tyler.durden
/
lynis
mirror of https://github.com/CISOfy/lynis.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
982 Commits 2 Branches 63 Tags 18 MiB
Commit Graph

982 Commits

Author SHA1 Message Date
Eric Light fad4dfc0cc Modified AUTH-9262 
Added pwquality (default in some Ubuntu variants) to accepted password-quality modules.  Reworked test so that full points are possible (passwdqc and cracklib incompatible).
 2016-03-22 16:30:47 +13:00
Eric Light 2a2c094825 Hide fail2ban open+deleted file warning with grsec 
One of the features in grsecurity also prevents Fail2Ban from creating a temp file under /var/tmp.  I've been unable to pinpoint the line in fail2ban which causes the issue, but have confirmed it's related to Fail2Ban.

Note: disabling the PaX MPROTECT function on /usr/bin/python will also resolve this issue, but it's better to keep MPROTECT on.
 2016-03-22 15:28:21 +13:00
Erwin Vrolijk 7c2b8b90d9 Added ini dir of EL6 
On my EL6 systems PHP uses an ini directory of /etc/php.d, added this to the php test.
 2016-03-21 11:20:30 +01:00
mboelen 9023aaa052 Release 2.2.0 2016-03-18 10:51:31 +01:00
mboelen c3d5dabb49 Move stderr redirection to sysctl command instead of grep, to prevent errors displaying on screen 2016-03-17 21:02:28 +01:00
mboelen e949e560d7 Improve systemd detection on Fedora 2016-03-17 20:57:31 +01:00
mboelen b9dba2f3be Don't show umask exception, as it will trigger on Debian 8 2016-03-17 20:54:28 +01:00
mboelen a427eb6fa7 Rewrote test to determine system manager 2016-03-17 20:32:21 +01:00
mboelen e399b49e1e Introduction of new style configuration file 2016-03-17 20:32:02 +01:00
mboelen abbcd2f97e Added additional logging for KRNL-5830 2016-03-17 19:39:36 +01:00
mboelen 39f24a57b9 Add Gentoo as Linux version 2016-03-17 18:11:03 +01:00
mboelen 2b6284fb0f Clarify message on screen when permissions are incorrect 2016-03-17 16:51:00 +01:00
mboelen bfd6d50ad7 Remove some empty lines in output 2016-03-17 16:45:00 +01:00
mboelen 9689417aec Add missing fi 2016-03-17 16:43:33 +01:00
mboelen 5afbe1a994 Removed temporary testing of empty hostname 2016-03-17 16:41:36 +01:00
mboelen a33b3c828f Check system manager and allow init as option in /proc/1/cmdline 2016-03-17 16:40:53 +01:00
mboelen 7adf2425a6 Added STRG-1842 to check for authorized USB devices 2016-03-17 16:36:52 +01:00
mboelen a4a0f8ff5b Rewrote some changelog entries 2016-03-17 13:43:42 +01:00
mboelen 057b41265a Preparing for 2.2.0 release 2016-03-17 13:35:55 +01:00
mboelen c7b9c21339 Changed release date and header 2016-03-17 13:35:37 +01:00
mboelen af31202091 Show permission warning while allowing users to continue 2016-03-16 20:29:05 +01:00
mboelen 69c3816115 Add check for outdated version, hostname catch-all, minor changes 2016-03-16 20:18:31 +01:00
mboelen 237c0f87a7 BOOT-5104: Rewrote test to detect service manager 2016-03-16 12:10:10 +01:00
mboelen 488c08c3f3 Add better description of hardening points assignment 2016-03-16 11:19:17 +01:00
Michael Boelen 2fe5fa2cc6 Merge pull request #135 from rhyven/patch-5 
Accept apt-get as a package audit tool
 2016-03-16 11:02:35 +01:00
Michael Boelen a629248048 Merge pull request #134 from rhyven/patch-4 
Make AddHP identify non-optimal HP in logfile entries
 2016-03-16 11:02:15 +01:00
mboelen 322c7354d9 Added alternative location for dmidecode 2016-03-16 10:54:49 +01:00
mboelen bdc0f010c1 Set fixed dmidecode location 2016-03-16 09:54:54 +01:00
Eric Light a97bcb2142 Accept apt-get as a package audit tool 2016-03-14 12:02:18 +13:00
Eric Light 2ff7ce26c9 Make AddHP identify non-optimal HP in logfile entries 2016-03-14 10:35:57 +13:00
mboelen b8df6c4204 DBS-1816: Removed suggestion 2016-03-13 16:49:08 +01:00
mboelen 8cc47819b4 Removed copyright line, added description 2016-03-13 16:03:46 +01:00
mboelen 6197ac08e7 Added link to website, blog, github 2016-03-13 16:00:39 +01:00
mboelen dcb7f311fa Changed text and links 2016-03-13 15:48:03 +01:00
mboelen cf553b543c Added missing } 2016-03-12 20:50:28 +01:00
mboelen 89fbdd2feb HTTP-6622: Determine Apache version and store in report 2016-03-12 20:45:37 +01:00
mboelen 6d2770ede6 Added FreeBSD path for namedb configuration file 2016-03-12 20:19:12 +01:00
mboelen e88f15fd82 Removed tabs 2016-03-12 19:08:53 +01:00
mboelen bd833057e1 NAME-4406: adjusted filter for localhost detection + logging 2016-03-12 19:08:23 +01:00
mboelen 7f34f9dece AUTH-9288: ignore add include/tests_authentication 2016-03-08 12:01:11 +01:00
mboelen 6ec3e5b39d Added suggestion for file systems which are symlinked 2016-03-08 11:35:15 +01:00
mboelen 4874c80186 HTTP-6624: ignore wildcard and default entries as ServerName 2016-03-08 11:34:33 +01:00
mboelen ebdd946570 STRG-1840: disabled suggestion as this is considered high secure item 2016-03-08 09:50:28 +01:00
mboelen 62f31a8b82 SSH-7408: use only the last occurrence of a configured option 2016-03-08 08:47:25 +01:00
mboelen 94d0aaf8d4 Set default hostname if none was found 2016-03-08 08:16:35 +01:00
Michael Boelen e9edd2dd09 Merge pull request #129 from rhyven/patch-3 
Make NAME-4404 case-insensitive
 2016-03-08 08:08:31 +01:00
Michael Boelen 607978a89d Merge pull request #130 from rhyven/patch-2 
Removed errant semicolon which broke uploads
 2016-03-08 08:07:34 +01:00
Eric Light e40a3562fb Make NAME-4404 case-insensitive 2016-03-07 15:15:22 +13:00
Eric Light 34c88e0c05 Removed errant semicolon which broke uploads 
Resolves below error:
   ./lynis: 25: ./include/data_upload: Syntax error: ";" unexpected
 2016-03-04 15:06:32 +13:00
mboelen 2b95019b62 Use proper variable for cURL 2016-03-03 12:50:43 +01:00