| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2021-01-07 | Preparation for release 3.0.3 | Michael Boelen | |
| 2020-10-25 | Merge branch 'master' into add-suricata-ids-ips-test | Michael Boelen | |
| 2020-10-22 | Add translate function for all sections | Stéphane | |
| + add EN and FR up to date languages files | |||
| 2020-10-11 | Add test for Suricata IDS/IPS | Timo Sigurdsson | |
| Commit 94e0a4e added a test for the Suricata binary, but the result appears to be used nowhere. Add a proper test for an active Suricata daemon in the IDS/IPS tooling section. Signed-off-by: Timo Sigurdsson <public_timo.s@silentcreek.de> | |||
| 2020-03-20 | Updated date/year | Michael Boelen | |
| 2019-12-18 | Code style improvement: quote argument | Michael Boelen | |
| 2019-09-17 | Implemented several code style improvements | Michael Boelen | |
| 2019-08-28 | [TOOL-5160] added support for OSSEC agent daemon | Michael Boelen | |
| 2019-07-16 | Differentiate between a discovered binary and running process | Michael Boelen | |
| 2019-07-16 | Use -n instead of ! -z | Michael Boelen | |
| 2019-01-31 | Changed year and preparing for new release | Michael Boelen | |
| 2018-10-23 | Added and changed description for TOOL-5160 | Michael Boelen | |
| 2018-10-23 | Renamed variable | Michael Boelen | |
| 2018-10-23 | [TOOL-5160] OSSEC detection test | Michael Boelen | |
| 2018-01-11 | Changed year | Michael Boelen | |
| 2017-10-29 | Code enhancements, improve detection for Puppet | Michael Boelen | |
| 2017-08-17 | [TOOL-5002] performance enhancement to reduce number of dirs/files to check | Michael Boelen | |
| 2017-08-17 | [TOOL-5002] rewrite of Ansible detection | Michael Boelen | |
| 2017-08-17 | [TOOL-5002] Ansible detection added | Michael Boelen | |
| 2017-04-30 | [bulk change] cleaning up, code enhancements, initialization of variables, ↵ | Michael Boelen | |
| and new tests | |||
| 2017-04-23 | Code enhancements | Michael Boelen | |
| 2017-03-27 | Minor cleanups | Michael Boelen | |
| 2017-03-27 | Add additional check for Puppet tool | Michael Boelen | |
| 2017-03-08 | A bunch of Solaris compatibility tweaks (#367) | hlein | |
| * Work around Solaris' /bin/sh not being POSIX. If /usr/xpg4/bin/sh is present, we are (definitely?) on Solaris or a derivative, and /bin/sh cannot be trusted to support POSIX, but /usr/xpg4/bin/sh can be. Exec it right away. * Work around Solaris 'which' command oddity. Solaris' (at least) 'which' command outputs not-found errors to STDOUT instead of STDERR. This makes "did we get any output from which" checks insufficient; piping to grep -v the "no foo in ..." message should work. Note that this patch set includes all such uses of which that I could find, including ones that should never be reached on Solaris (i.e. only executed on some other OS) just for consistency. * Improved alternate-sh exec to avoid looping. * Solaris' /usr/ucb/echo supports -n. * Check for the best hash type that openssl supports. When using openssl to generate hashes, do not assume it supports sha256; try that, then sha1, then give up and use md5. * Solaris does not support sed -i; use a tempfile. * Use the full path for modinfo. When running as non-root, /usr/sbin/ might not be in PATH. include/tests_accounting already calls modinfo by full path, but include/tests_kernel did not. * Solaris find does not support -maxdepth. This mirrors the logic already in tests_homedirs. * Use PSBINARY instead of ps. * Work around Solaris' date not supporting +%s. Printing nawk's srand value is a bizarre but apparently once popular workaround for there being no normal userland command to print UNIX epoch seconds. A perl one-liner is the other common approach, but nawk may be more reliably present on Solaris than perl. * Revert to using sha1 for HOSTID. * Whitespace cleanup for openssl hash tests. | |||
| 2017-03-06 | Various cleanups (#363) | hlein | |
| * Typo fix. * Style change: always use $(), never ``. The Lynis code already mostly used $(), but backticks were sprinkled around. Converted all of them. * Lots of minor spelling/typo fixes. FWIW these were found with: find . -type f -print0 | xargs -0 cat | aspell list | sort -u | egrep '^[a-z]+$' | less And then reviewing the list to pick out things that looked like misspelled words as opposed to variables, etc., and then manual inspection of context to determine the intention. | |||
| 2017-02-09 | Changed date and preparing for release2.4.1 | Michael Boelen | |
| 2016-09-26 | Add support for Rudder configuration management (#284) | Florian Heigl | |
| Rudder (http://www.rudder-project.org) is a config management tool with automatic reporting / dynamic policy adjustment. The "dynamic" bit happens using FusionInventory. The config management part uses CFEngine under the hood. I don't know if hw/os inventory tools also matter in the Lynis report, if yes, I can look into that too. This patch extends the path searched to detect a running CFEngine agent (and fileserver daemon) Since the agent is the same, this should immediately detect it. | |||
| 2016-09-08 | Style improvements and command replacements | Michael Boelen | |
| 2016-08-25 | Use detected binaries | Michael Boelen | |
| 2016-07-30 | Start of refactor fail2ban tests and splitting them into different test areas | Michael Boelen | |
| 2016-07-24 | Rename of categories, introduction of groups | Michael Boelen | |
| 2016-06-18 | Replaced text strings to allow translations | Michael Boelen | |
| 2016-04-28 | Replaced old function names with new ones | mboelen | |
| 2016-04-28 | Replaced functions and minor cleanups | mboelen | |
| 2016-04-15 | Change of variables for IDS/IPS and layout changes | mboelen | |
| 2016-04-15 | [TOOL-5102] Imported Fail2ban support and minor improvements | mboelen | |
| 2016-04-15 | Replaced call to iptables with $IPTABLESBINARY (#167) | Eric Light | |
| * Replaced call to iptables with $IPTABLESBINARY * Check for iptables before checking Fail2Ban chain | |||
| 2016-04-13 | Added tooling tests for Fail2Ban (#162) | Eric Light | |
| * Added binary for Fail2Ban * Added test for Fail2Ban (presence and configuration) * Added test to check for enabled Fail2Ban jails * Added test to confirm at least one enabled jail. Fixed regex. * Added check to confirm iptables has a fail2ban chain | |||
| 2016-03-13 | Removed copyright line, added description | mboelen | |
| 2016-03-13 | Added link to website, blog, github | mboelen | |
| 2015-12-21 | Rename of logtext and report functions, upcoming year change | mboelen | |
| 2015-09-08 | Improved tests and logging for automation tools | mboelen | |
| 2015-09-08 | Fixed typos | Alexander Lobodzinski | |
| 2015-09-08 | Detect automation with Cfengine 3 | Alexander Lobodzinski | |
| 2015-07-22 | Remove incomplete tests, code enhancements | mboelen | |
| 2015-05-26 | Changed last line | mboelen | |
| 2015-05-25 | Chef support added | mboelen | |
| 2015-01-03 | Update of the files to reflect HTTPS version of website and 2015. Happy New ↵ | mboelen | |
| Year! | |||
| 2014-12-05 | Log status of Salt tools and add them to report | mboelen | |
| 2014-09-18 | Added SaltStack tooling | mboelen | |
Welcome to mirror list, hosted at ThFree Co, Russian Federation.
 |
index : github.com/CISOfy/lynis.git | |
| Unnamed repository; edit this file 'description' to name the repository. | www-data |
| summaryrefslogtreecommitdiff |