Lynis 2.4.0 发布了,该版本更新内容较多,具体如下:
New:
New group "system integrity" added
Support for clamconf utility
Chinese translation (language=cn)
New command "upload-only" to upload just the data instead of a full audit
Enhanced support for macOS, including HostID2 generation for macOS
Support for CoreOS
Detection for pkg binary (FreeBSD)
New command: lynis show hostids (show host ID)
New command: lynis show environment (hardware, VM, or container type)
New command: lynis show os (show operating system details)
Changes:
Several new sysctl values have been added to the default profile
Existing tests have been enhanced to support macOS
Tests:
AUTH-9234 - Support for macOS user gathering
BOOT-5139 - Support for machine roles in LILO test
BOOT-5202 - Improve uptime detection for macOS and others
FIRE-4518 - Improve pf detection and mark as root-only test
FIRE-4530 - Don't show error on screen for missing IPFW sysctl key
FIRE-4534 - Check Little Snitch on macOS
INSE-8050 - Test for insecure services on macOS
MACF-6208 - Allow non-privileged execution and filter permission issues
MALW-3280 - Detection for Avast and Bitdefender daemon on macOS
NETW-3004 - Support for macOS
PKGS-7381 - Improve test for pkg audit on FreeBSD
TIME-3104 - Chrony support extended
Plugins (community and commercial):
PLGN-1430 - Gather installed software packages for macOS
PLGN-4602 - Support for Clam definition check on macOS
Lynis 是一个为系统管理员提供的 Linux 和 Unix 的审计工具。Lynis 扫描系统的配置,并创建概述系统信息与安全问题所使用的专业审计。
软件详情:https://github.com/CISOfy/lynis/releases/tag/2.4.0
下载地址:https://github.com/CISOfy/lynis/archive/2.4.0.zip
来自:开源中国社区
