cyberninjas / pam_aad Goto Github PK
View Code? Open in Web Editor NEWAzure Active Directory PAM Module
License: GNU General Public License v3.0
pam_aad's People
Contributors
Stargazers
Watchers
Forkers
moomzni neverrend eredisg james-tr oxr463 github2alfred camilo-schoeningh-sociomantic robinherbots sassyn aliallomani georgestagg ajay250496 yoshikazuarimitsu tts-tomohiro-uryu semicolonpoundpound oferchen asifalixpam_aad's Issues
Microsoft Authenticator for authentication
Would be much better if we could use some app on our phone like Microsoft Authenticator for authentication.
Originally posted by @johanburati in Azure/azure-linux-extensions#779 (comment)
Allowed configurable forced IP match between azure claims token and user logging in.
Allow configuration option for additional check. Currently, the token is validated and the claimed username is tested against the actual username.
An additional option could be set, forcing the IP addresses of the user logging in to match the IP address on the token. I know that the IP of the user logging in is logged, but I'm not certain how to access it programmatically.
Allow configurable amount of attempts at login:
How many attempts does a user get to have a successful login before they are rejected?
Debian defaults to 3, I believe, and then will terminate the connection.
UPDATE: standard unix authentication uses 3. The pam module allows 6 currently, without my having set any options in-particular.
Continuous Integration
*Requires administrator privileges on the repository to enable.
language: c
compiler:
- clang
- gcc
before_install:
- sudo add-apt-repository ppa:ben-collins/libjwt
- sudo apt-get update
script: autoreconf --install && ./configure && make
sudo: false
addons:
apt:
packages:
- libjwt-dev
- libpam0g-dev
- libssl-dev
Travis CI - Building a C Project
Depends on: #11
login issue
@SJCyberNinja I cannot login using the codes when I test it using node I am getting "undefined" error
Support for macOS
Does Apple provide a service similar to Linux-PAM?
See also: #23
ssh: Connection closed with no prompt
Debug Info
ssh -v [email protected]
jnchi@shinobinoden:~$ ssh -v [email protected]
OpenSSH_7.6p1 Ubuntu-4ubuntu0.1, OpenSSL 1.0.2n 7 Dec 2017
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: /etc/ssh/ssh_config line 19: Applying options for *
debug1: Connecting to 10.0.3.216 [10.0.3.216] port 22.
debug1: Connection established.
debug1: key_load_public: No such file or directory
debug1: identity file /home/jnchi/.ssh/id_rsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/jnchi/.ssh/id_rsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/jnchi/.ssh/id_dsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/jnchi/.ssh/id_dsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/jnchi/.ssh/id_ecdsa type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/jnchi/.ssh/id_ecdsa-cert type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/jnchi/.ssh/id_ed25519 type -1
debug1: key_load_public: No such file or directory
debug1: identity file /home/jnchi/.ssh/id_ed25519-cert type -1
debug1: Local version string SSH-2.0-OpenSSH_7.6p1 Ubuntu-4ubuntu0.1
debug1: Remote protocol version 2.0, remote software version OpenSSH_7.6p1 Ubuntu-4
debug1: match: OpenSSH_7.6p1 Ubuntu-4 pat OpenSSH* compat 0x04000000
debug1: Authenticating to 10.0.3.216:22 as 'jnchi'
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: algorithm: curve25519-sha256
debug1: kex: host key algorithm: ecdsa-sha2-nistp256
debug1: kex: server->client cipher: [email protected] MAC: <implicit> compression: none
debug1: kex: client->server cipher: [email protected] MAC: <implicit> compression: none
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY
debug1: Server host key: ecdsa-sha2-nistp256 SHA256:yOUrqGvGiqhRIJcEBBM8BcEfbUajMgEGH2ZgjP7GIuc
debug1: Host '10.0.3.216' is known and matches the ECDSA host key.
debug1: Found key in /home/jnchi/.ssh/known_hosts:1
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: rekey after 134217728 blocks
debug1: SSH2_MSG_EXT_INFO received
debug1: kex_input_ext_info: server-sig-algs=<ssh-ed25519,ssh-rsa,rsa-sha2-256,rsa-sha2-512,ssh-dss,ecdsa-sha2-nistp256,ecdsa-sha2-nistp384,ecdsa-sha2-nistp521>
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: publickey,password
debug1: Next authentication method: publickey
debug1: Trying private key: /home/jnchi/.ssh/id_rsa
debug1: Trying private key: /home/jnchi/.ssh/id_dsa
debug1: Trying private key: /home/jnchi/.ssh/id_ecdsa
debug1: Trying private key: /home/jnchi/.ssh/id_ed25519
debug1: Next authentication method: password
[email protected]'s password:
Connection closed by 10.0.3.216 port 22echo $?
255
tail -n1 /var/log/kern.log
Nov 26 15:56:24 pam_aad kernel: [ 535.892954] traps: sshd[1709] general protection ip:7f67124835c7 sp:7fff50545cd8 error:0 in libc-2.27.so[7f67122f5000+1e7000]
cat /etc/os-release
NAME="Ubuntu"
VERSION="18.04.1 LTS (Bionic Beaver)"
ID=ubuntu
ID_LIKE=debian
PRETTY_NAME="Ubuntu 18.04.1 LTS"
VERSION_ID="18.04"
HOME_URL="https://www.ubuntu.com/"
SUPPORT_URL="https://help.ubuntu.com/"
BUG_REPORT_URL="https://bugs.launchpad.net/ubuntu/"
PRIVACY_POLICY_URL="https://www.ubuntu.com/legal/terms-and-policies/privacy-policy"
VERSION_CODENAME=bionic
UBUNTU_CODENAME=bionic
apt list --installed
Listing... Done
accountsservice/bionic,now 0.6.45-1ubuntu1 amd64 [installed]
acl/bionic,now 2.2.52-3build1 amd64 [installed]
acpid/bionic,now 1:2.0.28-1ubuntu1 amd64 [installed]
adduser/bionic,now 3.116ubuntu1 all [installed]
amd64-microcode/bionic-updates,now 3.20180524.1~ubuntu0.18.04.2 amd64 [installed,automatic]
apparmor/bionic-security,bionic-updates,now 2.12-4ubuntu5.1 amd64 [installed]
apport/bionic-updates,now 2.20.9-0ubuntu7.5 all [installed]
apport-symptoms/bionic,now 0.20 all [installed]
apt/bionic-updates,now 1.6.6 amd64 [installed]
apt-utils/bionic-updates,now 1.6.6 amd64 [installed]
at/bionic,now 3.1.20-3.1ubuntu2 amd64 [installed]
base-files/bionic-updates,now 10.1ubuntu2.3 amd64 [installed]
base-passwd/bionic,now 3.5.44 amd64 [installed]
bash/bionic,now 4.4.18-2ubuntu1 amd64 [installed]
bash-completion/bionic,now 1:2.8-1ubuntu1 all [installed]
bc/bionic,now 1.07.1-2 amd64 [installed]
bcache-tools/bionic,now 1.0.8-2build1 amd64 [installed]
bind9-host/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
binutils/bionic-updates,now 2.30-21ubuntu1~18.04 amd64 [installed,automatic]
binutils-common/bionic-updates,now 2.30-21ubuntu1~18.04 amd64 [installed,automatic]
binutils-x86-64-linux-gnu/bionic-updates,now 2.30-21ubuntu1~18.04 amd64 [installed,automatic]
bridge-utils/bionic,now 1.5-15ubuntu1 amd64 [installed,automatic]
bsdmainutils/bionic,now 11.1.2ubuntu1 amd64 [installed]
bsdutils/bionic-updates,now 1:2.31.1-0.4ubuntu3.2 amd64 [installed]
