Lynis 2.4.0 发布,Linux 系统审计工具

Lynis 2.4.0 发布了,该版本更新内容较多,具体如下:New:New group "system integrity" addedSupport for clamconf utilityChinese translation (language=cn)New command "upload-only" to upload just the data instead of a full auditEnhanced support for macOS, including HostID2 generation for macOSSupport for CoreOSDetection for pkg binary (FreeBSD)New command: lynis show hostids (show host ID)New command: lynis show environment (hardware, VM, or container type)New command: lynis show os (show operating system details)Changes:Several new sysctl values have been added to the default profileExisting tests have been enhanced to support macOSTests:AUTH-9234 – Support for macOS user gatheringBOOT-5139 – Support for machine roles in LILO testBOOT-5202 – Improve uptime detection for macOS and othersFIRE-4518 – Improve pf detection and mark as root-only testFIRE-4530 – Don't show error on screen for missing IPFW sysctl keyFIRE-4534 – Check Little Snitch on macOSINSE-8050 – Test for insecure services on macOSMACF-6208 – Allow non-privileged execution and filter permission issuesMALW-3280 – Detection for Avast and Bitdefender daemon on macOSNETW-3004 – Support for macOSPKGS-7381 – Improve test for pkg audit on FreeBSDTIME-3104 – Chrony support extendedPlugins (community and commercial):PLGN-1430 – Gather installed software packages for macOSPLGN-4602 – Support for Clam definition check on macOS发布说明下载地址:Source code (zip)Source code (tar.gz)Lynis 是一个为系统管理员提供的 Linux 和 Unix 的审计工具 。 Lynis 扫描系统的配置,并创建概述系统信息与安全问题所使用的专业审计。

Read article here:  

Lynis 2.4.0 发布,Linux 系统审计工具