tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
675 Commits 2 Branches 61 Tags 16 MiB
Commit Graph

675 Commits

Author SHA1 Message Date
Roland Smith db828b5e03 Used service(8) to discover running services. 
On all supported FreeBSD releases, the service(8) program can be used to
discover which services are running. This program has been added to the test
for binaries. If available, it will be used to test for services. If not, the
original code that parses /etc/rc.conf is used.

On my system, the following information is produced in the logfile:

    [19:51:22] Performing test ID BOOT-5165 (Check for FreeBSD boot services)
    [19:51:22] Searching for services at startup (service)
    [19:51:23] Found service (service/rc.conf): bgfsck
    [19:51:23] Found service (service/rc.conf): cleanvar
    [19:51:23] Found service (service/rc.conf): cron
    [19:51:23] Found service (service/rc.conf): cupsd
    [19:51:23] Found service (service/rc.conf): dbus
    [19:51:23] Found service (service/rc.conf): devd
    [19:51:23] Found service (service/rc.conf): dmesg
    [19:51:23] Found service (service/rc.conf): dnsmasq
    [19:51:23] Found service (service/rc.conf): gptboot
    [19:51:23] Found service (service/rc.conf): hostid
    [19:51:23] Found service (service/rc.conf): hostid_save
    [19:51:23] Found service (service/rc.conf): ip6addrctl
    [19:51:23] Found service (service/rc.conf): ipfw
    [19:51:23] Found service (service/rc.conf): mixer
    [19:51:23] Found service (service/rc.conf): motd
    [19:51:23] Found service (service/rc.conf): newsyslog
    [19:51:23] Found service (service/rc.conf): nginx
    [19:51:23] Found service (service/rc.conf): openntpd
    [19:51:23] Found service (service/rc.conf): postfix
    [19:51:23] Found service (service/rc.conf): powerd
    [19:51:23] Found service (service/rc.conf): sendmail
    [19:51:23] Found service (service/rc.conf): smartd
    [19:51:23] Found service (service/rc.conf): syslogd
    [19:51:23] Found service (service/rc.conf): virecover
    [19:51:23] Found 24 services/options to run at startup

The report shows:

