tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
707 Commits 2 Branches 61 Tags 16 MiB
Commit Graph

707 Commits

Author SHA1 Message Date
Kamil Boratyński cd3cd74b8e Improved [SSH-7408] with 'UseDNS'. 2015-12-03 02:29:57 +01:00
Kamil Boratyński e656111c75 Improved [SSH-7408] with 'IgnoreRhosts'. 2015-12-03 02:29:57 +01:00
Kamil Boratyński 37ab68d501 Improved [SSH-7408] with 'PermitEmptyPasswords'. 
[SSH-7408] will verify 'PermitEmptyPasswords' option too.
 2015-12-03 02:29:57 +01:00
Kamil Boratyński 66b0ee3977 Moved [SSH-7416] into [SSH-7408]. 2015-12-03 02:29:56 +01:00
Kamil Boratyński a07c7ae4f9 Moved [SSH-7412] into [SSH-7408]. 2015-12-03 02:29:56 +01:00
Kamil Boratyński dcd8f89256 Moved [SSH-7414] into [SSH-7408]. 2015-12-03 02:29:56 +01:00
Kamil Boratyński f28fd77583 Modified [SSH-7408] -- made it widely usable. 
Modified [SSH-7408] in such a way that every option for SSH server might
be added in SSHOPS with expected (and wrong) values
(like it was described in comment).
 2015-12-03 02:29:54 +01:00
Michael Boelen 9ca47fd220 Merge pull request #86 from RebuiltBits/master 
Add Python version 2/3 detection and report it
 2015-12-02 18:06:33 +01:00
mboelen d73e79193a Test for longer status string 2015-12-02 17:50:35 +01:00
mboelen 2b101e75e8 Audit status of application firewall and added test for Mac OS X (FIRE-4532) 2015-12-02 17:37:58 +01:00
mboelen 4ab96e4f39 Improved test FIRE-4512 so that it also triggers if no more than 10 rules are found 2015-12-02 16:55:41 +01:00
mboelen 0144c99533 Breaks added for request to vote for security tool of 2015. Will you help? 2015-12-01 12:46:59 +01:00
mboelen 1a14acd7bb Added request to vote for security tool of 2015. Will you help? 2015-12-01 12:45:54 +01:00
mboelen 54e7f62d9a Enhancements to retrieve file permissions and related logging 2015-12-01 12:38:40 +01:00
mboelen c79a1ea3a4 Show error on screen if license server can not be contacted 2015-11-22 20:43:06 +01:00
mboelen c3054de0fe Added details to logging if upload fails 2015-11-22 19:35:34 +01:00
mboelen 391f67e7c2 Show warning if any error happened during license check 2015-11-22 19:25:32 +01:00
mboelen ce0955d05c Show warning when upload was not succesful 2015-11-22 19:05:25 +01:00
mboelen 756c09cb4a Added YUM details 2015-11-18 15:57:33 +01:00
mboelen c68b70ff2e Extended YUM test for security plugin testing 2015-11-18 15:55:49 +01:00
Jason Novinger e5cc018ad1 Add python2/3 detection and report version 
Add support for checking generic Python, Python 2.x, and Python 3.x with
version reporting.
 2015-11-07 18:16:23 -06:00
mboelen 510de19ce9 NETW-3004 now collects interfaces from most common operating systems 2015-10-27 13:33:16 +01:00
mboelen 7b3299fcb9 Changes to AUTH-9286 to check for minimum age as well 2015-10-27 12:42:41 +01:00
mboelen 7afc82a8aa Set enable status of pwhistory module at beginning of test 2015-10-23 15:53:22 +02:00
mboelen e2b8b9b18a Enabled status of pwhistory module if remember option is used 2015-10-23 14:37:48 +02:00
mboelen a98f377f4d Test for blacklisted host ID values 2015-10-23 13:42:23 +02:00
mboelen d058ba8bfc Added password history tests to PAM plugin 2015-10-22 15:55:14 +02:00
mboelen ebc7cb113e Create a host ID by using SSH keys, when possible 2015-10-22 15:54:51 +02:00
mboelen 2f9b793b78 Added logging of maximum password retries 2015-10-21 23:26:41 +02:00
mboelen 8cddc58c85 Added logging of maximum password retries 2015-10-21 23:11:03 +02:00
mboelen 4cbeb31078 Changes to improve password strength testing 2015-10-21 22:58:52 +02:00
mboelen 69cbabfed2 Log when vulnerable packages are found 2015-10-21 21:45:53 +02:00
mboelen 7d76efbb78 Improved parsing of PAM files, related logging, password settings 2015-10-21 21:44:58 +02:00
mboelen 8c5f67f624 Added debugging and several fixes 2015-10-15 20:10:21 +02:00
mboelen 361e70fa13 Changed path and added debugging to log file 2015-10-15 19:54:58 +02:00
mboelen a5583da5c3 Adding correct variables for proper logging and testing 2015-10-15 15:57:27 +02:00
mboelen 9d1cec8a9b Changes to check for presence BusyBox, to better support platforms using this as primary shell 2015-10-14 16:49:57 +02:00
Michael Boelen 776a70d6cf Merge pull request #82 from SiemKorteweg/master 
Optimized use of cat, grep and awk.
 2015-10-14 10:55:33 +02:00
mboelen 24a006da14 Updated log with latest changes 2015-10-14 10:30:04 +02:00
mboelen 6bea4e0334 Use POSIX compatible flag, so it also works on BusyBox 2015-10-14 10:28:27 +02:00
mboelen b1437a05ef For exceptions the lynis.log file is a better source 2015-10-14 10:27:37 +02:00
SiemKorteweg 0c48fc3880 Optimized use of cat, grep and awk. 
Detection of duplicate entries in /etc/hosts is now more robust.
On CentOS7 the SERVICE_MANAGER is detected correctly.
 2015-10-10 13:25:14 +02:00
Michael Boelen c0378f38f5 Merge pull request #80 from SiemKorteweg/master 
Combine "sort | uniq" to "sort -u" and sorting data first before making it unique.
 2015-10-08 22:46:21 +02:00
mboelen 0e3dac5758 Adding new plugin for parsing PAM configurations 2015-10-08 22:36:20 +02:00
mboelen 82b105792c Bumping up version towards major 2.2.0 release 2015-10-08 16:26:10 +02:00
mboelen a99a3d348e Added audit daemon and PAM variables 2015-10-08 16:25:35 +02:00
mboelen fb1cf9e547 Rename PCI-DSS to PCI DSS 2015-10-08 16:25:09 +02:00
mboelen 4b83d7268d Added (future) CIS benchmarks to compliance standards 2015-10-08 16:24:40 +02:00
SiemKorteweg b7d24c3413 Make sure that the input of "uniq -d" is sorted to avoid that duplicate UID's and hosts entries are missed. 2015-10-06 20:02:33 +02:00
SiemKorteweg bf1da50c14 Combine "sort | uniq" into "sort -u" to reduce the number of processes used for running Lynis. The busybox version of sort also supports the -u option. 2015-10-04 17:59:28 +02:00