0 gid/egid:0/0, parent /sbin/dhcpcd[dhcpcd:2923] uid/euid:0/0 gid/egid:0/0 03:30:25 g0n dhcpcd[2923]: virbr0: IAID 00:ea:ee:e9 03:30:25 g0n dhcpcd[2923]: virbr0: IAID conflicts with one assigned to virbr0-nic 03:30:25 g0n dhcpcd[2923]: virbr0: soliciting a DHCP lease
Frame 33: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:25.499760874 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199425.499760874 seconds
[Time delta from previous captured frame: 3.297766989 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 100.767416493 seconds]
Frame Number: 33
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0xa223 (41507)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0xd73d [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0x5373 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x4198f255
Seconds elapsed: 3
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: fe:54:00:98:2f:06 (fe:54:00:98:2f:06)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00982f06
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
34 101.253671955 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x2eefbca3
Frame 34: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:25.986016336 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199425.986016336 seconds
[Time delta from previous captured frame: 0.486255462 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 101.253671955 seconds]
Frame Number: 34
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x35c9 (13769)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x4398 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xc766 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x2eefbca3
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
35 101.253702108 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x2eefbca3
Frame 35: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:25.986046489 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199425.986046489 seconds
[Time delta from previous captured frame: 0.000030153 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 101.253702108 seconds]
Frame Number: 35
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x35c9 (13769)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x4398 [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xc766 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x2eefbca3
Seconds elapsed: 0
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
36 104.977557714 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x2eefbca3
Frame 36: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:29.709902095 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199429.709902095 seconds
[Time delta from previous captured frame: 3.723855606 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 104.977557714 seconds]
Frame Number: 36
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x18e7 (6375)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x607a [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xc763 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x2eefbca3
Seconds elapsed: 3
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
37 104.977589169 0.0.0.0 → 255.255.255.255 DHCP 413 DHCP Discover - Transaction ID 0x2eefbca3
Frame 37: 413 bytes on wire (3304 bits), 413 bytes captured (3304 bits) on interface 0
Interface id: 0 (any)
Encapsulation type: Linux cooked-mode capture (25)
Arrival Time: Mar 11, 2017 03:30:29.709933550 CET
[Time shift for this packet: 0.000000000 seconds]
Epoch Time: 1489199429.709933550 seconds
[Time delta from previous captured frame: 0.000031455 seconds]
[Time delta from previous displayed frame: 0.000000000 seconds]
[Time since reference or first frame: 104.977589169 seconds]
Frame Number: 37
Frame Length: 413 bytes (3304 bits)
Capture Length: 413 bytes (3304 bits)
[Frame is marked: False]
[Frame is ignored: False]
[Protocols in frame: sll:ethertype:ip:udp:bootp]
Linux cooked capture
Packet type: Sent by us (4)
Link-layer address type: 1
Link-layer address length: 6
Source: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Protocol: IPv4 (0x0800)
Internet Protocol Version 4, Src: 0.0.0.0, Dst: 255.255.255.255
0100 .... = Version: 4
.... 0101 = Header Length: 20 bytes (5)
Differentiated Services Field: 0x00 (DSCP: CS0, ECN: Not-ECT)
0000 00.. = Differentiated Services Codepoint: Default (0)
.... ..00 = Explicit Congestion Notification: Not ECN-Capable Transport (0)
Total Length: 397
Identification: 0x18e7 (6375)
Flags: 0x00
0... .... = Reserved bit: Not set
.0.. .... = Don't fragment: Not set
..0. .... = More fragments: Not set
Fragment offset: 0
Time to live: 64
Protocol: UDP (17)
Header checksum: 0x607a [validation disabled]
[Header checksum status: Unverified]
Source: 0.0.0.0
Destination: 255.255.255.255
User Datagram Protocol, Src Port: bootpc (68), Dst Port: bootps (67)
Source Port: bootpc (68)
Destination Port: bootps (67)
Length: 377
Checksum: 0xc763 [unverified]
[Checksum Status: Unverified]
[Stream index: 2]
Bootstrap Protocol (Discover)
Message type: Boot Request (1)
Hardware type: Ethernet (0x01)
Hardware address length: 6
Hops: 0
Transaction ID: 0x2eefbca3
Seconds elapsed: 3
Bootp flags: 0x0000 (Unicast)
0... .... .... .... = Broadcast flag: Unicast
.000 0000 0000 0000 = Reserved flags: 0x0000
Client IP address: 0.0.0.0
Your (client) IP address: 0.0.0.0
Next server IP address: 0.0.0.0
Relay agent IP address: 0.0.0.0
Client MAC address: RealtekU_ea:ee:e9 (52:54:00:ea:ee:e9)
Client hardware address padding: 00000000000000000000
Server host name not given
Boot file name not given
Magic cookie: DHCP
Option: (53) DHCP Message Type (Discover)
Length: 1
DHCP: Discover (1)
Option: (61) Client identifier
Length: 19
IAID: 00eaeee9
DUID Type: link-layer address plus time (1)
Hardware type: Ethernet (1)
Time: 526570590
Link layer address: bc:5f:f4:c5:60:6c
Option: (80) Rapid commit
Length: 0
Option: (116) DHCP Auto-Configuration
Length: 1
DHCP Auto-Configuration: AutoConfigure (1)
Option: (57) Maximum DHCP Message Size
Length: 2
Maximum DHCP Message Size: 1472
Option: (60) Vendor class identifier
Length: 68
Vendor class identifier: dhcpcd-6.11.5:Linux-4.9.13-hardened-r1-170310_23:x86_64:AuthenticAMD
Option: (12) Host Name
Length: 3
Host Name: g0n
Option: (145) Unassigned
Length: 1
Value: 01
Option: (55) Parameter Request List
Length: 15
Parameter Request List Item: (1) Subnet Mask
Parameter Request List Item: (121) Classless Static Route
Parameter Request List Item: (33) Static Route
Parameter Request List Item: (3) Router
Parameter Request List Item: (6) Domain Name Server
Parameter Request List Item: (12) Host Name
Parameter Request List Item: (15) Domain Name
Parameter Request List Item: (26) Interface MTU
Parameter Request List Item: (28) Broadcast Address
Parameter Request List Item: (42) Network Time Protocol Servers
Parameter Request List Item: (51) IP Address Lease Time
Parameter Request List Item: (54) DHCP Server Identifier
Parameter Request List Item: (58) Renewal Time Value
Parameter Request List Item: (59) Rebinding Time Value
Parameter Request List Item: (119) Domain Search
Option: (255) End
Option End: 255
