Jun 15 04:41:27 localhost groupadd[2134]: group added to /etc/group: name=hckao, GID=1000
Jun 15 04:41:27 localhost groupadd[2134]: group added to /etc/gshadow: name=hckao
Jun 15 04:41:27 localhost groupadd[2134]: new group: name=hckao, GID=1000
Jun 15 04:41:27 localhost useradd[2138]: new user: name=hckao, UID=1000, GID=1000, home=/home/hckao, shell=/bin/bash
Jun 15 04:41:36 localhost passwd[2146]: pam_unix(passwd:chauthtok): password changed for hckao
Jun 15 04:41:39 localhost chfn[2151]: changed user 'hckao' information
Jun 15 04:41:42 localhost usermod[2155]: add 'hckao' to group 'sudo'
Jun 15 04:41:42 localhost usermod[2155]: add 'hckao' to shadow group 'sudo'
Jun 15 04:41:42 localhost usermod[2160]: add 'hckao' to group 'netdev'
Jun 15 04:41:42 localhost usermod[2160]: add 'hckao' to shadow group 'netdev'
Jun 15 04:41:42 localhost usermod[2165]: add 'hckao' to group 'audio'
Jun 15 04:41:42 localhost usermod[2165]: add 'hckao' to shadow group 'audio'
Jun 15 04:41:42 localhost usermod[2171]: add 'hckao' to group 'video'
Jun 15 04:41:42 localhost usermod[2171]: add 'hckao' to shadow group 'video'
Jun 15 04:41:42 localhost usermod[2176]: add 'hckao' to group 'dialout'
Jun 15 04:41:42 localhost usermod[2176]: add 'hckao' to shadow group 'dialout'
Jun 15 04:41:43 localhost usermod[2181]: add 'hckao' to group 'plugdev'
Jun 15 04:41:43 localhost usermod[2181]: add 'hckao' to shadow group 'plugdev'
Jun 15 04:41:44 localhost usermod[2186]: add 'hckao' to group 'input'
Jun 15 04:41:44 localhost usermod[2186]: add 'hckao' to shadow group 'input'
Jun 15 04:41:44 localhost usermod[2192]: add 'hckao' to group 'systemd-journal'
Jun 15 04:41:44 localhost usermod[2192]: add 'hckao' to shadow group 'systemd-journal'
Jun 15 04:41:44 localhost usermod[2197]: add 'hckao' to group 'ssh'
Jun 15 04:41:44 localhost usermod[2197]: add 'hckao' to shadow group 'ssh'
Jun 15 04:41:44 localhost usermod[2204]: add 'hckao' to group 'root'
Jun 15 04:41:44 localhost usermod[2204]: add 'hckao' to group 'tty'
Jun 15 04:41:44 localhost usermod[2204]: add 'hckao' to group 'disk'
Jun 15 04:41:44 localhost usermod[2204]: add 'hckao' to group 'games'
Jun 15 04:41:44 localhost usermod[2204]: add 'hckao' to group 'users'
Jun 15 04:41:44 localhost usermod[2204]: add 'hckao' to shadow group 'root'
Jun 15 04:41:44 localhost usermod[2204]: add 'hckao' to shadow group 'tty'
Jun 15 04:41:44 localhost usermod[2204]: add 'hckao' to shadow group 'disk'
Jun 15 04:41:44 localhost usermod[2204]: add 'hckao' to shadow group 'games'
Jun 15 04:41:44 localhost usermod[2204]: add 'hckao' to shadow group 'users'
Jun 15 12:50:25 localhost sshd[1634]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.168.1.103  user=hckao
Jun 15 12:50:27 localhost sshd[1634]: Failed password for hckao from 192.168.1.103 port 55627 ssh2
Jun 15 12:50:32 localhost sshd[1634]: Accepted password for hckao from 192.168.1.103 port 55627 ssh2
Jun 15 12:50:32 localhost sshd[1634]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 15 12:50:32 localhost systemd-logind[953]: New session 4 of user hckao.
