lynis

Commit Graph

Author	SHA1	Message	Date
Michael Boelen	c6bd185fd7	Resolved merge conflict	2020-10-02 11:05:04 +02:00
Michael Boelen	11be8b03ae	Updated log	2020-10-02 10:58:06 +02:00
Michael Boelen	768d8a62e8	Updated log	2020-10-02 10:55:36 +02:00
Michael Boelen	7df0b8618b	Updated log	2020-08-07 11:56:19 +02:00
Michael Boelen	792a202934	Merge pull request #913 from topimiettinen/check-der-certs [CRYP-7902] Check also certificates in DER format	2020-08-07 11:54:39 +02:00
Michael Boelen	138cce7f9c	Update CHANGELOG.md	2020-08-05 11:50:37 +02:00
Michael Boelen	65cc4daa57	Update CHANGELOG.md	2020-08-04 09:26:50 +02:00
Michael Boelen	6355360972	Update CHANGELOG.md	2020-07-07 12:29:57 +02:00
Michael Boelen	7b6624f85d	Updated log	2020-07-06 09:25:56 +02:00
Michael Boelen	ac28c281b6	Updated log	2020-06-28 14:58:32 +02:00
Michael Boelen	0eaa9bc9c5	Updated log	2020-06-27 13:31:52 +02:00
Michael Boelen	b94a842e19	Updated log	2020-06-27 10:21:31 +02:00
Michael Boelen	5c05fab0e9	Updated log	2020-06-26 10:26:10 +02:00
Michael Boelen	ee3a3df601	Updated log	2020-06-26 09:54:05 +02:00
Michael Boelen	f00637d433	Updated log	2020-06-26 09:45:09 +02:00
Michael Boelen	18ec88d174	Updated log	2020-06-24 09:23:16 +02:00
Michael Boelen	0b65536322	Updated log	2020-06-24 08:09:48 +02:00
Michael Boelen	d61d7f5ab7	Updated log	2020-06-23 13:57:36 +02:00
Michael Boelen	8596156ca1	Updated log	2020-06-23 10:36:32 +02:00
Michael Boelen	c6cc6fb8c7	Updated log	2020-06-22 14:27:30 +02:00
Michael Boelen	75738ceeab	Fix for language detection, unset LANG as right place	2020-06-22 10:25:02 +02:00
Michael Boelen	6d6781a2ae	Updated log	2020-06-22 10:18:56 +02:00
Michael Boelen	74c4298eab	Updated log	2020-06-21 13:15:09 +02:00
Michael Boelen	251cb97902	Updated log	2020-06-21 12:40:51 +02:00
Michael Boelen	bd29a3e4e7	Updated log	2020-06-19 11:11:47 +02:00
Michael Boelen	3c3c4105b2	Updated log	2020-06-18 12:48:33 +02:00
Michael Boelen	3d7de495cc	Updated log	2020-06-02 16:34:42 +02:00
Topi Miettinen	c76a4ca1a6	[KRNL-6000] Check more sysctls Add checks for sysctls recommended by CLIP OS (vanilla kernel sysctls only): https://docs.clip-os.org/clipos/kernel.html#sysctl-security-tuning Signed-off-by: Topi Miettinen <toiwoton@gmail.com>	2020-05-23 19:55:12 +03:00
Topi Miettinen	fcdc07f8d9	[CRYP-7902] Check also certificates in DER format Check also certificates in DER (.cer, .der) format. Add /etc/refind.d/keys to list of certificate paths. Signed-off-by: Topi Miettinen <toiwoton@gmail.com>	2020-04-25 00:06:58 +03:00
Michael Boelen	ce3c80b44f	Merge pull request #883 from topimiettinen/check-encrypted-swap-devices Check if system uses encrypted swap devices	2020-04-12 16:22:22 +02:00
Topi Miettinen	de848cb76a	Check for registered non-native binary formats Examine /proc/sys/fs/binfmt_misc (Linux) for additional registered binary formats. Those are probably emulated and their emulation could be less tested, more buggy and more vulnerable than native binary formats, so they should be disabled when not needed. Signed-off-by: Topi Miettinen <toiwoton@gmail.com>	2020-04-10 12:54:48 +03:00
Michael Boelen	a166691199	Merge pull request #882 from topimiettinen/check-package-certificates [CRYP-7902] Check also certificates provided by packages	2020-04-09 11:01:39 +02:00