btrfs-progs/bionic,now 4.15.1-1build1 amd64 [installed]
btrfs-tools/bionic,now 4.15.1-1build1 amd64 [installed]
build-essential/bionic,now 12.4ubuntu1 amd64 [installed,automatic]
busybox-initramfs/bionic,now 1:1.27.2-2ubuntu3 amd64 [installed]
busybox-static/bionic,now 1:1.27.2-2ubuntu3 amd64 [installed]
byobu/bionic,now 5.125-0ubuntu1 all [installed]
bzip2/bionic,now 1.0.6-8.1 amd64 [installed]
ca-certificates/bionic,now 20180409 all [installed]
cloud-guest-utils/bionic,now 0.30-0ubuntu5 all [installed]
cloud-init/bionic-updates,now 18.4-0ubuntu1~18.04.1 all [installed]
cloud-initramfs-copymods/bionic-updates,now 0.40ubuntu1.1 all [installed]
cloud-initramfs-dyn-netconf/bionic-updates,now 0.40ubuntu1.1 all [installed]
command-not-found/bionic-updates,now 18.04.5 all [installed]
command-not-found-data/bionic-updates,now 18.04.5 amd64 [installed]
console-setup/bionic-updates,now 1.178ubuntu2.7 all [installed]
console-setup-linux/bionic-updates,now 1.178ubuntu2.7 all [installed]
coreutils/bionic,now 8.28-1ubuntu1 amd64 [installed]
cpio/bionic,now 2.12+dfsg-6 amd64 [installed]
cpp/bionic-updates,now 4:7.3.0-3ubuntu2.1 amd64 [installed,automatic]
cpp-7/bionic-updates,now 7.3.0-27ubuntu1~18.04 amd64 [installed,automatic]
crda/bionic,now 3.18-1build1 amd64 [installed,automatic]
cron/bionic,now 3.0pl1-128.1ubuntu1 amd64 [installed]
cryptsetup/bionic-updates,now 2:2.0.2-1ubuntu1.1 amd64 [installed]
cryptsetup-bin/bionic-updates,now 2:2.0.2-1ubuntu1.1 amd64 [installed]
curl/bionic-security,bionic-updates,now 7.58.0-2ubuntu3.5 amd64 [installed]
dash/bionic,now 0.5.8-2.10 amd64 [installed]
dbus/bionic,now 1.12.2-1ubuntu1 amd64 [installed]
debconf/bionic,now 1.5.66 all [installed]
debconf-i18n/bionic,now 1.5.66 all [installed]
debianutils/bionic,now 4.8.4 amd64 [installed]
dh-python/bionic,now 3.20180325ubuntu2 all [installed,automatic]
diffutils/bionic,now 1:3.6-1 amd64 [installed]
dirmngr/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 amd64 [installed]
distro-info-data/bionic-security,bionic-updates,now 0.37ubuntu0.2 all [installed]
dmeventd/bionic,now 2:1.02.145-4.1ubuntu3 amd64 [installed]
dmidecode/bionic,now 3.1-1 amd64 [installed]
dmsetup/bionic,now 2:1.02.145-4.1ubuntu3 amd64 [installed]
dns-root-data/bionic,now 2018013001 all [installed]
dnsmasq-base/bionic,now 2.79-1 amd64 [installed]
dnsutils/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
dosfstools/bionic,now 4.1-1 amd64 [installed]
dpkg/bionic-updates,now 1.19.0.5ubuntu2.1 amd64 [installed]
dpkg-dev/bionic-updates,now 1.19.0.5ubuntu2.1 all [installed,automatic]
e2fsprogs/bionic,now 1.44.1-1 amd64 [installed]
eatmydata/bionic,now 105-6 all [installed]
ebtables/bionic-updates,now 2.0.10.4-3.5ubuntu2.18.04.3 amd64 [installed]
ed/bionic,now 1.10-2.1 amd64 [installed]
eject/bionic,now 2.1.5+deb1+cvs20081104-13.2 amd64 [installed]
ethtool/bionic,now 1:4.15-0ubuntu1 amd64 [installed]
fakeroot/bionic,now 1.22-2ubuntu1 amd64 [installed,automatic]
fdisk/bionic-updates,now 2.31.1-0.4ubuntu3.2 amd64 [installed]
file/bionic-security,bionic-updates,now 1:5.32-2ubuntu0.1 amd64 [installed]
findutils/bionic,now 4.6.0+git+20170828-2 amd64 [installed]
fonts-ubuntu-console/bionic,now 0.83-2 all [installed]
friendly-recovery/bionic-updates,now 0.2.38ubuntu1 all [installed]
ftp/bionic,now 0.17-34 amd64 [installed]
fuse/bionic,now 2.9.7-1ubuntu1 amd64 [installed]
g++/bionic-updates,now 4:7.3.0-3ubuntu2.1 amd64 [installed,automatic]
g++-7/bionic-updates,now 7.3.0-27ubuntu1~18.04 amd64 [installed,automatic]
gawk/bionic,now 1:4.1.4+dfsg-1build1 amd64 [installed]
gcc/bionic-updates,now 4:7.3.0-3ubuntu2.1 amd64 [installed,automatic]
gcc-7/bionic-updates,now 7.3.0-27ubuntu1~18.04 amd64 [installed,automatic]
gcc-7-base/bionic-updates,now 7.3.0-27ubuntu1~18.04 amd64 [installed,automatic]
gcc-8-base/bionic-updates,now 8.2.0-1ubuntu2~18.04 amd64 [installed]
gdisk/bionic,now 1.0.3-1 amd64 [installed]
geoip-database/bionic,now 20180315-1 all [installed]
gettext-base/bionic-security,bionic-updates,now 0.19.8.1-6ubuntu0.1 amd64 [installed]
gir1.2-glib-2.0/bionic,now 1.56.1-1 amd64 [installed]
git/bionic-security,bionic-updates,now 1:2.17.1-1ubuntu0.3 amd64 [installed]
git-man/bionic-security,bionic-updates,now 1:2.17.1-1ubuntu0.3 all [installed]
gnupg/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 amd64 [installed]
gnupg-l10n/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 all [installed]
gnupg-utils/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 amd64 [installed]
gpg/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 amd64 [installed]
gpg-agent/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 amd64 [installed]
gpg-wks-client/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 amd64 [installed]
gpg-wks-server/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 amd64 [installed]
gpgconf/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 amd64 [installed]
gpgsm/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 amd64 [installed]
gpgv/bionic-security,bionic-updates,now 2.2.4-1ubuntu1.1 amd64 [installed]
grep/bionic,now 3.1-2 amd64 [installed]
groff-base/bionic,now 1.22.3-10 amd64 [installed]
grub-common/bionic-updates,now 2.02-2ubuntu8.9 amd64 [installed,automatic]
grub-gfxpayload-lists/bionic,now 0.7 amd64 [installed,automatic]
grub-legacy-ec2/bionic,now 1:1 all [installed]
grub-pc/bionic-updates,now 2.02-2ubuntu8.9 amd64 [installed,automatic]
grub-pc-bin/bionic-updates,now 2.02-2ubuntu8.9 amd64 [installed,automatic]
grub2-common/bionic-updates,now 2.02-2ubuntu8.9 amd64 [installed,automatic]
gzip/bionic,now 1.6-5ubuntu1 amd64 [installed]
hdparm/bionic,now 9.54+ds-1 amd64 [installed]
hostname/bionic,now 3.20 amd64 [installed]
htop/bionic,now 2.1.0-3 amd64 [installed]
info/bionic,now 6.5.0.dfsg.1-2 amd64 [installed]
init/bionic,now 1.51 amd64 [installed]
init-system-helpers/bionic,now 1.51 all [installed]
initramfs-tools/bionic-updates,now 0.130ubuntu3.5 all [installed]
initramfs-tools-bin/bionic-updates,now 0.130ubuntu3.5 amd64 [installed]
initramfs-tools-core/bionic-updates,now 0.130ubuntu3.5 all [installed]
install-info/bionic,now 6.5.0.dfsg.1-2 amd64 [installed]
intel-microcode/bionic-security,bionic-updates,now 3.20180807a.0ubuntu0.18.04.1 amd64 [installed,automatic]
iproute2/bionic,now 4.15.0-2ubuntu1 amd64 [installed]
iptables/bionic,now 1.6.1-2ubuntu2 amd64 [installed]
iputils-ping/bionic,now 3:20161105-1ubuntu2 amd64 [installed]
iputils-tracepath/bionic,now 3:20161105-1ubuntu2 amd64 [installed]
irqbalance/bionic,now 1.3.0-0.1 amd64 [installed]
isc-dhcp-client/bionic,now 4.3.5-3ubuntu7 amd64 [installed]
isc-dhcp-common/bionic,now 4.3.5-3ubuntu7 amd64 [installed]
iso-codes/bionic,now 3.79-1 all [installed]
