Fedora 21 Update: lynis-1.6.1-1.fc21
updates at fedoraproject.org
updates at fedoraproject.org
Sat Sep 27 10:04:24 UTC 2014
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-10874
2014-09-16 18:28:27
--------------------------------------------------------------------------------
Name : lynis
Product : Fedora 21
Version : 1.6.1
Release : 1.fc21
URL : http://cisofy.com/lynis/
Summary : Security and system auditing tool
Description :
Lynis is an auditing and hardening tool for Unix/Linux and you might even call
it a compliance tool. It scans the system and installed software. Then it
performs many individual security control checks. It determines the hardening
state of the machine, detects security issues and provides suggestions to
improve the security defense of the system.
--------------------------------------------------------------------------------
Update Information:
== 1.6.1 ==
New:
- Added --pentest parameter to run a non-privileged scans (e.g. for pentesting)
- Show skipped tests in report if they require root and scan is non-privileged
Changes:
- Improved vulnerable packages test on Debian based systems (apt-check) [PKGS-7392]
- Don't show warnings for 'swap' in 4th column fstab file [FILE-6336]
- Remove warning for old files in /tmp [FILE-6354]
- CheckUpdates function will have better output when no connection is available
- Changes to parameters and functions, to allow penetration tests with Lynis
- Test for actual files in /etc/modprobe.d before grepping in it
- Improved chown command when file permissions are incorrect
- Changed output of update test, show when status is unknown
- No scanning of symlinked directories (binaries test)
- Extended SafePerms function to also check for UID
- Several tests will have root-only bit set now
- Improved netstat tests on Arch Linux
== 1.6.0 ==
New:
- Added several new plugins to default profile
- HostID detection for AIX
Changes:
- Improvements for log file
- GetHostID function improved
- Improved detection of security repository for Debian based systems [PKGS-7388]
- Set default values for update check, to avoid error message on screen
- Cleanup for mail section, adding IMAP and POP3 protocols
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update lynis' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list