tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,742 Commits 2 Branches 62 Tags 17 MiB
Commit Graph

2417 Commits

Author SHA1 Message Date
nser77 0891d2693e
Update tests_firewalls 2024-10-11 11:04:56 +02:00
nser77 b5d86daabb
Update tests_firewalls 2024-10-10 13:06:57 +02:00
nser77 fa9082ab77
Update tests_firewalls 2024-10-10 12:31:05 +02:00
nser77 5d50814f04
Update tests_firewalls 2024-10-09 12:24:18 +02:00
nser77 d64f480823
Update tests_firewalls 2024-10-09 09:40:01 +02:00
nser77 2d4ec42696
Update tests_firewalls 2024-10-09 00:57:16 +02:00
nser77 d90413e243
Update tests_firewalls 2024-10-08 12:02:07 +02:00
nser77 13ced756cd
Update tests_firewalls 2024-10-08 11:59:24 +02:00
nser77 8ca5b83584
Update tests_firewalls 2024-10-08 11:29:48 +02:00
nser77 e9c2a1ad3f
Update tests_firewalls 2024-10-08 01:36:39 +02:00
teoberi 1a408248b0
Update tests_firewalls -> FIRE-4508 
Fix copy error
 2024-10-04 21:55:57 +03:00
teoberi c51b066131
Update tests_firewalls -> FIRE-4508 
Include #1554
Fix FIND variable (remove "\n" and -z)
Add sort + uniq while read line from FIND
 2024-10-04 21:46:30 +03:00
Michael Boelen f08fadb7f9
Merge pull request #1548 from teoberi/teoberi-KRNL-5622 
Update tests_kernel -> KRNL-5622
 2024-10-04 10:12:57 +02:00
nser77 b7ced8e030
FIRE-4508 - Fix typo in conditional expression 2024-10-04 09:21:11 +02:00
Michael Boelen f8f2b6441a
Merge pull request #1550 from Aera23/master 
Update osdetection - Peppermint OS
 2024-10-04 08:26:50 +02:00
Francois Perrad 58bff4f54e add Buildroot 
fix #1520
 2024-10-02 11:28:06 +02:00
Aera23 50a1b15ec3
Update osdetection - Peppermint OS 2024-10-02 12:15:40 +09:30
teoberi 42f0b05d10
Update tests_kernel -> KRNL-5622 
Fix runlevel detection for SO without systemd (eg. Slackware)
 2024-10-01 10:09:43 +03:00
Kirill Nikiforov 214471d8b7
add Fedora Linux Asahi Remix 2024-09-30 20:50:21 +04:00
Michael Boelen 03168113ca
[KRNL-5622] test if systemctl binary is set 2024-09-30 11:53:13 +00:00
Michael Boelen 699ec384d2
[FILE-6398] Only perform test if we know if Linux kernel is monolithic/modular 2024-09-30 10:00:55 +00:00
Michael Boelen 7bf2024c7d
Merge branch 'master' of https://github.com/CISOfy/lynis 2024-09-10 16:46:20 +00:00
Michael Boelen f0f9d79b7b
Merge pull request #1526 from ferorge/master 
Fix issues #1496 and #1497
 2024-09-10 13:03:57 +02:00
Michael Boelen 815e7d7c66
AUTH-9328: log entry was incorrect 2024-08-07 11:40:08 +00:00
ferorge 623eaa76fe
Fix issue #1497 
Added kernel name for Hardkernel odroid XU4.
 2024-07-23 19:22:07 -03:00
ferorge bc88602e41
Fix issue #1496 
Added package and service name used in ubuntu 24.04.
 2024-07-23 19:19:55 -03:00
Stefan Baumgartner 9eafa7913c
Update tests_filesystems 
More elegant regex to accommodate for tabs and spaces.
 2024-05-24 08:18:16 +02:00
Stefan Baumgartner a6da9336af
Update tests_networking 
More elegant regex to accommodate for tabs and spaces.
