| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2019-03-21 | Release 2.7.32.7.3 | Michael Boelen | |
| 2019-03-21 | [NETW-3015] added support for ip binary | Michael Boelen | |
| 2019-03-21 | [LOGG-2180] minor cleanup | Michael Boelen | |
| 2019-03-19 | [HTTP-6624] improved logging for test | Michael Boelen | |
| 2019-03-19 | Updated log | Michael Boelen | |
| 2019-03-15 | [LOGG-2154] Adjusted test to search in configuration file correctly | Michael Boelen | |
| 2019-03-15 | Updated log | Michael Boelen | |
| 2019-03-15 | Updated log | Michael Boelen | |
| 2019-03-15 | [SSH-7408] Increased values for MaxAuthRetries as sometimes SSH key-based ↵ | Michael Boelen | |
| authentication may need it | |||
| 2019-03-15 | Updated log | Michael Boelen | |
| 2019-03-15 | Adjusted descriptions | Michael Boelen | |
| 2019-03-14 | Add logging status of tool tips | Michael Boelen | |
| 2019-03-14 | Updated log | Michael Boelen | |
| 2019-03-14 | Corrected blkid detection | Michael Boelen | |
| 2019-03-14 | Quote WORKDIR directory existence in lynis (#653) | Warren | |
| Quote both "${WORKDIR}/include" and "${WORKDIR}/db" directory existence check in if-statements to avoid "Fatal error: can't find directory" in case of a space-character in the ${WORKDIR} path. | |||
| 2019-03-14 | Updated log | Michael Boelen | |
| 2019-03-14 | Initial work to detect Lynis in cronjobs | Michael Boelen | |
| 2019-03-14 | Readability changes and show when plugin execution is skipped | Michael Boelen | |
| 2019-03-14 | Preparations for user tips to improve usage of tool | Michael Boelen | |
| 2019-03-14 | Corrected file location for tips | Michael Boelen | |
| 2019-03-11 | [KRNL-5820] Changed color for default value - fixes GitHub #655 | Michael Boelen | |
| 2019-03-07 | Switch to development for 2.7.3 | Michael Boelen | |
| 2019-03-07 | Release 2.7.22.7.2 | Michael Boelen | |
| 2019-03-07 | Add new tests | Michael Boelen | |
| 2019-03-07 | [BOOT-5122] don't use WARNING, but show NONE if no protection is implemented | Michael Boelen | |
| 2019-03-07 | [BOOT 5177] Simplify service filter & support multiple periods in names (#633) | chr0mag | |
| * Handle service names with multiple periods The current awk filter produces truncated output if the service name contains multiple periods. eg. dbus-org.freedesktop.resolve1.service and dbus-org.freedesktop.network1.service both appear as 'dbus-org' in the resulting service list. This change addresses this by filtering on '.service' instead. * Simplify systemd service filtering Added systemctl switches to filter the output based on enabled or running services. This removes the need for one of the awk statements. | |||
| 2019-03-07 | BOOT-5117 adds systemd-boot bootloader detection (#634) | chr0mag | |
| Adds a test to detect systemd-boot. The 'bootctl' binary is also added as this is the utility used to inspect the systemd-boot configuration. This test is only executed if systemd is installed, the bootctl utility exists and the system is booted in UEFI mode. | |||
| 2019-03-07 | [KRNL-5788] Fix false positive warning on missing /vmlinuz (#650) | silentcreek | |
| Not all architectures use a /vmlinuz symlink in Debian. For instance, armhf systems may only provide a symlink in /boot/vmlinuz. Fall back to testing /boot/vmlinuz if /vmlinuz is not found. Signed-off-by: Timo Sigurdsson <public_timo.s@silentcreek.de> | |||
| 2019-03-07 | [PKGS-7388] Fix false positive warning on missing security archive (#651) | silentcreek | |
| Currently the check for the security archive in Debian/Ubuntu fails, if the archive is not hosted on security.{debian,ubuntu}.org and the URL does have trailing slash, such as this: deb http://deb.debian.org/debian-security/ stretch/updates main Change the regular expression to allow for a trailing slash in the URL when filtering the package sources lists. Signed-off-by: Timo Sigurdsson <public_timo.s@silentcreek.de> | |||
| 2019-03-07 | Added Korean translation (#652) | Jerry Park | |
| * Korean translation for ko-KR Translation in Korean * changed ko-KR to ko | |||
| 2019-03-05 | Store date and timestamp for EOL | Michael Boelen | |
| 2019-03-05 | Corrected FreeBSD, added CentOS and OpenBSD | Michael Boelen | |
| 2019-03-05 | Updated log | Michael Boelen | |
| 2019-03-05 | better OpenBSD support (#641) | jirib | |
| 2019-03-05 | [FIRE-4540] Modify test to better measure rules (#636) | chr0mag | |
| This test was previously measuring the number of bytes (wc -c) in the exported JSON which is likely not what was intended and will lead to false positives anytime the number of bytes exceeds 16. The export feature is poorly documented and requires the jansson package on the target system to export as JSON - which may not always be the case. Lastly, 16 is an arbitrary and uncessarily high number. A simple workstation firewall can have only 3 rules and be effective. This commit makes use of 'nft list ruleset' instead of the export command, strips out blank lines as well as table & chain headers before measuring the number of lines in the output. Any result with more than 3 rules is now considered non-empty. This is more consistent with the equivalent iptables test case. | |||
| 2019-03-04 | Updated entries | Michael Boelen | |
| 2019-03-04 | Updated log | Michael Boelen | |
| 2019-03-04 | Added 'show eol' command | Michael Boelen | |
| 2019-03-04 | Use datestamps instead of date, due to compatibility with other platforms | Michael Boelen | |
| 2019-03-04 | Initial lookup with awk corrected | Michael Boelen | |
| 2019-03-04 | Replace awk statement with grep to simplify search | Michael Boelen | |
| 2019-02-28 | Updated log | Michael Boelen | |
| 2019-02-28 | Style improvements, typo, variable usage | Michael Boelen | |
| 2019-02-28 | [AUTH-9252] Sudo configuration file/folder check improvements (#637) | chr0mag | |
| * [AUTH-9252] Adds support for files in sudoers.d This commit adds permission checks for files found in 'sudoers.d'. Previously only the main 'sudoers' file is checked. Fixes #600. * [AUTH-9252] Check drop-in directory permissions The test case currently only checks file permissions. This adds logic to check the drop-in directory permissions as well. * [AUTH-9252] Check file/folder ownership This test currently only checks file/directory permissions. This commit adds checks to ensure sudo configuration files/folders are owned with UID=0 and GID=0. | |||
| 2019-02-28 | Fix #638. (#640) | dataking | |
| * fix for issue #453; simply add RPi/Raspian path to PAM_FILE_LOCATIONS * Only use data before # to handle inline comments in /etc/resolv.conf. | |||
| 2019-02-26 | Updated log | Michael Boelen | |
| 2019-02-26 | Switch to dev for 2.7.2 | Michael Boelen | |
| 2019-02-26 | Initial support for end-of-life OS detection | Michael Boelen | |
| 2019-01-31 | Release 2.7.12.7.1 | Michael Boelen | |
| 2019-01-31 | Disable logging of virtual host to report due to length | Michael Boelen | |
Welcome to mirror list, hosted at ThFree Co, Russian Federation.
 |
index : github.com/CISOfy/lynis.git | |
| Unnamed repository; edit this file 'description' to name the repository. | www-data |
| summaryrefslogtreecommitdiff |