Updates Lynis v-1.6.3 : is a system and security auditing tool for Unix/Linux.

Updates Lynis v-1.6.3 : is a system and security auditing tool for Unix/Linux.

Changelog v-1.6.3 :
New:
– Added tests for Shellshock bash vulnerability [SHLL-6290]
– Added test to determine if Snoopy is used [ACCT-9636]
– New test for qdaemon configuration file [PRNT-2416]
– Test for GRUB boot loader password [BOOT-5122]
– New test for qdaemon printer jobs [PRNT-2420]
– Added ClamXav test for Mac OS X [MALW-3288]
– Gentoo vulnerable packages test [PKGS-7393]
– New test for qdaemon status [PRNT-2418]
– Gentoo package listing [PKGS-7304]
– Running Lynis without root permissions will start non-privileged scan
– Systemd service and timer example file added
– Added grub2-install to binaries

Changes:
– Adjustments so insecure SSL protocols are detected in nginx config [HTTP-6710]
– Directories will be skipped when searching for nginx log files [HTTP-6720]
– Only gather unique name servers from /etc/resolv.conf [NAME-2704]
– Properly detect mod_evasive on Gentoo and others [HTTP-6640]
– Improved swap partition detection in /etc/fstab [FILE-6336]
– Improvements to kernel detection (e.g. Gentoo) [KRNL-5830]
– Test for built-in security options in YUM [PKGS-7386]
– Improved boot loader detection for GRUB2 [BOOT-5121]
– Split GRUB test into two tests [BOOT-5122]
– Added Mac OS uptime check [BOOT-5202]
– Improved GetHostID function for systems having only ip binary
– Improved testing for symlinked binary directories
– Minor adjustments to log output
– Renamed dev directory to extras

Lynis is a system and security auditing tool
Lynis is a system and security auditing tool for Unix/Linux. Main audience of this tool is security consultants, auditors and system administrators. This tool performs a security audit of the system and determines how well it is hardened. Any detected security issues will be provided in the form of a suggestion or warning at the end of the audit. Beside security related information it will also scan for general system information, installed packages and possible configuration errors. This software aims in assisting automated auditing, hardening, software patch management, vulnerability and malware scanning of Unix/Linux based systems. It can be run without prior installation, so inclusion on read only storage is possible (USB stick, cd/dvd).
Lynis assists auditors in performing Basel II, GLBA, HIPAA, PCI DSS and SOx (Sarbanes-Oxley) compliance audits, by automation of control testing.

Features :

  • System auditing
    Hardening suggestions
    Security scan
    Vulnerability scan

Download Latest Version : lynis-1.6.3.tar.gz (169.9 kB) 
Source : http://cisofy.com/
Our Post Before : http://seclist.us/lynis-v-1-5-9-released-is-a-system-and-security-auditing-tool-for-unixlinux.html