Lynis updated v1.2.1

Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.

New:

  • Added support for Samba
  • Added support for SELinux framework
  • New test: SELinux presence test [MACF-6232]
  • New test: SELinux status checks [MACF-6234]
  • New test: password PAM availability check [AUTH-9262]
  • New test: expire date check for accounts [AUTH-9282]
  • Added new option —tests, to run a small set of tests only

Changes:

  • Report and logging messages improved
  • Output reduced when using —tests
  • Added suggestion to PHP expose_php option [PHP-2372]
  • Improved log message for PHP register_globals option [PHP-2368]
  • Added virtual host count to log file [HTTP-6626]
  • Improved Red Hat and clones detection and display
  • Fix: Improved promiscuous detection for Linux [NETW-3015]
  • Fix: AUTH-9204 test triggered on group ids as well
  • Fix: Only display unique MAC addresses [NETW-3006]
  • Extended Postfix test [MAIL-8818]
  • Don’t show /proc/meminfo if not present [PROC-3602]
  • Don’t show YABOOT information if not present [BOOT-5155]
  • Improved portaudit test (FreeBSD) [PKGS-7382]
  • Improved portsclean test (FreeBSD) [PKGS-7348]
  • Added —quiet and —tests options to help and man page

Post scriptum

Compliance Mandates

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2


Comments

Related Articles

Configurations checks
Local auditing
Lynis
Vulnerability Scanner