From 632007bc02f56fdb4e0e18041aea9d114b8c2030 Mon Sep 17 00:00:00 2001
From: mboelen <michael@cisofy.com>
Date: Tue, 11 Nov 2014 19:04:54 +0100
Subject: Added /srv/www as SSL certificate search path and enabled several
 plugins by default

---
 default.prf | 14 ++++++++++++--
 1 file changed, 12 insertions(+), 2 deletions(-)

(limited to 'default.prf')

diff --git a/default.prf b/default.prf
index 2a750b93..d22cc7f4 100644
--- a/default.prf
+++ b/default.prf
@@ -52,20 +52,29 @@ config:show_tool_tips:1:
 #
 # Plugins
 # ---------------
-# Define which plugins are enabled (nothing happens if plugin isn't available)
+# Define which plugins are enabled
+# (nothing happens if plugin isn't available)
 #
 #################################################################################
 
+# Lynis Plugins for Enterprise Users
 plugin=compliance
 plugin=control-panels
+plugin=crypto
+plugin=dns
 plugin=docker
 plugin=file-integrity
 plugin=file-systems
 plugin=files
 plugin=firewalls
+plugin=kernel
+plugin=memory
+plugin=nginx
 plugin=processes
+plugin=security-modules
 plugin=software
 plugin=system-integrity
+plugin=users
 
 #################################################################################
 #
@@ -92,6 +101,7 @@ sysctl:kernel.core_uses_pid:1:1:XXX:
 sysctl:kernel.ctrl-alt-del:0:1:XXX:
 sysctl:kernel.exec-shield-randomize:1:1:XXX:
 sysctl:kernel.exec-shield:1:1:XXX:
+sysctl:kernel.kptr_restrict:1:1:Restrict access to kernel symbols:
 sysctl:kernel.sysrq:0:1:Disable magic SysRQ:
 sysctl:kernel.use-nx:0:1:XXX:
 
@@ -178,7 +188,7 @@ openldap:slapd.conf:owner:ldap-root:
 #################################################################################
 
 # Locations where to search for SSL certificates
-ssl:certificates:/etc/pki /etc/ssl /usr/local/share/ca-certificates /var/www:
+ssl:certificates:/etc/pki /etc/ssl /usr/local/share/ca-certificates /var/www /srv/www:
 
 
 #################################################################################
-- 
cgit v1.2.3