Welcome to mirror list, hosted at ThFree Co, Russian Federation.

github.com/CISOfy/lynis.git - Unnamed repository; edit this file 'description' to name the repository.
summaryrefslogtreecommitdiff
path: root/include/tests_authentication
AgeCommit message (Collapse)Author
2020-04-03Merge pull request #899 from bginsbach/auth-9218Michael Boelen
AUTH-9218 Improvements
2020-04-03AUTH-9218 add NetBSD and OpenBSDBrian Ginsbach
All of the BSDs have `/etc/master.passwd`.
2020-04-03AUTH-9218 add requires rootBrian Ginsbach
The `/etc/master.passwd` file on BSD systems is (or should be) read/write root only. Skip the test if not being run as root.
2020-04-03Combine AUTH-9218 and AUTH-9489Brian Ginsbach
These two tests are essentially identical. There is no need separate the DragonFly and FreeBSD tests. This will make it easier to add support for other BSD systems.
2020-04-02AUTH-9268 Add DragonFlyBrian Ginsbach
DragonFly also supports PAM. Rework to use the `--os` option of `Register` rather than `--preqs-met` as the former can support a list.
2020-03-31Merge pull request #887 from bginsbach/fix-auth-9229Michael Boelen
AUTH-9229 Do not use long options for sort
2020-03-29Fix AUTH-9230 for systems without /etc/login.defsBrian Ginsbach
This fixes a bug where it was determined that /etc/login.defs didn't exist as a prerequisite but then wasn't used to skip the test. Prevents warnings from `grep(1)` for "no such file or directory".
2020-03-29AUTH-9229 Do not use long options for sortBrian Ginsbach
Use the standard `sort(1)` short option `-u` rather than `--unique`, since not all versions support long options.
2020-03-24fix indentationThomas Sjögren
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
2020-03-24fix tabsThomas Sjögren
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
2020-03-24AUTH-9229 isnt related to login.defs, add AUTH-9230Thomas Sjögren
Signed-off-by: Thomas Sjögren <konstruktoid@users.noreply.github.com>
2020-03-23[AUTH-9229] make test only available for rootMichael Boelen
2020-03-23Merge pull request #874 from topimiettinen/check-password-hashing-methodsMichael Boelen
Check password hashing methods
2020-03-23[AUTH-9252] corrected permission checkMichael Boelen
2020-03-22Merge pull request #877 from bginsbach/auth-9268-add-bsdMichael Boelen
Add FreeBSD and NetBSD to AUTH-9268
2020-03-22Add FreeBSD and NetBSD to AUTH-9268Brian Ginsbach
Add FreeBSD and NetBSD as both support PAM. Simplify the PREQS_MET test by using a case rather than a long if or.
2020-03-22Combine NetBSD and OpenBSD AUTH-9234 checkBrian Ginsbach
Both NetBSD and OpenBSD have `useradd(8)`, so they can share logic checking `/etc/usermgmt.conf` for the default user UID range.
2020-03-22Add AUTH-9234 for NetBSDBrian Ginsbach
2020-03-21Check password hashing methodsTopi Miettinen
Manual page crypt(5) gives recommendations for choosing password hashing methods, so let's check if there are weakly encrypted passwords in the system. Signed-off-by: Topi Miettinen <toiwoton@gmail.com>
2020-03-20Fix uses of non-standard find not operatorBrian Ginsbach
Use ! rather than the non-standard -not find(1) operator.
2020-03-20Updated date/yearMichael Boelen
2020-03-12Style improvementMichael Boelen
2020-01-23AUTH-9228 for HP-UXgfelkel
HP-UX also has /usr/sbin/pwck. For trusted systems, two additional options -s (check inconsistencies with the protected password database) and -l (check encrypted password lengths that are greater than 8 characters) are available.
2019-12-18Code style improvement: quote argumentMichael Boelen
2019-10-23Updated tests for file permissions to case statementsDave Vehrs
2019-09-28kernel-test: determine reboot requirement for more distros. Plus a few fixesKristian Schuster
2019-09-21Merge pull request #765 from Marzal/Marzal-AUTH-9282Michael Boelen
Fix auth-9282
2019-09-20Double quote to prevent globbing and word splitting.SC2086Marzal
2019-09-20Change variable name from FIND to FIND_P so is not reset by RegisterMarzal
2019-09-19Style improvementsMichael Boelen
2019-08-26Combine multiple unsets into a single commandMichael Boelen
2019-08-08[AUTH-9408] both backslash and brackets needs to be individually escapedMichael Boelen
2019-08-08[AUTH-9408] corrected descriptionMichael Boelen
2019-07-26[AUTH-9408] double escape to prevent error message (awk: warning: escape ↵Michael Boelen
sequence '\[' treated as plain '[')
2019-07-26[AUTH-9266] skip .pam-old files in /etc/pam.d (used by Ubuntu)Michael Boelen
2019-07-18[AUTH-9408] added support for pam_tally2 to log failed loginsMichael Boelen
2019-07-16Format changeMichael Boelen
2019-07-16Use -n instead of ! -zMichael Boelen
2019-06-24Merge pull request #713 from bcs016/patch-1Michael Boelen
Update tests_authentication - AUTH-9402
2019-06-06[AUTH-9268] AIX find does not support maxdepthMichael Boelen
2019-04-29Update tests_authenticationbcs016
Update AUTH-9402, change name to check in etc/passwd file when device is a QNAP
2019-03-29[AUTH-9278] style change, description, allow different root directoryMichael Boelen
2019-03-29fix issue #612 (#677)Capashenn
LDAP support for Red Hat and others (fix issue #612)
2019-03-05better OpenBSD support (#641)jirib
2019-02-28Style improvements, typo, variable usageMichael Boelen
2019-02-28[AUTH-9252] Sudo configuration file/folder check improvements (#637)chr0mag
* [AUTH-9252] Adds support for files in sudoers.d This commit adds permission checks for files found in 'sudoers.d'. Previously only the main 'sudoers' file is checked. Fixes #600. * [AUTH-9252] Check drop-in directory permissions The test case currently only checks file permissions. This adds logic to check the drop-in directory permissions as well. * [AUTH-9252] Check file/folder ownership This test currently only checks file/directory permissions. This commit adds checks to ensure sudo configuration files/folders are owned with UID=0 and GID=0.
2019-01-31Changed year and preparing for new releaseMichael Boelen
2019-01-14Added STATUS_WEAKMichael Boelen
2018-12-17Remove FIND1 variable, as we prefer FIND to limit number of variablesMichael Boelen
2018-12-17[AUTH-9282][AUTH-9283] Add support for RedHad and clones (#609)Capashenn
[AUTH-9282][AUTH-9283] Add support for Red Hat and clones
generated by cgit v1.2.3 (git 2.25.1) at 2024-07-15 23:44:08 +0300