| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2022-01-31 | Added MALW-3274 to detect McAfee VirusScan Command Line Scanner | Michael Boelen | |
| 2021-07-27 | Added MALW-3290 | Michael Boelen | |
| 2021-05-11 | Added CRYP-8006 | Michael Boelen | |
| 2021-05-11 | Merge pull request #1139 from ↵ | Michael Boelen | |
| teoberi/New-test-BOOT-5140---Check-for-ELILO-boot-loader-presence New test: BOOT-5140 - Check for ELILO boot loader presence | |||
| 2021-05-11 | Added ACCT-9672 | Michael Boelen | |
| 2021-05-11 | Added ACCT-9670 | Michael Boelen | |
| 2021-01-07 | Merge pull request #905 from topimiettinen/check-non-native-binary-formats | Michael Boelen | |
| Check for registered non-native binary formats | |||
| 2021-01-03 | Update tests.db | teoberi | |
| Add TestID for ELILO | |||
| 2020-12-17 | Merge pull request #1062 from Varbin/solaris-loghost-not-localhost | Michael Boelen | |
| Test if loghost is not localhost | |||
| 2020-12-15 | Merge pull request #1064 from Varbin/solaris-ips-svcs | Michael Boelen | |
| Add support for Solaris services, run BOOT-5184 there | |||
| 2020-12-15 | Mark test as multi-OS by removing all values | Michael Boelen | |
| 2020-11-09 | spelling: authoritative | Josh Soref | |
| Signed-off-by: Josh Soref <jsoref@users.noreply.github.com> | |||
| 2020-10-26 | Add support for Solaris services, run BOOT-5184 there | Simon Biewald | |
| The Solaris IPS service manager (svcs) is now detected, and services managed with it are enumerated. Test BOOT-5184 now runs on Solaris, too, as SysV init scripts are supported as well, even with IPS. SysV Init has been the traditional init system on Solaris. | |||
| 2020-10-25 | Test if loghost is not localhost | Simon Biewald | |
| On Solaris, the name loghost can be used to point to remote log servers. By default loghost is configured to 127.0.0.1, logging to the local machine. Thus a new test - LOGG-2153 - is created to test if loghost is not localhost and LOGG-2154 is modified to ignore @loghost lines if loghost is localhost. | |||
| 2020-10-25 | Merge branch 'master' into add-suricata-ids-ips-test | Michael Boelen | |
| 2020-10-22 | Include AUTH-9284 and minor changes | Michael Boelen | |
| 2020-10-11 | Update tests.db and CHANGELOG.md for new test TOOL-5130 | Timo Sigurdsson | |
| Add the new test TOOL-5130 (Check for active Suricata daemon) to the tests database and update the changelog accordingly. Signed-off-by: Timo Sigurdsson <public_timo.s@silentcreek.de> | |||
| 2020-07-09 | add new test to test database | Simon Biewald | |
| 2020-04-12 | Merge pull request #883 from topimiettinen/check-encrypted-swap-devices | Michael Boelen | |
| Check if system uses encrypted swap devices | |||
| 2020-04-10 | Check for registered non-native binary formats | Topi Miettinen | |
| Examine /proc/sys/fs/binfmt_misc (Linux) for additional registered binary formats. Those are probably emulated and their emulation could be less tested, more buggy and more vulnerable than native binary formats, so they should be disabled when not needed. Signed-off-by: Topi Miettinen <toiwoton@gmail.com> | |||
| 2020-04-04 | Added new test NETW-2400 | Michael Boelen | |
| 2020-04-03 | Merge pull request #899 from bginsbach/auth-9218 | Michael Boelen | |
| AUTH-9218 Improvements | |||
| 2020-04-03 | Combine AUTH-9218 and AUTH-9489 | Brian Ginsbach | |
| These two tests are essentially identical. There is no need separate the DragonFly and FreeBSD tests. This will make it easier to add support for other BSD systems. | |||
| 2020-04-02 | Added new test PHP-2382 | Michael Boelen | |
| 2020-04-01 | Added FILE-6394 | Michael Boelen | |
