Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/CISOfy/lynis.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/include/tests_networking
diff options
context:
space:
mode:
authorMichael Boelen <michael.boelen@cisofy.com>2016-07-24 18:22:00 +0300
committerMichael Boelen <michael.boelen@cisofy.com>2016-07-24 18:22:00 +0300
commit2f4c854ba7790d1c8fb8c664daea6c971f18aa72 (patch)
treec3eed34233a165d56df1173b3f08e047b47ae47e /include/tests_networking
parent0b5af4ed387ea0582181e56a56609c4a633cb91f (diff)
Rename of categories, introduction of groups
Diffstat (limited to 'include/tests_networking')
-rw-r--r--include/tests_networking26
1 files changed, 13 insertions, 13 deletions
diff --git a/include/tests_networking b/include/tests_networking
index 70a2fe30..c54c196e 100644
--- a/include/tests_networking
+++ b/include/tests_networking
@@ -36,7 +36,7 @@
#
# Test : NETW-2600
# Description : Gather IPv6 configuration
- Register --test-no NETW-2600 --os "Linux" --weight L --network YES --description "Checking IPv6 configuration"
+ Register --test-no NETW-2600 --os "Linux" --weight L --network YES --category security --description "Checking IPv6 configuration"
if [ ${SKIPTEST} -eq 0 ]; then
IPV6_CONFIGURED=0
IPV6_ACCEPT_RA=255
@@ -116,7 +116,7 @@
#
# Test : NETW-2704
# Description : Basic nameserver configuration tests (connectivity)
- Register --test-no NETW-2704 --weight L --network YES --description "Basic nameserver configuration tests"
+ Register --test-no NETW-2704 --weight L --network YES --category security --description "Basic nameserver configuration tests"
if [ ${SKIPTEST} -eq 0 ]; then
Display --indent 2 --text "- Checking configured nameservers"
LogText "Test: Checking /etc/resolv.conf file"
@@ -163,7 +163,7 @@
# Test : NETW-2705
# Description : Basic nameserver configuration tests (connectivity)
if [ ${LOCAL_DNSRESOLVER_FOUND} -eq 0 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
- Register --test-no NETW-2705 --preqs-met ${PREQS_MET} --weight L --network YES --description "Check availability two nameservers"
+ Register --test-no NETW-2705 --preqs-met ${PREQS_MET} --weight L --network YES --category security --description "Check availability two nameservers"
if [ ${SKIPTEST} -eq 0 ]; then
if [ ! "${DIGBINARY}" = "" ]; then
if [ ${NUMBERACTIVENS} -lt 2 ]; then
@@ -192,7 +192,7 @@
# Description : Find default gateway (route)
# More info : BSD: ^default Linux: 0.0.0.0
if [ ! "${NETSTATBINARY}" = "" ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
- Register --test-no NETW-3001 --preqs-met ${PREQS_MET} --weight L --network NO --description "Find default gateway (route)"
+ Register --test-no NETW-3001 --preqs-met ${PREQS_MET} --weight L --network NO --category security --description "Find default gateway (route)"
if [ $SKIPTEST -eq 0 ]; then
LogText "Test: Searching default gateway(s)"
FIND=`${NETSTATBINARY} -rn | egrep "^0.0.0.0|default" | tr -s ' ' | cut -d ' ' -f2`
@@ -212,7 +212,7 @@
#
# Test : NETW-3004
# Description : Find available network interfaces on FreeBSD and others
- Register --test-no NETW-3004 --weight L --network NO --description "Search available network interfaces"
+ Register --test-no NETW-3004 --weight L --network NO --category security --description "Search available network interfaces"
if [ ${SKIPTEST} -eq 0 ]; then
FIND=""
N=0
@@ -254,7 +254,7 @@
#
# Test : NETW-3006
# Description : Get network MAC addresses
- Register --test-no NETW-3006 --weight L --network NO --description "Get network MAC addresses"
+ Register --test-no NETW-3006 --weight L --network NO --category security --description "Get network MAC addresses"
if [ ${SKIPTEST} -eq 0 ]; then
FIND=""
