tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
681 Commits 2 Branches 61 Tags 16 MiB
Commit Graph

470 Commits

Author SHA1 Message Date
mboelen d058ba8bfc Added password history tests to PAM plugin 2015-10-22 15:55:14 +02:00
mboelen ebc7cb113e Create a host ID by using SSH keys, when possible 2015-10-22 15:54:51 +02:00
mboelen 69cbabfed2 Log when vulnerable packages are found 2015-10-21 21:45:53 +02:00
mboelen a5583da5c3 Adding correct variables for proper logging and testing 2015-10-15 15:57:27 +02:00
mboelen 9d1cec8a9b Changes to check for presence BusyBox, to better support platforms using this as primary shell 2015-10-14 16:49:57 +02:00
Michael Boelen 776a70d6cf Merge pull request #82 from SiemKorteweg/master 
Optimized use of cat, grep and awk.
 2015-10-14 10:55:33 +02:00
mboelen 6bea4e0334 Use POSIX compatible flag, so it also works on BusyBox 2015-10-14 10:28:27 +02:00
mboelen b1437a05ef For exceptions the lynis.log file is a better source 2015-10-14 10:27:37 +02:00
SiemKorteweg 0c48fc3880 Optimized use of cat, grep and awk. 
Detection of duplicate entries in /etc/hosts is now more robust.
On CentOS7 the SERVICE_MANAGER is detected correctly.
 2015-10-10 13:25:14 +02:00
Michael Boelen c0378f38f5 Merge pull request #80 from SiemKorteweg/master 
Combine "sort | uniq" to "sort -u" and sorting data first before making it unique.
 2015-10-08 22:46:21 +02:00
mboelen a99a3d348e Added audit daemon and PAM variables 2015-10-08 16:25:35 +02:00
mboelen fb1cf9e547 Rename PCI-DSS to PCI DSS 2015-10-08 16:25:09 +02:00
SiemKorteweg b7d24c3413 Make sure that the input of "uniq -d" is sorted to avoid that duplicate UID's and hosts entries are missed. 2015-10-06 20:02:33 +02:00
SiemKorteweg bf1da50c14 Combine "sort | uniq" into "sort -u" to reduce the number of processes used for running Lynis. The busybox version of sort also supports the -u option. 2015-10-04 17:59:28 +02:00
mboelen 009a363550 Properly show compliance status now 2015-10-01 22:40:49 +02:00
mboelen ac87ce4c79 Added DisplayManual function, friendly name for compliance, minor enhancements 2015-10-01 22:40:29 +02:00
mboelen 3f8b826585 Renaming of variables for clarity 2015-10-01 22:39:01 +02:00
mboelen 385e62b6a5 Compliance variables 2015-10-01 22:38:29 +02:00
mboelen d6a8a3c425 Correct testing for disabled/blacklisted USB storage driver 2015-10-01 19:56:39 +02:00
mboelen a6ac097a93 Redirect possible errors instead of display on screen 2015-10-01 16:06:27 +02:00
mboelen 85f6c555b2 Minor cleanup and redirecting possible errors 2015-10-01 16:02:09 +02:00
mboelen 2b5c63bff9 Added ShowComplianceFinding function to display any non-compliance with security standards 2015-10-01 13:16:27 +02:00
mboelen 55ee1e90bc Check correct variable for enabled compliance standards 2015-10-01 12:59:15 +02:00
mboelen 9505a10dd7 Add profile setting compliance_standards to define which ones are enabled 2015-10-01 11:59:50 +02:00
mboelen 4c0fa90478 Added variables for compliance standards like HIPAA, ISO27001/ISO27002 and PCI-DSS 2015-10-01 11:58:34 +02:00
mboelen c9c78f751d Added plugin phase variable and specific PAM settings 2015-10-01 11:49:30 +02:00
mboelen fee1961eed Added DigitsOnly function to extract only numbers from a text string 2015-09-30 18:34:16 +02:00
mboelen cf11b95c3f Added detection of ESET products and logging of malware scanner to report 2015-09-28 11:00:34 +02:00
mboelen adb5948b30 Properly parse updated way of storing warnings and suggestions 2015-09-24 21:42:21 +02:00
mboelen cc4feee4e5 New way of reporting a warning 2015-09-24 21:41:48 +02:00
mboelen 784224f4e7 Uniform way of saving warnings and suggestions to the log for later parsing 2015-09-24 21:40:54 +02:00
mboelen 5dfb031e4d Removed bracket 2015-09-24 21:26:55 +02:00
mboelen 1edaba4d71 Added new test [CONT-8108] to check file permissions of Docker files 2015-09-24 20:29:05 +02:00
mboelen 5fe1e6dd65 Corrected logging for tests related to /etc/newsyslog.conf parsing 2015-09-24 20:27:49 +02:00
mboelen 41e08807c9 Changed description of place holder 2015-09-24 20:27:17 +02:00
mboelen 8b5b8b4a01 Added new parameters to ReportSuggestion and ReportWarning functions 2015-09-24 20:26:32 +02:00
mboelen 84821a4ed0 Removed [AUTH-9230] and merged it into [AUTH-9228] 2015-09-24 20:24:46 +02:00
mboelen 31363e9b39 Extended description for vulnerable package tests on FreeBSD 2015-09-24 20:14:59 +02:00
mboelen 2bcb519123 Changed test IDs of place holders 2015-09-24 20:13:05 +02:00
mboelen 9023f17662 Changed test IDs of place holders 2015-09-24 20:12:19 +02:00
mboelen c17fcfd92d Corrected PKGS-7380 and undoubled PKGS-7381 2015-09-24 20:10:30 +02:00
mboelen 1b9b084c03 Changed lmd to maldet, as LMD detection 2015-09-24 17:45:11 +02:00
mboelen 4f5eedabfc Added the detection of LMD, or Linux Malware Detect tooling 2015-09-24 16:45:03 +02:00
Alexander Lobodzinski d80bf2f437 Bugfix: wrong logtext for HRDN-7230 2015-09-22 12:00:44 +02:00
Alexander Lobodzinski adc57330f6 Bugfix: nginx SSL detection worked on Linux only (only GNU sed understands \t on the command line) 2015-09-21 13:04:44 +02:00
Michael Boelen 14a79d8a63 Merge pull request #78 from rsmith-nl/freebsd-services 
Improvements for FreeBSD services
 2015-09-16 23:35:54 +02:00
Roland Smith f11783dbdf Merge branch 'master' into freebsd-services 2015-09-16 20:29:51 +02:00
mboelen 32226d145f Merged patch to properly log umask value 2015-09-16 17:03:13 +02:00
mboelen 91c9760598 Add hardening points properly to umask tests 2015-09-16 17:01:17 +02:00
mboelen d786c687a1 Added variables which were not initialized before 2015-09-16 17:00:12 +02:00