tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
3,474 Commits 2 Branches 62 Tags 17 MiB
Commit Graph

3474 Commits

Author SHA1 Message Date
Michael Boelen df1c51fce6
Switch to pre-release 2020-12-26 15:38:17 +01:00
Michael Boelen 7f613f17ca
Improved call-to-action when OS is unknown 2020-12-26 15:37:46 +01:00
Michael Boelen fa69256f45
Added support for Parrot GNU/Linux 2020-12-26 15:36:36 +01:00
Michael Boelen 0c9ae15d06
Release 3.0.2 2020-12-24 10:22:38 +01:00
Michael Boelen 721b7bf87c
Release 3.0.2 2020-12-24 10:21:52 +01:00
Michael Boelen 372c7fb98e
Merge pull request #1087 from konstruktoid/ISSUE1085 
only fail AUTH-9230 if both SHA_CRYPT_{MIN,MAX}_ROUNDS are undefined
 2020-12-24 10:19:25 +01:00
Michael Boelen c48674beb2
Merge pull request #933 from topimiettinen/check-clip-os-sysctls 
[KRNL-6000] Check more sysctls
 2020-12-22 14:31:08 +01:00
Mark Garrett 2bc9503032
Merge pull request #3 from gcsgithub/soedev 
Soedev
 2020-12-22 10:28:29 +11:00
Mark Garrett 9a6d9cfc2c
Merge pull request #2 from CISOfy/master 
refresh dev branch from master project
 2020-12-22 10:25:59 +11:00
Michael Boelen 67abd13bbd
Updated log 2020-12-18 14:08:04 +01:00
Michael Boelen 44201f02ab
Added elementary OS 2020-12-18 14:04:58 +01:00
Michael Boelen a26ebd3004
Fix: missing curly bracket 2020-12-17 20:17:52 +01:00
Michael Boelen 8fb98cb25c
Only retrieve exit code 
Redirect output of the count and every error to /dev/null, so we only get the exit code
 2020-12-17 14:51:52 +01:00
Michael Boelen 208518d8fa
Merge pull request #1088 from steph78630/master 
Addition and improvement of translated strings
 2020-12-17 14:23:48 +01:00
Michael Boelen c9a57d2caf
Merge pull request #1062 from Varbin/solaris-loghost-not-localhost 
Test if loghost is not localhost
 2020-12-17 14:18:31 +01:00
Stéphane 8a32062459
Adding and improvement translated strings 2020-12-16 01:13:01 +01:00
Stéphane ca53e9e152
Adding and improvement translated strings 2020-12-16 01:11:33 +01:00
Stéphane 4cf9660185
Adding and improvement translated strings 2020-12-16 01:07:27 +01:00
Thomas Sjögren 60ed001140 indentation 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2020-12-15 23:14:03 +01:00
Michael Boelen 701be9852b
Merge pull request #1060 from Varbin/solaris-netstat 
[NETW-3012] Use netstat on Solaris to gather listening ports
 2020-12-15 14:30:09 +01:00
Michael Boelen 258b2bf05f
Merge pull request #1064 from Varbin/solaris-ips-svcs 
Add support for Solaris services, run BOOT-5184 there
 2020-12-15 14:16:18 +01:00
Michael Boelen 1d908e19ac
Mark test as multi-OS by removing all values 2020-12-15 14:15:26 +01:00
Michael Boelen 15ec001a2a
Merge pull request #1074 from Varbin/german-translation 
Extend German translation and add more translated statuses
 2020-12-15 14:13:03 +01:00
Michael Boelen 6e14b73b0c
Merge pull request #1079 from Varbin/1078-path-spaces 
Quote binary variables during SUID/GID enumeration
 2020-12-15 14:11:08 +01:00
Michael Boelen d1d3882130
Merge pull request #1076 from Varbin/1075-solaris-hostid 
Use first e1000 interface and break after match (for hostid generation on Solaris)
 2020-12-15 14:10:34 +01:00
Michael Boelen b9f88181f3
Merge pull request #1080 from ElviaSchoultz/patch-1 
Add EndeavourOS to osdetection.
 2020-12-15 14:09:15 +01:00
Thomas Sjögren 807cfd430a nitpick about new line 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2020-12-15 01:45:58 +01:00
Thomas Sjögren fbb8ffa301 only check the lowest hashing round value, and correct log text 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2020-12-15 01:43:10 +01:00
Thomas Sjögren 76e89b525b only fail AUTH-9230 if no _MAX_ROUNDS is defined 
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
 2020-12-14 21:43:14 +01:00
ElviaSchoultz d5d43c5d1c
Add EndeavourOS to osdetection. 
Fixes problem #1077
 2020-11-24 08:45:58 +11:00
Simon Biewald f695488ca8 Quote binary variables during SUID/GID enumeration 
Fixes cisofy/lynis#1078.