Jun 15 12:50:32 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 15 12:50:48 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt update
Jun 15 12:50:48 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 12:59:18 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/bin/cp resolv.conf resolv.conf.bak
Jun 15 12:59:18 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 12:59:27 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/bin/nano resolv.conf.bak
Jun 15 12:59:27 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:00:07 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/usr/bin/crontab -e
Jun 15 13:00:07 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:01:31 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/sbin/reboot
Jun 15 13:01:31 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:01:31 localhost sshd[1634]: pam_unix(sshd:session): session closed for user hckao
Jun 15 13:11:27 localhost sshd[1693]: Accepted password for hckao from 192.168.1.103 port 55669 ssh2
Jun 15 13:11:27 localhost sshd[1693]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 15 13:11:27 localhost systemd-logind[921]: New session 7 of user hckao.
Jun 15 13:11:27 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 15 13:11:38 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt update
Jun 15 13:11:38 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:12:31 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /etc/resolv.conf
Jun 15 13:12:31 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:14:39 localhost sshd[1843]: Accepted password for hckao from 192.168.9.209 port 55680 ssh2
Jun 15 13:14:39 localhost sshd[1843]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 15 13:14:39 localhost systemd-logind[921]: New session 9 of user hckao.
Jun 15 13:15:16 localhost sudo:    hckao : TTY=pts/1 ; PWD=/home/hckao ; USER=root ; COMMAND=/sbin/reboot
Jun 15 13:15:16 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:15:16 localhost sshd[1693]: pam_unix(sshd:session): session closed for user hckao
Jun 15 13:15:16 localhost sshd[1843]: pam_unix(sshd:session): session closed for user hckao
Jun 15 13:18:48 localhost sshd[1568]: Accepted password for hckao from 192.168.9.209 port 55697 ssh2
Jun 15 13:18:48 localhost sshd[1568]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 15 13:18:48 localhost systemd-logind[920]: New session 7 of user hckao.
Jun 15 13:18:48 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 15 13:19:03 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt update
Jun 15 13:19:03 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:19:37 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt upgrade
Jun 15 13:19:37 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:20:49 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt upgrade
Jun 15 13:20:49 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:21:17 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt install ppp pppoeconf
Jun 15 13:21:17 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:22:41 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/nano /etc/resolv.conf.bak
Jun 15 13:22:41 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:23:24 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt install net-tools
Jun 15 13:23:24 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:23:37 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt upgrade
Jun 15 13:23:37 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:24:31 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/sbin/pppoeconf
Jun 15 13:24:31 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:25:44 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt upgrade
Jun 15 13:25:44 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:42:18 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt upgrade
Jun 15 13:42:18 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:42:33 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt autoremove libf2fs0
Jun 15 13:42:33 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:42:52 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt update
Jun 15 13:42:52 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:43:38 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt-get install language-pack-zh-hant
Jun 15 13:43:38 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:44:50 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/nano /etc/default/locale
Jun 15 13:44:50 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:47:54 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc/default ; USER=root ; COMMAND=/bin/cp locale locale.org
Jun 15 13:47:54 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:48:03 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc/default ; USER=root ; COMMAND=/bin/nano locale
Jun 15 13:48:03 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:50:19 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc/default ; USER=root ; COMMAND=/bin/nano locale
Jun 15 13:50:19 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:50:48 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc/default ; USER=root ; COMMAND=/sbin/reboot
Jun 15 13:50:48 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:50:48 localhost sshd[1568]: pam_unix(sshd:session): session closed for user hckao
Jun 15 13:52:02 localhost sshd[2056]: Accepted password for hckao from 192.168.9.209 port 55796 ssh2
Jun 15 13:52:02 localhost sshd[2056]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 15 13:52:03 localhost systemd-logind[1039]: New session 6 of user hckao.
Jun 15 13:52:03 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 15 13:52:12 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt update
Jun 15 13:52:12 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:53:09 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/nano /etc/environment
Jun 15 13:53:09 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:53:30 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/sbin/reboot
Jun 15 13:53:30 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:53:30 localhost sshd[2056]: pam_unix(sshd:session): session closed for user hckao
Jun 15 13:55:34 localhost sshd[2061]: Accepted password for hckao from 192.168.9.209 port 55823 ssh2
Jun 15 13:55:34 localhost sshd[2061]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 15 13:55:34 localhost systemd-logind[1145]: New session 7 of user hckao.