 2024-05-24 08:15:50 +02:00
Stefan Baumgartner 04794c3bcb
Merge branch 'CISOfy:master' into master 2024-05-24 08:12:22 +02:00
Roeland Jansen 2d03e1821d tumbleweed: added /usr/etc/ssh to SSH_DAEMON_CONFIG_LOCS var 2024-05-20 12:36:00 +02:00
Stefan Baumgartner 0515094a33
Fix REGEX in FILE-6430 2024-05-19 12:34:57 +02:00
Stefan Baumgartner ab17f170a5
Fix regex for NETW-3200 2024-05-19 12:23:56 +02:00
Michael Boelen c745a6c0a6
Merge branch 'archarm' 2024-05-17 12:36:31 +00:00
Michael Boelen f8e2da3087
PKGS-7392: filter only lines starting with a number when checking apt-check 2024-05-16 11:13:25 +00:00
Michael Boelen 672d1fce23
Merge pull request #1364 from pyllyukko/ulimit-fix 
KRNL-5820: Accept ulimit with -H parameter also
 2024-05-16 08:49:17 +02:00
Michael Boelen e75a7b9547
Merge branch 'master' into master 2024-05-16 08:48:23 +02:00
Michael Boelen 1278cd3f2b
Merge pull request #1499 from pyllyukko/krb-fix 
KRB-1010: Silence output when SKIPTEST != 0
 2024-05-16 08:38:34 +02:00
Michael Boelen c1d6328d46
Merge pull request #1498 from pyllyukko/typo-fix 
Fixed a typo
 2024-05-16 08:38:00 +02:00
pyllyukko c3996cd1bb
Rephrasing 2024-05-16 07:16:20 +03:00
pyllyukko d60c197e14
KRB-1010: Silence output when SKIPTEST != 0 
Fixes https://github.com/CISOfy/lynis/pull/1456#issuecomment-2113390171
 2024-05-15 23:31:17 +03:00
Michael Boelen 7ad42d689f
Fix for line that gave error 2024-05-15 20:29:28 +00:00
pyllyukko 5182ce31fb Changed the Kerberos plugin into a category 
According to @mboelen's recommendations:
https://github.com/CISOfy/lynis/pull/1456#issuecomment-2110761098
 2024-05-15 21:52:30 +03:00
pyllyukko 4d5b41cb4e plugin_krb5_phase1: Added few more tests 
* Check that admin principals have disallow_tgt_based attribute
* Check that regular user principals have requires_pre_auth and
  disallow_svr attributes
* Check for weak crypto
    * Use kdb5_util for this
 2024-05-15 21:52:30 +03:00
pyllyukko ac526be452 Added initial version of a Kerberos plugin 2024-05-15 21:52:30 +03:00
Michael Boelen 24679bee9a
Do not unset SKIPREASON, as it is cleared at the beginning of the function 2024-05-15 12:23:23 +00:00
Michael Boelen 1a26005b50
Update consts 
Setting variables
 2024-05-15 14:12:54 +02:00
Michael Boelen 2231470615
Merge pull request #1406 from xnoguer/issue-1275 
Checking debsums default file to make sure cron jobs are enabled. Issue 1275
 2024-05-15 13:40:45 +02:00
Michael Boelen b4e57bcbd8
Merge pull request #1489 from katalyst666/master 
changed wording of the output AllowUsers to AllowGroups in test SSH-7440
 2024-05-14 23:53:28 +02:00
Michael Boelen c8c7eeb2ec
Merge pull request #1458 from grandcentrix/mac-check-filevault-status 
Added CRYP-7932 to determine if the system has enabled macOS FileVault.
 2024-05-14 19:27:06 +02:00
Florian Sonnenschein 79632bfbe5 - Deleted "filevault_status" variable 
- Now checks if "fdesetup" exists
- Add some hardening points (AddHP): 3 of 3 when enabled, 0 of 3, when not.
 2024-05-14 16:02:51 +02:00