iucode-tool/bionic,now 2.3.1-1 amd64 [installed,automatic]
iw/bionic,now 4.14-0.1 amd64 [installed,automatic]
kbd/bionic,now 2.0.4-2ubuntu1 amd64 [installed]
keyboard-configuration/bionic-updates,now 1.178ubuntu2.7 all [installed]
klibc-utils/bionic,now 2.0.4-9ubuntu2 amd64 [installed]
kmod/bionic-updates,now 24-1ubuntu3.1 amd64 [installed]
krb5-locales/bionic,now 1.16-2build1 all [installed]
landscape-common/bionic-updates,now 18.01-0ubuntu3.1 amd64 [installed]
language-selector-common/bionic-updates,now 0.188.1 all [installed]
less/bionic,now 487-0.1 amd64 [installed]
libaccountsservice0/bionic,now 0.6.45-1ubuntu1 amd64 [installed]
libacl1/bionic,now 2.2.52-3build1 amd64 [installed]
libalgorithm-diff-perl/bionic,now 1.19.03-1 all [installed,automatic]
libalgorithm-diff-xs-perl/bionic,now 0.04-5 amd64 [installed,automatic]
libalgorithm-merge-perl/bionic,now 0.08-3 all [installed,automatic]
libapparmor1/bionic-security,bionic-updates,now 2.12-4ubuntu5.1 amd64 [installed]
libapt-inst2.0/bionic-updates,now 1.6.6 amd64 [installed]
libapt-pkg5.0/bionic-updates,now 1.6.6 amd64 [installed]
libargon2-0/bionic,now 0~20161029-1.1 amd64 [installed]
libasan4/bionic-updates,now 7.3.0-27ubuntu1~18.04 amd64 [installed,automatic]
libasn1-8-heimdal/bionic,now 7.5.0+dfsg-1 amd64 [installed]
libassuan0/bionic,now 2.5.1-2 amd64 [installed]
libatm1/bionic,now 1:2.5.1-2build1 amd64 [installed]
libatomic1/bionic-updates,now 8.2.0-1ubuntu2~18.04 amd64 [installed,automatic]
libattr1/bionic,now 1:2.4.47-2build1 amd64 [installed]
libaudit-common/bionic,now 1:2.8.2-1ubuntu1 all [installed]
libaudit1/bionic,now 1:2.8.2-1ubuntu1 amd64 [installed]
libbind9-160/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
libbinutils/bionic-updates,now 2.30-21ubuntu1~18.04 amd64 [installed,automatic]
libblkid1/bionic-updates,now 2.31.1-0.4ubuntu3.2 amd64 [installed]
libbsd0/bionic,now 0.8.7-1 amd64 [installed]
libbz2-1.0/bionic,now 1.0.6-8.1 amd64 [installed]
libc-bin/bionic,now 2.27-3ubuntu1 amd64 [installed]
libc-dev-bin/bionic,now 2.27-3ubuntu1 amd64 [installed,automatic]
libc6/bionic,now 2.27-3ubuntu1 amd64 [installed]
libc6-dev/bionic,now 2.27-3ubuntu1 amd64 [installed,automatic]
libcap-ng0/bionic,now 0.7.7-3.1 amd64 [installed]
libcap2/bionic,now 1:2.25-1.2 amd64 [installed]
libcap2-bin/bionic,now 1:2.25-1.2 amd64 [installed]
libcc1-0/bionic-updates,now 8.2.0-1ubuntu2~18.04 amd64 [installed,automatic]
libcilkrts5/bionic-updates,now 7.3.0-27ubuntu1~18.04 amd64 [installed,automatic]
libcom-err2/bionic,now 1.44.1-1 amd64 [installed]
libcryptsetup12/bionic-updates,now 2:2.0.2-1ubuntu1.1 amd64 [installed]
libcurl3-gnutls/bionic-security,bionic-updates,now 7.58.0-2ubuntu3.5 amd64 [installed]
libcurl4/bionic-security,bionic-updates,now 7.58.0-2ubuntu3.5 amd64 [installed]
libdb5.3/bionic,now 5.3.28-13.1ubuntu1 amd64 [installed]
libdbus-1-3/bionic,now 1.12.2-1ubuntu1 amd64 [installed]
libdbus-glib-1-2/bionic,now 0.110-2 amd64 [installed,automatic]
libdebconfclient0/bionic,now 0.213ubuntu1 amd64 [installed]
libdevmapper-event1.02.1/bionic,now 2:1.02.145-4.1ubuntu3 amd64 [installed]
libdevmapper1.02.1/bionic,now 2:1.02.145-4.1ubuntu3 amd64 [installed]
libdns-export1100/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
libdns1100/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
libdpkg-perl/bionic-updates,now 1.19.0.5ubuntu2.1 all [installed,automatic]
libdrm-common/bionic,now 2.4.91-2 all [installed]
libdrm2/bionic,now 2.4.91-2 amd64 [installed]
libdumbnet1/bionic,now 1.12-7build1 amd64 [installed]
libeatmydata1/bionic,now 105-6 amd64 [installed]
libedit2/bionic,now 3.1-20170329-1 amd64 [installed]
libelf1/bionic,now 0.170-0.4 amd64 [installed]
liberror-perl/bionic,now 0.17025-1 all [installed]
libestr0/bionic,now 0.1.10-2.1 amd64 [installed]
libevent-2.1-6/bionic,now 2.1.8-stable-4build1 amd64 [installed]
libexpat1/bionic,now 2.2.5-3 amd64 [installed]
libexpat1-dev/bionic,now 2.2.5-3 amd64 [installed,automatic]
libext2fs2/bionic,now 1.44.1-1 amd64 [installed]
libfakeroot/bionic,now 1.22-2ubuntu1 amd64 [installed,automatic]
libfastjson4/bionic,now 0.99.8-2 amd64 [installed]
libfdisk1/bionic-updates,now 2.31.1-0.4ubuntu3.2 amd64 [installed]
libffi6/bionic,now 3.2.1-8 amd64 [installed]
libfile-fcntllock-perl/bionic,now 0.22-3build2 amd64 [installed,automatic]
libfreetype6/bionic,now 2.8.1-2ubuntu2 amd64 [installed,automatic]
libfribidi0/bionic,now 0.19.7-2 amd64 [installed]
libfuse2/bionic,now 2.9.7-1ubuntu1 amd64 [installed]
libgcc-7-dev/bionic-updates,now 7.3.0-27ubuntu1~18.04 amd64 [installed,automatic]
libgcc1/bionic-updates,now 1:8.2.0-1ubuntu2~18.04 amd64 [installed]
libgcrypt20/bionic-security,bionic-updates,now 1.8.1-4ubuntu1.1 amd64 [installed]
libgdbm-compat4/bionic,now 1.14.1-6 amd64 [installed]
libgdbm5/bionic,now 1.14.1-6 amd64 [installed]
libgeoip1/bionic,now 1.6.12-1 amd64 [installed]
libgirepository-1.0-1/bionic,now 1.56.1-1 amd64 [installed]
libglib2.0-0/bionic-updates,now 2.56.3-0ubuntu0.18.04.1 amd64 [installed]
libglib2.0-data/bionic-updates,now 2.56.3-0ubuntu0.18.04.1 all [installed]
libgmp10/bionic,now 2:6.1.2+dfsg-2 amd64 [installed]
libgnutls30/bionic,now 3.5.18-1ubuntu1 amd64 [installed]
libgomp1/bionic-updates,now 8.2.0-1ubuntu2~18.04 amd64 [installed,automatic]
libgpg-error0/bionic,now 1.27-6 amd64 [installed]
libgpm2/bionic,now 1.20.7-5 amd64 [installed]
libgssapi-krb5-2/bionic,now 1.16-2build1 amd64 [installed]
libgssapi3-heimdal/bionic,now 7.5.0+dfsg-1 amd64 [installed]
libhcrypto4-heimdal/bionic,now 7.5.0+dfsg-1 amd64 [installed]
libheimbase1-heimdal/bionic,now 7.5.0+dfsg-1 amd64 [installed]
libheimntlm0-heimdal/bionic,now 7.5.0+dfsg-1 amd64 [installed]
libhogweed4/bionic,now 3.4-1 amd64 [installed]
libhx509-5-heimdal/bionic,now 7.5.0+dfsg-1 amd64 [installed]
libicu60/bionic,now 60.2-3ubuntu3 amd64 [installed]
libidn11/bionic,now 1.33-2.1ubuntu1 amd64 [installed]
libidn2-0/bionic,now 2.0.4-1.1build2 amd64 [installed]
libip4tc0/bionic,now 1.6.1-2ubuntu2 amd64 [installed]
libip6tc0/bionic,now 1.6.1-2ubuntu2 amd64 [installed]
libiptc0/bionic,now 1.6.1-2ubuntu2 amd64 [installed]
libirs160/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
libisc-export169/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
libisc169/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
libisccc160/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
libisccfg160/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
libisl19/bionic,now 0.19-1 amd64 [installed,automatic]
libisns0/bionic,now 0.97-2build1 amd64 [installed]
libitm1/bionic-updates,now 8.2.0-1ubuntu2~18.04 amd64 [installed,automatic]
libjson-c3/bionic,now 0.12.1-1.3 amd64 [installed]
libk5crypto3/bionic,now 1.16-2build1 amd64 [installed]
libkeyutils1/bionic,now 1.5.9-9.2ubuntu2 amd64 [installed]
