Age | Commit message (Collapse) | Author | |
---|---|---|---|
2017-03-08 | Updated log | Michael Boelen | |
2017-03-07 | Lots of cleanups (#366) | hlein | |
* Description fix: SafePerms works on files not dirs. All uses of SafePerms are on files (and indeed, it would reject directories which would have +x set). * Lots of whitespace cleanups. Enforce everywhere(?) the same indentations for if/fi blocks. The standard for the Lynis codebase is 4 spaces. But sometimes it's 1, sometimes 3, sometimes 8. These patches standardize all(?) if blocks but _not_ else's (which are usually indented 2, but sometimes zero); I was too lazy to identify those (see below). This diff is giant, but should not change code behavior at all; diff -w shows no changes apart from whitespace. FWIW I identified instances to check by using: perl -ne 'if ($oldfile ne $ARGV) { $.=1; $oldfile=$ARGV; }; chomp; if ($spaces) { next unless /^( *)([^ ]+)/; $newspaces=length($1); $firsttok = $2; next unless defined($firsttok); $offset = ($firsttok eq "elif" ? 0 : 4); if ($newspaces != $spaces + $offset) { print "$ARGV:$ifline\n$ARGV:$.:$_\n\n" }; $ifline=""; $spaces=""; } if (/^( *)if (?!.*[; ]fi)/) { $ifline = "$.:$_"; $spaces = length($1); }' $(find . -type f -print0 | xargs -0 file | egrep shell | cut -d: -f1) Which produced output like: ./extras/build-lynis.sh:217: if [ ${VERSION_IN_SPECFILE} = "" -o ! "${VERSION_IN_SPECFILE}" = "${LYNIS_VERSION}" ]; then ./extras/build-lynis.sh:218: echo "[X] Version in specfile is outdated" ./plugins/plugin_pam_phase1:69: if [ -d ${PAM_DIRECTORY} ]; then ./plugins/plugin_pam_phase1:70: LogText "Result: /etc/pam.d exists" ...There's probably formal shellscript-beautification tools that I'm oblivious about. * More whitespace standardization. * Fix a syntax error. This looks like an if [ foo -o bar ]; was converted to if .. elif, but incompletely. * Add whitespace before closing ]. Without it, the shell thinks the ] is part of the last string, and emits warnings like: .../lynis/include/tests_authentication: line 1028: [: missing `]' | |||
2017-03-06 | Various cleanups (#363) | hlein | |
* Typo fix. * Style change: always use $(), never ``. The Lynis code already mostly used $(), but backticks were sprinkled around. Converted all of them. * Lots of minor spelling/typo fixes. FWIW these were found with: find . -type f -print0 | xargs -0 cat | aspell list | sort -u | egrep '^[a-z]+$' | less And then reviewing the list to pick out things that looked like misspelled words as opposed to variables, etc., and then manual inspection of context to determine the intention. | |||
2017-02-14 | [FIRE-4512] lowered number of minimum rules | Michael Boelen | |
2017-02-10 | [FIRE-4586] escape search string | Michael Boelen | |
2017-02-09 | Changed date and preparing for release2.4.1 | Michael Boelen | |
2017-01-28 | Added FIRE-4586 | Michael Boelen | |
2016-11-05 | macOS Refactoring (#311) | Justin P | |
* Default all macOS `OS` names as macOS. Added comments to specify `uname` outputs for better understanding. * Refactored all `Mac` instances referring to macOS over to `macOS` formatting. Tested on my own machine, unable to find any errors outside of normal parameters. | |||
2016-10-27 | [FIRE-4518] mark as a root-only test - correction | Michael Boelen | |
2016-10-27 | [FIRE-4518] mark as a root-only test | Michael Boelen | |
2016-10-15 | [FIRE-4530] Don't show error on screen for missing IPFW sysctl key | Michael Boelen | |
2016-10-15 | Reversed file check on /dev/pf | Michael Boelen | |
2016-10-15 | Improve detection of pf on FreeBSD | Michael Boelen | |
2016-10-15 | Add then statement | Michael Boelen | |
2016-10-15 | Added process detection for Little Snitch | Michael Boelen | |
2016-10-15 | [FIRE-4534] detection of Little Snitch | Michael Boelen | |
2016-09-10 | Code cleanups and generic enhancements | Michael Boelen | |
2016-09-08 | Style improvements and command replacements | Michael Boelen | |
2016-09-06 | added TRBINARY + fix nftables check (#276) | BlueC0re | |
fixes #273 | |||
2016-09-05 | Renamed tr command | Michael Boelen | |
2016-09-05 | Added test FIRE-4540 and textual changes | Michael Boelen | |
2016-09-05 | [FIRE-4520] Use discovered pfctl binary and style improvement | Michael Boelen | |
2016-09-05 | [FIRE-4520] Remove suggestion | Michael Boelen | |
2016-08-25 | Use detected binaries | Michael Boelen | |
2016-08-10 | Removed unneeded field | Michael Boelen | |
2016-07-24 | Rename of categories, introduction of groups | Michael Boelen | |
2016-06-18 | Replaced text strings to allow translations | Michael Boelen | |
2016-05-19 | use ${LSMODBINARY} instead of lsmod (#200) | Yann ILAS | |
2016-04-28 | Replaced old function names with new ones | mboelen | |
2016-04-27 | Added firewall_software[] to report | mboelen | |
2016-03-13 | Removed copyright line, added description | mboelen | |
2016-03-13 | Added link to website, blog, github | mboelen | |
2015-12-30 | New tests and renumbering | mboelen | |
2015-12-21 | Rename of logtext and report functions, upcoming year change | mboelen | |
2015-12-02 | Test for longer status string | mboelen | |
2015-12-02 | Audit status of application firewall and added test for Mac OS X (FIRE-4532) | mboelen | |
2015-12-02 | Improved test FIRE-4512 so that it also triggers if no more than 10 rules ↵ | mboelen | |
are found | |||
2015-09-08 | Cleanup: Don't show pflogd status on screen, when pf is not available | mboelen | |
2015-09-06 | Change ipfw to IPFW, change exeception ID for IPFW test | mboelen | |
2015-09-06 | Don't show pf status on screen when it is not available | mboelen | |
2015-09-06 | Merge pull request #43 from rsmith-nl/ipfw | Michael Boelen | |
Add test for 'ipfw' firewall on FreeBSD. | |||
2015-09-01 | Use different status for unused firewall rules | mboelen | |
2015-07-22 | Remove incomplete tests, code enhancements | mboelen | |
2015-04-27 | Wrap ipfw test in SKIPTEST block. | Roland Smith | |
2015-04-27 | Check if ipfw is enabled in rc.conf. | Roland Smith | |
2015-04-27 | Initial version of IPFW test (FreeBSD). | Roland Smith | |
2015-04-07 | Change pf firewall detection | mboelen | |
2015-03-18 | Changed path names into variables | mboelen | |
2015-03-17 | Test for presence of CSF | mboelen | |
2015-01-03 | Update of the files to reflect HTTPS version of website and 2015. Happy New ↵ | mboelen | |
Year! |