Fedora 23 Update: lynis-2.1.1-1.fc23
updates at fedoraproject.org
updates at fedoraproject.org
Thu Oct 8 10:37:26 UTC 2015
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-36ec8c9514
2015-10-08 10:33:23.509867
--------------------------------------------------------------------------------
Name : lynis
Product : Fedora 23
Version : 2.1.1
Release : 1.fc23
URL : https://cisofy.com/lynis/
Summary : Security and system auditing tool
Description :
Lynis is an auditing and hardening tool for Unix/Linux and you might even call
it a compliance tool. It scans the system and installed software. Then it
performs many individual security control checks. It determines the hardening
state of the machine, detects security issues and provides suggestions to
improve the security defense of the system.
--------------------------------------------------------------------------------
Update Information:
# Lynis 2.1.1 (2015-07-22) This release adds a lot of improvements, with focus
on performance, and additional support for common Linux distributions and
external utilities. We recommend to use this latest version. #### Operating
system enhancements * Support for systems like CentOS, openSUSE, Slackware is
improved. ####Performance * Performance tuning has been applied, to speed up
execution of the audit on systems with many files. This also includes code
cleanups. ####Automatic updates * Initial work on an automatic updater has been
implemented. This way Lynis can be scheduled for automatic updating from a
trusted source. ####Internal functions * Not all systems have readlink, or the
`-f` option of `readlink`. The ShowSymlinkPath function has been extended with a
Python based check, which is often available. ####Software support * Apache
module directory `/usr/lib64/apache` has been added, which is used on openSUSE.
* Support for Chef has been added. * Added tests for CSF's lfd utility for
integrity monitoring on directories and files. Related tests are FINT-4334 and
FINT-4336. * Added support for Chrony time daemon and timesync daemon.
Additionally NTP sychronization status is checked when it is enabled. * Improved
single user mode protection on the rescue.service file. ####Other * Check for
user permissions has been extended. * Python binary is now detected, to help
with symlink detection. * Several new legal terms have been added, which are
used for usage in banners. * In several files old tests have been removed, to
further clean up the code. ####Bug fixes * Nginx test showed error when
access_log had multiple parameters. * Tests using locate won't be performed if
not present. * Fix false positive match on Squid unsafe ports [SQD-3624]. * The
hardening index is now also inserted into the report if it is not displayed on
screen.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1245849 - lynis-2.1.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1245849
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update lynis' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list