libklibc/bionic,now 2.0.4-9ubuntu2 amd64 [installed]
libkmod2/bionic-updates,now 24-1ubuntu3.1 amd64 [installed]
libkrb5-26-heimdal/bionic,now 7.5.0+dfsg-1 amd64 [installed]
libkrb5-3/bionic,now 1.16-2build1 amd64 [installed]
libkrb5support0/bionic,now 1.16-2build1 amd64 [installed]
libksba8/bionic,now 1.3.5-2 amd64 [installed]
libldap-2.4-2/bionic-updates,now 2.4.45+dfsg-1ubuntu1.1 amd64 [installed]
libldap-common/bionic-updates,now 2.4.45+dfsg-1ubuntu1.1 all [installed]
liblocale-gettext-perl/bionic,now 1.07-3build2 amd64 [installed]
liblsan0/bionic-updates,now 8.2.0-1ubuntu2~18.04 amd64 [installed,automatic]
liblvm2app2.2/bionic,now 2.02.176-4.1ubuntu3 amd64 [installed]
liblvm2cmd2.02/bionic,now 2.02.176-4.1ubuntu3 amd64 [installed]
liblwres160/bionic-updates,now 1:9.11.3+dfsg-1ubuntu1.3 amd64 [installed]
liblxc-common/bionic-updates,now 3.0.2-0ubuntu1~18.04.1 amd64 [installed]
liblxc1/bionic-updates,now 3.0.2-0ubuntu1~18.04.1 amd64 [installed]
liblz4-1/bionic,now 0.0~r131-2ubuntu3 amd64 [installed]
liblzma5/bionic,now 5.2.2-1.3 amd64 [installed]
liblzo2-2/bionic,now 2.08-1.2 amd64 [installed]
libmagic-mgc/bionic-security,bionic-updates,now 1:5.32-2ubuntu0.1 amd64 [installed]
libmagic1/bionic-security,bionic-updates,now 1:5.32-2ubuntu0.1 amd64 [installed]
libmnl0/bionic,now 1.0.4-2 amd64 [installed]
libmount1/bionic-updates,now 2.31.1-0.4ubuntu3.2 amd64 [installed]
libmpc3/bionic,now 1.1.0-1 amd64 [installed,automatic]
libmpdec2/bionic,now 2.4.2-1ubuntu1 amd64 [installed]
libmpfr6/bionic,now 4.0.1-1 amd64 [installed]
libmpx2/bionic-updates,now 8.2.0-1ubuntu2~18.04 amd64 [installed,automatic]
libmspack0/bionic-security,bionic-updates,now 0.6-3ubuntu0.2 amd64 [installed]
libncurses5/bionic-updates,now 6.1-1ubuntu1.18.04 amd64 [installed]
libncursesw5/bionic-updates,now 6.1-1ubuntu1.18.04 amd64 [installed]
libnetfilter-conntrack3/bionic,now 1.0.6-2 amd64 [installed]
libnettle6/bionic,now 3.4-1 amd64 [installed]
libnewt0.52/bionic,now 0.52.20-1ubuntu1 amd64 [installed]
libnfnetlink0/bionic,now 1.0.1-3 amd64 [installed]
libnghttp2-14/bionic,now 1.30.0-1ubuntu1 amd64 [installed]
libnih1/bionic,now 1.0.3-6ubuntu2 amd64 [installed]
libnl-3-200/bionic,now 3.2.29-0ubuntu3 amd64 [installed,automatic]
libnl-genl-3-200/bionic,now 3.2.29-0ubuntu3 amd64 [installed,automatic]
libnpth0/bionic,now 1.5-3 amd64 [installed]
libnss-systemd/bionic-security,bionic-updates,now 237-3ubuntu10.9 amd64 [installed]
libntfs-3g88/bionic,now 1:2017.3.23-2 amd64 [installed]
libnuma1/bionic,now 2.0.11-2.1 amd64 [installed]
libp11-kit0/bionic,now 0.23.9-2 amd64 [installed]
libpam-cap/bionic,now 1:2.25-1.2 amd64 [installed]
libpam-cgfs/bionic-updates,now 3.0.2-0ubuntu1~18.04.1 amd64 [installed,automatic]
libpam-modules/bionic,now 1.1.8-3.6ubuntu2 amd64 [installed]
libpam-modules-bin/bionic,now 1.1.8-3.6ubuntu2 amd64 [installed]
libpam-runtime/bionic,now 1.1.8-3.6ubuntu2 all [installed]
libpam-systemd/bionic-security,bionic-updates,now 237-3ubuntu10.9 amd64 [installed]
libpam0g/bionic,now 1.1.8-3.6ubuntu2 amd64 [installed]
libparted2/bionic-updates,now 3.2-20ubuntu0.1 amd64 [installed]
libpcap0.8/bionic,now 1.8.1-6ubuntu1 amd64 [installed]
libpci3/bionic,now 1:3.5.2-1ubuntu1 amd64 [installed]
libpcre3/bionic,now 2:8.39-9 amd64 [installed]
libperl5.26/bionic-updates,now 5.26.1-6ubuntu0.2 amd64 [installed]
libpipeline1/bionic,now 1.5.0-1 amd64 [installed]
libplymouth4/bionic-updates,now 0.9.3-1ubuntu7.18.04.1 amd64 [installed]
libpng16-16/bionic-security,bionic-updates,now 1.6.34-1ubuntu0.18.04.1 amd64 [installed]
libpolkit-agent-1-0/bionic-security,bionic-updates,now 0.105-20ubuntu0.18.04.1 amd64 [installed]
libpolkit-backend-1-0/bionic-security,bionic-updates,now 0.105-20ubuntu0.18.04.1 amd64 [installed]
libpolkit-gobject-1-0/bionic-security,bionic-updates,now 0.105-20ubuntu0.18.04.1 amd64 [installed]
libpopt0/bionic,now 1.16-11 amd64 [installed]
libprocps6/bionic-security,bionic-updates,now 2:3.3.12-3ubuntu1.1 amd64 [installed]
libpsl5/bionic,now 0.19.1-5build1 amd64 [installed]
libpython-all-dev/bionic,now 2.7.15~rc1-1 amd64 [installed,automatic]
libpython-dev/bionic,now 2.7.15~rc1-1 amd64 [installed,automatic]
libpython-stdlib/bionic,now 2.7.15~rc1-1 amd64 [installed,automatic]
libpython2.7/bionic-security,bionic-updates,now 2.7.15~rc1-1ubuntu0.1 amd64 [installed,automatic]
libpython2.7-dev/bionic-security,bionic-updates,now 2.7.15~rc1-1ubuntu0.1 amd64 [installed,automatic]
libpython2.7-minimal/bionic-security,bionic-updates,now 2.7.15~rc1-1ubuntu0.1 amd64 [installed,automatic]
libpython2.7-stdlib/bionic-security,bionic-updates,now 2.7.15~rc1-1ubuntu0.1 amd64 [installed,automatic]
libpython3-dev/bionic-updates,now 3.6.7-1~18.04 amd64 [installed,automatic]
libpython3-stdlib/bionic-updates,now 3.6.7-1~18.04 amd64 [installed]
libpython3.6/bionic-updates,now 3.6.7-1~18.04 amd64 [installed]
libpython3.6-dev/bionic-updates,now 3.6.7-1~18.04 amd64 [installed,automatic]
libpython3.6-minimal/bionic-updates,now 3.6.7-1~18.04 amd64 [installed]
libpython3.6-stdlib/bionic-updates,now 3.6.7-1~18.04 amd64 [installed]
libquadmath0/bionic-updates,now 8.2.0-1ubuntu2~18.04 amd64 [installed,automatic]
libreadline5/bionic,now 5.2+dfsg-3build1 amd64 [installed]
libreadline7/bionic,now 7.0-3 amd64 [installed]
libroken18-heimdal/bionic,now 7.5.0+dfsg-1 amd64 [installed]
librtmp1/bionic,now 2.4+20151223.gitfa8646d.1-1 amd64 [installed]
libsasl2-2/bionic,now 2.1.27~101-g0780600+dfsg-3ubuntu2 amd64 [installed]
libsasl2-modules/bionic,now 2.1.27~101-g0780600+dfsg-3ubuntu2 amd64 [installed]
libsasl2-modules-db/bionic,now 2.1.27~101-g0780600+dfsg-3ubuntu2 amd64 [installed]
libseccomp2/bionic,now 2.3.1-2.1ubuntu4 amd64 [installed]
libselinux1/bionic,now 2.7-2build2 amd64 [installed]
libsemanage-common/bionic,now 2.7-2build2 all [installed]
libsemanage1/bionic,now 2.7-2build2 amd64 [installed]
libsepol1/bionic,now 2.7-1 amd64 [installed]
libsigsegv2/bionic,now 2.12-1 amd64 [installed]
libslang2/bionic,now 2.3.1a-3ubuntu1 amd64 [installed]
libsmartcols1/bionic-updates,now 2.31.1-0.4ubuntu3.2 amd64 [installed]
libsqlite3-0/bionic,now 3.22.0-1 amd64 [installed]
libss2/bionic,now 1.44.1-1 amd64 [installed]
libssl1.0.0/bionic-security,bionic-updates,now 1.0.2n-1ubuntu5.1 amd64 [installed]
libssl1.1/bionic-security,bionic-updates,now 1.1.0g-2ubuntu4.1 amd64 [installed]
libstdc++-7-dev/bionic-updates,now 7.3.0-27ubuntu1~18.04 amd64 [installed,automatic]
libstdc++6/bionic-updates,now 8.2.0-1ubuntu2~18.04 amd64 [installed]
libsystemd0/bionic-security,bionic-updates,now 237-3ubuntu10.9 amd64 [installed]
libtasn1-6/bionic,now 4.13-2 amd64 [installed]
libtext-charwidth-perl/bionic,now 0.04-7.1 amd64 [installed]
libtext-iconv-perl/bionic,now 1.7-5build6 amd64 [installed]
libtext-wrapi18n-perl/bionic,now 0.06-7.1 all [installed]
