Fedora 22 Update: lynis-2.1.0-1.fc22

Wed Jul 29 01:55:12 UTC 2015

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-11552
2015-07-14 12:21:42
--------------------------------------------------------------------------------

Name        : lynis
Product     : Fedora 22
Version     : 2.1.0
Release     : 1.fc22
URL         : https://cisofy.com/lynis/
Summary     : Security and system auditing tool
Description :
Lynis is an auditing and hardening tool for Unix/Linux and you might even call
it a compliance tool. It scans the system and installed software. Then it
performs many individual security control checks. It determines the hardening
state of the machine, detects security issues and provides suggestions to
improve the security defense of the system.

--------------------------------------------------------------------------------
Update Information:

=  Lynis 2.1.0 (2015-04-16)  =

General:
---------
* Screen output has been improved to provide additional information.

OS support:
------------
* CUPS detection on Mac OS has been improved. AIX systems will now use csum utility to create host ID. Group check have been altered on AIX, to include the -n ALL. Core dump check on Linux is extended to check for actual values as well.

Software:
----------
* McAfee detection has been extended by detecting a running cma binary.
* Improved detection of pf firewall on BSD and Mac OS. Security patch checking with zypper extended.

Session timeout:
-----------------
* Tests to determine shell time out setting have been extended to account for AIX, HP-UX and other platforms. It will now determine also if variable is exported as a readonly variable. Related compliance section PCI DSS 8.1.8 has been extended.

Documentation:
---------------
* New document: Getting started with Lynis https://cisofy.com/documentation/lynis/get-started/

--------------------------------------------------------------

=  Lynis 2.0.0 (2015-02-25)  =

* The first release within the 2.x branch! It includes several new features, to simplify or improve auditing on Unix based systems, including BSD, Linux, Mac OS and more traditional systems like AIX, HPUX and Solaris.

* New features and many improvements are the reason for the bump to a major release, also a beginning of a new era. Many tools to audit or harden systems have being released, yet none have been maintained over a long period of time.

Helpers:
--------
* New in this release is the support for helpers. Small utilities which enhance Lynis by providing a single goal. The first helper available is to audit Docker build files.

Improved OS support:
--------------------
* Many changes have been implemented to better support Linux, FreeBSD, NetBSD DragonBSD and OpenBSD in particular. Upcoming releases will include smaller "improvement rounds" for other systems as well.

New technologies:
-----------------
* More utilities and technologies are supported now. Technologies and tools like systemd, Docker, nftables.

New parameters:
---------------
* Several new options have been added:

--dump-options (see all options)
--report-file (define a different location for the report file)

General:
--------
* Documentation on the website has been extended: https://cisofy.com/support/

* The man page, Lynis binary and several tests have improved texts.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jul 13 2015 Christopher Meng <rpm at cicku.me> - 2.1.0-1
- Update to 2.1.0
* Wed Jun 17 2015 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.6.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update lynis' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------