tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
704 Commits 2 Branches 63 Tags 18 MiB
Commit Graph

489 Commits

Author SHA1 Message Date
Kamil Boratyński 66b0ee3977 Moved [SSH-7416] into [SSH-7408]. 2015-12-03 02:29:56 +01:00
Kamil Boratyński a07c7ae4f9 Moved [SSH-7412] into [SSH-7408]. 2015-12-03 02:29:56 +01:00
Kamil Boratyński dcd8f89256 Moved [SSH-7414] into [SSH-7408]. 2015-12-03 02:29:56 +01:00
Kamil Boratyński f28fd77583 Modified [SSH-7408] -- made it widely usable. 
Modified [SSH-7408] in such a way that every option for SSH server might
be added in SSHOPS with expected (and wrong) values
(like it was described in comment).
 2015-12-03 02:29:54 +01:00
Michael Boelen 9ca47fd220 Merge pull request #86 from RebuiltBits/master 
Add Python version 2/3 detection and report it
 2015-12-02 18:06:33 +01:00
mboelen d73e79193a Test for longer status string 2015-12-02 17:50:35 +01:00
mboelen 2b101e75e8 Audit status of application firewall and added test for Mac OS X (FIRE-4532) 2015-12-02 17:37:58 +01:00
mboelen 4ab96e4f39 Improved test FIRE-4512 so that it also triggers if no more than 10 rules are found 2015-12-02 16:55:41 +01:00
mboelen 54e7f62d9a Enhancements to retrieve file permissions and related logging 2015-12-01 12:38:40 +01:00
mboelen c79a1ea3a4 Show error on screen if license server can not be contacted 2015-11-22 20:43:06 +01:00
mboelen c3054de0fe Added details to logging if upload fails 2015-11-22 19:35:34 +01:00
mboelen 391f67e7c2 Show warning if any error happened during license check 2015-11-22 19:25:32 +01:00
mboelen ce0955d05c Show warning when upload was not succesful 2015-11-22 19:05:25 +01:00
mboelen 756c09cb4a Added YUM details 2015-11-18 15:57:33 +01:00
mboelen c68b70ff2e Extended YUM test for security plugin testing 2015-11-18 15:55:49 +01:00
Jason Novinger e5cc018ad1 Add python2/3 detection and report version 
Add support for checking generic Python, Python 2.x, and Python 3.x with
version reporting.
 2015-11-07 18:16:23 -06:00
mboelen 510de19ce9 NETW-3004 now collects interfaces from most common operating systems 2015-10-27 13:33:16 +01:00
mboelen 7b3299fcb9 Changes to AUTH-9286 to check for minimum age as well 2015-10-27 12:42:41 +01:00
mboelen a98f377f4d Test for blacklisted host ID values 2015-10-23 13:42:23 +02:00
mboelen d058ba8bfc Added password history tests to PAM plugin 2015-10-22 15:55:14 +02:00
mboelen ebc7cb113e Create a host ID by using SSH keys, when possible 2015-10-22 15:54:51 +02:00
mboelen 69cbabfed2 Log when vulnerable packages are found 2015-10-21 21:45:53 +02:00
mboelen a5583da5c3 Adding correct variables for proper logging and testing 2015-10-15 15:57:27 +02:00
mboelen 9d1cec8a9b Changes to check for presence BusyBox, to better support platforms using this as primary shell 2015-10-14 16:49:57 +02:00
Michael Boelen 776a70d6cf Merge pull request #82 from SiemKorteweg/master 
Optimized use of cat, grep and awk.
 2015-10-14 10:55:33 +02:00
mboelen 6bea4e0334 Use POSIX compatible flag, so it also works on BusyBox 2015-10-14 10:28:27 +02:00
mboelen b1437a05ef For exceptions the lynis.log file is a better source 2015-10-14 10:27:37 +02:00
SiemKorteweg 0c48fc3880 Optimized use of cat, grep and awk. 
Detection of duplicate entries in /etc/hosts is now more robust.
On CentOS7 the SERVICE_MANAGER is detected correctly.
 2015-10-10 13:25:14 +02:00
Michael Boelen c0378f38f5 Merge pull request #80 from SiemKorteweg/master 
Combine "sort | uniq" to "sort -u" and sorting data first before making it unique.
 2015-10-08 22:46:21 +02:00
mboelen a99a3d348e Added audit daemon and PAM variables 2015-10-08 16:25:35 +02:00
mboelen fb1cf9e547 Rename PCI-DSS to PCI DSS 2015-10-08 16:25:09 +02:00
SiemKorteweg b7d24c3413 Make sure that the input of "uniq -d" is sorted to avoid that duplicate UID's and hosts entries are missed. 2015-10-06 20:02:33 +02:00
SiemKorteweg bf1da50c14 Combine "sort | uniq" into "sort -u" to reduce the number of processes used for running Lynis. The busybox version of sort also supports the -u option. 2015-10-04 17:59:28 +02:00
mboelen 009a363550 Properly show compliance status now 2015-10-01 22:40:49 +02:00
mboelen ac87ce4c79 Added DisplayManual function, friendly name for compliance, minor enhancements 2015-10-01 22:40:29 +02:00
mboelen 3f8b826585 Renaming of variables for clarity 2015-10-01 22:39:01 +02:00
mboelen 385e62b6a5 Compliance variables 2015-10-01 22:38:29 +02:00
mboelen d6a8a3c425 Correct testing for disabled/blacklisted USB storage driver 2015-10-01 19:56:39 +02:00
mboelen a6ac097a93 Redirect possible errors instead of display on screen 2015-10-01 16:06:27 +02:00
mboelen 85f6c555b2 Minor cleanup and redirecting possible errors 2015-10-01 16:02:09 +02:00
mboelen 2b5c63bff9 Added ShowComplianceFinding function to display any non-compliance with security standards 2015-10-01 13:16:27 +02:00
mboelen 55ee1e90bc Check correct variable for enabled compliance standards 2015-10-01 12:59:15 +02:00
mboelen 9505a10dd7 Add profile setting compliance_standards to define which ones are enabled 2015-10-01 11:59:50 +02:00
mboelen 4c0fa90478 Added variables for compliance standards like HIPAA, ISO27001/ISO27002 and PCI-DSS 2015-10-01 11:58:34 +02:00
mboelen c9c78f751d Added plugin phase variable and specific PAM settings 2015-10-01 11:49:30 +02:00
mboelen fee1961eed Added DigitsOnly function to extract only numbers from a text string 2015-09-30 18:34:16 +02:00
mboelen cf11b95c3f Added detection of ESET products and logging of malware scanner to report 2015-09-28 11:00:34 +02:00
mboelen adb5948b30 Properly parse updated way of storing warnings and suggestions 2015-09-24 21:42:21 +02:00
mboelen cc4feee4e5 New way of reporting a warning 2015-09-24 21:41:48 +02:00
mboelen 784224f4e7 Uniform way of saving warnings and suggestions to the log for later parsing 2015-09-24 21:40:54 +02:00