Extended documentation and added --pentest parameter

2014-09-09 14:59:49 +02:00 · 2014-09-09 14:59:49 +02:00 · 395a2e5b22
parent dd2ea3efaf
commit 395a2e5b22
3 changed files with 10 additions and 8 deletions
--- a/4
+++ b/4
@ -5,7 +5,7 @@

 ================================================================================

-  Author:                   Michael Boelen (michael@rootkit.nl)
+  Author:                   Michael Boelen (michael.boelen@cisofy.com)
  Description:              Security and system auditing tool
  Web site:                 http://cisofy.com
  Support policy:           See section 'Support'
@ -23,7 +23,7 @@
  or
  # ./lynis

-  Make sure you have root privileges.
+  Root privileges are preferred for full audit.



--- a/8
+++ b/8
@ -5,7 +5,7 @@

 ================================================================================

-  Author:                   Michael Boelen (michael@rootkit.nl)
+  Author:                   Michael Boelen (michael.boelen@cisofy.com)
  Description:              Security and system auditing tool
  Web site:                 http://cisofy.com/lynis/
                            http://www.rootkit.nl/projects/lynis.html
@ -48,8 +48,8 @@
   - Language: Shell script
   - Author:   Michael Boelen
   - Web site: http://cisofy.com
-   - Required permissions: root or equivalent
-   - Other requirements: write access to /var/log and /tmp
+   - Required permissions: root preferred for full audit
+   - Other requirements: write access to /tmp



@ -88,7 +88,7 @@



-[+] Development
+[+] Development and Bugs
 -------------------------------

  If you have input to improve Lynis, let us know via the contact page.
--- a/6
+++ b/6
@ -286,8 +286,9 @@
        echo "  #########################################################"
        echo "${NORMAL}"
        echo "  ${WHITE}NOTES:${NORMAL}"
-        echo "  * Some tests will require root permissions"
-        echo "  * Logging is disabled (no log and no report)"
+        echo "  ${PURPLE}*${NORMAL} Some tests will require root permissions and might fail silently"
+        echo "  ${PURPLE}*${NORMAL} This mode is not preferred for pentests, not auditing"
+        echo "  ${PURPLE}*${NORMAL} Logging might be limited"
        echo ""
        echo "  Press [ENTER] to continue or [CTRL] + C to break"
        echo ""
@ -367,6 +368,7 @@
        echo "    --auditor \"<name>\"            : Auditor name"
        echo "    --check-all (-c)              : Check system"
        echo "    --no-log                      : Don't create a log file"
+        echo "    --pentest                     : Non-privileged scan (useful for pentest)"
        echo "    --profile <profile>           : Scan the system with the given profile file"
        echo "    --quick (-Q)                  : Quick mode, don't wait for user input"
        echo "    --tests \"<tests>\"             : Run only tests defined by <tests>"