{"id":1133,"date":"2017-05-23T16:42:44","date_gmt":"2017-05-23T20:42:44","guid":{"rendered":"http:\/\/easy-admin.ca\/?p=1133"},"modified":"2017-08-21T10:25:54","modified_gmt":"2017-08-21T14:25:54","slug":"lynis-new-version-2-4-2","status":"publish","type":"post","link":"https:\/\/easy-admin.ca\/index.php\/2017\/05\/23\/lynis-new-version-2-4-2\/","title":{"rendered":"Lynis new version 2.5.0"},"content":{"rendered":"

\"\"<\/p>\n

Lynis Security Auditing<\/h3>\n

Lynis is our system and security auditing tool<\/a> for Linux, Mac OS X, and UNIX-based systems.<\/p>\n

It provides insights in how well a system is hardened and what you can do, to improve your security defenses.<\/p>\n

The software is open source<\/em> and free<\/em> to use. It is updated on a regular basis, to keep up with new technologies.<\/p>\n

Security should be simple, but it is definitely not. With Lynis you gain quick insights in how well you are protecting your crown jewels. From your personal notebook to surf the web, up to where your company\u2019s\u00a0biggest secrets are stored.<\/p>\n

We suggest people using it daily & compare the results for example:
\nhttps:\/\/linux-audit.com\/find-differences-between-two-daily-lynis-audits<\/a><\/p>\n

Installation steps:<\/strong><\/p>\n

cd \/tmp
\nwget https:\/\/cisofy.com\/files\/lynis-2.5.0.tar.gz
\ntar xvfz lynis-2.5.0.tar.gz
\nmv lynis cd<\/strong><\/p>\n

Move all contents of \/tmp\/cd<\/strong> into \/usr\/local\/lynis<\/strong>
\n* Make sure that \u00a0lynis<\/strong>\u00a0file is 775 or else you will get a perm denied \ud83d\ude09<\/p>\n

To scan the server first do a update!
\n<\/strong><\/p>\n

# lynis update info<\/strong><\/p>\n

Then to actually scan the system:<\/p>\n

# lynis audit system<\/strong><\/p>\n

\"\"<\/p>\n

Once the scan is over you will get a System Scan Summary<\/strong>
\nNote:<\/strong> This is the actual results of easy-admin.ca server<\/em><\/span><\/p>\n

\"\"<\/p>\n

Lynis suggests also a very good things that might be tampered to make the system more secure, so using some of its output when I have time I’ll work out on hardening all servers.<\/p>\n

Commercial support available<\/strong><\/p>\n

For companies who prefer additional support, we have also Lynis Enterprise<\/a>. It uses Lynis as a client. On top of that, it has additional plugins, reporting, central management, a dashboard, and more guidance (e.g. hardening snippets). With Lynis in its core, you are assured of a stable piece of software, which is up-to-date.<\/p>\n

Examples of plugins:<\/em><\/strong><\/p>\n