Lynis 2.4.0 发布,Linux 系统审计工具

来源: OSCHINA
编辑: 局长
2016-11-06

Lynis 2.4.0 发布了,该版本更新内容较多,具体如下:

New:

  • New group "system integrity" added

  • Support for clamconf utility

  • Chinese translation (language=cn)

  • New command "upload-only" to upload just the data instead of a full audit

  • Enhanced support for macOS, including HostID2 generation for macOS

  • Support for CoreOS

  • Detection for pkg binary (FreeBSD)

  • New command: lynis show hostids (show host ID)

  • New command: lynis show environment (hardware, VM, or container type)

  • New command: lynis show os (show operating system details)

Changes:

  • Several new sysctl values have been added to the default profile

  • Existing tests have been enhanced to support macOS

Tests:

  • AUTH-9234 - Support for macOS user gathering

  • BOOT-5139 - Support for machine roles in LILO test

  • BOOT-5202 - Improve uptime detection for macOS and others

  • FIRE-4518 - Improve pf detection and mark as root-only test

  • FIRE-4530 - Don't show error on screen for missing IPFW sysctl key

  • FIRE-4534 - Check Little Snitch on macOS

  • INSE-8050 - Test for insecure services on macOS

  • MACF-6208 - Allow non-privileged execution and filter permission issues

  • MALW-3280 - Detection for Avast and Bitdefender daemon on macOS

  • NETW-3004 - Support for macOS

  • PKGS-7381 - Improve test for pkg audit on FreeBSD

  • TIME-3104 - Chrony support extended

Plugins (community and commercial):

  • PLGN-1430 - Gather installed software packages for macOS

  • PLGN-4602 - Support for Clam definition check on macOS

发布说明

下载地址:

Lynis 是一个为系统管理员提供的 Linux 和 Unix 的审计工具 。 Lynis 扫描系统的配置,并创建概述系统信息与安全问题所使用的专业审计。

展开阅读全文
16 收藏
分享
加载中
更多评论
3 评论
16 收藏
分享
返回顶部
顶部