tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

Improved detection for McAfee anti-virus (cma)

This commit is contained in:
mboelen 2015-04-01 14:22:53 +02:00
parent 003d4857bb
commit c2bbf4a0a7
1 changed files with 11 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
include/tests_malware
View File

@ -66,9 +66,17 @@
Register --test-no MALW-3280 --weight L --network NO --description "Check for clamscan" Register --test-no MALW-3280 --weight L --network NO --description "Check for clamscan"
if [ ${SKIPTEST} -eq 0 ]; then if [ ${SKIPTEST} -eq 0 ]; then
FOUND=0 FOUND=0
logtext "Test: checking process cmdagent (McAfee)" MCAFEE_RUNNING=0
IsRunning cmdagent logtext "Test: checking process cma or cmdagent (McAfee)"
if [ ${RUNNING} -eq 1 ]; then # cma is too generic to match on, so we want to ensure that it is related to McAfee first
if [ -x /opt/McAfee/cma/bin/cma ]; then
IsRunning cma
if [ ${RUNNING} -eq 1 ]; then MCAFEE_RUNNING=1; fi
else
IsRunning cmdagent
if [ ${RUNNING} -eq 1 ]; then MCAFEE_RUNNING=1; fi
fi
if [ ${MCAFEE_RUNNING} -eq 1 ]; then
FOUND=1 FOUND=1
Display --indent 2 --text "- Checking McAfee" --result "FOUND" --color GREEN Display --indent 2 --text "- Checking McAfee" --result "FOUND" --color GREEN
logtext "Result: Found McAfee" logtext "Result: Found McAfee"