lynis

mirror of https://github.com/CISOfy/lynis.git synced 2025-04-08 17:15:25 +02:00

Author	SHA1	Message	Date
Michael Boelen	66f8cb2441	Changed year	2018-01-11 09:50:26 +01:00
Michael Boelen	11f81345ee	Code enhancement	2017-09-16 14:08:38 +02:00
Michael Boelen	4781b1c170	Added /opt/apache	2017-08-02 13:01:23 +02:00
James White	d7b0c28699	Add /usr/lib/apache module search path for DirectAdmin (#417 )	2017-07-11 09:26:00 +02:00
mslifcak	8d2b3a202f	A250 2 (#398 ) * fix missing ROOTDIR prefix * sort list of services before processing * sort list of certificates before processing * sort list of startup scripts before processing * spell check * remove possessive pronoun	2017-05-31 15:40:39 +02:00
Michael Boelen	aec9b57c29	Changes to BOOT-5104 and HTTP-6716	2017-05-08 14:56:39 +02:00
Michael Boelen	918b962ae5	Code enhancements	2017-05-03 10:42:34 +02:00
Michael Boelen	a9b67dc675	Reinitialize temporary files to prevent possible symlink attack - CVE-2017-8108	2017-05-03 09:47:35 +02:00
Michael Boelen	4ecb9d4d05	[bulk change] cleaning up, code enhancements, initialization of variables, and new tests	2017-04-30 17:59:35 +02:00
Michael Boelen	70ea29483a	Code enhancements	2017-04-23 20:06:54 +02:00
Michael Boelen	57770fe332	[HTTP-6641] support Apache mod_reqtimeout module	2017-03-20 13:40:00 +01:00
hlein	b595cc0fb5	Various cleanups (#363 ) * Typo fix. * Style change: always use $(), never ``. The Lynis code already mostly used $(), but backticks were sprinkled around. Converted all of them. * Lots of minor spelling/typo fixes. FWIW these were found with: find . -type f -print0 \| xargs -0 cat \| aspell list \| sort -u \| egrep '^[a-z]+$' \| less And then reviewing the list to pick out things that looked like misspelled words as opposed to variables, etc., and then manual inspection of context to determine the intention.	2017-03-06 07:41:21 +00:00
Michael Boelen	34ba1ba184	Changed date and preparing for release	2017-02-09 13:35:40 +01:00
Michael Boelen	86051feaf8	Correct ServerAlias test	2016-09-10 16:16:58 +02:00
Michael Boelen	82ededed31	Style improvements and command replacements	2016-09-08 21:04:17 +02:00
Rutger van Sleen	67b1abedfa	Fix sed syntax for ServerAlias removal When a Apache config directive is in use, it has whitespace(s) or nothing at all prepended. Assuming that it always has a space before it doesn't have to match.	2016-08-30 20:03:38 +02:00
Michael Boelen	679e8c628e	Use detected binaries	2016-08-25 15:31:33 +02:00
Michael Boelen	0dab1e9308	Allow multiple level of includes	2016-08-16 08:36:42 +02:00
Michael Boelen	4b96452dab	Clean out unneeded file	2016-08-16 08:11:51 +02:00
Michael Boelen	1b30f6e558	Extended nginx testing	2016-08-16 08:08:15 +02:00
Michael Boelen	6392bc08d1	Removed unneeded field for warnings and suggestions	2016-08-10 07:13:04 +02:00
Michael Boelen	7670560c2a	[HTTP-6720] Improve readability of test	2016-07-30 13:55:10 +02:00
Michael Boelen	2f4c854ba7	Rename of categories, introduction of groups	2016-07-24 17:22:00 +02:00
Michael Boelen	74c9513fbb	[HTTP-6632] fix for proper detection of Apache modules	2016-07-11 09:49:24 +02:00
Michael Boelen	983e293eb1	Replaced text strings to allow translations	2016-06-18 11:14:01 +02:00
Michael Boelen	c88a2678f6	[HTTP-6642] Test disabled	2016-06-07 16:59:37 +02:00
Michael Boelen	eded02cfde	Rewritten counters and dealing with values	2016-05-03 14:57:53 +02:00
mboelen	42607ceaf5	Replaced old function names with new ones	2016-04-28 12:31:57 +02:00
mboelen	f109c318d9	Detect when weak protocols are used, simplify nginx test	2016-04-27 16:51:12 +02:00
mboelen	1825d91c85	[HTTP-6710] Show suggestion when using a weak protocol	2016-04-27 16:37:32 +02:00
mboelen	eb0206198a	[HTTP-6710] Show SSLv3 as weak protocol	2016-04-27 16:36:24 +02:00
mboelen	8cc47819b4	Removed copyright line, added description	2016-03-13 16:03:46 +01:00
mboelen	6197ac08e7	Added link to website, blog, github	2016-03-13 16:00:39 +01:00
mboelen	cf553b543c	Added missing }	2016-03-12 20:50:28 +01:00
mboelen	89fbdd2feb	HTTP-6622: Determine Apache version and store in report	2016-03-12 20:45:37 +01:00
mboelen	4874c80186	HTTP-6624: ignore wildcard and default entries as ServerName	2016-03-08 11:34:33 +01:00
mboelen	e0e56f2cdc	Use CreateTempFile for creation of temporary files	2016-01-11 01:04:38 +01:00
mboelen	d5867762c6	Use CreateTempFile function for temporary files	2016-01-11 00:24:00 +01:00
mboelen	d16b38eff8	Rename of logtext and report functions, upcoming year change	2015-12-21 21:17:15 +01:00
SiemKorteweg	0c48fc3880	Optimized use of cat, grep and awk. Detection of duplicate entries in /etc/hosts is now more robust. On CentOS7 the SERVICE_MANAGER is detected correctly.	2015-10-10 13:25:14 +02:00
SiemKorteweg	bf1da50c14	Combine "sort \| uniq" into "sort -u" to reduce the number of processes used for running Lynis. The busybox version of sort also supports the -u option.	2015-10-04 17:59:28 +02:00
mboelen	a6ac097a93	Redirect possible errors instead of display on screen	2015-10-01 16:06:27 +02:00
mboelen	85f6c555b2	Minor cleanup and redirecting possible errors	2015-10-01 16:02:09 +02:00
mboelen	9023f17662	Changed test IDs of place holders	2015-09-24 20:12:19 +02:00
Alexander Lobodzinski	adc57330f6	Bugfix: nginx SSL detection worked on Linux only (only GNU sed understands \t on the command line)	2015-09-21 13:04:44 +02:00
Michael Boelen	59390f1717	Merge pull request #73 from laurentquillerou/nginx-conf Include main nginx.conf file in parsing.	2015-09-07 21:06:08 +02:00
Michael Boelen	48fd39c570	Merge pull request #71 from alobodzinski/openbsd-httpd merging pull request to skip httpd on OpenBSD systems.	2015-09-07 20:58:55 +02:00
Laurent Quillerou	b83c3fbb10	Include main nginx.conf so that it generate nginx_config_option	2015-09-07 18:52:19 +03:00
Laurent Quillerou	3cdd9ea949	Delete trailing whitespace	2015-09-07 18:35:07 +03:00
Alexander Lobodzinski	f7ec431a65	/usr/sbin/httpd on OpenBSD is builtin non-Apache webserver, do not run with -v If Apache is installed it is detected in /usr/local/sbin/httpd nevertheless	2015-09-07 17:31:18 +02:00

1 2

65 Commits