Jun 15 13:55:34 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 15 13:55:45 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt update
Jun 15 13:55:45 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 13:57:21 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt install apache2
Jun 15 13:57:21 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:00:16 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc/apache2/conf-available ; USER=root ; COMMAND=/bin/nano charset.conf
Jun 15 14:00:16 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:00:35 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc/apache2/conf-available ; USER=root ; COMMAND=/usr/sbin/service apache2 resdtart
Jun 15 14:00:35 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:00:56 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc/apache2/conf-available ; USER=root ; COMMAND=/usr/sbin/service apache2 restart
Jun 15 14:00:56 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:01:14 localhost sudo:    hckao : TTY=pts/0 ; PWD=/var/www/html ; USER=root ; COMMAND=/bin/mkdir x96
Jun 15 14:01:14 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:01:27 localhost sudo:    hckao : TTY=pts/0 ; PWD=/var/www/html ; USER=root ; COMMAND=/bin/chown hckao x96
Jun 15 14:01:27 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:06:24 localhost sudo:    hckao : TTY=pts/0 ; PWD=/var/www/html/x96 ; USER=root ; COMMAND=/usr/bin/apt update
Jun 15 14:06:24 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:21:51 localhost su[3835]: Successful su for root by hckao
Jun 15 14:21:51 localhost su[3835]: + /dev/pts/0 hckao:root
Jun 15 14:21:51 localhost su[3835]: pam_unix(su:session): session opened for user root by hckao(uid=1000)
Jun 15 14:26:53 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:26:59 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:29:45 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/crontab -l
Jun 15 14:29:45 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:32:03 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/auth.log
Jun 15 14:32:03 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:32:38 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 15 14:32:38 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:34:06 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/sbin/armbian-config
Jun 15 14:34:06 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:40:01 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/nano /etc/hosts.allow
Jun 15 14:40:01 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:40:24 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/nano /etc/hosts.deny
Jun 15 14:40:24 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:40:53 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/sbin/reboot
Jun 15 14:40:53 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 15 14:40:53 localhost sshd[2061]: pam_unix(sshd:session): session closed for user hckao
Jun 15 14:40:53 localhost systemd: pam_unix(systemd-user:session): session closed for user hckao
Jun 17 09:26:52 localhost sshd[2206]: Accepted password for hckao from 192.168.1.103 port 50869 ssh2
Jun 17 09:26:52 localhost sshd[2206]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 17 09:26:52 localhost systemd-logind[1123]: New session 13 of user hckao.
Jun 17 09:26:52 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 17 09:30:12 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/chmod 757 /home/hckao/
Jun 17 09:30:12 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 09:33:02 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/bin/nano vsftpd.conf
Jun 17 09:33:02 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 09:35:04 localhost polkitd(authority=local): Operator of unix-process:2601:79188 successfully authenticated as unix-user:hckao to gain ONE-SHOT authorization for action org.freedesktop.systemd1.manage-units for system-bus-name::1.109 [systemctl restart vsftpd.service] (owned by unix-user:hckao)
Jun 17 09:39:01 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/sbin/pppoeconf
Jun 17 09:39:01 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 09:39:40 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/sbin/reboot
Jun 17 09:39:40 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 09:39:40 localhost sshd[2206]: pam_unix(sshd:session): session closed for user hckao
Jun 17 09:39:40 localhost systemd: pam_unix(systemd-user:session): session closed for user hckao
Jun 17 12:08:27 localhost sshd[2849]: Accepted password for hckao from 192.168.1.103 port 52547 ssh2
Jun 17 12:08:27 localhost sshd[2849]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 17 12:08:27 localhost systemd-logind[1106]: New session 13 of user hckao.
