tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
1,289 Commits 2 Branches 63 Tags 18 MiB
Commit Graph

905 Commits

Author SHA1 Message Date
Michael Boelen 6861e8065f Improve screen output 2016-06-18 11:15:39 +02:00
Michael Boelen 87efe5651f Replaced text strings to allow translations 2016-06-18 11:15:11 +02:00
Michael Boelen b553f01b2a Allow long lines of text by resetting number of spaces to 0 when needed 2016-06-18 11:14:50 +02:00
Michael Boelen 983e293eb1 Replaced text strings to allow translations 2016-06-18 11:14:01 +02:00
Michael Boelen 1be27c7b00 Added IsDeveloperVersion to detect if release is still under development 2016-06-18 09:28:53 +02:00
Michael Boelen 52ad74c5ce [SSH-7408] Show SSH items as a suggestion on screen, like in the report 2016-06-11 14:45:17 +02:00
Michael Boelen f8b134f3c3 Add automatic detection of used language 2016-06-11 14:34:21 +02:00
Michael Boelen f851834dbd Added support for multiple languages 2016-06-11 14:09:41 +02:00
Michael Boelen 7ff4f3b1d3 Add upcoming profile option to choose between upload tools 2016-06-07 17:01:16 +02:00
Michael Boelen 138d1fdcd5 Add comment for upcoming option to choose between upload tools 2016-06-07 17:00:51 +02:00
Michael Boelen 6b05d59855 Add variables for alternative upload tool 2016-06-07 17:00:12 +02:00
Michael Boelen c88a2678f6 [HTTP-6642] Test disabled 2016-06-07 16:59:37 +02:00
Michael Boelen 02fdaf4c1e [PKGS-7328] Set non-interactive as first option like other calls to Zypper 2016-05-30 19:43:10 +02:00
Michael Boelen 751c9734c5 Restrict find action to the /tmp mount 2016-05-30 19:38:42 +02:00
Michael Boelen d3202ade5d Properly display lines again after changing date format in log 2016-05-30 19:36:30 +02:00
Andreas Stieger ece464b1da improve non-interactive use of zypper (#208) 
* PKGS-7328: only list installed items of type package

Otherwise the package list may contain duplicate items of type application or patch

Signed-off-by: Andreas Stieger <astieger@suse.com>

* PKGS-7328, PKGS-7330: run zypper with non-interactive flag

Otherwise the test will hang if zypper issues an interactive query or warning,
such as for new/changed keys, network issues or other errors.

Signed-off-by: Andreas Stieger <astieger@suse.com>
 2016-05-30 19:20:37 +02:00
Michael Boelen 000077d379 Added more tips when cURL has issues uploading the data 2016-05-30 17:06:14 +02:00
Michael Boelen 268ff68966 Added error message when --data-urlencode on cURL is not available 2016-05-30 16:59:29 +02:00
Michael Boelen 7725ce6cc8 Use a common date/time format for log entries 2016-05-25 21:36:12 +02:00
Michael Boelen e20ef13b48 Change instructions to configure Lynis when using self-signed certificates with upload 2016-05-25 13:43:29 +02:00
Michael Boelen 6f1be4c82a Better display when multiple items are to be configured 2016-05-25 13:29:01 +02:00
Michael Boelen c42a1d4083 Improve error message when setting already exists 2016-05-24 20:53:16 +02:00
Michael Boelen a45d6e61f8 Allow automatic configuration of a setting 2016-05-24 20:49:36 +02:00
Michael Boelen 748039358c Remove unneeded quote 2016-05-24 11:31:49 +02:00
Michael Boelen d2c82adc98 Minor cleanups and add hostid2 value for uploads 2016-05-24 11:28:08 +02:00
Eric Light 47748c8fd8 UseDNS = No is a safer configuration (#204) 
See Issue #197.  

References:
 - https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/424371/comments/11
 - https://unix.stackexchange.com/questions/56941/what-is-the-point-of-sshd-usedns-option
 - https://security.googleblog.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html
 2016-05-19 19:58:52 +02:00
Yann ILAS e8d6308d82 use ${LSMODBINARY} instead of lsmod (#200) 2016-05-19 17:34:35 +02:00
Yann ILAS 770605e4c6 use ${LSMODBINARY} instead of lsmod (#199) 
Use detected lsmod binary instead of calling it directly.
 2016-05-19 17:24:49 +02:00
Yann ILAS bc313949c8 Add of MODPROBE variable (#202) 
Test for presence of modprobe utility
 2016-05-19 17:23:54 +02:00
Michael Boelen 7b769214cd Split auditd between Linux and Solaris, store if an audit daemon is running 2016-05-19 17:23:01 +02:00
Michael Boelen 9dafcac6b0 Extend configure module to allow making changes to custom.prf soon 2016-05-17 21:39:02 +02:00
Michael Boelen 7b819b4eca Show release as version with release type (e.g. 2.2.0-dev) 2016-05-17 18:12:49 +02:00
Michael Boelen 443497855e Add lynis show hostids to display host IDs 2016-05-17 18:08:08 +02:00
Michael Boelen 0d62613388 Store host IDv2 and detect utilities when no binaries scan has been done 2016-05-17 18:07:43 +02:00
Michael Boelen 933edeeae0 Improve screen output when an error in a profile has been found 2016-05-16 20:56:42 +02:00
Michael Boelen 573698afdb Show debug details on screen in verbose mode 2016-05-16 20:56:16 +02:00
Michael Boelen f7e353fe17 Report multiple file integrity tools, clean ups, and renumber FINT-4316 to FINT-4402 2016-05-16 20:55:42 +02:00
Michael Boelen 9542dc2f6b Initial import of configure helper 2016-05-15 20:37:10 +02:00
Michael Boelen bb2c97f9c1 Added --man-page alias 2016-05-15 20:01:32 +02:00
Michael Boelen c751302a76 Add helper tool 'configure' 2016-05-15 20:00:18 +02:00
Michael Boelen 1cbf7244c2 Added detection and display of profile directory 2016-05-15 14:03:57 +02:00
Michael Boelen 26c67e4ec6 Use full paths when local directory is used for includedir or dbdir 2016-05-15 13:41:03 +02:00
Michael Boelen 098f7685fc Added show dbdir, show includedir, show workdir 2016-05-14 18:04:26 +02:00
Michael Boelen 18fb54e92d Improve screen output of 'lynis update info' 2016-05-14 17:43:40 +02:00
Michael Boelen e7afd92533 Improve screen output 2016-05-14 17:42:51 +02:00
Michael Boelen b72b510301 Improve help output and error messages 2016-05-14 17:42:33 +02:00
Michael Boelen 08bad0ffbf Initial support for remote scanning with: lynis audit system remote 2016-05-14 15:44:06 +02:00
Michael Boelen 93074a89ea Initial import of remote system scanning 2016-05-14 15:43:29 +02:00
Michael Boelen 4225611b5b Remove debugging details 2016-05-12 11:21:20 +02:00
Michael Boelen d6ceeaa11f Clean ups and added hints for contributions 2016-05-11 16:02:46 +02:00
Michael Boelen 5db9d4a4e0 [FILE-6376] Enabled contributed test and enhancements 2016-05-11 15:57:36 +02:00
Yann ILAS 125f704a10 FILE-xyzz : Bind mount the /var/tmp directory to /tmp (#193) 
Check if a bind mount is done between /var/tmp and the directory /tmp
 2016-05-11 15:20:08 +02:00
Yann ILAS 8ba1f51c19 FILE-6372 : error in awk comparaison (#192) 2016-05-11 15:18:39 +02:00
Yann ILAS 8e73f33475 Check of /dev/shm:nosuid,nodev,noexec (#194) 2016-05-11 15:17:50 +02:00
Yann ILAS 527955211b The XFS root FS is not checked (#190) 
At line 431, you should maybe add some tests...
 2016-05-11 15:16:28 +02:00
Michael Boelen 668a1fd0e5 Alignment, restructuring, and quoting of -? option 2016-05-11 15:12:37 +02:00
Michael Boelen 50609242c2 Only use public keys for host ID creation 2016-05-10 14:21:09 +02:00
Michael Boelen ef23180adc Decrease length of hostid v2 as hostname is stored already 2016-05-10 11:47:33 +02:00
Michael Boelen 41197f722b Added -? argument as alias for --help 2016-05-10 11:47:01 +02:00
Michael Boelen dfce1a770a Removed local variable assignment to prevent portability issues 2016-05-09 14:20:16 +02:00
Michael Boelen a40331aedc Clean up unneeded log entries 2016-05-09 13:50:38 +02:00
Michael Boelen 632e8bd47a Show hardware address in log 2016-05-09 13:46:32 +02:00
Michael Boelen 788ab9999d Create a version 2 host ID 2016-05-05 17:49:41 +02:00
Michael Boelen 9f14495d70 Added sha256 and sha256sum utilities 2016-05-05 17:49:04 +02:00
Michael Boelen 90f196f067 [PKGS-7381] Check for vuln.xml file 2016-05-04 21:59:52 +02:00
Michael Boelen 412613e14c Added check-value for custom configurations check 2016-05-04 21:39:13 +02:00
Michael Boelen 076c5dd093 Initial work to profile for custom configurations check (key-value) 2016-05-04 21:38:42 +02:00
Michael Boelen 049569ceca Set default value for CHECK 2016-05-04 13:42:46 +02:00
Michael Boelen eded02cfde Rewritten counters and dealing with values 2016-05-03 14:57:53 +02:00
Michael Boelen eda79af419 Minor cleanups, including comment about -c option (deprecated soon) 2016-05-03 13:53:20 +02:00
Michael Boelen c8c7a11e37 Implemented linter suggestions 2016-05-03 13:16:11 +02:00
Michael Boelen bbdfce2b05 Performance: only use lshw at end, and when having root privileges 2016-05-03 13:15:46 +02:00
Michael Boelen dab69d2860 Don't show errors when we are running non-privileged 2016-05-03 13:11:28 +02:00
Michael Boelen 062782e7a5 Remove blank line and space 2016-05-03 12:55:23 +02:00
Michael Boelen 7260f3030c Code rewrites after linting 2016-05-03 12:40:26 +02:00
Michael Boelen 0173bd3832 Code rewrites after linting 2016-05-03 12:40:05 +02:00
Michael Boelen 5339a0d466 Improve readability and add missing ;; 2016-05-03 12:19:26 +02:00
Michael Boelen 9c9ca6f947 Proper call to WaitForKeyPress 2016-05-03 11:00:06 +02:00
Michael Boelen 70fd028713 Remove inclusion of empty tests_custom file 2016-05-03 10:58:41 +02:00
Michael Boelen 924e53ed76 Do an earlier detection of grsecurity and store result, so tests can be simplified 2016-05-03 10:58:05 +02:00
Michael Boelen 2205866521 Remove tabs, test for all Red Hat clones, enhanced text 2016-05-02 19:12:55 +02:00
alobodzinski 2b52276110 - Running lynis from /etc/cron.daily some programs delete in-use files (#186) 
- grep for whole words to ignore
- logging what exactly keeps a file open can be very helpful
 2016-05-02 19:08:11 +02:00
StrangeBubble 3a19887972 Update tests_kernel (#185) 
Error during the process of the FIND variable.
 2016-05-02 17:35:55 +02:00
Michael Boelen 99236b13f4 Mark apt-get related tests to be root-only 2016-05-02 17:13:31 +02:00
Michael Boelen efebb99da1 Add action to take when a file has not the right permissions 2016-05-02 17:13:06 +02:00
Michael Boelen 6ea27b912c Add owner and group permissions check 2016-05-02 15:45:27 +02:00
mboelen 6e2640c4d5 Retrieve SSH settings from active configuration and store earlier, test with lowercase settings for other tests 2016-05-02 15:04:40 +02:00
mboelen 9208e35f20 Added alias --no-plugins to skip plugins 2016-05-02 13:57:16 +02:00
mboelen a765163a25 Minor changes to identation and variable names 2016-05-02 13:26:27 +02:00
Eric Light bcaf7a55ef Remove wchan from PROC-3614, to finish #179 (#182) 
Attempt number two, fixing the awk line this time  :)
 2016-05-02 13:24:19 +02:00
StrangeBubble 81a4821636 Check if file is symlink or not (#184) 2016-05-02 13:23:43 +02:00
mboelen 1a680c294f Replace incorrect function call to report 2016-04-28 12:58:33 +02:00
mboelen 43f6baeb2e Replaced old function names with new ones 2016-04-28 12:32:18 +02:00
mboelen 42607ceaf5 Replaced old function names with new ones 2016-04-28 12:31:57 +02:00
mboelen 539bd49856 Big overhaul of functions file. Cleaning up, structurizing, and adding comments 2016-04-28 12:31:38 +02:00
mboelen 9e312f5a5f Replaced functions and minor cleanups 2016-04-28 09:15:54 +02:00
mboelen 5e587adf8a Change ntp_falseticker in report, added ntp_unreliable_peer 2016-04-28 08:51:43 +02:00
mboelen f109c318d9 Detect when weak protocols are used, simplify nginx test 2016-04-27 16:51:12 +02:00
mboelen 1825d91c85 [HTTP-6710] Show suggestion when using a weak protocol 2016-04-27 16:37:32 +02:00
mboelen eb0206198a [HTTP-6710] Show SSLv3 as weak protocol 2016-04-27 16:36:24 +02:00