Lynis updated to 1.1.8 (now supports OSX)

by

In: Configurations checks , Local auditing , Lynis , Vulnerability Scanner

17 July 2008

Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.

New:

  • Mac OS X support extended and new options added

Changes:

  • Extended default profile
  • Improved several screen output lines
  • User ID check improved, so it works better with older Solaris versions
  • Hostname in output and reports will contain only host now, not FQDN
  • Added extra php.ini locations to tests_php
  • Replaced ’ps’ in tests with PSBINARY value for better support
  • Added output to zones test [VIRT-1902]
  • Updated description [AUTH-9218]
  • Extended ntp daemon/ntpdate check [TIME-3104]
  • Added suggestion to bootable scripts check [BOOT_5184]
  • Bugfix and improvement for FreeBSD portsclean test [PKGS-7348]
  • Added Mac OS support to MAC address gathering test [NETW-3006]
  • Added MAC OS support to inet and inet6 addresses test [NETW-3008]
  • Extended PHP expose_php test to support additional options [PHP-2372]
  • Improved LDAP test so it skips correctly on Mac OS AUTH-9238]
  • Bugfix: MySQL status check gave incorrect output [DBS-1804]

Post scriptum

Compliance Mandates

  • Vulnerability Scanner :

    PCI DSS 11.2, 6.6, SOX A13.3, GLBA 16CFR Part 314.4(c), HIPAA 164.308(a)(8), FISMA RA-5, SI-2, ISO 27001-27002 12.6, 15.2.2


Related Articles

Configurations checks
Local auditing
Lynis
Vulnerability Scanner