libtinfo5/bionic-updates,now 6.1-1ubuntu1.18.04 amd64 [installed]
libtsan0/bionic-updates,now 8.2.0-1ubuntu2~18.04 amd64 [installed,automatic]
libubsan0/bionic-updates,now 7.3.0-27ubuntu1~18.04 amd64 [installed,automatic]
libudev1/bionic-security,bionic-updates,now 237-3ubuntu10.9 amd64 [installed]
libunistring2/bionic,now 0.9.9-0ubuntu1 amd64 [installed]
libunwind8/bionic,now 1.2.1-8 amd64 [installed]
libusb-1.0-0/bionic,now 2:1.0.21-2 amd64 [installed]
libutempter0/bionic,now 1.1.6-3 amd64 [installed]
libuuid1/bionic-updates,now 2.31.1-0.4ubuntu3.2 amd64 [installed]
libuv1/bionic,now 1.18.0-3 amd64 [installed,automatic]
libwind0-heimdal/bionic,now 7.5.0+dfsg-1 amd64 [installed]
libwrap0/bionic,now 7.6.q-27 amd64 [installed]
libx11-6/bionic-security,bionic-updates,now 2:1.6.4-3ubuntu0.1 amd64 [installed]
libx11-data/bionic-security,bionic-updates,now 2:1.6.4-3ubuntu0.1 all [installed]
libxau6/bionic,now 1:1.0.8-1 amd64 [installed]
libxcb1/bionic,now 1.13-1 amd64 [installed]
libxdmcp6/bionic,now 1:1.1.2-3 amd64 [installed]
libxext6/bionic,now 2:1.3.3-1 amd64 [installed]
libxml2/bionic-security,bionic-updates,now 2.9.4+dfsg1-6.1ubuntu1.2 amd64 [installed]
libxmlsec1/bionic,now 1.2.25-1build1 amd64 [installed]
libxmlsec1-openssl/bionic,now 1.2.25-1build1 amd64 [installed]
libxmuu1/bionic,now 2:1.1.2-2 amd64 [installed]
libxslt1.1/bionic,now 1.1.29-5 amd64 [installed]
libxtables12/bionic,now 1.6.1-2ubuntu2 amd64 [installed]
libyaml-0-2/bionic,now 0.1.7-2ubuntu3 amd64 [installed]
libzstd1/bionic,now 1.3.3+dfsg-2ubuntu1 amd64 [installed]
linux-base/bionic,now 4.5ubuntu1 all [installed]
linux-firmware/bionic-updates,now 1.173.2 all [installed,automatic]
linux-generic/bionic-security,bionic-updates,now 4.15.0.39.41 amd64 [installed]
linux-headers-4.15.0-38/bionic-updates,now 4.15.0-38.41 all [installed,automatic]
linux-headers-4.15.0-38-generic/bionic-updates,now 4.15.0-38.41 amd64 [installed,automatic]
linux-headers-4.15.0-39/bionic-security,bionic-updates,now 4.15.0-39.42 all [installed,automatic]
linux-headers-4.15.0-39-generic/bionic-security,bionic-updates,now 4.15.0-39.42 amd64 [installed,automatic]
linux-headers-generic/bionic-security,bionic-updates,now 4.15.0.39.41 amd64 [installed,automatic]
linux-image-4.15.0-38-generic/bionic-updates,now 4.15.0-38.41 amd64 [installed,automatic]
linux-image-4.15.0-39-generic/bionic-security,bionic-updates,now 4.15.0-39.42 amd64 [installed,automatic]
linux-image-generic/bionic-security,bionic-updates,now 4.15.0.39.41 amd64 [installed,automatic]
linux-libc-dev/bionic-security,bionic-updates,now 4.15.0-39.42 amd64 [installed,automatic]
linux-modules-4.15.0-38-generic/bionic-updates,now 4.15.0-38.41 amd64 [installed,automatic]
linux-modules-4.15.0-39-generic/bionic-security,bionic-updates,now 4.15.0-39.42 amd64 [installed,automatic]
linux-modules-extra-4.15.0-38-generic/bionic-updates,now 4.15.0-38.41 amd64 [installed,automatic]
linux-modules-extra-4.15.0-39-generic/bionic-security,bionic-updates,now 4.15.0-39.42 amd64 [installed,automatic]
linux-signed-generic/bionic-security,bionic-updates,now 4.15.0.39.41 amd64 [installed]
locales/bionic,now 2.27-3ubuntu1 all [installed]
login/bionic,now 1:4.5-1ubuntu1 amd64 [installed]
logrotate/bionic,now 3.11.0-0.1ubuntu1 amd64 [installed]
lsb-base/bionic,now 9.20170808ubuntu1 all [installed]
lsb-release/bionic,now 9.20170808ubuntu1 all [installed]
lshw/bionic-updates,now 02.18-0.1ubuntu6.18.04.1 amd64 [installed]
lsof/bionic,now 4.89+dfsg-0.1 amd64 [installed]
ltrace/bionic,now 0.7.3-6ubuntu1 amd64 [installed]
lvm2/bionic,now 2.02.176-4.1ubuntu3 amd64 [installed]
lxc/bionic-updates,now 3.0.2-0ubuntu1~18.04.1 all [installed]
lxc-utils/bionic-updates,now 3.0.2-0ubuntu1~18.04.1 amd64 [installed,automatic]
lxcfs/bionic-updates,now 3.0.2-0ubuntu1~18.04.1 amd64 [installed]
lxd/bionic-updates,now 3.0.2-0ubuntu1~18.04.1 amd64 [installed]
lxd-client/bionic-updates,now 3.0.2-0ubuntu1~18.04.1 amd64 [installed]
make/bionic,now 4.1-9.1ubuntu1 amd64 [installed,automatic]
man-db/bionic-updates,now 2.8.3-2ubuntu0.1 amd64 [installed]
manpages/bionic,now 4.15-1 all [installed]
manpages-dev/bionic,now 4.15-1 all [installed,automatic]
mawk/bionic,now 1.3.3-17ubuntu3 amd64 [installed]
mdadm/bionic-updates,now 4.1~rc1-3~ubuntu18.04.1 amd64 [installed]
mime-support/bionic,now 3.60ubuntu1 all [installed]
mlocate/bionic,now 0.26-2ubuntu3.1 amd64 [installed]
mount/bionic-updates,now 2.31.1-0.4ubuntu3.2 amd64 [installed]
mtr-tiny/bionic,now 0.92-1 amd64 [installed]
multiarch-support/bionic,now 2.27-3ubuntu1 amd64 [installed]
nano/bionic,now 2.9.3-2 amd64 [installed]
ncurses-base/bionic-updates,now 6.1-1ubuntu1.18.04 all [installed]
ncurses-bin/bionic-updates,now 6.1-1ubuntu1.18.04 amd64 [installed]
ncurses-term/bionic-updates,now 6.1-1ubuntu1.18.04 all [installed]
net-tools/bionic,now 1.60+git20161116.90da8a0-1ubuntu1 amd64 [installed]
netbase/bionic,now 5.4 all [installed]
netcat-openbsd/bionic-updates,now 1.187-1ubuntu0.1 amd64 [installed]
netplan.io/bionic-updates,now 0.36.3 amd64 [installed]
networkd-dispatcher/bionic-updates,now 1.7-0ubuntu3.3 all [installed]
nplan/bionic-updates,now 0.36.3 all [installed]
ntfs-3g/bionic,now 1:2017.3.23-2 amd64 [installed]
open-iscsi/bionic-updates,now 2.0.874-5ubuntu2.3 amd64 [installed]
open-vm-tools/bionic-updates,now 2:10.3.0-0ubuntu1~18.04.3 amd64 [installed]
openssh-client/bionic-security,bionic-updates,now 1:7.6p1-4ubuntu0.1 amd64 [installed]
openssh-server/bionic-security,bionic-updates,now 1:7.6p1-4ubuntu0.1 amd64 [installed]
openssh-sftp-server/bionic-security,bionic-updates,now 1:7.6p1-4ubuntu0.1 amd64 [installed]
openssl/bionic-security,bionic-updates,now 1.1.0g-2ubuntu4.1 amd64 [installed]
os-prober/bionic,now 1.74ubuntu1 amd64 [installed,automatic]
overlayroot/bionic-updates,now 0.40ubuntu1.1 all [installed]
parted/bionic-updates,now 3.2-20ubuntu0.1 amd64 [installed]
passwd/bionic,now 1:4.5-1ubuntu1 amd64 [installed]
pastebinit/bionic,now 1.5-2 all [installed]
patch/bionic,now 2.7.6-2ubuntu1 amd64 [installed]
pciutils/bionic,now 1:3.5.2-1ubuntu1 amd64 [installed]
perl/bionic-updates,now 5.26.1-6ubuntu0.2 amd64 [installed]
perl-base/bionic-updates,now 5.26.1-6ubuntu0.2 amd64 [installed]
perl-modules-5.26/bionic-updates,now 5.26.1-6ubuntu0.2 all [installed]
pinentry-curses/bionic,now 1.1.0-1 amd64 [installed]
plymouth/bionic-updates,now 0.9.3-1ubuntu7.18.04.1 amd64 [installed]
plymouth-theme-ubuntu-text/bionic-updates,now 0.9.3-1ubuntu7.18.04.1 amd64 [installed]
policykit-1/bionic-security,bionic-updates,now 0.105-20ubuntu0.18.04.1 amd64 [installed]
pollinate/bionic-updates,now 4.33-0ubuntu1~18.04.1 all [installed]
popularity-contest/bionic,now 1.66ubuntu1 all [installed]
powermgmt-base/bionic,now 1.33 all [installed]