    [+] Boot and services
    ------------------------------------
    - Service Manager [ UNKNOWN ]
    - Checking presence FreeBSD loader [ FOUND ]
    - Checking services at startup (service/rc.conf) [ DONE ]
    Result: found 24 services/options set
 2015-04-27 19:58:07 +02:00
mboelen b5636db587 Change to permissions check 2015-04-27 19:43:04 +02:00
Roland Smith 4d94227a08 Find FreeBSD service binary. 2015-04-27 19:33:11 +02:00
Roland Smith a0b20fcfe3 Wrap ipfw test in SKIPTEST block. 2015-04-27 18:26:39 +02:00
Roland Smith ded7e95a14 Check if ipfw is enabled in rc.conf. 2015-04-27 18:24:18 +02:00
Roland Smith 5d7dc80481 Initial version of IPFW test (FreeBSD). 2015-04-27 18:24:11 +02:00
Aneesh Agrawal bfd24585cf Pass information about locate prereqs to Register. 
Prevent the locate test from running spuriously when locate is not
present
 2015-04-27 03:31:43 -04:00
Aneesh Agrawal d282fbfc9c Update check for sulogin under systemd. 
The default rescue.service unit file was updated
in the systemd repo on Jan 23, 2015
to allow for sulogin location variability.
 2015-04-27 03:13:42 -04:00
mboelen 474d69dfd6 Added /usr/lib64/apache2 as search path 2015-04-24 13:31:49 +02:00
mboelen cd78379906 Extended screen output when upload fails 2015-04-22 11:02:22 +02:00
mboelen ec5e9cbecf Extending ShowSymlinkPath function to account for missing -f option 2015-04-22 00:57:58 +02:00
mboelen c397b20b68 Initialize some variables for cleaner output 2015-04-22 00:57:35 +02:00
mboelen 0d900536a5 Remove priority label 2015-04-21 16:03:14 +02:00
mboelen 3e560c5ff5 Initialise variable 2015-04-21 14:12:05 +02:00
mboelen 94607e4ae4 Redirect sysctl errors properly 2015-04-20 11:35:02 +02:00
mboelen f8f4862244 Improve output of tests related to file permissions 2015-04-19 22:10:51 +02:00
mboelen a6290d1bec Enhance screen output on Mac OS 2015-04-19 22:10:27 +02:00
mboelen 4c8a6dc3d2 Rename of package auditing tool, for upcoming plugin/module 2015-04-17 15:50:46 +02:00
mboelen dfe5e80e06 Release 2.1.0 2015-04-16 20:13:59 +02:00
mboelen 35657a9512 Preparing for new release 2.1.0 2015-04-16 20:01:42 +02:00
mboelen 111350a4e1 Add new plugin support and example change 2015-04-16 20:01:23 +02:00
mboelen a29335823f Improved core dump checking 2015-04-16 20:00:09 +02:00
mboelen 017c145357 Zypper enhancements 2015-04-16 19:59:51 +02:00
mboelen 3bce5191ef Apply group check on all groups when using AIX 2015-04-16 19:00:03 +02:00
mboelen de60926705 Changed sed statement 2015-04-13 22:06:14 +02:00
mboelen 95d5cabdb2 Ensure sysctl is present before calling it 2015-04-07 17:20:11 +02:00
mboelen 7ad2dd5480 Change pf firewall detection 2015-04-07 17:19:49 +02:00
mboelen e21e8679e0 Check also /var and assign hardening points 2015-04-07 17:19:25 +02:00
mboelen 7785c5a610 Improved report output 2015-04-07 17:18:54 +02:00
mboelen d76a5d04c3 Updated date 2015-04-07 17:18:37 +02:00
mboelen f85d33fe42 Improved text for malware scanner suggestion 2015-04-07 17:17:35 +02:00
mboelen d5bdde7a93 Changed counting with -m to support locale 2015-04-02 13:29:18 +02:00
mboelen d2175e833d Change description of test 2015-04-01 14:45:12 +02:00
mboelen c2bbf4a0a7 Improved detection for McAfee anti-virus (cma) 2015-04-01 14:22:53 +02:00
mboelen 003d4857bb Updated last line 2015-03-31 19:20:57 +02:00
mboelen d16732a47a Smart replacement does not work on Solaris, rewriting domain extraction from FQDN 2015-03-31 19:20:42 +02:00
mboelen f9c79007b8 Updated functions for checking permissions on files 2015-03-25 17:31:47 +01:00
mboelen 9978e5c824 Using return codes and minor cleanups of code 2015-03-25 17:31:17 +01:00
mboelen 30bc903c5a Using return codes for file permission checks 2015-03-25 17:30:13 +01:00
mboelen c94269c1d1 Add lynis audit dockerfile as option 2015-03-25 16:49:02 +01:00
mboelen e1d96752f2 Removed variable 2015-03-25 16:48:39 +01:00
mboelen 5ecbaafa4f Use improved function with return values 2015-03-25 16:47:37 +01:00
mboelen 037f2e9a89 Changed audit Dockerfile into dockerfile 2015-03-25 16:46:45 +01:00
mboelen 355bf37459 Changed copyright line 2015-03-25 15:55:46 +01:00
mboelen 7f97bfa973 Typos corrected 2015-03-25 15:55:29 +01:00
mboelen 3cda4cf562 Added CUPS location for Mac OS 2015-03-23 21:38:37 +01:00
mboelen bdf8347162 Don't require sha1sum AND openssl AND csum, but just one of them to exist 2015-03-19 00:03:58 +01:00
mboelen a6ef89aa63 Better clarification why Lynis will not run when permissions are incorrect 2015-03-18 16:11:52 +01:00
mboelen 65e6c3a7d2 Updated text 2015-03-18 16:06:43 +01:00
mboelen 62d99afd80 Set pentesting mode to 1 when running as non-root user 2015-03-18 16:06:23 +01:00