tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
734 Commits 2 Branches 63 Tags 18 MiB
Commit Graph

516 Commits

Author SHA1 Message Date
mboelen 9d1cec8a9b Changes to check for presence BusyBox, to better support platforms using this as primary shell 2015-10-14 16:49:57 +02:00
Michael Boelen 776a70d6cf Merge pull request #82 from SiemKorteweg/master 
Optimized use of cat, grep and awk.
 2015-10-14 10:55:33 +02:00
mboelen 6bea4e0334 Use POSIX compatible flag, so it also works on BusyBox 2015-10-14 10:28:27 +02:00
mboelen b1437a05ef For exceptions the lynis.log file is a better source 2015-10-14 10:27:37 +02:00
SiemKorteweg 0c48fc3880 Optimized use of cat, grep and awk. 
Detection of duplicate entries in /etc/hosts is now more robust.
On CentOS7 the SERVICE_MANAGER is detected correctly.
 2015-10-10 13:25:14 +02:00
Michael Boelen c0378f38f5 Merge pull request #80 from SiemKorteweg/master 
Combine "sort | uniq" to "sort -u" and sorting data first before making it unique.
 2015-10-08 22:46:21 +02:00
mboelen a99a3d348e Added audit daemon and PAM variables 2015-10-08 16:25:35 +02:00
mboelen fb1cf9e547 Rename PCI-DSS to PCI DSS 2015-10-08 16:25:09 +02:00
SiemKorteweg b7d24c3413 Make sure that the input of "uniq -d" is sorted to avoid that duplicate UID's and hosts entries are missed. 2015-10-06 20:02:33 +02:00
SiemKorteweg bf1da50c14 Combine "sort | uniq" into "sort -u" to reduce the number of processes used for running Lynis. The busybox version of sort also supports the -u option. 2015-10-04 17:59:28 +02:00
mboelen 009a363550 Properly show compliance status now 2015-10-01 22:40:49 +02:00
mboelen ac87ce4c79 Added DisplayManual function, friendly name for compliance, minor enhancements 2015-10-01 22:40:29 +02:00
mboelen 3f8b826585 Renaming of variables for clarity 2015-10-01 22:39:01 +02:00
mboelen 385e62b6a5 Compliance variables 2015-10-01 22:38:29 +02:00
mboelen d6a8a3c425 Correct testing for disabled/blacklisted USB storage driver 2015-10-01 19:56:39 +02:00
mboelen a6ac097a93 Redirect possible errors instead of display on screen 2015-10-01 16:06:27 +02:00
mboelen 85f6c555b2 Minor cleanup and redirecting possible errors 2015-10-01 16:02:09 +02:00
mboelen 2b5c63bff9 Added ShowComplianceFinding function to display any non-compliance with security standards 2015-10-01 13:16:27 +02:00
mboelen 55ee1e90bc Check correct variable for enabled compliance standards 2015-10-01 12:59:15 +02:00
mboelen 9505a10dd7 Add profile setting compliance_standards to define which ones are enabled 2015-10-01 11:59:50 +02:00
mboelen 4c0fa90478 Added variables for compliance standards like HIPAA, ISO27001/ISO27002 and PCI-DSS 2015-10-01 11:58:34 +02:00
mboelen c9c78f751d Added plugin phase variable and specific PAM settings 2015-10-01 11:49:30 +02:00
mboelen fee1961eed Added DigitsOnly function to extract only numbers from a text string 2015-09-30 18:34:16 +02:00
mboelen cf11b95c3f Added detection of ESET products and logging of malware scanner to report 2015-09-28 11:00:34 +02:00
mboelen adb5948b30 Properly parse updated way of storing warnings and suggestions 2015-09-24 21:42:21 +02:00
mboelen cc4feee4e5 New way of reporting a warning 2015-09-24 21:41:48 +02:00
mboelen 784224f4e7 Uniform way of saving warnings and suggestions to the log for later parsing 2015-09-24 21:40:54 +02:00
mboelen 5dfb031e4d Removed bracket 2015-09-24 21:26:55 +02:00
mboelen 1edaba4d71 Added new test [CONT-8108] to check file permissions of Docker files 2015-09-24 20:29:05 +02:00
mboelen 5fe1e6dd65 Corrected logging for tests related to /etc/newsyslog.conf parsing 2015-09-24 20:27:49 +02:00
mboelen 41e08807c9 Changed description of place holder 2015-09-24 20:27:17 +02:00
mboelen 8b5b8b4a01 Added new parameters to ReportSuggestion and ReportWarning functions 2015-09-24 20:26:32 +02:00
