Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/CISOfy/lynis.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
diff options
context:
space:
mode:
authormboelen <michael@cisofy.com>2016-04-27 17:51:25 +0300
committermboelen <michael@cisofy.com>2016-04-27 17:51:25 +0300
commit1e0ca25405966201b18b5e6c5ae279708b76a869 (patch)
treee749daee92adf0b0df39ba537d693778ba41f5fb /CHANGELOG
parentf109c318d9f03be9adad9067c31b93640401a903 (diff)
Update log
Diffstat (limited to 'CHANGELOG')
-rw-r--r--CHANGELOG20
1 files changed, 20 insertions, 0 deletions
diff --git a/CHANGELOG b/CHANGELOG
index 4cfe898e..b4d491b1 100644
--- a/CHANGELOG
+++ b/CHANGELOG
@@ -49,6 +49,19 @@ Ansible examples on https://github.com/CISOfy/lynis-ansible
-----------
Lynis will check also for DB2 instances and report the status.
+* Developer Mode
+----------------
+With this release the developer mode is introduced. It can be activated with the
+--developer option, or developer-mode=yes in profile. In development mode, some
+details are displayed on screen, to help testing of existing or new tests.
+
+To get easy access, a new profile has been added (developer.prf).
+
+Examples:
+lynis audit system --profile developer.prf
+lynis audit system --developer
+
+
* Documentation
---------------
Template files have been updated to provide better examples on how to create
@@ -63,6 +76,11 @@ version, etc. See lynis show for all available details.
-----------------------
Package manager Brew has been added
+* nginx
+-------
+Show suggestion when weak protocol is used, like SSLv2 or SSLv3. The protocols
+are now also parsed and stored as details in the report file.
+
* Plugins
---------
You can set the plugin directory now also via a profile. First match wins.
@@ -143,11 +161,13 @@ Remove --config option, use lynis show profiles instead
[CRYP-7902] Support for multiple profiles, improved logging
[FILE-6372] Properly checking for /etc/fstab now, ignore comments
[FILE-7524] Support for multiple profiles
+[HTTP-6710] Trigger suggestion when weak protocols SSLv2/SSLv3 are used
[KRNL-5788] Support for kernel with grsecurity patches (linux-image-grsec)
[KRNL-6000] Allow multiple profiles to be used, store more details
[NETW-3014] Support for multiple profiles
[PKGS-7303] Added Brew package manager
[PKGS-7354] Test for DNF repoquery plugin before using it
+[PROC-3612] Removed wchan output to prevent grsecurity issues
[SCHD-7702] Test for running cron daemon
[SCHD-7704] Test ownership of cronjob files
[TOOL-5102] Test for Fail2ban tooling