Age | Commit message (Collapse) | Author | |
---|---|---|---|
2022-02-14 | #1270 added finding configuration files in the "etc" directory, even if they ↵ | Wojciech Banaś | |
are symlinks | |||
2021-01-07 | Preparation for release 3.0.3 | Michael Boelen | |
2020-10-22 | Add translate function for all sections | Stéphane | |
+ add EN and FR up to date languages files | |||
2020-03-20 | Updated date/year | Michael Boelen | |
2020-02-25 | Update tests_shells | Skactor | |
Write function as variable due to careless error | |||
2019-12-18 | Code style improvement: quote argument | Michael Boelen | |
2019-09-21 | Fixed a typo | Michael Boelen | |
2019-07-26 | Use IsRunning exit code instead of variable | Michael Boelen | |
2019-07-16 | Use -n instead of ! -z | Michael Boelen | |
2019-04-09 | Updated descriptions | Michael Boelen | |
2019-04-09 | fix SHLL-6220 description (#673) | Capashenn | |
2019-01-31 | Changed year and preparing for new release | Michael Boelen | |
2019-01-14 | Added STATUS_WEAK | Michael Boelen | |
2018-12-13 | [SHLL-6230] Add etc/bash.bashrc.local to umask check (#595) | Katarina Durechova | |
2018-07-24 | Fix for umask check in case of multiple files (#560) | gkrystev | |
In case when umask is checked in multiple files and in some of the files except the last one a weak umask is found, the tool reports weak mask for the rest of the files. In the example bellow, the weak umask is only in /etc/csh.cshrc. However, the check /etc/profile is reported weak as well. Expected: Checking default umask values Checking default umask in /etc/bashrc [ OK ] Checking default umask in /etc/csh.cshrc [ WEAK ] Checking default umask in /etc/profile [ OK ] Actual: Checking default umask values Checking default umask in /etc/bashrc [ OK ] Chhhhecking default umask in /etc/csh.cshrc [ WEAK ] Chhhhecking default umask in /etc/profile [ WEAK ] | |||
2018-01-11 | Changed year | Michael Boelen | |
2017-09-18 | [SHLL-6220] Improved detection of shell settings like TMOUT | Michael Boelen | |
2017-05-03 | Code enhancements | Michael Boelen | |
2017-05-03 | [SHLL-6290] Removed ShellShock test as it is no longer needed - CVE-2017-8108 | Michael Boelen | |
2017-04-30 | [bulk change] cleaning up, code enhancements, initialization of variables, ↵ | Michael Boelen | |
and new tests | |||
2017-04-23 | Code enhancements | Michael Boelen | |
2017-03-08 | A bunch of Solaris compatibility tweaks (#367) | hlein | |
* Work around Solaris' /bin/sh not being POSIX. If /usr/xpg4/bin/sh is present, we are (definitely?) on Solaris or a derivative, and /bin/sh cannot be trusted to support POSIX, but /usr/xpg4/bin/sh can be. Exec it right away. * Work around Solaris 'which' command oddity. Solaris' (at least) 'which' command outputs not-found errors to STDOUT instead of STDERR. This makes "did we get any output from which" checks insufficient; piping to grep -v the "no foo in ..." message should work. Note that this patch set includes all such uses of which that I could find, including ones that should never be reached on Solaris (i.e. only executed on some other OS) just for consistency. * Improved alternate-sh exec to avoid looping. * Solaris' /usr/ucb/echo supports -n. * Check for the best hash type that openssl supports. When using openssl to generate hashes, do not assume it supports sha256; try that, then sha1, then give up and use md5. * Solaris does not support sed -i; use a tempfile. * Use the full path for modinfo. When running as non-root, /usr/sbin/ might not be in PATH. include/tests_accounting already calls modinfo by full path, but include/tests_kernel did not. * Solaris find does not support -maxdepth. This mirrors the logic already in tests_homedirs. * Use PSBINARY instead of ps. * Work around Solaris' date not supporting +%s. Printing nawk's srand value is a bizarre but apparently once popular workaround for there being no normal userland command to print UNIX epoch seconds. A perl one-liner is the other common approach, but nawk may be more reliably present on Solaris than perl. * Revert to using sha1 for HOSTID. * Whitespace cleanup for openssl hash tests. | |||
2017-03-06 | Various cleanups (#363) | hlein | |
* Typo fix. * Style change: always use $(), never ``. The Lynis code already mostly used $(), but backticks were sprinkled around. Converted all of them. * Lots of minor spelling/typo fixes. FWIW these were found with: find . -type f -print0 | xargs -0 cat | aspell list | sort -u | egrep '^[a-z]+$' | less And then reviewing the list to pick out things that looked like misspelled words as opposed to variables, etc., and then manual inspection of context to determine the intention. | |||
2017-02-09 | Changed date and preparing for release2.4.1 | Michael Boelen | |
2016-09-08 | Style improvements and command replacements | Michael Boelen | |
2016-08-25 | Use detected binaries | Michael Boelen | |
2016-08-10 | Removed unneeded field | Michael Boelen | |
2016-08-10 | Removed unneeded field for warnings and suggestions | Michael Boelen | |
2016-07-30 | Initialize variable and unset at end | Michael Boelen | |
2016-07-24 | Rename of categories, introduction of groups | Michael Boelen | |
2016-06-18 | Replaced text strings to allow translations | Michael Boelen | |
2016-05-03 | Rewritten counters and dealing with values | Michael Boelen | |
2016-04-28 | Replaced old function names with new ones | mboelen | |
2016-03-13 | Added link to website, blog, github | mboelen | |
2016-01-11 | Use CreateTempFile for creation of temporary files | mboelen | |
2015-12-21 | Rename of logtext and report functions, upcoming year change | mboelen | |
2015-10-10 | Optimized use of cat, grep and awk. | SiemKorteweg | |
Detection of duplicate entries in /etc/hosts is now more robust. On CentOS7 the SERVICE_MANAGER is detected correctly. | |||
2015-09-10 | Add test [SHLL-6230] to test for umask values in common shell configuration ↵ | mboelen | |
files | |||
2015-05-27 | Removing tests which were already performed in authentication section. | mboelen | |
2015-03-17 | Check timeout sessions and if they are readonly | mboelen | |
2015-03-17 | Enhance timeout check and ensure there are .sh files in /etc/profile.d | mboelen | |
2015-01-16 | Disabling Shellshock test as it gives false positives | mboelen | |
2015-01-03 | Update of the files to reflect HTTPS version of website and 2015. Happy New ↵ | mboelen | |
Year! | |||
2014-11-04 | Minor improvements to Shellshock test | mboelen | |
2014-10-27 | Hide RPM related database errors, show suggestion instead | mboelen | |
2014-10-19 | Improved Shellshock test by searching for bash via which if /etc/shell is ↵ | mboelen | |
not present | |||
2014-10-06 | When searching for bash shell, skip comment lines and only take first hit ↵ | mboelen | |
(e.g. Fedora has multiple hits) [SHLL-6290] | |||
2014-10-06 | Added Shellshock test improvements | mboelen | |
2014-10-06 | Added shellshocker checks. | d4t4king | |
2014-09-15 | Code cleanup and small enhancements | mboelen | |