mboelen 84821a4ed0 Removed [AUTH-9230] and merged it into [AUTH-9228] 2015-09-24 20:24:46 +02:00
mboelen 31363e9b39 Extended description for vulnerable package tests on FreeBSD 2015-09-24 20:14:59 +02:00
mboelen 2bcb519123 Changed test IDs of place holders 2015-09-24 20:13:05 +02:00
mboelen 9023f17662 Changed test IDs of place holders 2015-09-24 20:12:19 +02:00
mboelen c17fcfd92d Corrected PKGS-7380 and undoubled PKGS-7381 2015-09-24 20:10:30 +02:00
mboelen 1b9b084c03 Changed lmd to maldet, as LMD detection 2015-09-24 17:45:11 +02:00
mboelen 4f5eedabfc Added the detection of LMD, or Linux Malware Detect tooling 2015-09-24 16:45:03 +02:00
Alexander Lobodzinski d80bf2f437 Bugfix: wrong logtext for HRDN-7230 2015-09-22 12:00:44 +02:00
Alexander Lobodzinski adc57330f6 Bugfix: nginx SSL detection worked on Linux only (only GNU sed understands \t on the command line) 2015-09-21 13:04:44 +02:00
Michael Boelen 14a79d8a63 Merge pull request #78 from rsmith-nl/freebsd-services 
Improvements for FreeBSD services
 2015-09-16 23:35:54 +02:00
Roland Smith f11783dbdf Merge branch 'master' into freebsd-services 2015-09-16 20:29:51 +02:00
mboelen 32226d145f Merged patch to properly log umask value 2015-09-16 17:03:13 +02:00
mboelen 91c9760598 Add hardening points properly to umask tests 2015-09-16 17:01:17 +02:00
mboelen d786c687a1 Added variables which were not initialized before 2015-09-16 17:00:12 +02:00
Alexander Lobodzinski 37f9dcb8cc Bugfix for BSD: unrelated variable got logged instead of umask 2015-09-14 19:38:00 +02:00
mboelen df5ff883da Merge branch 'master' of https://github.com/CISOfy/Lynis 2015-09-12 15:19:29 +02:00
mboelen 6fbe0e95c5 Changes to comments only 2015-09-12 15:19:21 +02:00
Alexander Lobodzinski d2c0e7491e In quiet mode, hardening index was not written to log and report files 2015-09-11 14:54:38 +02:00
mboelen 78f32c2f28 Added screen output for /etc/login.conf 2015-09-10 21:46:23 +02:00
mboelen 7d0759297e Corrected case function 2015-09-10 21:42:30 +02:00
mboelen 21d305b689 Add support for testing umask value in /etc/login.conf like FreeBSD systems 2015-09-10 21:07:06 +02:00
mboelen 0b9c6132c6 Add test [SHLL-6230] to test for umask values in common shell configuration files 2015-09-10 21:06:40 +02:00
mboelen fa98d9bba2 Import of tool tips section 2015-09-10 21:05:04 +02:00
mboelen b43bf17954 Remove tool tips section from report 2015-09-10 21:04:18 +02:00
mboelen 28d9a49a5f Renamed BINPATHS to BIN_PATHS 2015-09-10 19:45:12 +02:00
mboelen 0db8eca467 Count total amount of suggestions and warnings 2015-09-10 09:18:20 +02:00
mboelen 7feb7e9a6c Show amount of suggestions and warnings 2015-09-10 09:18:03 +02:00
mboelen b6c0736d6e Added counters for suggestions and warnings 2015-09-10 08:35:57 +02:00
mboelen a8972b7b7f Changed exit codes when using incorrect parameters 2015-09-10 08:35:40 +02:00
mboelen 7f4ee7ba56 Added ExitCustom function and notes for virtualization 2015-09-10 08:35:09 +02:00
mboelen 090bb2d4eb Extended virtualization tests and logging 2015-09-09 20:24:48 +02:00
mboelen 5f2ef483f6 Improved tests and logging for automation tools 2015-09-08 16:02:41 +02:00
Michael Boelen e1c2891db9 Merge pull request #74 from alobodzinski/tooling-cf3 
CFEngine 3 detection
 2015-09-08 15:08:49 +02:00
mboelen 174172eeba Simplify: clarify if a particular set of module is not available, instead of showing cross 2015-09-08 14:59:25 +02:00
mboelen e9373b59b0 Cleanup: Don't show pflogd status on screen, when pf is not available 2015-09-08 14:49:42 +02:00
Alexander Lobodzinski 66ff2a9229 Fixed typos 2015-09-08 14:28:24 +02:00
Alexander Lobodzinski 2d72fe18d3 Detect automation with Cfengine 3 2015-09-08 14:19:11 +02:00
mboelen 1316fdf38b Changed identation for GRUB2 test 2015-09-07 21:13:12 +02:00
Michael Boelen 59390f1717 Merge pull request #73 from laurentquillerou/nginx-conf 
Include main nginx.conf file in parsing.
