2009年12月10日安全工具更新
2009-12-10 09:14
92 查看
1.Lynix 1.2.8
We wrote about Lynis here. The latest version – 1.2.8 is now out for all of you! This release adds initial support for Squid and several tests related to user authentication. Several improvements have been made, including some small bugfixes.
“Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.
This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems. It can be run without prior installation, so inclusion on read only storage is no problem (USB stick, cd/dvd).
Lynis assists auditors in performing Basel II, GLBA, HIPAA, PCI DSS and SOX (Sarbanes-Oxley) compliance audits.“
This is the change log for Lynis 1.2.8 (2009-12-08):
New:
- Squid support added
- Squid daemon detection [SQD-3602]
- Squid configuration file search [SQD-3604]
- Squid version detection [SQD-3606]
- Check /etc/motd banner [BANN-7122]
- Check /etc/issue.net file [BANN-7128]
- Check contents in /etc/issue.net [BANN-7130]
- Solaris single user mode login check (/etc/default/sulogin) [AUTH-9304]
- HP-UX boot authentication check [AUTH-9306]
- Linux single user mode authentication check [AUTH-9308]
- Solaris account locking policy check [AUTH-9340]
Changes:
- Added prerequisite to SSH test, so the test is skipped properly [SSH-7440]
- Check for /etc/issue symlink [BANN-7124]
- Added file check for possible harmful shells found [AUTH-9218]
- Add user home directories to report [HOME-9302]
- Extended Linux run level test with support for Debian/Ubuntu [KRNL-5622]
- Added /lib64/security to PAM test [AUTH-9262]
- Extended security repository check [PKGS-7388]
- Iptables check should not check for a module in a Linux config [FIRE-4511]
- Ignore APC ups daemon when scanning for CUPS [PRNT-2304]
- Improved kernel logger daemon check [LOGG-2138]
- Added auditctl to binary check [ACCT-9630]
- Log used auditd ruleset [ACCT-9630]
- Corrected logging of Solaris c2audit module [ACCT-9656]
- Fixed warning function for Solaris passwordless accounts [AUTH-9254]
- Commented kern.randompid in default profile
- For sysctl the parameter -n will be used on Linux systems
- Changed syslog daemon detection and state
- Extended report file
… and more.
Download lynis-1.2.8.tar.gz here.
2.Matriux
http://s283418514.onlinehome.us/distro/0.9.4/matriux-0.9.4-091127.iso
We wrote about Lynis here. The latest version – 1.2.8 is now out for all of you! This release adds initial support for Squid and several tests related to user authentication. Several improvements have been made, including some small bugfixes.
“Lynis is an auditing tool for Unix (specialists). It scans the system and available software, to detect security issues. Beside security related information it will also scan for general system information, installed packages and configuration mistakes.
This software aims in assisting automated auditing, software patch management, vulnerability and malware scanning of Unix based systems. It can be run without prior installation, so inclusion on read only storage is no problem (USB stick, cd/dvd).
Lynis assists auditors in performing Basel II, GLBA, HIPAA, PCI DSS and SOX (Sarbanes-Oxley) compliance audits.“
This is the change log for Lynis 1.2.8 (2009-12-08):
New:
- Squid support added
- Squid daemon detection [SQD-3602]
- Squid configuration file search [SQD-3604]
- Squid version detection [SQD-3606]
- Check /etc/motd banner [BANN-7122]
- Check /etc/issue.net file [BANN-7128]
- Check contents in /etc/issue.net [BANN-7130]
- Solaris single user mode login check (/etc/default/sulogin) [AUTH-9304]
- HP-UX boot authentication check [AUTH-9306]
- Linux single user mode authentication check [AUTH-9308]
- Solaris account locking policy check [AUTH-9340]
Changes:
- Added prerequisite to SSH test, so the test is skipped properly [SSH-7440]
- Check for /etc/issue symlink [BANN-7124]
- Added file check for possible harmful shells found [AUTH-9218]
- Add user home directories to report [HOME-9302]
- Extended Linux run level test with support for Debian/Ubuntu [KRNL-5622]
- Added /lib64/security to PAM test [AUTH-9262]
- Extended security repository check [PKGS-7388]
- Iptables check should not check for a module in a Linux config [FIRE-4511]
- Ignore APC ups daemon when scanning for CUPS [PRNT-2304]
- Improved kernel logger daemon check [LOGG-2138]
- Added auditctl to binary check [ACCT-9630]
- Log used auditd ruleset [ACCT-9630]
- Corrected logging of Solaris c2audit module [ACCT-9656]
- Fixed warning function for Solaris passwordless accounts [AUTH-9254]
- Commented kern.randompid in default profile
- For sysctl the parameter -n will be used on Linux systems
- Changed syslog daemon detection and state
- Extended report file
… and more.
Download lynis-1.2.8.tar.gz here.
2.Matriux
http://s283418514.onlinehome.us/distro/0.9.4/matriux-0.9.4-091127.iso
相关文章推荐
- 2009年12月04日安全工具更新
- linux运维安全工具集合[持续更新中..]
- Kali linux 2016.2(Rolling)里的应用更新和配置额外安全工具
- 【安全工具】namp扫描常用命令整理(不定期更新)
- 波兰antirootkit安全辅助工具 gmer 1.0.15.15627更新
- 2009年12月16日安全工具更新
- 微软3389远程桌面工具报高危安全漏洞请大家及时更新补丁KB2621440
- 2009年12月9日安全工具更新
- 2009年12月11日安全工具更新
- 2009年12月08日安全工具更新
- linux安全---系统更新+弱口令检测工具+nmap扫描工具
- [持续更新]Eclipse工具的各宗疑难杂症
- 更新 IDE 和 SDK 工具
- python工具代码之身份证校验持续更新:【内向即失败--王奕君】
- 工具效率-使用Windows计划任务更新SVN
- 域安全通道实用工具nltest.exe的使用简介(一)
- ASP.NET网站管理工具的【安全】功能无法使用问题
- 好用工具推荐--持续更新
- 一款不错的服务器安全设置小工具
- 记录一下一些服务器的安全配置(随时更新)