d9b24e2e7e
Modify 9.2.11 for support to ubuntu 22.04
2022-09-04 17:52:01 +00:00
e5539baf5b
Fix a bug in 8.1.27: when the system is Ubuntu, set the path of au-remote.conf to /etc/audit/plugins.d/au-remote.conf.
2022-08-25 18:40:14 +00:00
3bb4e50a7c
Fix issues #37 need extra checks on audisp path on Ubuntu.
2022-08-25 18:11:23 +00:00
dbbec7cc98
Merge pull request #36 from Samson-W/master
...
Add 14.2: Check abuse 777 permissions
2022-04-01 01:14:30 +08:00
d894963f71
Add 14.2: Check abuse 777 permissions
2022-04-01 01:12:42 +08:00
666f071399
Merge pull request #35 from aptx4869/fix_log_permission
...
fix(log directory permissions) : Apply chmod only to logfiles
2021-11-15 03:14:31 +08:00
2a9a08bf9c
fix(log directory permissions) : Apply chmod only to logfiles instead of 'log/*'
...
Many services like nginx, redis, postgresql put their logs into subdirectory of /var/log
chmod -R 0640 /var/log/* will forbid those from entering the directories
2021-11-12 15:00:12 +08:00
aced6e66ac
Merge pull request #34 from Samson-W/master
...
Fix a bug: Replaced pam_tally2 with pam_faillock in debian 11.
2021-08-16 02:16:35 +08:00
79670bde38
Fix bug: Replaced pam_tally2 with pam_faillock in debian 11.
2021-08-16 02:14:00 +08:00
f175cf4639
Update auditd rules of 8.1.26: replaced pam_tally2 with faillock in debian 11.
2021-08-16 00:57:51 +08:00
0d8593986f
Merge pull request #33 from Samson-W/master
...
Update Readme.md: support debian11
2021-08-15 17:30:51 +08:00
6b89d4cb24
Update Readme.md: support debian11
2021-08-15 17:29:46 +08:00
0652ec431f
Merge pull request #32 from Samson-W/master
...
Update the number of the check item .
2021-08-15 17:23:06 +08:00
356124dfdb
Update the number of the check item .
2021-08-15 17:12:07 +08:00
baccad9c3b
Merge pull request #31 from Samson-W/master
...
Modify 4.8: Re-implement the detection items of disabled USB devices.
2021-07-28 00:45:26 +08:00
cfb0a3c22f
Modify 4.8: Re-implement the detection items of disabled USB devices.
2021-07-28 00:42:01 +08:00
7e2bf1c5b5
Merge pull request #30 from Samson-W/master
...
Fix some bugs and apply rsyslog server
2021-07-18 21:55:40 +08:00
b3857a06da
Modify the log prefix of iptables for the log classification collection of rsyslog.
2021-07-18 21:52:39 +08:00
9b7beb1588
Add some auditd rules for log server.
2021-07-17 22:47:39 +08:00
e4743a7588
Fix a bug space_left of auditd.conf
2021-07-17 22:46:18 +08:00
8995b0c9db
Merge pull request #29 from Samson-W/master
...
Fix a bug and update how_to_deploy_audisp_remote_for_audit_log.mkd
2021-07-16 01:02:21 +08:00
8ad11ac333
Fix a bug: If /var/log is a separate partition, check whether /var is a separate partition will be passed.
2021-07-16 00:58:37 +08:00
d262a18d70
Update how_to_deploy_audisp_remote_for_audit_log.mkd
2021-07-09 01:51:32 +08:00
c944bbb498
Merge pull request #28 from Samson-W/master
...
Modify for apply rsyslog.
2021-07-08 01:18:27 +08:00
0349040bb4
Modify for apply rsyslog.
2021-07-08 01:16:15 +08:00
bbd85fa9b6
Merge pull request #27 from Samson-W/master
...
Update README.md
2021-07-07 00:51:54 +08:00
54c2ac38a1
Update README.md
2021-07-07 00:50:08 +08:00
00531deb50
Update README.md
2021-07-06 23:58:29 +08:00
ffc3809e47
Merge pull request #26 from Samson-W/master
...
Fix a bug of 1.2 and add depend pkg info to 1.3
2021-07-04 04:32:54 +08:00
7d0be2a21e
Add dependance pkg info for 1.3
2021-07-04 04:28:24 +08:00
7419bdc333
Fix a bug of 1.2
2021-07-04 03:31:46 +08:00
0124084e0b
Merge pull request #25 from Samson-W/master
...
Delete unimplemented items: 8.2.3 8.3.3 8.6 9.4
2021-06-24 01:43:58 +08:00
23e2fd0e4f
Merge branch 'hardenedlinux:master' into master
2021-06-24 01:41:54 +08:00
0bc369003c
Delete unimplemented items: 8.2.3 8.3.3 8.6 9.4
2021-06-23 01:43:21 +08:00
8a02a3638c
Merge pull request #24 from Samson-W/master
...
Modify auditd related check items to apply -dont-auditd-by-uid and check_audit_path.
2021-06-22 21:51:36 +08:00
e45da09761
Modify some checklists apply check_audit_path
2021-06-22 21:20:30 +08:00
fad9b17d38
Rename 8.1.31 to 8.1.34, rename 8.1.34 to 8.1.31
2021-06-21 22:59:24 +08:00
b84fb622b5
Modify 8.1.34 for apply --dont-auditd-by-uid, and add aide-common pkg for 8.4.1
2021-06-21 22:23:49 +08:00
d825beb240
Fix a bug of check_audit_path function.
2021-06-21 02:17:08 +08:00
f6b1ea8286
Modify function check_audit_path to check whether the pathname of the rule in the from of 'auditctl -w' is valid.
2021-06-21 01:18:16 +08:00
20a266a774
Modify related auditd checklist for --dont-auditd-by-uid
2021-06-21 00:07:36 +08:00
6209e876e1
Fix a bug: when --dont-auditd-by-uid is not set a valid value, it's continues running
2021-06-20 23:53:35 +08:00
2330cea519
Merge pull request #23 from Samson-W/master
...
Add 8.1.32 8.1.33 8.1.34 for auditd rules, and rename 8.1.32 to 8.1.35
2021-06-20 21:46:34 +08:00
a9dc7057ae
Add 8.1.32 8.1.33 8.1.34 for auditd rules, and rename 8.1.32 to 8.1.35. Add global variable DONT_AUDITD_BY_UID for enable/disable use UID in the auditd rules.
2021-06-15 21:38:36 +08:00
88983fe3a9
Call backup_file when modify some conf file in 1.2 and 1.3
2021-06-09 23:08:25 +08:00
d6fca32f10
Fix a bug: when the Debian version is the Codename, an error will occur
2021-02-22 12:08:40 +08:00
64bececd2d
Fix some bugs for Debian11(bullseye).
2021-02-22 03:53:02 +08:00
5e8b093cd5
Add exception method for --allow-service to skip audit and apply.
2020-11-06 14:54:58 +08:00
fad60e595b
Modify 9.3.11 9.3.21 9.3.24 to adapt the check of default parameter values through the runtime state of sshd configuration.
2020-11-06 01:42:22 +08:00
385bd6e8ba
Apply check_sshd_conf_for_one_value_runtime for 9.3.12
2020-11-05 14:20:55 +08:00
Samson-W
Samson.W
aptx4869