Linux系统审计工具-Lynis


Lynis是一个为系统管理员提供的 Linux和Unix的审计工具。Lynis扫描系统的配置,并创建概述系统信息与安全问题所使用的专业审计,采用shell开发并在GPLv3协议下授权。

Security and system auditing tool to harden Linux systems (and more)
Lynis is an auditing tool for Unix/Linux (specialists). It scans the system and available software and performs many individual security checks. It determines the hardening state of the machine and detects security issues. Beside security related information it will also scan for general system information, installed packages and possible configuration errors.
This software aims in assisting automated auditing, hardening, software patch management, vulnerability and malware scanning of Unix/Linux based systems. It can be run without prior installation, so inclusion on read only storage is possible (USB stick, cd/dvd).
Lynis assists auditors in performing Basel II, GLBA, HIPAA, PCI DSS and SOx (Sarbanes-Oxley) compliance audits.
最新版本:2.0
此版本是第一个 2.x 分支版本,包括一些新特性,简化和改进了基于 Unix 系统的审计,包括 BSD, Linux, Mac OS 和传统的系统: AIX, HPUX 和 Solaris。新特性和大量的改进造就了这个重要的版本更新,更新内容如下:
* 改进操作系统支持
* 使用更多的实用新技术:systemd,Docker,nftables 等
* Lynis 企业化
* 新参数和选项
--dump-options (see all options)
--report-file (define a different location for the report file)
* 常规改进
更多改进内容请看更新日志。
项目主页:http://www.rootkit.nl/projects/lynis.html

Security and system auditing tool to harden Linux systems (and more)
Lynis is an auditing tool for Unix/Linux (specialists). It scans the system and available software and performs many individual security checks. It determines the hardening state of the machine and detects security issues. Beside security related information it will also scan for general system information, installed packages and possible configuration errors.
This software aims in assisting automated auditing, hardening, software patch management, vulnerability and malware scanning of Unix/Linux based systems. It can be run without prior installation, so inclusion on read only storage is possible (USB stick, cd/dvd).
Lynis assists auditors in performing Basel II, GLBA, HIPAA, PCI DSS and SOx (Sarbanes-Oxley) compliance audits.
最新版本:2.0
此版本是第一个 2.x 分支版本,包括一些新特性,简化和改进了基于 Unix 系统的审计,包括 BSD, Linux, Mac OS 和传统的系统: AIX, HPUX 和 Solaris。新特性和大量的改进造就了这个重要的版本更新,更新内容如下:
* 改进操作系统支持
* 使用更多的实用新技术:systemd,Docker,nftables 等
* Lynis 企业化
* 新参数和选项
--dump-options (see all options)
--report-file (define a different location for the report file)
* 常规改进
更多改进内容请看更新日志。
项目主页:http://www.rootkit.nl/projects/lynis.html
该文章最后由 阿炯 于 2015-04-05 20:03:58 更新,目前是第 2 版。