procps/bionic-security,bionic-updates,now 2:3.3.12-3ubuntu1.1 amd64 [installed]
psmisc/bionic,now 23.1-1 amd64 [installed]
publicsuffix/bionic,now 20180223.1310-1 all [installed]
python/bionic,now 2.7.15~rc1-1 amd64 [installed,automatic]
python-all/bionic,now 2.7.15~rc1-1 amd64 [installed,automatic]
python-all-dev/bionic,now 2.7.15~rc1-1 amd64 [installed,automatic]
python-apt-common/bionic-updates,now 1.6.3 all [installed]
python-asn1crypto/bionic,now 0.24.0-1 all [installed,automatic]
python-cffi-backend/bionic,now 1.11.5-1 amd64 [installed,automatic]
python-crypto/bionic,now 2.6.1-8ubuntu2 amd64 [installed,automatic]
python-cryptography/bionic-security,bionic-updates,now 2.1.4-1ubuntu1.2 amd64 [installed,automatic]
python-dbus/bionic,now 1.2.6-1 amd64 [installed,automatic]
python-dev/bionic,now 2.7.15~rc1-1 amd64 [installed,automatic]
python-enum34/bionic,now 1.1.6-2 all [installed,automatic]
python-gi/bionic,now 3.26.1-2 amd64 [installed,automatic]
python-idna/bionic,now 2.6-1 all [installed,automatic]
python-ipaddress/bionic,now 1.0.17-1 all [installed,automatic]
python-keyring/bionic,now 10.6.0-1 all [installed,automatic]
python-keyrings.alt/bionic,now 3.0-1 all [installed,automatic]
python-minimal/bionic,now 2.7.15~rc1-1 amd64 [installed,automatic]
python-pip/bionic-updates,now 9.0.1-2.3~ubuntu1 all [installed]
python-pip-whl/bionic-updates,now 9.0.1-2.3~ubuntu1 all [installed,automatic]
python-pkg-resources/bionic,now 39.0.1-2 all [installed,automatic]
python-secretstorage/bionic,now 2.3.1-2 all [installed,automatic]
python-setuptools/bionic,now 39.0.1-2 all [installed,automatic]
python-six/bionic,now 1.11.0-2 all [installed,automatic]
python-wheel/bionic,now 0.30.0-0.2 all [installed,automatic]
python-xdg/bionic,now 0.25-4ubuntu1 all [installed,automatic]
python2.7/bionic-security,bionic-updates,now 2.7.15~rc1-1ubuntu0.1 amd64 [installed,automatic]
python2.7-dev/bionic-security,bionic-updates,now 2.7.15~rc1-1ubuntu0.1 amd64 [installed,automatic]
python2.7-minimal/bionic-security,bionic-updates,now 2.7.15~rc1-1ubuntu0.1 amd64 [installed,automatic]
python3/bionic-updates,now 3.6.7-1~18.04 amd64 [installed]
python3-apport/bionic-updates,now 2.20.9-0ubuntu7.5 all [installed]
python3-apt/bionic-updates,now 1.6.3 amd64 [installed]
python3-asn1crypto/bionic,now 0.24.0-1 all [installed]
python3-attr/bionic,now 17.4.0-2 all [installed]
python3-automat/bionic,now 0.6.0-1 all [installed]
python3-blinker/bionic,now 1.4+dfsg1-0.1 all [installed]
python3-certifi/bionic,now 2018.1.18-2 all [installed]
python3-cffi-backend/bionic,now 1.11.5-1 amd64 [installed]
python3-chardet/bionic,now 3.0.4-1 all [installed]
python3-click/bionic,now 6.7-3 all [installed]
python3-colorama/bionic,now 0.3.7-1 all [installed]
python3-commandnotfound/bionic-updates,now 18.04.5 all [installed]
python3-configobj/bionic,now 5.0.6-2 all [installed]
python3-constantly/bionic,now 15.1.0-1 all [installed]
python3-crypto/bionic,now 2.6.1-8ubuntu2 amd64 [installed,automatic]
python3-cryptography/bionic-security,bionic-updates,now 2.1.4-1ubuntu1.2 amd64 [installed]
python3-dbus/bionic,now 1.2.6-1 amd64 [installed]
python3-debconf/bionic,now 1.5.66 all [installed]
python3-debian/bionic,now 0.1.32 all [installed]
python3-dev/bionic-updates,now 3.6.7-1~18.04 amd64 [installed,automatic]
python3-distro-info/bionic,now 0.18 all [installed]
python3-distupgrade/bionic-updates,now 1:18.04.29 all [installed]
python3-distutils/bionic-updates,now 3.6.7-1~18.04 all [installed,automatic]
python3-gdbm/bionic-updates,now 3.6.7-1~18.04 amd64 [installed]
python3-gi/bionic,now 3.26.1-2 amd64 [installed]
python3-httplib2/bionic,now 0.9.2+dfsg-1 all [installed]
python3-hyperlink/bionic,now 17.3.1-2 all [installed]
python3-idna/bionic,now 2.6-1 all [installed]
python3-incremental/bionic,now 16.10.1-3 all [installed]
python3-jinja2/bionic,now 2.10-1 all [installed]
python3-json-pointer/bionic,now 1.10-1 all [installed]
python3-jsonpatch/bionic,now 1.19+really1.16-1fakesync1 all [installed]
python3-jsonschema/bionic,now 2.6.0-2 all [installed]
python3-jwt/bionic,now 1.5.3+ds1-1 all [installed]
python3-keyring/bionic,now 10.6.0-1 all [installed,automatic]
python3-keyrings.alt/bionic,now 3.0-1 all [installed,automatic]
python3-lib2to3/bionic-updates,now 3.6.7-1~18.04 all [installed,automatic]
python3-markupsafe/bionic,now 1.0-1build1 amd64 [installed]
python3-minimal/bionic-updates,now 3.6.7-1~18.04 amd64 [installed]
python3-newt/bionic,now 0.52.20-1ubuntu1 amd64 [installed]
python3-oauthlib/bionic,now 2.0.6-1 all [installed]
python3-openssl/bionic,now 17.5.0-1ubuntu1 all [installed]
python3-pam/bionic,now 0.4.2-13.2ubuntu4 amd64 [installed]
python3-pip/bionic-updates,now 9.0.1-2.3~ubuntu1 all [installed]
python3-pkg-resources/bionic,now 39.0.1-2 all [installed]
python3-problem-report/bionic-updates,now 2.20.9-0ubuntu7.5 all [installed]
python3-pyasn1/bionic,now 0.4.2-3 all [installed]
python3-pyasn1-modules/bionic,now 0.2.1-0.2 all [installed]
python3-requests/bionic-security,bionic-updates,now 2.18.4-2ubuntu0.1 all [installed]
python3-requests-unixsocket/bionic,now 0.1.5-3 all [installed]
python3-secretstorage/bionic,now 2.3.1-2 all [installed,automatic]
python3-serial/bionic,now 3.4-2 all [installed]
python3-service-identity/bionic,now 16.0.0-2 all [installed]
python3-setuptools/bionic,now 39.0.1-2 all [installed,automatic]
python3-six/bionic,now 1.11.0-2 all [installed]
python3-software-properties/bionic-updates,now 0.96.24.32.5 all [installed]
python3-systemd/bionic,now 234-1build1 amd64 [installed]
python3-twisted/bionic,now 17.9.0-2 all [installed]
python3-twisted-bin/bionic,now 17.9.0-2 amd64 [installed]
python3-update-manager/bionic-updates,now 1:18.04.11.7 all [installed]
python3-urllib3/bionic,now 1.22-1 all [installed]
python3-wheel/bionic,now 0.30.0-0.2 all [installed,automatic]
python3-xdg/bionic,now 0.25-4ubuntu1 all [installed,automatic]
python3-yaml/bionic,now 3.12-1build2 amd64 [installed]
python3-zope.interface/bionic,now 4.3.2-1build2 amd64 [installed]
python3.6/bionic-updates,now 3.6.7-1~18.04 amd64 [installed]
python3.6-dev/bionic-updates,now 3.6.7-1~18.04 amd64 [installed,automatic]
python3.6-minimal/bionic-updates,now 3.6.7-1~18.04 amd64 [installed]
readline-common/bionic,now 7.0-3 all [installed]
rsync/bionic,now 3.1.2-2.1ubuntu1 amd64 [installed]
rsyslog/bionic,now 8.32.0-1ubuntu4 amd64 [installed]
run-one/bionic,now 1.17-0ubuntu1 all [installed]
screen/bionic-updates,now 4.6.2-1ubuntu1 amd64 [installed]
sed/bionic,now 4.4-2 amd64 [installed]
sensible-utils/bionic,now 0.0.12 all [installed]
shared-mime-info/bionic,now 1.9-2 amd64 [installed]
snapd/bionic-updates,now 2.34.2+18.04 amd64 [installed]
software-properties-common/bionic-updates,now 0.96.24.32.5 all [installed]