case ${OS} in
@@ -305,7 +305,7 @@
#
# Test : NETW-3008
# Description : Get network IPv4/6 addresses
- Register --test-no NETW-3008 --weight L --network NO --description "Get network IP addresses"
+ Register --test-no NETW-3008 --weight L --network NO --category security --description "Get network IP addresses"
if [ ${SKIPTEST} -eq 0 ]; then
FIND=""; FIND2=""
case ${OS} in
@@ -369,7 +369,7 @@
#
# Test : NETW-3012
# Description : Check listening ports
- Register --test-no NETW-3012 --weight L --network NO --description "Check listening ports"
+ Register --test-no NETW-3012 --weight L --network NO --category security --description "Check listening ports"
if [ ${SKIPTEST} -eq 0 ]; then
FIND=""; FIND2=""
N=0
@@ -468,7 +468,7 @@
# Description : Checking promiscuous interfaces (BSD)
# Note : FreeBSD and others
if [ "${OS}" = "DragonFly" -o "${OS}" = "FreeBSD" -o "${OS}" = "NetBSD" ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
- Register --test-no NETW-3014 --preqs-met ${PREQS_MET} --weight L --network NO --description "Checking promiscuous interfaces (BSD)"
+ Register --test-no NETW-3014 --preqs-met ${PREQS_MET} --weight L --network NO --category security --description "Checking promiscuous interfaces (BSD)"
if [ ${SKIPTEST} -eq 0 ]; then
LogText "Test: Checking promiscuous interfaces (FreeBSD)"
FIND=`${IFCONFIGBINARY} | grep PROMISC | cut -d ':' -f1`
@@ -510,7 +510,7 @@
# Description : Checking promiscuous interfaces (Linux)
# Note : Need ifconfig binary at this moment (does not work on Arch Linux)
if [ ! "${IFCONFIGBINARY}" = "" ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
- Register --test-no NETW-3015 --os Linux --preqs-met ${PREQS_MET} --weight L --network NO --description "Checking promiscuous interfaces (Linux)"
+ Register --test-no NETW-3015 --os Linux --preqs-met ${PREQS_MET} --weight L --network NO --category security --description "Checking promiscuous interfaces (Linux)"
if [ ${SKIPTEST} -eq 0 ]; then
LogText "Test: Checking promiscuous interfaces (Linux)"
NETWORK=`${IFCONFIGBINARY} | grep Link | tr -s ' ' | cut -d ' ' -f1`
@@ -569,7 +569,7 @@
# Type : Performance
# Notes : It is common to see a healthy web server seeing to have several thousands of TCP connections in WAIT state
if [ ! "${NETSTATBINARY}" = "" ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
- Register --test-no NETW-3028 --preqs-met ${PREQS_MET} --weight L --network NO --description "Checking connections in WAIT state"
+ Register --test-no NETW-3028 --preqs-met ${PREQS_MET} --weight L --network NO --category security --description "Checking connections in WAIT state"
if [ ${SKIPTEST} -eq 0 ]; then
LogText "Test: Using netstat for check for connections in WAIT state"
FIND=`${NETSTATBINARY} -an | grep WAIT | wc -l | awk '{ print $1 }'`
@@ -588,7 +588,7 @@
#
# Test : NETW-3030
# Description : Checking for DHCP client
- Register --test-no NETW-3030 --weight L --network NO --description "Checking DHCP client status"
+ Register --test-no NETW-3030 --weight L --network NO --category security --description "Checking DHCP client status"
if [ ${SKIPTEST} -eq 0 ]; then
IsRunning dhclient
if [ ${RUNNING} -eq 1 ]; then
@@ -603,7 +603,7 @@
#
# Test : NETW-3032
# Description : Checking for ARP spoofing and related monitoring software
- Register --test-no NETW-3032 --os Linux --weight L --network NO --description "Checking for ARP monitoring software"
+ Register --test-no NETW-3032 --os Linux --weight L --network NO --category security --description "Checking for ARP monitoring software"
if [ ${SKIPTEST} -eq 0 ]; then
IsRunning arpwatch
if [ ${RUNNING} -eq 1 ]; then
generated by cgit v1.2.3 (git 2.25.1) at 2024-06-17 16:08:10 +0300