tyler.durden
/
harbian-audit
mirror of https://github.com/hardenedlinux/harbian-audit.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
375 Commits 4 Branches 11 Tags 10 MiB
Commit Graph

216 Commits

Author SHA1 Message Date
Samson-W 8d3737fa43 Add auditd rules for chfn in 8.1.22 base stig-Ubuntu_16-04_LTS. 2019-05-17 15:03:12 +08:00
Samson-W 9d886d7bf9 1, Add check rounds of pam_unix for 9.2.13 base stig-Ubuntu_16-04_LTS. 
2,Fix a bug: when the configured values have different lengths, the reassignment is incorrect.
 2019-05-16 17:40:40 +08:00
Samson-W c4b9847694 Fix a bug for 9.2.15 and delete the debug method in lib/utils.sh 2019-05-16 14:45:12 +08:00
Samson-W b762376882 Fix a bug for 8.2.5: when syslog-ng has installed, pass this check item. 2019-05-14 17:48:49 +08:00
Samson-W efb9efafdc Add audit and apply methods for 12.5 12.6 12.12 12.13 2019-05-14 14:24:15 +08:00
Samson-W 39da6d480a Add audit and apply methods for 12.4: Ensure permissions on /etc/gshadow are configured 2019-05-14 04:07:26 +08:00
Samson-W a29f621ea7 Combine the functions of 12.4 to 12.1, 12.5 to 12.2, 12.6 to 12.3. 2019-05-14 04:05:04 +08:00
Samson-W 22002609f4 Rename file name of 9.5 2019-05-14 03:46:07 +08:00
Samson-W b629896e82 Add check ownership method for 12.1 2019-05-14 03:40:20 +08:00
Samson-W a1f02aaabf Reorder check items. 2019-05-13 17:34:34 +08:00
Samson-W 0e9f690966 Delete unimplemented item 10.5, which is implemented by 10.1.5. 2019-05-13 17:23:30 +08:00
Samson-W 56b3db72b0 Add audit and apply methods for 10.1.5: Ensure inactive password lock is 30 days or less. 2019-05-13 17:14:37 +08:00
Samson-W 0de7b1d404 Remove 10.1.5 and add runtime check method to 10.1.2: for min password lifetime. 2019-05-12 05:13:07 +08:00
Samson-W cf7c0cae75 Remove 10.1.6 and add runtime check method to 10.1.1: for max password lifetime. 2019-05-10 17:32:39 +08:00
Samson-W 0c676832d1 Rename and reorder number for pam module check. 2019-05-10 15:49:17 +08:00
Samson-W e35e51602a Rename 9.3.27 check script name. 2019-05-09 18:34:16 +08:00
Samson-W 0dcaecc466 Add audit and apply methods for 9.3.27: Ensure SSH access is limited. 2019-05-09 18:32:27 +08:00
Samson-W 4893491e16 Add audit and apply methods for 9.3.26: Ensure SSH LoginGraceTime is set to one minute or less 2019-05-09 17:07:34 +08:00
Samson-W 175fae40d7 Modify ClientAliveInterval to 300 by new benchmark doc. 2019-05-09 15:34:20 +08:00
Samson-W 9c93e6955a Add check ownership methods for 9.3.23 2019-05-09 15:07:49 +08:00
Samson-W 977b32a801 Add audit and apply methods for 9.3.25: Ensure only strong Key Exchange algorithms are used. 2019-05-09 14:57:46 +08:00
Samson-W 1604707e56 Modify audit and apply methods for 9.3.24 2019-05-09 14:06:04 +08:00
Samson-W 9d8e8cf2e3 Modify the serial number of the inspection check item. 2019-05-09 11:57:58 +08:00
Samson-W 81da986be0 Fix bug for 9.1.1 , when debian version is 9.* 2019-05-09 11:28:14 +08:00
Samson-W e3245dce49 Fix a bug for 8.3.1 2019-05-08 10:57:50 +08:00
Samson-W a1446eecd7 Modify 8.3.2. 2019-05-08 10:46:09 +08:00
Samson-W f3981f9d18 Rename 8.5 to 8.6, 8.6 to 8.7, add 8.5. 2019-05-08 10:43:16 +08:00
Samson-W 11d2770fc6 Modify 8.3.2 2019-05-07 19:03:35 +08:00
Samson-W 69c45da7c0 Modify 8.3.1 8.3.2 and add 8.2.5 2019-05-06 23:43:12 +08:00
Samson-W f2f851c8ce Add audit and apply methods for 8.2.4, and remove 8.2.5 2019-04-30 23:42:49 +08:00
Samson-W 3ffe674af9 Add audit and apply methods for 8.2.5 2019-04-24 17:26:36 +08:00
Samson-W 6a302f13c4 Add 8.2.3 8.2.4 for rsyslog. 2019-04-23 04:41:54 +08:00
Samson-W 94bee135ba Add audit and apply methods for 8.2.2: enable rsyslog. 2019-04-23 03:36:23 +08:00
Samson-W 80ac5bfe5b Add 8.2.1 for rsyslog and Adjust the use case number. 2019-04-22 23:58:47 +08:00
Samson-W 6412559d7d Fix a bug for 8.1.16 2019-04-21 06:30:22 +08:00
Samson-W 6157ec0bfc Update methods for 8.1.16 2019-04-21 06:19:07 +08:00
Samson-W 647d94d11c Modify apply method of 8.1.1.6: Need manual opration set Kerberos related. 2019-04-19 15:20:41 +08:00
Samson-W ee9eac8550 Set MAC default to apparmor. 2019-04-18 23:10:53 +08:00
Samson-W e6040d5ee4 Modify audit method for apparmor or selinux. 8.1.7 2019-04-17 18:18:18 +08:00
Samson-W 8abbca05e5 Update about howto fix description. 2019-04-17 12:10:48 +08:00
Samson-W 97d921c2c6 1. Add method for if ipv6 is disabled. 
2. Modify ipv6 iptables rules check with check_ipv6_is_enable.
 2019-04-17 03:48:49 +08:00
Samson-W 5867efd5d6 Add audit and apply methods for ipv6 firewall rules. 2019-04-16 18:09:05 +08:00
Samson-W 1c9ebf578f Fix a bug for 7.7.6 2019-04-16 15:03:13 +08:00
Samson-W 9a238af3e8 Modify some description for 7.7.6 2019-04-16 14:39:31 +08:00
Samson-W f23c662b7c Fix bug for 8.2.4: when create file if dir is not, create file is fail. 2019-04-16 03:57:53 +08:00
Samson-W 40246ee3b7 Add a method when the system architecture is 32-bit for some audit check. 2019-04-15 01:45:32 +08:00
Samson-W 8b59848f42 Add a method when the system architecture is 32-bit for 8.1.10. 2019-04-14 08:24:03 -04:00
Samson-W 568d82253b Add method for check machine architecture and modify 8.1.4 2019-04-14 08:09:04 -04:00
Samson-W 822159dce1 Modify for lib and 8.1.2 2019-04-14 05:56:05 -04:00
Samson-W e2313bd1ff Implement audit and apply methods for 7.6 disable_wireless. 2019-04-12 04:07:44 -04:00