sosreport/bionic-updates,now 3.5-1ubuntu3.18.04.1 amd64 [installed]
squashfs-tools/bionic-updates,now 1:4.3-6ubuntu0.18.04.1 amd64 [installed]
ssh-import-id/bionic-updates,now 5.7-0ubuntu1.1 all [installed]
strace/bionic,now 4.21-1ubuntu1 amd64 [installed]
sudo/bionic,now 1.8.21p2-3ubuntu1 amd64 [installed]
systemd/bionic-security,bionic-updates,now 237-3ubuntu10.9 amd64 [installed]
systemd-sysv/bionic-security,bionic-updates,now 237-3ubuntu10.9 amd64 [installed]
sysvinit-utils/bionic,now 2.88dsf-59.10ubuntu1 amd64 [installed]
tar/bionic,now 1.29b-2 amd64 [installed]
tcpdump/bionic,now 4.9.2-3 amd64 [installed]
telnet/bionic,now 0.17-41 amd64 [installed]
thermald/bionic,now 1.7.0-5ubuntu1 amd64 [installed,automatic]
time/bionic,now 1.7-25.1build1 amd64 [installed]
tmux/bionic,now 2.6-3 amd64 [installed]
tzdata/bionic-security,bionic-updates,now 2018g-0ubuntu0.18.04 all [installed]
ubuntu-advantage-tools/bionic,now 17 all [installed]
ubuntu-keyring/bionic,now 2018.02.28 all [installed]
ubuntu-minimal/bionic,now 1.417 amd64 [installed]
ubuntu-release-upgrader-core/bionic-updates,now 1:18.04.29 all [installed]
ubuntu-server/bionic,now 1.417 amd64 [installed]
ubuntu-standard/bionic,now 1.417 amd64 [installed]
ucf/bionic,now 3.0038 all [installed]
udev/bionic-security,bionic-updates,now 237-3ubuntu10.9 amd64 [installed]
ufw/bionic,now 0.35-5 all [installed]
uidmap/bionic,now 1:4.5-1ubuntu1 amd64 [installed]
unattended-upgrades/bionic-updates,now 1.1ubuntu1.18.04.6 all [installed]
update-manager-core/bionic-updates,now 1:18.04.11.7 all [installed]
update-notifier-common/bionic-updates,now 3.192.1.3 all [installed]
ureadahead/bionic,now 0.100.0-20 amd64 [installed]
usbutils/bionic,now 1:007-4build1 amd64 [installed]
util-linux/bionic-updates,now 2.31.1-0.4ubuntu3.2 amd64 [installed]
uuid-runtime/bionic-updates,now 2.31.1-0.4ubuntu3.2 amd64 [installed]
vim/bionic,now 2:8.0.1453-1ubuntu1 amd64 [installed]
vim-common/bionic,now 2:8.0.1453-1ubuntu1 all [installed]
vim-runtime/bionic,now 2:8.0.1453-1ubuntu1 all [installed]
vim-tiny/bionic,now 2:8.0.1453-1ubuntu1 amd64 [installed]
wget/bionic-security,bionic-updates,now 1.19.4-1ubuntu2.1 amd64 [installed]
whiptail/bionic,now 0.52.20-1ubuntu1 amd64 [installed]
wireless-regdb/bionic-updates,now 2018.05.09-0ubuntu1~18.04.1 all [installed,automatic]
xauth/bionic,now 1:1.0.10-1 amd64 [installed]
xdelta3/bionic,now 3.0.11-dfsg-1ubuntu1 amd64 [installed]
xdg-user-dirs/bionic,now 0.17-1ubuntu1 amd64 [installed]
xfsprogs/bionic,now 4.9.0+nmu1ubuntu2 amd64 [installed]
xkb-data/bionic,now 2.23.1-1ubuntu1 all [installed]
xxd/bionic,now 2:8.0.1453-1ubuntu1 amd64 [installed]
xz-utils/bionic,now 5.2.2-1.3 amd64 [installed]
zerofree/bionic,now 1.0.4-1 amd64 [installed]
zlib1g/bionic,now 1:1.2.11.dfsg-0ubuntu2 amd64 [installed]
Create unit tests suite from commented out sections
Postman
- Add requests for client_credentials workflow for libnss module
Resources:
See also:
sds/sds.h: No such file or directory
I am add pam_add on ubuntu and met this error as below.
pam_aad.c:4:10: fatal error: sds/sds.h: No such file or directory.
I have google sds/sds.h but no useful result to fix this issue. How can I do for next?
is this still under maintenance ?
I just seen https://github.com/aad-for-linux/pam_aad beside of this one and I'm unsure on which one to choose and if one of those is already on the way to be packaged within the Distribution.
Segmentation fault if for-loop is removed from jwt.c
Lines: 61-62
for(i = 0; i < num_tokens; i++){
}
The following code appears to do nothing, but if I get rid of it there is a segfault.
It's not hurting development progress anyway, but something has to be done about it.
Push images to docker registry
Docker script failing in Travis
[Warning] One or more build-args [DEBVER VERSION] were not consumed
Successfully built 6126564fc16a
Successfully tagged cyberninjas/pam_aad:ubuntu-testing
./scripts/docker.sh: 35: ./scripts/docker.sh: VERSION: parameter not set
The command "/bin/sh ./scripts/docker.sh" exited with 2.Source: https://travis-ci.org/CyberNinjas/pam_aad/builds/547898855
pam_aad.c:4:21: fatal error: sds/sds.h: No such file or directory
Attempting build on Centos 7. Missing header sds.h.
$ make
CC pam_aad_la-pam_aad.lo
pam_aad.c:4:21: fatal error: sds/sds.h: No such file or directory
#include <sds/sds.h>
^
compilation terminated.
make: *** [pam_aad_la-pam_aad.lo] Error 1Please advise which library contains sds.h.
Thanks!
User Provisioning Helper
https://graph.windows.net/cyberninjas.com/users/
ad_data.value[i].mailNickname
References:
Implement PAM_SM_PASSWORD
This function is used to (re-)set the authentication token of the user. --pam_sm_chauthtok
int
pam_sm_chauthtok(pam_handle_t *pamh, int flags, int argc, const char **argv)
{
/* This is a dummy function */
return PAM_SUCCESS;
}Source: pam_unix
Bugs: CyberNinjas/libnss-pool#4
Bugs: #22
See also: https://github.com/donapieppo/libnss-ato
OpenVPN Integration
The openvpn-auth-pam module implements username/password
authentication via PAM, and essentially allows any authentication
method supported by PAM (such as LDAP, RADIUS, or Linux Shadow
passwords) to be used with OpenVPN. --README.auth-pam
https://github.com/OpenVPN/openvpn/tree/master/src/plugins/auth-pam
Error checking for blacklisted IPs
[root@ip-172-26-7-166 beatles]# nc -C outlook.com 25
220 DM3NAM03FT051.mail.protection.outlook.com Microsoft ESMTP MAIL Service ready at Fri, 19 Apr 2019 20:03:00 +0000
HELO
250 DM3NAM03FT051.mail.protection.outlook.com Hello [3.211.34.40]
Mail
501 5.5.4 Unrecognized parameter [DM3NAM03FT051.eop-NAM03.prod.protection.outlook.com]
MAIL FROM: [email protected]
250 2.1.0 Sender OK
RCPT TO: email
550 5.7.1 Service unavailable, Client host [3.211.34.40] blocked using Spamhaus. To request removal from this list see https://www.spamhaus.org/query/ip/[3.211.34.40] (AS16012611) [DM3NAM03FT051.eop-NAM03.prod.protection.outlook.com]
Originally posted by @neverrend in #34 (comment)
Update Postman Collection
- poll_microsoft_for_token() -> auth_bearer_request()
- read_code_from_microsoft() -> oauth_request()
- remove
client_request_id
- remove
See also: CyberNinjas/libnss_aad#2
Check for Group membership before sending an email
- Don't send the OTP email unless the user is part of the appropriate group, (See: https://github.com/CyberNinjas/libnss_aad/blob/master/libnss_aad.c#L167).
if (verify_user(jwt, user_addr) == 0 // <-- Check for username match in JWT
&& verify_group(ab_token, group_id, debug) == 0) { // <-- Check for group membership
ret = EXIT_SUCCESS;
}Source: https://github.com/CyberNinjas/pam_aad/blob/master/pam_aad.c#L382-491
- If user is not a member of the group, send an ACCESS DENIED email.