Jun 17 12:08:27 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 17 12:20:59 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cp /etc/ipsec.d/ikev2.conf /var/www/html/x96/ikev2.conf.org
Jun 17 12:20:59 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 12:21:17 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/chmod 755 /var/www/html/x96/ikev2.conf.org
Jun 17 12:21:17 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 12:26:55 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/bin/nano iptables.rules
Jun 17 12:26:55 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 12:33:37 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/bin/cat iptables.rules
Jun 17 12:33:37 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 12:34:19 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/bin/cp iptables.rules /var/www/html/x96/iptables.rules.20220617.org.txt
Jun 17 12:34:19 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 12:35:01 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/bin/cp iptables.rules.edit.txt /var/www/html/x96/iptables.rules.edit.txt
Jun 17 12:35:01 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 12:35:16 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/bin/cp iptables.rules.edit.txt iptables.rules
Jun 17 12:35:16 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 12:36:02 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/bin/chmod 755 /var/www/html/x96/authlog.txt /var/www/html/x96/crontab.txt /var/www/html/x96/hosts.allow.txt /var/www/html/x96/hosts.deny.txt /var/www/html/x96/ikev2.conf.org /var/www/html/x96/instr.txt /var/www/html/x96/IOS用戶端安裝注意事項.txt /var/www/html/x96/ipsec.conf.org.txt /var/www/html/x96/iptables.rules.20220617.org.txt /var/www/html/x96/iptables.rules.edit.txt /var/www/html/x96/iptables.rules.org.txt /var/www/html/x96/syslog.txt /var/www/html/x96/vpn.sh.txt /var/www/html/x96/x96mini新機安裝vpn紀錄.txt /var/www/html/x96/xl2tpd.conf.old-2022-06-16-13_38_54.org.txt /var/www/html/x96/xl2tpd.conf.org.txt /var/www/html/x96/中文環境設定.txt /var/www/html/x96/安裝vpn時的小注意事項.txt
Jun 17 12:36:02 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 12:36:33 localhost su[3358]: Successful su for root by hckao
Jun 17 12:36:33 localhost su[3358]: + /dev/pts/0 hckao:root
Jun 17 12:36:33 localhost su[3358]: pam_unix(su:session): session opened for user root by hckao(uid=1000)
Jun 17 12:40:14 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 13:44:25 localhost sshd[2858]: Accepted password for hckao from 192.168.1.103 port 54135 ssh2
Jun 17 13:44:25 localhost sshd[2858]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 17 13:44:25 localhost systemd-logind[1131]: New session 14 of user hckao.
Jun 17 13:44:25 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 17 13:49:03 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cp /etc/ipsec.conf /var/www/html/x96/ipsec.conf.now.txt
Jun 17 13:49:03 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 13:49:17 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/chmod 755 /var/www/html/x96/ipsec.conf.now.txt
Jun 17 13:49:17 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 13:49:56 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cp /etc/ipsec.d/ikev2.conf /var/www/html/x96/ikev2.conf.now.txt
Jun 17 13:49:56 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 13:50:10 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/chmod 755 /var/www/html/x96/ikev2.conf.now.txt
Jun 17 13:50:10 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 13:50:37 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cp /etc/xl2tpd/xl2tpd.conf /var/www/html/x96/xl2tpd.conf.now.txt
Jun 17 13:50:37 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 13:50:47 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/chmod 755 /var/www/html/x96/xl2tpd.conf.now.txt
Jun 17 13:50:47 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 14:40:33 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/nano /etc/vsftpd.conf
Jun 17 14:40:33 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 14:41:42 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/sbin/service vsftpd restart
Jun 17 14:41:42 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 16:26:47 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc/ppp ; USER=root ; COMMAND=/bin/nano chap-secrets
Jun 17 16:26:47 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 16:31:14 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc ; USER=root ; COMMAND=/bin/nano ipsec.secrets
Jun 17 16:31:14 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 16:32:26 localhost su[3651]: Successful su for root by hckao
Jun 17 16:32:26 localhost su[3651]: + /dev/pts/0 hckao:root
Jun 17 16:32:26 localhost su[3651]: pam_unix(su:session): session opened for user root by hckao(uid=1000)
Jun 17 16:44:54 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/openssl passwd -1 kbt236
Jun 17 16:44:54 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 16:44:58 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/openssl passwd -1 kbt236
Jun 17 16:44:58 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 16:45:08 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/openssl passwd -1 giga1144
Jun 17 16:45:08 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 16:51:45 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt install snmp
Jun 17 16:51:45 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 16:52:21 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt install snmp-mibs-downloader
Jun 17 16:52:21 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 16:53:05 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt install snmpd
Jun 17 16:53:05 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 16:54:37 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/nano /etc/snmp/snmpd.conf
Jun 17 16:54:37 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 16:55:35 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/sbin/service snmpd restart
Jun 17 16:55:35 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 17:03:02 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/sbin/service snmpd enable
Jun 17 17:03:02 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 17:03:11 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/sbin/service snmpd reload
Jun 17 17:03:11 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 17:03:22 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/sbin/service snmpd status
Jun 17 17:03:22 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 17:10:12 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc/snmp ; USER=root ; COMMAND=/bin/nano snmpd.conf
Jun 17 17:10:12 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 17:11:23 localhost sudo:    hckao : TTY=pts/0 ; PWD=/etc/snmp ; USER=root ; COMMAND=/sbin/reboot
Jun 17 17:11:23 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 17:11:23 localhost sshd[2858]: pam_unix(sshd:session): session closed for user hckao
Jun 17 17:51:55 localhost sshd[2963]: Accepted password for hckao from 192.168.1.103 port 57051 ssh2
Jun 17 17:51:55 localhost sshd[2963]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 17 17:51:55 localhost systemd-logind[992]: New session 20 of user hckao.