Michael Boelen	1163648d89	Merge pull request #896 from Schmuuu/feature/raspi-detect-required-reboot extended test KRNL-5830 to detect required reboots on Raspbian	2020-04-09 09:58:48 +02:00
Michael Boelen	c368846a08	Added support to require a detected and known package manager	2020-04-06 20:47:45 +02:00
Michael Boelen	798f5322f6	Updated log	2020-04-06 16:23:31 +02:00
Michael Boelen	032bb6988e	Added new test NETW-2400	2020-04-04 15:28:04 +02:00
Michael Boelen	235dbd3805	Updated log	2020-04-03 09:50:03 +02:00
Michael Boelen	e2ad71ffe5	Updated log	2020-04-03 09:46:56 +02:00
Kristian S	52b72e7b0f	extended test KRNL-5830 to detect required reboots on Raspbian	2020-04-02 21:45:40 +02:00
Michael Boelen	38a5c2cb79	Added new test PHP-2382	2020-04-02 19:46:58 +02:00
Michael Boelen	64033da973	Updated log	2020-04-02 14:46:42 +02:00
Michael Boelen	1996b7e0c6	Updated log	2020-04-02 13:14:51 +02:00
Topi Miettinen	9642bcffc8	[CRYP-7902] Optionally check also certificates provided by packages The package maintainers are not immune to mistakes or they might not always provide timely updates, so let's check (optionally) more certificates even if they are delivered by packages. I found three expired certificates in my Debian/unstable system, thanks to changed Lynis. Signed-off-by: Topi Miettinen <toiwoton@gmail.com>	2020-04-02 12:52:13 +03:00
Michael Boelen	2c4ed62ef6	Updated log	2020-04-01 16:32:59 +02:00
Michael Boelen	c309ad7bdc	Updated log	2020-04-01 16:19:54 +02:00
Michael Boelen	5f13de96a4	Updated log	2020-03-31 16:25:33 +02:00
Michael Boelen	9a1bbbc69a	Updated log	2020-03-30 16:08:31 +02:00
Topi Miettinen	5c5cc43c6f	Check if system uses encrypted swap devices Add test CRYP-7931 to check if the system uses any encrypted swap devices. Signed-off-by: Topi Miettinen <toiwoton@gmail.com>	2020-03-27 13:05:56 +02:00
Michael Boelen	daa9c42ec0	Updated log	2020-03-25 15:19:30 +01:00
Michael Boelen	5e821687af	Added new tests	2020-03-24 13:33:24 +01:00
Michael Boelen	1d9a887406	Updated log	2020-03-24 13:25:22 +01:00
Topi Miettinen	8913374092	Run 'systemd-analyze security' 'systemd-analyze security' (available since systemd v240) makes a nice overall evaluation of hardening levels of services in a system. More details can be found with 'systemd-analyze security SERVICE' for each service. Signed-off-by: Topi Miettinen <toiwoton@gmail.com>	2020-03-23 17:31:32 +02:00
Michael Boelen	08f57c557d	Updated log	2020-03-23 13:20:41 +01:00
Michael Boelen	4e35b91ab2	Updated log	2020-03-23 12:50:31 +01:00
Michael Boelen	17ac4d2c1c	[AUTH-9252] corrected permission check	2020-03-23 10:44:45 +01:00
Michael Boelen	a067c4211a	Updated log	2020-03-22 15:16:31 +01:00
Michael Boelen	f342669777	Updated log	2020-03-21 18:53:05 +01:00
Michael Boelen	6356b3adb1	Updated log	2020-03-20 19:43:18 +01:00
Michael Boelen	626e2a9ab9	Updated log	2020-03-20 14:13:21 +01:00
Michael Boelen	1f3467f69a	Updated log	2020-03-20 09:47:57 +01:00
Michael Boelen	ddcf9bc713	[BOOT-5122] check for defined password in all GRUB configuration files	2020-03-19 15:52:03 +01:00
Michael Boelen	00a31c6dbd	Updated log	2020-03-19 15:29:01 +01:00
