type=USER_LOGIN msg=audit(1520617657.187:5366): pid=5652 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:sshd_t:s0-s0:c0.c1023 msg='op=login acct="root" exe="/usr/sbin/sshd" hostname=? addr=73.189.76.131 terminal=ssh res=failed'

type=SERVICE_START msg=audit(1520617668.208:5367): pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=fprintd comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'

type=USER_AUTH msg=audit(1520617670.584:5368): pid=5793 uid=1000 auid=1000 ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:authentication grantors=pam_unix acct="vplagov" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/3 res=success'

type=USER_ACCT msg=audit(1520617670.588:5369): pid=5793 uid=1000 auid=1000 ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:accounting grantors=pam_unix,pam_localuser acct="vplagov" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/3 res=success'

type=USER_CMD msg=audit(1520617670.589:5370): pid=5793 uid=1000 auid=1000 ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='cwd="/home/vplagov" cmd=7365746661747472202D782073656375726974792E73656C696E7578202F7573722F6C69622F637070 terminal=pts/3 res=success'

type=CRED_REFR msg=audit(1520617670.589:5371): pid=5793 uid=0 auid=1000 ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/3 res=success'

type=USER_START msg=audit(1520617670.595:5372): pid=5793 uid=0 auid=1000 ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_open grantors=pam_keyinit,pam_limits,pam_keyinit,pam_limits,pam_systemd,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/3 res=success'

type=USER_END msg=audit(1520617670.602:5373): pid=5793 uid=0 auid=1000 ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:session_close grantors=pam_keyinit,pam_limits,pam_keyinit,pam_limits,pam_systemd,pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/3 res=success'

type=CRED_DISP msg=audit(1520617670.603:5374): pid=5793 uid=0 auid=1000 ses=2 subj=unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 msg='op=PAM:setcred grantors=pam_unix acct="root" exe="/usr/bin/sudo" hostname=? addr=? terminal=/dev/pts/3 res=success'



Created: 09/03/2018
Visits: 41
Online: 0