tyler.durden
/
harbian-audit
mirror of https://github.com/hardenedlinux/harbian-audit.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Commit Graph

  • 61d7436c6c
         Merge 217295c2ec into bb6574e441 Robert Moore 2024-07-08 00:37:30 +0800
  • bb6574e441 Remove AMI images for Ohio and Tokyo regions. master Samson-W 2024-07-08 00:08:59 +0800
  • 217295c2ec
         Only clone 1 depth instead clone the entire history Robert Moore 2024-05-07 11:50:20 +0000
  • 2d83a6a34e Fix #54: hardening.sh: line 275: [: missing ] Samson-W 2023-10-21 15:00:37 +0800
  • e00770d5ff Optimize 9.2.14 audit items, and update README.md README-CN.md Samson-W 2023-08-25 01:49:11 +0800
  • 9545137a08
         Merge pull request #53 from hardenedlinux/add_dictcheck_pwquality Samson.W 2023-08-24 21:47:24 +0800
  • 436dea1f6b Update 9.2.14_pam_dictcheck_pwquality.sh add_dictcheck_pwquality Samson-W 2023-08-24 21:45:09 +0800
  • c3744f83a0 Add 9.2.14_pam_dictcheck_pwquality.sh Samson-W 2023-08-24 00:45:51 +0800
  • b88af0e351
         Merge pull request #52 from atastycookie/master-1 Samson.W 2023-08-09 20:43:59 +0800
  • 67c97fe7fc
         Fixing Markdown markup Roman 2023-08-09 14:22:23 +0400
  • 9822545cc8 Update the description information of 8.7.2 Samson-W 2023-07-15 18:02:28 +0800
  • d496c2b320 Update README.md README-CN.md Samson-W 2023-07-15 02:09:54 +0800
  • 612a90d844 Fix #50: Autofix improvement: Ensure journald is configured to write logfiles to persistent disk Samson-W 2023-07-15 02:03:40 +0800
  • d995a65375 Fix #49: Autofix improvement: Ensure journald is configured to compress large log files Samson-W 2023-07-15 02:02:58 +0800
  • 8c0b9da8b3 Add clean: Cleanup of usage traces to ~/.ssh/known_hosts file. Samson-W 2023-07-15 01:23:40 +0800
  • eaa2339336 Fix #51 Autofix improvement: Ensure rsyslog default file permissions are configured. Add method for check FileCreateMode in /etc/rsyslog.d/ Samson-W 2023-07-10 01:11:55 +0800
  • 8e97a31f98 Fix some bugs: When the find command has permission denied, it will exit due to an error, so remove set -e. Samson-W 2023-07-05 00:11:51 +0800
  • 76c9070615 update README-CN.md README.md for Debian12 V0.7.0 Samson-w 2023-06-17 16:22:37 +0800
  • 195ec744e0 Fix #40: Shadow utils checks are not possible to maintain with current requirements. Samson-w 2023-06-17 13:57:38 +0800
  • ee6cb27946 Del some not Scored check items. Samson-w 2023-06-17 11:36:10 +0800
  • eadba375b6 Fix some bugs about disable kernel module Samson-w 2023-06-17 11:18:31 +0800
  • e109fe76c6 Update 2.2 2.3 2.4 7.6 for Debian12. Samson-w 2023-06-17 10:21:46 +0800
  • ac5c810184 Fix a bug: Debian 12 errors : Current OS is not support! Samson-W 2023-06-17 00:40:38 +0800
  • 1eecbc633f Fix some bugs for Debian12. Samson-W 2023-06-17 00:14:38 +0800
  • 754ff95056 Fix #44: Debian 11 uses ntfables, not iptables. Update 7.7.2 7.7.3 7.7.4.1 7.7.4.3 7.7.4.4 7.7.5.1 7.7.5.2 7.7.5.3 7.7.5.4 for nftables. Samson-W 2023-06-17 00:12:06 +0800
  • 1b4337464a Update 7.7.2 7.7.3 7.7.4.1~7.7.4.4 for nftables. Samson-W 2023-06-16 02:43:44 +0800
  • f0d0f65467 Update 7.7.1 for nftables Samson-W 2023-06-15 01:47:35 +0800
  • 14b396769a Fix #39: Need extra check on blacklisted Linux kernel modules. Update 2.18 2.19 2.20 2.21 2.22 2.23 2.24 14.1 Samson-W 2023-06-14 01:40:47 +0800
  • 4699911078 Fix #48: Debian 12 errors : Current OS is not support! Samson-W 2023-06-13 01:23:56 +0800
  • 0ab75f8fa8 Update 9.2.14 for Debian12 Samson-W 2023-06-12 02:28:31 +0800
  • 2b6949548f Update 9.2.11 9.2.12 9.2.13 for Debian12 Samson-W 2023-06-12 02:18:30 +0800
  • 03f583ad94 Fix #43: Debian 11 uses pwquality, not cracklib. Update 9.2.4 9.2.5 9.2.6 9.2.7 9.2.8 9.2.9 9.2.10 for Debian11/Debian12 Samson-W 2023-06-12 01:59:10 +0800