Michael Boelen	e5c1f2f303	Updated log	2020-03-19 11:01:22 +01:00
Michael Boelen	cc78713c6a	Updated log	2020-03-18 11:43:29 +01:00
Michael Boelen	eaafbb642e	Updated log	2020-03-18 11:37:06 +01:00
Michael Boelen	6e3e93d585	[PKGS-7388] only perform check for Debian, Mint, Ubuntu	2020-03-17 16:05:14 +01:00
Michael Boelen	77dd0e0bbe	Merge pull request #853 from deltablot/php Skip the PHP cli configuration file when looking for expose_php	2020-03-17 14:02:51 +01:00
Michael Boelen	d1db448c51	Skip pacman when it is the game instead of package manager	2020-03-17 13:02:59 +01:00
Michael Boelen	7a1719ef75	Updated log	2020-03-12 16:01:19 +01:00
Michael Boelen	30a456c5f4	Updated log	2020-03-11 15:56:32 +01:00
Nicolas CARPi	0593c69f2f	Skip the PHP cli configuration file when looking for expose_php The expose_php configuration option is only relevant for non-cli PHP and thus lynis should not look for it in config files that are for cli Fix #849	2020-03-05 00:53:27 +01:00
Michael Boelen	24ca3c2045	Updated log	2020-03-04 19:38:22 +01:00
Michael Boelen	4d1a170e84	Updated log	2020-03-04 15:03:23 +01:00
Michael Boelen	d81cc71790	Updated log	2020-02-15 14:10:48 +01:00
Michael Boelen	66b8eb3000	Updated log	2019-12-18 19:20:57 +01:00
Michael Boelen	4381382d7e	Updated log	2019-12-18 12:23:59 +01:00
Michael Boelen	d5bc4f7854	Updated log	2019-12-18 12:17:55 +01:00
Michael Boelen	7f4274bee5	Added log	2019-12-17 08:24:04 +01:00
Michael Boelen	700e0823de	Updated log	2019-12-13 12:36:50 +01:00
Michael Boelen	f93be8a44d	Updated log	2019-12-06 09:49:14 +01:00
Michael Boelen	189b7a04ba	Updated log	2019-11-18 10:21:21 +01:00
Michael Boelen	52e1231433	Additional check to ensure pacman package manager is used instead of pacman game	2019-10-08 16:43:09 +02:00
Michael Boelen	87f5596952	Added new test DBS-1828	2019-10-08 15:15:18 +02:00
Michael Boelen	a1b6d463b2	Fixed a typo	2019-09-21 16:31:06 +02:00
Michael Boelen	60a76d64a3	Updated log	2019-09-13 11:47:50 +02:00
Michael Boelen	7d33353058	Updated log	2019-09-12 16:37:15 +02:00
Michael Boelen	b7445e8d64	Updated log	2019-09-12 11:18:37 +02:00
Michael Boelen	ca5216caf9	Updated log	2019-09-12 11:17:56 +02:00
Michael Boelen	0088593506	Updated log	2019-09-03 10:55:14 +02:00
Michael Boelen	a87c2b10f9	Added CRYP-8002	2019-08-29 10:39:43 +02:00
Michael Boelen	a889860798	Updated log	2019-08-28 15:37:49 +02:00
Michael Boelen	aa58736bd5	Updated log	2019-08-26 20:26:23 +02:00
Michael Boelen	d2deb63ebb	Added NETW-3200	2019-08-22 14:12:53 +02:00
Michael Boelen	b7641cc16a	Updated log	2019-08-21 14:54:01 +02:00
Michael Boelen	7eba5df9b2	Updated log	2019-08-21 14:08:25 +02:00
Michael Boelen	bc6d294b91	Updated log	2019-08-20 16:01:18 +02:00
Michael Boelen	f51f19f621	Updated log	2019-08-17 16:49:23 +02:00
Michael Boelen	e5b8047133	Added data and detection of Amazon Linux	2019-08-13 22:00:30 +02:00
Michael Boelen	3e392c8e6c	Added end-of-life data for Arch Linux (rolling)	2019-08-13 21:40:29 +02:00
Michael Boelen	7dba2dfd9d	Updated log	2019-08-13 20:02:56 +02:00
Michael Boelen	06f015fbae	Updated log	2019-08-04 19:19:22 +02:00
Michael Boelen	fb33112555	Updated log	2019-07-26 20:07:24 +02:00
Michael Boelen	3859ce90f4	Updated log	2019-07-26 16:14:35 +02:00
