2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
================================================================================
|
|
|
|
|
|
|
|
Lynis - README
|
|
|
|
|
|
|
|
================================================================================
|
|
|
|
|
2015-01-30 13:14:54 +01:00
|
|
|
Author: Michael Boelen (michael.boelen@cisofy.com), CISOfy
|
2014-08-26 17:33:55 +02:00
|
|
|
Description: Security and system auditing tool
|
2014-12-03 23:18:39 +01:00
|
|
|
Web site: https://cisofy.com/lynis/
|
|
|
|
Development: May 2007 - Now
|
2014-08-26 17:33:55 +02:00
|
|
|
Support policy: See section 'Support'
|
|
|
|
Documentation: See web site, README, FAQ and CHANGELOG file
|
|
|
|
|
|
|
|
================================================================================
|
|
|
|
|
|
|
|
|
2014-12-03 23:18:39 +01:00
|
|
|
== The website contains up-to-date documentation ==
|
2014-08-26 17:33:55 +02:00
|
|
|
|
2014-12-03 23:18:39 +01:00
|
|
|
See https://cisofy.com/documentation/lynis/
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
|
|
|
|
[+] Introduction
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
Lynis is an auditing tool which tests and gathers (security) information from
|
|
|
|
Unix based systems. The audience for this tool are security and system
|
|
|
|
auditors, network specialists and system maintainers.
|
|
|
|
|
|
|
|
Some of the (future) features and usage options:
|
|
|
|
- System and security audit checks
|
2015-07-15 15:48:59 +02:00
|
|
|
- Compliance testing
|
|
|
|
- File integrity monitoring
|
2014-08-26 17:33:55 +02:00
|
|
|
- System and file forensics
|
|
|
|
- Usage of templates/baselines (reporting and monitoring)
|
|
|
|
- Extended debugging features
|
|
|
|
|
|
|
|
Everyone is free to use Lynis under the conditions of the GPL v3 license (see
|
|
|
|
LICENSE file).
|
|
|
|
|
|
|
|
========================
|
|
|
|
Quick facts
|
|
|
|
========================
|
2014-12-03 23:18:39 +01:00
|
|
|
- Name: Lynis
|
|
|
|
- Type: audit, security, hardening, forensics tool
|
|
|
|
- License: GPL v3
|
|
|
|
- Language: Shell script
|
2015-01-30 13:14:54 +01:00
|
|
|
- Author: Michael Boelen, CISOfy
|
2014-12-03 23:18:39 +01:00
|
|
|
- Website: https://cisofy.com
|
|
|
|
- Required permissions: root preferred, not needed
|
2014-09-09 14:59:49 +02:00
|
|
|
- Other requirements: write access to /tmp
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
[+] Installation
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
Lynis doesn't have to be installed, so it can be used directly from a
|
|
|
|
(removable) disk. If you want the program to be installed, use one of the
|
|
|
|
following methods:
|
|
|
|
|
|
|
|
- Create a custom directory (ie. /usr/local/lynis) and unpack the tarball
|
|
|
|
(tar xfvz lynis-version.tar.gz) into this directory.
|
|
|
|
- Create a RPM package by using the lynis.spec file (see web site)
|
|
|
|
run 'rpmbuild -ta lynis-version.tar.gz' (= build RPM package)
|
|
|
|
run 'rpm -ivh <filename>' (= install RPM package)
|
|
|
|
|
|
|
|
See online documentation for detailed instructions.
|
|
|
|
|
|
|
|
|
|
|
|
[+] Supported systems
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
Since the complexity of auditing different systems and platforms, Lynis is
|
|
|
|
developed on BSD and Linux.
|
|
|
|
|
|
|
|
This tool is tested or confirmed to work with at least:
|
|
|
|
AIX, Linux, FreeBSD, OpenBSD, Mac OS X, Solaris. See website for the full
|
|
|
|
list of tested operating systems.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
[+] Usage
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
See online documentation for more information about using Lynis.
|
|
|
|
|
|
|
|
|
|
|
|
|
2014-09-09 14:59:49 +02:00
|
|
|
[+] Development and Bugs
|
2014-08-26 17:33:55 +02:00
|
|
|
-------------------------------
|
|
|
|
|
2015-01-30 13:14:54 +01:00
|
|
|
If you have input to improve Lynis, let us know via:
|
|
|
|
- GitHub - https://github.com/CISOfy/lynis
|
|
|
|
- E-mail - lynis-dev@cisofy.com
|
2014-08-26 17:33:55 +02:00
|
|
|
|
2015-07-15 15:48:59 +02:00
|
|
|
Contributions are appreciated and can be done via GitHub. See CONTRIBUTIONS.md
|
|
|
|
for more information about how to submit them.
|
|
|
|
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
[+] Support
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
Lynis is tested on the most common operating systems. The documentation (README,
|
|
|
|
FAQ) and the debugging information in the log file should cover most questions and
|
2015-07-15 15:48:59 +02:00
|
|
|
problems. Bugs can be reported via GitHub, or sending an e-mail to the lynis-dev
|
|
|
|
address above.
|
2014-08-26 17:33:55 +02:00
|
|
|
|
2015-07-15 15:48:59 +02:00
|
|
|
Commercial support is available and provided by CISOfy. For more information use
|
|
|
|
the contact address on https://cisofy.com/contact/.
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
[+] Upgrade to Lynis Enterprise
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
Individuals and companies which use this software for more than 10 systems, should
|
2014-08-27 11:48:35 +02:00
|
|
|
think about the value of this tool in their job. To support ongoing development on
|
|
|
|
this tool we have a commercial version available. Lynis Enterprise Suite uses
|
|
|
|
Lynis to audit systems, but also provides malware scanning, intrusion detection
|
|
|
|
and has additional guidance. For all features, please see our website:
|
2015-07-15 15:48:59 +02:00
|
|
|
https://cisofy.com/lynis-enterprise/
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
[+] Thanks
|
|
|
|
-------------------------------
|
|
|
|
|
2014-08-27 11:48:35 +02:00
|
|
|
Thanks to the community for using and supporting open source software.
|
|
|
|
Many comments, bugs/patches and questions are the key to success and ongoing
|
|
|
|
motivation in developing tools like this.
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
================================================================================
|
2015-01-03 12:45:22 +01:00
|
|
|
Lynis - Copyright 2007-2015, Michael Boelen, CISOfy - https://cisofy.com
|