ARTICLE

Lynis 1.1.7 released

Monday 30 June 2008

Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.

New:
- New test: check for unused iptables rules [FIRE-4513]
- New test: checking for dead and zombie processes [PROC-3612]
- New test: checking for heavy IO waiting processes [PROC-3614]
- Initial HP-UX support (untested)
- Initial AIX support (untested)
- Added iptables binary check
- Added dig check, for DNS related tests
- Added option —no-colors to remove all colors from screen output
- Added option —reverse-colors for optimizing output at light backgrounds (Konsole, MacOS terminal etc)

Changes:
- Improved grpck test for SuSE [AUTH-9216]
- Added dig availability check to DNS test [NETW-2704]
- Bugfix: Fixed iptables test if the binary is not located in /sbin [FIRE-4512]
- Bugfix: Improved yum-utils check to display suggestions correctly [PKGS-7384]
- Bugfix: Fixed prequisits for grpck test [AUTH-9216]
- Improved MySQL check [DBS-1804]
- Changed color at chkconfig boot services test [BOOT-5177]
- Added missing prequisits output to portaudit test [PKGS-7382]
- Test output for FreeBSD mounts (UFS) improved [FILE-6329]
- Extended OpenLDAP test to avoid finding itself in ps output [LDAP-2219]
- Several tests have their warning reporting improved
- Improved SuSE Linux detection
- Improved syslog-ng detection
- Adjusted README with link to online (extended) documentation


POSTSCRIPTUM

Download Lynis


RELATED ARTICLES

Configurations checks, Local auditing, Lynis, Vulnerability Scanner,

6 September 2008 : Lynis updated v1.2.1
27 August 2008 : Lynis 1.2.0 in the wild
15 August 2008 : Lynis 1.1.9 released
17 July 2008 : Lynis updated to 1.1.8 (now supports OSX)
30 June 2008 : Lynis 1.1.7 released