  • 13f75e093e Update 9.2.3 for Debian12 Samson-W 2023-06-12 01:27:48 +0800
  • ab55dd82ee Update 9.2.2 for Debian12 Samson-W 2023-06-12 01:23:48 +0800
  • 3308bd7aa4 Update 9.2.1 for Debian12 Samson-W 2023-06-12 00:59:29 +0800
  • 706cc65542 Adapt to the Debian 12 release version Samson-W 2023-06-12 00:46:56 +0800
  • 881c51608e Fix #42: 14.1 grep returns line format that will never match the regex filter applied Samson-W 2023-06-04 23:10:05 +0800
  • 07f7f86612
         Merge pull request #47 from dominiquefournier/master Samson.W 2023-03-10 01:37:07 +0800
  • 1b7ee81794 Add systemd-timesyncd server root 2023-03-07 13:55:24 +0100
  • 235c85c3d8
         Merge pull request #1 from dominiquefournier/dominiquefournier-patch-3 dominiquefournier 2023-03-07 11:46:40 +0100
  • b36087e840
         Update 6.19_configure_ntp.sh dominiquefournier 2023-03-07 11:43:02 +0100
  • 8d451260d1
         Update 6.5_ensure_time_sync_server_is_installed.sh dominiquefournier 2023-03-07 11:39:23 +0100
  • 8d163904de
         Update 6.20_configure_chrony.sh dominiquefournier 2023-03-07 11:37:38 +0100
  • 1835a45c0e Fix pam-tally2.so is missing in Ubuntu #38, Modify 8.1.26 for support to ubuntu. Samson-W 2022-09-05 14:14:13 +0000
  • 297b4fa343 Fix pam-tally2.so is missing in Ubuntu #38 Samson-W 2022-09-05 13:45:01 +0000
  • d9b24e2e7e Modify 9.2.11 for support to ubuntu 22.04 Samson-W 2022-09-04 17:52:01 +0000
  • e5539baf5b Fix a bug in 8.1.27: when the system is Ubuntu, set the path of au-remote.conf to /etc/audit/plugins.d/au-remote.conf. Samson-W 2022-08-25 18:40:14 +0000
  • 3bb4e50a7c Fix issues #37 need extra checks on audisp path on Ubuntu. Samson-W 2022-08-25 18:11:23 +0000
  • dbbec7cc98
         Merge pull request #36 from Samson-W/master Samson.W 2022-04-01 01:14:30 +0800
  • d894963f71 Add 14.2: Check abuse 777 permissions Samson-W 2022-04-01 01:12:42 +0800
  • 666f071399
         Merge pull request #35 from aptx4869/fix_log_permission Samson.W 2021-11-15 03:14:31 +0800
  • 2a9a08bf9c
         fix(log directory permissions) : Apply chmod only to logfiles instead of 'log/*' aptx4869 2021-11-12 15:00:12 +0800
  • aced6e66ac
         Merge pull request #34 from Samson-W/master V0.6.0 Samson.W 2021-08-16 02:16:35 +0800
  • 79670bde38 Fix bug: Replaced pam_tally2 with pam_faillock in debian 11. Samson-W 2021-08-16 02:14:00 +0800
  • f175cf4639 Update auditd rules of 8.1.26: replaced pam_tally2 with faillock in debian 11. Samson-W 2021-08-16 00:57:51 +0800
  • 0d8593986f
         Merge pull request #33 from Samson-W/master Samson.W 2021-08-15 17:30:51 +0800
  • 6b89d4cb24 Update Readme.md: support debian11 Samson-W 2021-08-15 17:29:46 +0800
  • 0652ec431f
         Merge pull request #32 from Samson-W/master Samson.W 2021-08-15 17:23:06 +0800
  • 356124dfdb Update the number of the check item . Samson-W 2021-08-15 17:12:07 +0800
  • baccad9c3b
         Merge pull request #31 from Samson-W/master Samson.W 2021-07-28 00:45:26 +0800
  • cfb0a3c22f Modify 4.8: Re-implement the detection items of disabled USB devices. Samson-W 2021-07-28 00:42:01 +0800
  • 7e2bf1c5b5
         Merge pull request #30 from Samson-W/master Samson.W 2021-07-18 21:55:40 +0800
  • b3857a06da Modify the log prefix of iptables for the log classification collection of rsyslog. Samson-W 2021-07-18 21:52:39 +0800
  • 9b7beb1588 Add some auditd rules for log server. Samson-W 2021-07-17 22:47:39 +0800
  • e4743a7588 Fix a bug space_left of auditd.conf Samson-W 2021-07-17 22:46:18 +0800
  • 8995b0c9db
         Merge pull request #29 from Samson-W/master Samson.W 2021-07-16 01:02:21 +0800