Signed-off-by: Simon Biewald <sbiewald@fam-biewald.de>
 2020-11-21 01:34:18 +01:00
Simon Biewald 73f39baca8 Use first e1000 interface and break after match 
Fixes CISOfy/lynis#1075.

Before this commit, the interfaces "e1000g1" and "net0" were allowed.
The name "e1000g0" is appended to the list.
After finding an interface, the loop is interrupted now. As previously
"net0" was always used, even if another interface was available, the list
is reordered to "net0 e1000g1 e1000g0" to not break previous generations.

A typo is also fixed ("No interface found op Solaris ..." -> "No
interface found on").

Signed-off-by: Simon Biewald <simon@fam-biewald.de>
 2020-11-14 22:56:42 +00:00
Simon Biewald 7c475ddab0 Fix typos 
Signed-off-by: Simon Biewald <simon@fam-biewald.de>
 2020-11-14 21:25:40 +00:00
Simon Biewald 0c686bb6ea Use the new status strings in tests 
See-Also: HEAD^
Signed-off-by: Simon Biewald <simon@fam-biewald.de>
 2020-11-14 20:34:43 +00:00
Simon Biewald 7ec3b5b0d5 Add more status strings (en and de) 
Signed-off-by: Simon Biewald <simon@fam-biewald.de>
 2020-11-14 20:34:34 +00:00
Simon Biewald 777da3a4eb Extend German translation file 
Signed-off-by: Simon Biewald <simon@fam-biewald.de>
 2020-11-14 20:34:23 +00:00
Michael Boelen 22a9fe7037
Merge pull request #1059 from Varbin/solaris-grub-d 
Test if /etc/grub.d is a directory
 2020-11-13 16:45:59 +01:00
Michael Boelen cbb2735e63
Update CHANGELOG.md 2020-11-13 16:03:08 +01:00
Michael Boelen eb759f4c13
Merge pull request #1071 from Varbin/opensolaris-detection 
OpenSolaris distribution detection
 2020-11-13 16:01:00 +01:00
Michael Boelen ba09fd9462
Update CHANGELOG.md 2020-11-13 16:00:12 +01:00
Michael Boelen 6026b82e14
Merge pull request #1073 from Varbin/1040-1068-os-detection 
Add NixOS and IPFire
 2020-11-13 15:58:20 +01:00
Simon Biewald 3f83b9ac86 Add NixOS to osdetection 
Fixes cisofy/lynis#1068.

Signed-off-by: Simon Biewald <simon@fam-biewald.de>
 2020-11-12 22:56:31 +01:00
Simon Biewald 183af1d334 Add IPFire to osdetection 
Fixes cisofy/lynis#1040.

Signed-off-by: Simon Biewald <simon@fam-biewald.de>
 2020-11-12 22:12:26 +01:00
Simon Biewald 7cb84bf2a8 Add OmniosCE and Solaris EOL dates 2020-11-09 23:26:17 +00:00
Simon Biewald d388e5d269 Add OpenSolaris and distribution detection 
New variable OPENSOLARIS to distringuish between Oracle Solaris and
OpenSolaris derivates. The edge case of OpenSolaris itself is not yet
solved, but OpenSolaris itself should be very rare these days.

Currently detected and distinguished Solaris variants are:
 - Oracle Solaris >= 11 (exluding Solaris Express and OpenSolaris)
 - Solaris < 11 (as "Sun Solaris")
 - OmniosCE (but not old Omnios)
 - OpenIndiana
 - Shillix
 - SmartOS
 - Tribblix
 - "Unknown Illumos" for unknown distributions based on Illumos

Lynis will fall back to "Sun Solaris" with "SunOS 5.X" for unknown
distributions.
 2020-11-09 23:25:33 +00:00
Simon Biewald 3c31a08024 Do not incorrectly name SFM as IPS 
The "new" service manager was included with Solaris 10 and not 11. It is
named "service management facility" (see smf(5) man page).
There is no IPS service manager, the name is only used for the package
manager of OpenSolaris and Solaris 11.

Signed-off-by: Simon Biewald <simon@fam-biewald.de>
 2020-11-09 23:18:00 +00:00
Michael Boelen f817876737
Update CHANGELOG.md 2020-11-09 14:14:35 +01:00
Michael Boelen 37631b0457
Merge pull request #1061 from Varbin/solaris-hostname 
Simplify tr hostname checking expression
 2020-11-09 14:12:39 +01:00
Michael Boelen f0b7f9159d
Merge pull request #1069 from Varbin/1065-opensolaris-invalid-characters 
Use `od` only for displaying invalid characters
 2020-11-09 10:36:37 +01:00
Michael Boelen 7bfbbb5184
Merge pull request #1070 from jsoref/spelling 
Spelling improvements
 2020-11-09 10:35:49 +01:00