Michael Boelen	7d6118f4a6	Updated log	2019-07-26 15:34:45 +02:00
Michael Boelen	75d75d590b	Updated log	2019-07-26 11:59:28 +02:00
Michael Boelen	ce8c9f44a0	Updated log	2019-07-26 11:32:55 +02:00
Michael Boelen	b384fa2887	New option: --usecwd to run from current working directory	2019-07-25 11:34:58 +02:00
Michael Boelen	022f427a69	Updated log	2019-07-18 11:54:29 +02:00
Michael Boelen	62c5e5b881	Updated log	2019-07-18 11:33:43 +02:00
Michael Boelen	2576bc8fca	Updated log	2019-07-16 19:11:07 +02:00
Michael Boelen	b935ab8b6a	Updated log	2019-07-16 13:23:00 +02:00
Michael Boelen	2777caf6d2	Updated log	2019-07-16 13:13:35 +02:00
Michael Boelen	95db1dc145	Updated log	2019-07-15 20:05:08 +02:00
Michael Boelen	b1937029fe	Updated log	2019-07-15 19:39:14 +02:00
Michael Boelen	0d21ba5e52	Updated log	2019-07-15 19:12:46 +02:00
Michael Boelen	7728213ac4	Merge branch 'master' into docu	2019-07-15 18:55:10 +02:00
Michael Boelen	5cc5ecf534	Updated log	2019-07-14 15:13:02 +02:00
Michael Boelen	5fdd00783e	Updated log	2019-07-14 13:41:02 +02:00
Michael Boelen	c179a0e563	Updated log	2019-07-14 13:36:56 +02:00
Michael Boelen	ea67b779c7	Updated log	2019-07-14 13:19:18 +02:00
Michael Boelen	819f310750	Updated log	2019-07-14 13:06:53 +02:00
David	65e288b3c7	Fix typo in changelog	2019-07-14 11:46:25 +02:00
Michael Boelen	6b21bead53	Updated log	2019-07-14 08:43:13 +02:00
Michael Boelen	f588e3af4e	Updated log	2019-07-14 08:28:58 +02:00
Michael Boelen	3c076fd8de	Updated log	2019-07-13 20:09:32 +02:00
Michael Boelen	9600119677	Updated log	2019-07-13 20:04:36 +02:00
Michael Boelen	f8e9c7bd91	Updated log	2019-07-12 14:39:05 +02:00
Michael Boelen	21f9a18e8b	Updated log	2019-07-10 20:22:38 +02:00
Michael Boelen	7650dd441d	Updated log	2019-07-09 11:18:12 +02:00
Michael Boelen	9533d6fc7a	Updated log	2019-07-09 10:34:07 +02:00
Michael Boelen	841509465b	Updated log	2019-07-08 15:10:32 +02:00
Michael Boelen	9364baa4fa	Updated log	2019-07-07 18:51:49 +02:00
Michael Boelen	13fbfff8bc	Updated log	2019-07-03 15:40:16 +02:00
Michael Boelen	1f0c31fcad	Preparing for release 3.0.0	2019-07-03 15:08:35 +02:00
Michael Boelen	901e697fc2	Release 2.7.5	2019-06-24 15:47:07 +02:00
Michael Boelen	cf57424f1a	Preparing 2.7.5 release	2019-06-17 12:18:08 +02:00
Michael Boelen	dc2962955e	Updated log	2019-04-21 16:30:04 +02:00
Michael Boelen	ae1a6d1e9d	Release 2.7.4	2019-04-21 16:19:12 +02:00
Michael Boelen	b4f2992476	Updated log	2019-04-20 14:31:41 +02:00
Michael Boelen	70e985bfcb	Updated log	2019-04-17 15:26:54 +02:00
Michael Boelen	7c03e5b8b6	Updated log	2019-04-15 19:30:31 +02:00
Michael Boelen	5e8e2c5f83	Updated log	2019-04-15 19:21:51 +02:00
Michael Boelen	a881c803e2	Updated date and log	2019-04-13 13:28:13 +02:00
Michael Boelen	6bc2aefbd4	Updated log	2019-04-09 08:26:24 +02:00
Michael Boelen	15c942ac24	Updated log	2019-04-09 06:51:47 +02:00
Michael Boelen	3516ce9de1	Updated log	2019-04-07 19:03:28 +02:00
Michael Boelen	1a1d736fa7	Updated log	2019-04-07 15:53:04 +02:00
Michael Boelen	ef0b5b7641	Updated log	2019-04-04 19:05:02 +02:00
Michael Boelen	28fd5948f7	Updated log	2019-04-04 14:41:56 +02:00
Michael Boelen	349f011489	Updated log	2019-04-02 11:14:56 +02:00

1 2 3 4 5 ...

514 Commits