2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
================================================================================
|
|
|
|
|
|
|
|
Lynis - README
|
|
|
|
|
|
|
|
================================================================================
|
|
|
|
|
2016-08-04 17:00:48 +02:00
|
|
|
Author: 2007-2013, Michael Boelen
|
|
|
|
2013-2016, CISOfy
|
2014-08-26 17:33:55 +02:00
|
|
|
Description: Security and system auditing tool
|
2014-12-03 23:18:39 +01:00
|
|
|
Web site: https://cisofy.com/lynis/
|
|
|
|
Development: May 2007 - Now
|
2014-08-26 17:33:55 +02:00
|
|
|
Support policy: See section 'Support'
|
|
|
|
Documentation: See web site, README, FAQ and CHANGELOG file
|
|
|
|
|
|
|
|
================================================================================
|
|
|
|
|
|
|
|
|
2015-07-22 16:27:39 +02:00
|
|
|
*** NOTE ***
|
|
|
|
|
|
|
|
The website contains the latest documentation
|
2014-08-26 17:33:55 +02:00
|
|
|
|
2014-12-03 23:18:39 +01:00
|
|
|
See https://cisofy.com/documentation/lynis/
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
|
2015-07-22 16:27:39 +02:00
|
|
|
|
2014-08-26 17:33:55 +02:00
|
|
|
[+] Introduction
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
Lynis is an auditing tool which tests and gathers (security) information from
|
|
|
|
Unix based systems. The audience for this tool are security and system
|
|
|
|
auditors, network specialists and system maintainers.
|
|
|
|
|
|
|
|
Some of the (future) features and usage options:
|
|
|
|
- System and security audit checks
|
2015-07-15 15:48:59 +02:00
|
|
|
- Compliance testing
|
|
|
|
- File integrity monitoring
|
2014-08-26 17:33:55 +02:00
|
|
|
- System and file forensics
|
|
|
|
- Usage of templates/baselines (reporting and monitoring)
|
|
|
|
- Extended debugging features
|
|
|
|
|
|
|
|
Everyone is free to use Lynis under the conditions of the GPL v3 license (see
|
|
|
|
LICENSE file).
|
|
|
|
|
|
|
|
========================
|
|
|
|
Quick facts
|
|
|
|
========================
|
2014-12-03 23:18:39 +01:00
|
|
|
- Name: Lynis
|
|
|
|
- Type: audit, security, hardening, forensics tool
|
|
|
|
- License: GPL v3
|
|
|
|
- Language: Shell script
|
2015-01-30 13:14:54 +01:00
|
|
|
- Author: Michael Boelen, CISOfy
|
2015-07-22 16:27:39 +02:00
|
|
|
- Web site: https://cisofy.com
|
2014-12-03 23:18:39 +01:00
|
|
|
- Required permissions: root preferred, not needed
|
2014-09-09 14:59:49 +02:00
|
|
|
- Other requirements: write access to /tmp
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
[+] Installation
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
Lynis doesn't have to be installed, so it can be used directly from a
|
|
|
|
(removable) disk. If you want the program to be installed, use one of the
|
|
|
|
following methods:
|
|
|
|
|
|
|
|
- Create a custom directory (ie. /usr/local/lynis) and unpack the tarball
|
|
|
|
(tar xfvz lynis-version.tar.gz) into this directory.
|
|
|
|
- Create a RPM package by using the lynis.spec file (see web site)
|
|
|
|
run 'rpmbuild -ta lynis-version.tar.gz' (= build RPM package)
|
|
|
|
run 'rpm -ivh <filename>' (= install RPM package)
|
|
|
|
|
|
|
|
See online documentation for detailed instructions.
|
|
|
|
|
|
|
|
|
2016-08-04 17:00:48 +02:00
|
|
|
|
2014-08-26 17:33:55 +02:00
|
|
|
[+] Supported systems
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
Since the complexity of auditing different systems and platforms, Lynis is
|
|
|
|
developed on BSD and Linux.
|
|
|
|
|
|
|
|
This tool is tested or confirmed to work with at least:
|
2016-08-04 17:00:48 +02:00
|
|
|
AIX, Linux, FreeBSD, OpenBSD, macOS, Solaris. See the website for the full
|
2014-08-26 17:33:55 +02:00
|
|
|
list of tested operating systems.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
[+] Usage
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
See online documentation for more information about using Lynis.
|
|
|
|
|
|
|
|
|
|
|
|
|
2014-09-09 14:59:49 +02:00
|
|
|
[+] Development and Bugs
|
2014-08-26 17:33:55 +02:00
|
|
|
-------------------------------
|
|
|
|
|
2016-08-04 17:00:48 +02:00
|
|
|
Found an issue, or do you have a great idea? Let us know:
|
|
|
|
|
2015-07-22 16:27:39 +02:00
|
|
|
* GitHub - https://github.com/CISOfy/lynis
|
|
|
|
* E-mail - lynis-dev@cisofy.com
|
2014-08-26 17:33:55 +02:00
|
|
|
|
2017-10-19 09:56:37 +02:00
|
|
|
Contributions are appreciated and can be done via GitHub. See CONTRIBUTING.md
|
2015-07-15 15:48:59 +02:00
|
|
|
for more information about how to submit them.
|
|
|
|
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
[+] Support
|
|
|
|
-------------------------------
|
|
|
|
|
2016-08-04 17:00:48 +02:00
|
|
|
Lynis is tested on most common operating systems. The documentation (README,
|
|
|
|
FAQ) and the debugging information (/var/log/lynis.log), should cover most
|
|
|
|
questions and problems. Bugs can be reported via GitHub, or sending an e-mail
|
|
|
|
to the lynis-dev address above.
|
2014-08-26 17:33:55 +02:00
|
|
|
|
2016-08-04 17:00:48 +02:00
|
|
|
Commercial features and support is available via CISOfy. This includes support
|
|
|
|
for compliance testing, a web-based interface, reporting, and more.
|
|
|
|
|
|
|
|
For more information see https://cisofy.com/lynis-enterprise/ or use the
|
|
|
|
contact details at https://cisofy.com/contact/
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
[+] Upgrade to Lynis Enterprise
|
|
|
|
-------------------------------
|
|
|
|
|
|
|
|
Individuals and companies which use this software for more than 10 systems, should
|
2014-08-27 11:48:35 +02:00
|
|
|
think about the value of this tool in their job. To support ongoing development on
|
|
|
|
this tool we have a commercial version available. Lynis Enterprise Suite uses
|
|
|
|
Lynis to audit systems, but also provides malware scanning, intrusion detection
|
|
|
|
and has additional guidance. For all features, please see our website:
|
2015-07-15 15:48:59 +02:00
|
|
|
https://cisofy.com/lynis-enterprise/
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
[+] Thanks
|
|
|
|
-------------------------------
|
|
|
|
|
2014-08-27 11:48:35 +02:00
|
|
|
Thanks to the community for using and supporting open source software.
|
|
|
|
Many comments, bugs/patches and questions are the key to success and ongoing
|
|
|
|
motivation in developing tools like this.
|
2014-08-26 17:33:55 +02:00
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
================================================================================
|
2016-08-04 17:00:48 +02:00
|
|
|
Lynis - Copyright 2007-2016, Michael Boelen and CISOfy - https://cisofy.com
|