Lynis 1.1.7 released

Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.


  • New test: check for unused iptables rules [FIRE-4513]
  • New test: checking for dead and zombie processes [PROC-3612]
  • New test: checking for heavy IO waiting processes [PROC-3614]
  • Initial HP-UX support (untested)
  • Initial AIX support (untested)
  • Added iptables binary check
  • Added dig check, for DNS related tests
  • Added option —no-colors to remove all colors from screen output
  • Added option —reverse-colors for optimizing output at light backgrounds
    (Konsole, MacOS terminal etc)


  • Improved grpck test for SuSE [AUTH-9216]
  • Added dig availability check to DNS test [NETW-2704]
  • Bugfix: Fixed iptables test if the binary is not located in /sbin [FIRE-4512]
  • Bugfix: Improved yum-utils check to display suggestions correctly [PKGS-7384]
  • Bugfix: Fixed prequisits for grpck test [AUTH-9216]
  • Improved MySQL check [DBS-1804]
  • Changed color at chkconfig boot services test [BOOT-5177]
  • Added missing prequisits output to portaudit test [PKGS-7382]
  • Test output for FreeBSD mounts (UFS) improved [FILE-6329]
  • Extended OpenLDAP test to avoid finding itself in ps output [LDAP-2219]
  • Several tests have their warning reporting improved
  • Improved SuSE Linux detection
  • Improved syslog-ng detection
  • Adjusted README with link to online (extended) documentation

Post scriptum

Compliance Mandates

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2


Related Articles

Configurations checks
Local auditing
Vulnerability Scanner