Jun 17 17:51:55 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 17 17:53:08 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cp /var/log/auth.log /var/www/html/x96/authlog.txt
Jun 17 17:53:08 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 17:53:30 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cp /var/log/syslog /var/www/html/x96/syslog.txt
Jun 17 17:53:30 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:31:38 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt update
Jun 17 20:31:38 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:32:07 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/apt upgrade
Jun 17 20:32:07 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:37:11 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 17 20:37:11 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:37:48 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 17 20:37:48 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:38:13 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 17 20:38:13 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:38:18 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 17 20:38:18 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:38:25 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 17 20:38:25 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:38:48 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 17 20:38:48 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:39:18 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/auth.log
Jun 17 20:39:18 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:41:47 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/auth.log
Jun 17 20:41:47 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:41:52 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/auth.log
Jun 17 20:41:52 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 20:42:07 localhost sshd[2963]: pam_unix(sshd:session): session closed for user hckao
Jun 17 23:40:30 localhost sshd[4368]: Accepted password for hckao from 192.168.9.209 port 50489 ssh2
Jun 17 23:40:30 localhost sshd[4368]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 17 23:40:30 localhost systemd-logind[992]: New session 86 of user hckao.
Jun 17 23:40:30 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 17 23:40:54 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/sudo cat /var/log/auth.log
Jun 17 23:40:54 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:40:54 localhost sudo:     root : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/auth.log
Jun 17 23:40:54 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:41:29 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/sudo cat /var/log/auth.log
Jun 17 23:41:29 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:41:29 localhost sudo:     root : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/auth.log
Jun 17 23:41:29 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:42:05 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/sudo cat /var/log/auth.log
Jun 17 23:42:05 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:42:05 localhost sudo:     root : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/auth.log
Jun 17 23:42:05 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:42:42 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/usr/bin/sudo cat /var/log/auth.log
Jun 17 23:42:42 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:42:42 localhost sudo:     root : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/auth.log
Jun 17 23:42:42 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:44:56 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 17 23:44:56 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:45:18 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 17 23:45:18 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:45:23 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 17 23:45:23 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 17 23:46:39 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/syslog
Jun 17 23:46:39 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 18 00:02:34 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/sh add_vpn_user.sh
Jun 18 00:02:34 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 18 00:03:45 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /etc/ppp/chap-secrets
Jun 18 00:03:45 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 18 00:09:01 localhost sshd[4368]: pam_unix(sshd:session): session closed for user hckao
Jun 18 09:57:19 localhost sshd[5891]: Accepted password for hckao from 192.168.1.103 port 51493 ssh2
Jun 18 09:57:19 localhost sshd[5891]: pam_unix(sshd:session): session opened for user hckao by (uid=0)
Jun 18 09:57:19 localhost systemd-logind[992]: New session 206 of user hckao.
Jun 18 09:57:19 localhost systemd: pam_unix(systemd-user:session): session opened for user hckao by (uid=0)
Jun 18 09:58:36 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/auth.log
Jun 18 09:58:36 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)
Jun 18 09:59:39 localhost sudo:    hckao : TTY=pts/0 ; PWD=/home/hckao ; USER=root ; COMMAND=/bin/cat /var/log/auth.log
Jun 18 09:59:39 localhost sudo: pam_unix(sudo:session): session opened for user root by hckao(uid=0)