ARTICLE

Lynis updated v1.2.1

Saturday 6 September 2008

Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.

New:
- Added support for Samba
- Added support for SELinux framework
- New test: SELinux presence test [MACF-6232]
- New test: SELinux status checks [MACF-6234]
- New test: password PAM availability check [AUTH-9262]
- New test: expire date check for accounts [AUTH-9282]
- Added new option —tests, to run a small set of tests only

Changes:
- Report and logging messages improved
- Output reduced when using —tests
- Added suggestion to PHP expose_php option [PHP-2372]
- Improved log message for PHP register_globals option [PHP-2368]
- Added virtual host count to log file [HTTP-6626]
- Improved Red Hat and clones detection and display
- Fix: Improved promiscuous detection for Linux [NETW-3015]
- Fix: AUTH-9204 test triggered on group ids as well
- Fix: Only display unique MAC addresses [NETW-3006]
- Extended Postfix test [MAIL-8818]
- Don’t show /proc/meminfo if not present [PROC-3602]
- Don’t show YABOOT information if not present [BOOT-5155]
- Improved portaudit test (FreeBSD) [PKGS-7382]
- Improved portsclean test (FreeBSD) [PKGS-7348]
- Added —quiet and —tests options to help and man page


POSTSCRIPTUM

Download


RELATED ARTICLES

Configurations checks, Local auditing, Lynis, Vulnerability Scanner,

6 September 2008 : Lynis updated v1.2.1
27 August 2008 : Lynis 1.2.0 in the wild
15 August 2008 : Lynis 1.1.9 released
17 July 2008 : Lynis updated to 1.1.8 (now supports OSX)
30 June 2008 : Lynis 1.1.7 released