Update maintainer email address for Debian packages
Secure Vulnerability Disclosure
Integrate buildPam.sh into install target
sudo make install --README.md
Distro-specific packaging
- Create Centos 6/7 RPM, (See: https://rpm-packaging-guide.github.io).
- Create Debian/Ubuntu DEB, (See: https://wiki.debian.org/Packaging).
- Sample config files
/etc/pam.d/aad, (See: https://salsa.debian.org/debian/libpam-ssh/blob/master/debian/pam-configs/ssh)/etc/pam_aad.conf/etc/libnss-aad.conf
- Sample config files
- Create Personal Package Archive (PPA), (See: https://launchpad.net/~jnchi/+archive/ubuntu/ppa).
- Publish on master from Travis to Bintray, (See: https://docs.travis-ci.com/user/deployment/bintray).
- Create release scripts
- Publish on tagged release from Travis to GitHub Releases, (See: https://docs.travis-ci.com/user/deployment/releases).
- deb
- rpm
- tar.gz
Add a check to block certain users
Currently the app works in such a fashion that it accepts the username and turns it into an email. Should block certain usernames such as root to prevent automated attacks from bots looking for low hanging fruit.
Login failure on Alpine Linux running via Docker
docker run -it alpine:3.9 /bin/ash
cat /etc/os-release
NAME="Alpine Linux"
ID=alpine
VERSION_ID=3.9.4
PRETTY_NAME="Alpine Linux v3.9"
HOME_URL="https://alpinelinux.org/"
BUG_REPORT_URL="https://bugs.alpinelinux.org/"
apk update && apk add openssh
ssh [email protected]
The authenticity of host '192.168.1.131 (192.168.1.131)' can't be established.
ECDSA key fingerprint is SHA256:UboLDzf2gy/tbDr7cUfW4pJWrduU+Tlex/vaaLY3kNM.
Are you sure you want to continue connecting (yes/no)? yes
Warning: Permanently added '192.168.1.131' (ECDSA) to the list of known hosts.
An email with a one-time passcode was sent to your email.
Enter the code at https://aka.ms/devicelogin, then press enter.
packet_write_wait: Connection to 192.168.1.131 port 22: Broken pipe
Bintray EOL
Support for Amazon Linux (AMI)
First login failed
Hi,
I'm trying to create a user using the following command:
adduser --disabled-password --gecos "" --force-badname '+username
The account was created on first login, which then failed, this is the error I got
PAM auth succeeded when it should have failed
But every other login succeeded.
AADSTS65005: Misconfigured application.
This could be due to one of the following: The client has not listed any permissions for 'AAD Graph' in the requested permissions in the client's application registration. Or, The admin has not consented in the tenant. Or, Check the application identifier in the request to ensure it matches the configured client application identifier. Please contact your admin to fix the configuration or consent on behalf of the tenant. Client app ID: bb06bf4e-aae1-4a46-ab71-21b17d050466.
Windows Azure Active Directory Permissions
Delegated Permissions:
- User.Read
Application Permissions: None
Hardcode `resource_id`
Depicts the identifier of the WebAPI your client wants to access on behalf of the user. For PAM, that will most likely be 00000002-0000-0000-c000-000000000000.
This value never changes.
#define RESOURCE_ID "00000002-0000-0000-c000-000000000000"
Determine how to handle usernames
Current behavior: The user must truncate their username to a length acceptable to unix (under 35 characters). The module then truncates the username in the claims token to the same length and checks they're equal.
Having a user remember to truncate their own username is obviously incredibly inconvenient. I need to determine how to truncate the username in a way that is transparent to the user.
Further Document Configuration Options
## Module options
### client_id
This is the id of your application. Once you have create an application through apps.dev.microsoft.com. When you create your app through your Azure portal you will recieve a code in the form of xxxxxxxx-xxxx-xxxx-xxxx-xxxxxxxxxxxx
### tenant
Your organization. [xxxxxx].onmicrosoft.com, where [xxxxxx] is replaced by your 0365 organization name.
### required_group_id
Checks if the user authenticating to the application is part of the group specified. This allows you to restrict access to certain machines to specific members of your organization.https://github.com/CyberNinjas/pam_aad/tree/c-dev#module-options
Send device code in email
Read email template from file
Currently defined in the source as,
#define USER_PROMPT "An email with a one-time passcode was sent to your email." \
"\nEnter the code at https://aka.ms/devicelogin, then press enter.\n"Template should be stored in /etc/aad/template.d/, (See: CyberNinjas/libnss_aad#5); or similar; add this to the config file via template_dir.
Example
Contents of /etc/pam_aad.conf:
{
"client": {
"id": "{{client_id}}"
},
"domain": "{{domain}}",
"group": {
"id": "{{group_id}}"
},
"smtp_server": "{{smtp_server}}",
"tenant": {
"name": "{{organization}}.onmicrosoft.com",
"address": "{{organization_email_address}}"
},
"template_dir": "{{template_dir}}"
}Normalize input before comparing
STATIC int verify_user(jwt_t * jwt, const char *username)
{
const char *upn = jwt_get_grant(jwt, "upn");
return (strcmp(upn, username) == 0) ? EXIT_SUCCESS : EXIT_FAILURE;
}We are accepting input from two sources without normalizing either. I.E. if John Doe was in AAD as [email protected] he would have to auth via a service with Jdoe instead of being able to use jdoe. The strcmp will fail every time due to this even though the user exists and is valid. Will push a PR to fix.
CII Best Practices Badge Program
OpenVPN Performance issues with multiple users
Multiple users are unable to login using pam_aad in combination with the openvpn pam plugin.
I went to the device login page and it said I logged in, but OpenVPN is stuck on 'Connecting'
See also: #14, openvpn #1194
Remove bundled dependency cJSON
- Revert commit: 87aafa6
- Add dependency in
Dockerfile - Add dependency check in
configure.ac
Reimplement required_group_id
See also: #18
Depends on: CyberNinjas/libnss_aad#2
NOTE: requires delegated permission, "Directory.Read.All", in Azure Active Directory.
Error parsing debug flag in config file
Documentation states that adding "debug": true to the config file will enable debugging, however it is causing a segfault. However, it does accept "debug": "true".
Source: https://github.com/CyberNinjas/pam_aad/blob/master/pam_aad.c#L393
Update default branch
-
c-devshould be made the default branch -
mastershould be deleted -
c-devshould be renamed to master
*Requires administrator privileges on the repository to change default branch.
Branding guidelines for applications
In an earlier version of these guidelines, we recommended using a “blue badge” pictogram. Based on user and developer feedback, we now recommend the use of the Microsoft logo instead.
--https://docs.microsoft.com/en-us/azure/active-directory/develop/howto-add-branding-in-azure-ad-apps
Microsoft Official Logo:
-
png:
-
svg:
Bintray Package Branding:
- https://bintray.com/jnchi/aad
- https://bintray.com/jnchi/aad/libnss-aad
- https://bintray.com/jnchi/aad/libpam-aad
- https://bintray.com/jnchi/aad/openvpn-auth-aad
GitHub Pages Branding:
Launchpad Project(s) Branding:
Segmentation fault on azure_user_in_group
if (auth == 0 && azure_token_user_match(username, token_buf) == 0){
rc = PAM_SUCCESS;
}See: 7131386#r31568939
OpenPAM Compatibility
So far, this module has been compiled and tested against linux-pam. Efforts should be made to support OpenPAM if possible.
Send email via Microsoft Graph API?
Abandon key.pem file to on-the-fly key validation
Static keys don't allow for rolling changes with Microsoft's public key.
It is important to note that these keys rollover on a periodic basis and, in an emergency, could be rolled over immediately. All applications that use Azure AD should be able to programmatically handle the key rollover process or establish a periodic manual rollover process.
As Microsoft states here, those applications that roll their own API interaction instead of using a supported azure library will have to be wary to update public keys.
As a security-critical application, we cannot afford to have a static key that needs updating.
We must be able to poll Microsoft's key repository to ensure our key is up-to-date. I used a node library to convert the jwk to a pem file that openssl could use for validation previously, but I'll have to do it in C code (int jwk_to_pem_rsa(cJSON jwk){...}) instead.
Hardened Build System
Python Implementation
pam_aad.py
import json
import logging
import os
import sys
import adal
with open('/etc/pam_aad.conf', 'r') as f:
config = json.loads(f.read())
if (config['debug']):
logging.basicConfig(level=logging.DEBUG)
GRAPH_URL = 'https://graph.microsoft.com'# Install missing dependency
pip install adal
# Run
sudo python3 pam_aad.py
It can then be called either via pam_exec or openvpn_defer_auth, (See: #39 (comment)).
See: https://github.com/AzureAD/azure-activedirectory-library-for-python
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.