@mboelen mboelen released this Oct 26, 2018 · 2 commits to master since this release

Assets 2

Lynis 2.7.0 (2018-10-26)

Added

  • MACF-6240 - Detection of TOMOYO binary
  • MACF-6242 - Status of TOMOYO framework
  • SSH-7406 - OpenSSH server version detection
  • TOOL-5160 - Check active OSSEC analysis daemon

Changed

  • Changed several warning labels on screen
  • AUTH-9308 - More generic sulogin for systemd rescue.service
  • OS detection now ignores quotes for getting the OS ID.

@mboelen mboelen released this Sep 19, 2018 · 19 commits to master since this release

Assets 2

Lynis 2.6.9 (2018-09-19)

Changed

  • Man page has been updated
  • Command 'lynis show options' provides up-to-date list
  • Option '--dump-options' is deprecated
  • Several options and commands have been extended with more examples
  • OS detection now supports openSUSE specific distribution names
  • Changed command output when using 'lynis audit system remote'
  • DBS-1882 - added /usr/local/redis/etc path and QNAP support
  • PKGS-7322 - updated solution text
  • KRNL-5788 - ignore exception when no vmlinuz file was discovered
  • TIME-3104 - extended logging for test

@mboelen mboelen released this Aug 23, 2018 · 40 commits to master since this release

Assets 2

Lynis 2.6.8 (2018-08-23)

Changed

  • BOOT-5104 - improved parsing of boot parameters to init process
  • PHP-2372 - test all PHP files for expose_php and improved logging
  • Alpine Linux detection for Docker audit
  • Docker check now tests also for CMD, ENTRYPOINT, and USER configuration
  • Improved display in Docker output for showing which keys are used for signing

@mboelen mboelen released this Aug 9, 2018 · 49 commits to master since this release

Assets 2

Lynis 2.6.7 (2018-08-09)

Changed

  • BOOT-5104 - Added busybox as a service manager
  • KRNL-5677 - Limit PAE and no-execute test to AMD64 hardware only
  • LOGG-2190 - Ignore /dev/zero and /dev/[aio] as deleted files
  • SSH-7408 - Changed classification of SSH root login with keys
  • Docker scan uses new format for maintainer value
  • New URL structure on CISOfy website implemented for Lynis controls

@mboelen mboelen released this Jul 6, 2018 · 66 commits to master since this release

Assets 2

Lynis 2.6.6 (2018-07-06)

Improvements

Fixed

  • Under some condition no hostid2 value was reported
  • Solved 'extra operand' issue with tr command

@mboelen mboelen released this Jun 26, 2018 · 73 commits to master since this release

Assets 2

Lynis 2.6.5 (2018-06-26)

Tests:

  • [MAIL-8804] - Exim configuration test
  • [NETW-2704] - Use FQDN to test status of a nameserver instead of own IP address
  • [SSH-7402] - Improved test to allow configurations with a Match block

@mboelen mboelen released this May 2, 2018 · 85 commits to master since this release

Assets 2

Lynis 2.6.4 (2018-05-02)

Changes:

  • Several contributions merged, including grammar improvements
  • Initial support for Ubuntu 18.04 LTS
  • Small enhancements for usage

Tests:

  • [AUTH-9308] - Made 'sulogin' more generic for systemd rescue shell
  • [DNS-1600] - Initial work on DNSSEC validation testing
  • [NETW-2704] - Added support for local resolver 127.0.0.53
  • [PHP-2379] - Suhosin test disbled
  • [SSH-7408] - Removed 'DELAYED' from OpenSSH Compression setting
  • [TIME-3160] - Improvements to detect step-tickers file and entries

@mboelen mboelen released this Mar 7, 2018 · 110 commits to master since this release

Assets 2

Lynis 2.6.3 (2018-03-07)

Changes:

  • Change in routine for host identifiers

Tests:

  • [CRYP-7902] - Do prevalidation for certificates before testing them
  • [HRDN-7222] - Enhanced compiler permission test
  • [NAME-4402] - Improved test to filter out empty lines
  • [PKGS-7384] - Changes to detect yum-utils package and related tooling

Plugins:

  • [PLGN-2680] - cron file permissions

@mboelen mboelen released this Feb 13, 2018 · 128 commits to master since this release

Assets 2

Lynis 2.6.2 (2018-02-13)

Changes:

  • Bugfix for Arch Linux (binary detection)
  • Textual changes for several tests
  • Update of tests database

@mboelen mboelen released this Jan 26, 2018 · 135 commits to master since this release

Assets 2

Lynis 2.6.1 (2018-01-26)

Changes:

  • Tests can have more than 1 required OS (e.g. Linux OR NetBSD)
  • Added 'system-groups' option to profile (Enterprise users)
  • Overhaul of default profile and migrate to new style (setting=value)
  • Show warning if old profile options are used
  • Improved detection of binaries
  • New group 'usb' for tests related to USB devices

Tests:

  • [FILE-6363] - New test for /var/tmp (sticky bit)
  • [MAIL-8802] - Added exim4 process name to improve detection of Exim
  • [NETW-3030] - Changed name of dhcp client name process and added udhcpc
  • [SSH-7408] - Restored UsePrivilegeSeparation
  • [TIME-3170] - Added chrony configuration file for NetBSD