 2015-09-07 21:06:08 +02:00
Michael Boelen 48fd39c570 Merge pull request #71 from alobodzinski/openbsd-httpd 
merging pull request to skip httpd on OpenBSD systems.
 2015-09-07 20:58:55 +02:00
Laurent Quillerou b83c3fbb10 Include main nginx.conf so that it generate nginx_config_option 2015-09-07 18:52:19 +03:00
mboelen e50eef0c19 Added hint for possible extension to kernel scheduler 2015-09-07 17:43:00 +02:00
mboelen d23ef2db0b Changed screen identation of GRUB2 test 2015-09-07 17:42:29 +02:00
mboelen 1283ccc061 Added new test for UEFI detection [BOOT-5116] and storing data in report 2015-09-07 17:41:05 +02:00
mboelen 919995eb5a Added UEFI_BOOTED_SECURE 2015-09-07 17:40:26 +02:00
mboelen 429fb62fd7 Added UEFI_BOOTED 2015-09-07 17:40:03 +02:00
Laurent Quillerou 3cdd9ea949 Delete trailing whitespace 2015-09-07 18:35:07 +03:00
Alexander Lobodzinski f7ec431a65 /usr/sbin/httpd on OpenBSD is builtin non-Apache webserver, do not run with -v 
If Apache is installed it is detected in /usr/local/sbin/httpd nevertheless
 2015-09-07 17:31:18 +02:00
Michael Boelen a90d225bf4 Merge pull request #68 from d4t4king/master 
include/tests_filesystems tweak
 2015-09-07 12:06:06 +02:00
mboelen 84baf688c8 Renumber test and search for explicit yes value, log status 2015-09-07 11:26:09 +02:00
Michael Boelen f471bf9d96 Merge pull request #70 from kboratynski/auth-9407 
Wrote 'AUTH-9407' - logging failed login attempts.
 2015-09-07 11:19:40 +02:00
mboelen 5165e57b86 Added report option to store logging status of failed logins 2015-09-07 11:17:38 +02:00
mboelen 53840a4cfb Added variable for logging status of failed logins 2015-09-07 11:17:08 +02:00
mboelen fc27379452 Minor cleaning up and improved comment 2015-09-07 10:13:20 +02:00
Kamil Boratyński 0e97f7936f Wrote 'AUTH-9407' - logging failed login attempts. 2015-09-07 04:12:58 +02:00
mboelen a42e8feac2 Added Unbound status and configuration check, logging name cacher status to report file 2015-09-06 21:38:21 +02:00
mboelen 88caa85f59 Added default values for name cachers and Unbound status 2015-09-06 21:37:26 +02:00
mboelen 4a354c8479 Change ipfw to IPFW, change exeception ID for IPFW test 2015-09-06 17:42:56 +02:00
mboelen 10a300ddb7 Don't show pf status on screen when it is not available 2015-09-06 17:38:15 +02:00
Michael Boelen 8ab314cf07 Merge pull request #43 from rsmith-nl/ipfw 
Add test for 'ipfw' firewall on FreeBSD.
 2015-09-06 17:34:36 +02:00
mboelen 05dd1a6814 Remove systemctl to detect virtualization, use systemd-detect-virt instead 2015-09-05 18:51:36 +02:00
mboelen 461920ff72 Enabled dmidecode for virtualization detection 2015-09-05 18:41:04 +02:00
Michael Boelen 2fd7788b9b Merge pull request #58 from markruys/master 
More reliable and often faster check to determine virtualization.
 2015-09-05 17:34:18 +02:00
squid-cache-object 12d9b38288 Update tests_filesystems 2015-09-03 14:14:02 -07:00
Michael Boelen 3927d60b8e Merge pull request #69 from alobodzinski/name-4406-hostname-clash 
Do not let a hostname that is contained in "localhost" like "cal" tri…
 2015-09-03 17:35:25 +02:00
Alexander Lobodzinski e1a87794bc Do not let a hostname that is contained in "localhost" like "cal" trigger a false positive 2015-09-03 17:20:34 +02:00
mboelen d9b7d9a9fd Combined several potential mount option tests into 1 unit 2015-09-03 15:44:10 +02:00
mboelen f4c2bd52fb Ensure that docker is a file, not directory in /usr/libexec 2015-09-03 15:43:33 +02:00