Lynis updated to v1.2.6

Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.

Examples of audit tests:

  • Available authentication methods
  • Expired SSL certificates
  • Outdated software
  • User accounts without password
  • Incorrect file permissions
  • Firewall auditing

Changelog for v1.2.6

New:

  • Sudoers file permissions check [AUTH-9252]
  • Core dumps configuration check for Linux [KRNL-5820]
  • PHP disabled functions check [PHP-2320]
  • PHP enable_dl function check [PHP-2374]
  • PHP allow_url_fopen function check [PHP-2376]
  • OpenBSD smtpd status check [MAIL-8920]
  • /etc/issue check [BANN-7124]
  • /etc/issue legal keywords check [BANN-7126]
  • Show suggestions in report

Changes:

  • Extended support for Red Hat, CentOS and Fedora
  • Extended ACL test to test for default mount options as well [FILE-6368]
  • Exim status test fixed [MAIL-8812]
  • Corrected yum security check [PKGS-7386]
  • Replaced LDAP test AUTH-9238 with [AUTH-9402]
  • Removed backquotes when locate database is not available [FILE-6410]
  • Added /etc/openldap to search path for OpenLDAP
  • Fixed typo in crontab path [SCHD-7704]
    - Don’t show message "No volume groups found" if LVM isn’t used [FILE-6310]
  • Corrected Syslog-NG status [LOGG-2132]
  • Moved TODO to dev directory

Post scriptum

Compliance Mandates

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2


Comments

Related Articles

Configurations checks
Local auditing
Lynis
Vulnerability Scanner