| 2020-03-27 | Check if system uses encrypted swap devices | Topi Miettinen | |
| Add test CRYP-7931 to check if the system uses any encrypted swap devices. Signed-off-by: Topi Miettinen <toiwoton@gmail.com> | |||
| 2020-03-24 | Added new tests | Michael Boelen | |
| 2020-03-24 | Merge pull request #880 from konstruktoid/grphashrounds | Michael Boelen | |
| Add test for group password hash rounds | |||
| 2020-03-24 | add AUTH-9230 | Thomas Sjögren | |
| Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com> | |||
| 2020-03-23 | Run 'systemd-analyze security' | Topi Miettinen | |
| 'systemd-analyze security' (available since systemd v240) makes a nice overall evaluation of hardening levels of services in a system. More details can be found with 'systemd-analyze security SERVICE' for each service. Signed-off-by: Topi Miettinen <toiwoton@gmail.com> | |||
| 2020-03-23 | Merge pull request #878 from topimiettinen/check-ima-evm | Michael Boelen | |
| Check IMA/EVM, dm-integrity and dm-verity statuses | |||
| 2020-03-23 | Merge pull request #874 from topimiettinen/check-password-hashing-methods | Michael Boelen | |
| Check password hashing methods | |||
| 2020-03-23 | Check for dm-integrity and dm-verity | Topi Miettinen | |
| Detect tools for dm-integrity and dm-verity, check if some devices in /dev/mapper/* use them and especially the system root device. Signed-off-by: Topi Miettinen <toiwoton@gmail.com> | |||
| 2020-03-22 | Check IMA/EVM status | Topi Miettinen | |
| Check for evmctl (Extended Verification Module) tool and system IMA (Integrity Measurement Architecture) status. Signed-off-by: Topi Miettinen <toiwoton@gmail.com> | |||
| 2020-03-21 | Check for software pseudo random number generators | Topi Miettinen | |
| Check for running audio-entropyd, havegd or jitterentropy-rngd. Signed-off-by: Topi Miettinen <toiwoton@gmail.com> | |||
| 2020-03-21 | Check password hashing methods | Topi Miettinen | |
| Manual page crypt(5) gives recommendations for choosing password hashing methods, so let's check if there are weakly encrypted passwords in the system. Signed-off-by: Topi Miettinen <toiwoton@gmail.com> | |||
| 2020-03-20 | Update tests.db | Michael Boelen | |
| Corrected test ID | |||
| 2020-03-20 | Check DNSSEC status with resolvectl when available | Topi Miettinen | |
| 'resolvectl statistics' shows if DNSSEC is supported by systemd-resolved and upstream DNS servers. Signed-off-by: Topi Miettinen <toiwoton@gmail.com> | |||
| 2020-03-19 | Check for rEFInd boot loader | Topi Miettinen | |
| Detect rEFInd boot loader (https://www.rodsbooks.com/refind/). Signed-off-by: Topi Miettinen <toiwoton@gmail.com> | |||
| 2020-02-15 | [CRYP-8004] enhanced after pulling in initital test | Michael Boelen | |
| 2019-10-08 | Test SINT-7010 in macOS only | pyllyukko | |
| 2019-10-08 | Added new test DBS-1828 | Michael Boelen | |
| 2019-10-08 | Update description for FILE-6374 | Michael Boelen | |
| 2019-08-29 | Added CRYP-8002 | Michael Boelen | |
| 2019-08-28 | Changed description of TOOL-5160 | Michael Boelen | |
| 2019-08-26 | Added FINT-4316 | Michael Boelen | |
| 2019-08-22 | Added NETW-3200 | Michael Boelen | |
| 2019-08-21 | [CRYP-7930] changed description | Michael Boelen | |
| 2019-07-26 | Added HOME-9304 and HOME-9306 | Michael Boelen | |
| 2019-07-16 | Added new tests INSE-8318 and INSE-8320 | Michael Boelen | |
Welcome to mirror list, hosted at ThFree Co, Russian Federation.
 |
index : github.com/CISOfy/lynis.git | |
| Unnamed repository; edit this file 'description' to name the repository. | www-data |
| summaryrefslogtreecommitdiff |