Jaime Frutos Morales's blog

03/07/2009

Introducing Lynis

Filed under: Security, SysAdmin — acidborg @ 11:39

From its web: “Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes”.

Lynis is a very useful tool to find “big” security issues on a computer easily and quickly. Its tests are harmless and they take little time to run. Besides pointing out security issues, it also shows suggestions on how to improve your computer’s security.

It needs no installation. You just need to download the latest version from its web site and uncompress it:

tar xvf lynis-*.tar.gz

To run it, enter the directory where it was extracted and run (as root):

./lynis -c -Q

When the tests are finished, the results are showed divided in warnings and suggestions. This information is a good guide to start hardening your computer. If you want to learn more about the test performed and its results, you can read its report file /var/log/lynis.log .

Although Lynis is a great tool, hardening isn’t over after fixing all its warnings and suggestions. It is just the first step to hardening a computer, so getting good results doesn’t mean that your computer is secure. Remember: security is a process, not a state.

Advertisements

Blog at WordPress.com.

%d bloggers like this: