diff options
author | mboelen <michael@cisofy.com> | 2014-09-09 16:59:49 +0400 |
---|---|---|
committer | mboelen <michael@cisofy.com> | 2014-09-09 16:59:49 +0400 |
commit | 395a2e5b22bf7b182feac4b76da4ad23fad457da (patch) | |
tree | d04639c42558b1270a95402b5e38342beaa7739e | |
parent | dd2ea3efaf5a91b97840383b578ad8ddffbd76a8 (diff) |
Extended documentation and added --pentest parameter
-rw-r--r-- | INSTALL | 4 | ||||
-rw-r--r-- | README | 8 | ||||
-rwxr-xr-x | lynis | 6 |
3 files changed, 10 insertions, 8 deletions
@@ -5,7 +5,7 @@ ================================================================================ - Author: Michael Boelen (michael@rootkit.nl) + Author: Michael Boelen (michael.boelen@cisofy.com) Description: Security and system auditing tool Web site: http://cisofy.com Support policy: See section 'Support' @@ -23,7 +23,7 @@ or # ./lynis - Make sure you have root privileges. + Root privileges are preferred for full audit. @@ -5,7 +5,7 @@ ================================================================================ - Author: Michael Boelen (michael@rootkit.nl) + Author: Michael Boelen (michael.boelen@cisofy.com) Description: Security and system auditing tool Web site: http://cisofy.com/lynis/ http://www.rootkit.nl/projects/lynis.html @@ -48,8 +48,8 @@ - Language: Shell script - Author: Michael Boelen - Web site: http://cisofy.com - - Required permissions: root or equivalent - - Other requirements: write access to /var/log and /tmp + - Required permissions: root preferred for full audit + - Other requirements: write access to /tmp @@ -88,7 +88,7 @@ -[+] Development +[+] Development and Bugs ------------------------------- If you have input to improve Lynis, let us know via the contact page. @@ -286,8 +286,9 @@ echo " #########################################################" echo "${NORMAL}" echo " ${WHITE}NOTES:${NORMAL}" - echo " * Some tests will require root permissions" - echo " * Logging is disabled (no log and no report)" + echo " ${PURPLE}*${NORMAL} Some tests will require root permissions and might fail silently" + echo " ${PURPLE}*${NORMAL} This mode is not preferred for pentests, not auditing" + echo " ${PURPLE}*${NORMAL} Logging might be limited" echo "" echo " Press [ENTER] to continue or [CTRL] + C to break" echo "" @@ -367,6 +368,7 @@ echo " --auditor \"<name>\" : Auditor name" echo " --check-all (-c) : Check system" echo " --no-log : Don't create a log file" + echo " --pentest : Non-privileged scan (useful for pentest)" echo " --profile <profile> : Scan the system with the given profile file" echo " --quick (-Q) : Quick mode, don't wait for user input" echo " --tests \"<tests>\" : Run only tests defined by <tests>" |