Fedora 20 Update: lynis-1.6.1-1.fc20

updates at fedoraproject.org updates at fedoraproject.org
Fri Sep 19 09:57:42 UTC 2014


--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-10952
2014-09-19 09:01:25
--------------------------------------------------------------------------------

Name        : lynis
Product     : Fedora 20
Version     : 1.6.1
Release     : 1.fc20
URL         : http://cisofy.com/lynis/
Summary     : Security and system auditing tool
Description :
Lynis is an auditing and hardening tool for Unix/Linux and you might even call
it a compliance tool. It scans the system and installed software. Then it
performs many individual security control checks. It determines the hardening
state of the machine, detects security issues and provides suggestions to
improve the security defense of the system.

--------------------------------------------------------------------------------
Update Information:

== 1.6.1 ==
New:
- Added --pentest parameter to run a non-privileged scans (e.g. for pentesting)
- Show skipped tests in report if they require root and scan is non-privileged

Changes:
- Improved vulnerable packages test on Debian based systems (apt-check) [PKGS-7392]
- Don't show warnings for 'swap' in 4th column fstab file [FILE-6336]
- Remove warning for old files in /tmp [FILE-6354]
- CheckUpdates function will have better output when no connection is available
- Changes to parameters and functions, to allow penetration tests with Lynis
- Test for actual files in /etc/modprobe.d before grepping in it
- Improved chown command when file permissions are incorrect
- Changed output of update test, show when status is unknown
- No scanning of symlinked directories (binaries test)
- Extended SafePerms function to also check for UID
- Several tests will have root-only bit set now
- Improved netstat tests on Arch Linux

== 1.6.0 ==
New:
- Added several new plugins to default profile
- HostID detection for AIX

Changes:
- Improvements for log file
- GetHostID function improved
- Improved detection of security repository for Debian based systems [PKGS-7388]
- Set default values for update check, to avoid error message on screen
- Cleanup for mail section, adding IMAP and POP3 protocols
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Christopher Meng <rpm at cicku.me> - 1.6.1-1
- Update to 1.6.1
* Sun Aug  3 2014 Christopher Meng <rpm at cicku.me> - 1.5.9-1
- Update to 1.5.9
* Fri Jul 11 2014 Christopher Meng <rpm at cicku.me> - 1.5.7-1
- Update to 1.5.7
* Mon Jun 16 2014 Christopher Meng <rpm at cicku.me> - 1.5.6-1
- Update to 1.5.6
* Sat Jun  7 2014 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.5.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Wed May 21 2014 Christopher Meng <rpm at cicku.me> - 1.5.3-1
- Update to 1.5.3
* Fri Apr 11 2014 Christopher Meng <rpm at cicku.me> - 1.5.0-1
- Update to 1.5.0
* Sat Mar  8 2014 Christopher Meng <rpm at cicku.me> - 1.4.4-1
- Update to 1.4.4
* Thu Feb 27 2014 Christopher Meng <rpm at cicku.me> - 1.4.3-1
- Update to 1.4.3
* Fri Feb 21 2014 Christopher Meng <rpm at cicku.me> - 1.4.2-1
- Update to 1.4.2
* Wed Feb 19 2014 Christopher Meng <rpm at cicku.me> - 1.4.1-1
- Update to 1.4.1
* Fri Feb  7 2014 Christopher Meng <rpm at cicku.me> - 1.4.0-1
- Update to 1.4.0
* Fri Jan 10 2014 Christopher Meng <rpm at cicku.me> - 1.3.9-1
- Update to 1.3.9
* Sat Dec 28 2013 Christopher Meng <rpm at cicku.me> - 1.3.8-1
- Update to 1.3.8
* Thu Dec 12 2013 Christopher Meng <rpm at cicku.me> - 1.3.7-1
- Update to 1.3.7
* Wed Dec  4 2013 Christopher Meng <rpm at cicku.me> - 1.3.6-1
- Update to 1.3.6
* Tue Nov 26 2013 Christopher Meng <rpm at cicku.me> - 1.3.5-1
- Update to 1.3.5
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update lynis' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------


More information about the package-announce mailing list