  • 8ad11ac333 Fix a bug: If /var/log is a separate partition, check whether /var is a separate partition will be passed. Samson-W 2021-07-16 00:58:37 +0800
  • d262a18d70 Update how_to_deploy_audisp_remote_for_audit_log.mkd Samson-W 2021-07-09 01:51:32 +0800
  • c944bbb498
         Merge pull request #28 from Samson-W/master Samson.W 2021-07-08 01:18:27 +0800
  • 0349040bb4 Modify for apply rsyslog. Samson-W 2021-07-08 01:16:15 +0800
  • bbd85fa9b6
         Merge pull request #27 from Samson-W/master Samson.W 2021-07-07 00:51:54 +0800
  • 54c2ac38a1 Update README.md Samson-W 2021-07-07 00:50:08 +0800
  • 00531deb50 Update README.md Samson-W 2021-07-06 23:58:29 +0800
  • ffc3809e47
         Merge pull request #26 from Samson-W/master Samson.W 2021-07-04 04:32:54 +0800
  • 7d0be2a21e Add dependance pkg info for 1.3 Samson-W 2021-07-04 04:28:24 +0800
  • 7419bdc333 Fix a bug of 1.2 Samson-W 2021-07-04 03:31:46 +0800
  • 0124084e0b
         Merge pull request #25 from Samson-W/master Samson.W 2021-06-24 01:43:58 +0800
  • 23e2fd0e4f
         Merge branch 'hardenedlinux:master' into master Samson.W 2021-06-24 01:41:54 +0800
  • 0bc369003c Delete unimplemented items: 8.2.3 8.3.3 8.6 9.4 Samson-W 2021-06-23 01:43:21 +0800
  • 8a02a3638c
         Merge pull request #24 from Samson-W/master Samson.W 2021-06-22 21:51:36 +0800
  • e45da09761 Modify some checklists apply check_audit_path Samson-W 2021-06-22 21:20:30 +0800
  • fad9b17d38 Rename 8.1.31 to 8.1.34, rename 8.1.34 to 8.1.31 Samson-W 2021-06-21 22:59:24 +0800
  • b84fb622b5 Modify 8.1.34 for apply --dont-auditd-by-uid, and add aide-common pkg for 8.4.1 Samson-W 2021-06-21 22:23:49 +0800
  • d825beb240 Fix a bug of check_audit_path function. Samson-W 2021-06-21 02:17:08 +0800
  • f6b1ea8286 Modify function check_audit_path to check whether the pathname of the rule in the from of 'auditctl -w' is valid. Samson-W 2021-06-21 01:18:16 +0800
  • 20a266a774 Modify related auditd checklist for --dont-auditd-by-uid Samson-W 2021-06-21 00:07:36 +0800
  • 6209e876e1 Fix a bug: when --dont-auditd-by-uid is not set a valid value, it's continues running Samson-W 2021-06-20 23:53:35 +0800
  • 2330cea519
         Merge pull request #23 from Samson-W/master Samson.W 2021-06-20 21:46:34 +0800
  • a9dc7057ae Add 8.1.32 8.1.33 8.1.34 for auditd rules, and rename 8.1.32 to 8.1.35. Add global variable DONT_AUDITD_BY_UID for enable/disable use UID in the auditd rules. Samson-W 2021-06-15 21:38:36 +0800
  • 88983fe3a9 Call backup_file when modify some conf file in 1.2 and 1.3 Samson-W 2021-06-09 23:08:25 +0800
  • d6fca32f10 Fix a bug: when the Debian version is the Codename, an error will occur Samson-W 2021-02-22 12:08:40 +0800
  • 64bececd2d Fix some bugs for Debian11(bullseye). Samson-W 2021-02-22 03:53:02 +0800
  • 5e8b093cd5 Add exception method for --allow-service to skip audit and apply. V0.5.0 Samson-W 2020-11-06 14:54:58 +0800
  • fad60e595b Modify 9.3.11 9.3.21 9.3.24 to adapt the check of default parameter values through the runtime state of sshd configuration. Samson-W 2020-11-06 01:42:22 +0800
  • 385bd6e8ba Apply check_sshd_conf_for_one_value_runtime for 9.3.12 Samson-W 2020-11-05 14:20:55 +0800
  • 7eb3f188f5 Optimize the error message for sshd configuration relate. Samson-W 2020-11-05 02:47:53 +0800
  • 822d6ef2c8 Fix some bugs related to sshd configuration. Samson-W 2020-11-05 02:23:42 +0800
  • d9d2609e84 Apply check_sshd_conf_for_one_value_runtime for sshd config relate Samson-W 2020-11-04 18:35:17 +0800
  • cbf85fe443 Add check_sshd_conf_for_one_value_runtime method, and modify 9.3.2 Samson-W 2020-11-03 19:50:50 +0800
  • 34de8084d7 Modify apply method of 14.1 Samson-W 2020-11-02 21:56:30 +0800