Lynis: Chengetedzo yekuongorora software paLinux, macOS uye UNIX

Linux Post Install

13 maminitsi

Lynis: Chengetedzo yekuongorora software paLinux, macOS uye UNIX

Lynis: Chengetedzo yekuongorora software paLinux, macOS uye UNIX

Mune positi yakatangira izvi, takafukidza chidzidzo chezvehunyanzvi ruzivo, kuisirwa uye kushandiswa kweiyo murayiro wekuongorora, anozivikanwa zviri nani sa Linux Audit Framework (Linux Audit Framework). Izvo, uye sezvinoratidza zita rayo, inopa a CAPP inoenderana nekuongorora system, iyo inokwanisa kuunganidza zvakavimbika ruzivo nezve chero chengetedzo-inoenderana (kana kwete) chiitiko pane Linux inoshanda sisitimu.

Nokuda kwechikonzero ichi, taona kuti zvakakodzera uye zvakakodzera kugadzirisa nhasi software yakafanana, yakawanda yakakwana, yepamusoro uye inoshanda, inonzi. "Lynis". izvo zvakare a chengetedzo yekuongorora software, yemahara, yakavhurika uye yemahara, uye inoshumira zvakafanana uye nezvimwe, sezvatichaona pazasi.

Linux Audit Framework: Zvese Nezve Auditd Command

Linux Audit Framework: Zvese Nezve Auditd Command

Asi, usati watanga iyi inonakidza positi nezve chengetedzo yekuongorora software "Lynis", tinokurudzira iyo yapfuura inoenderana posvo, kuti uverenge gare gare:

Linux Audit Framework: Zvese Nezve Auditd Command
Nyaya inoenderana:
Linux Audit Framework: Zvese Nezve Auditd Command

Lynis: Otomatiki Chengetedzo Audit Tool

Lynis: Otomatiki Chengetedzo Audit Tool

Chii chinonzi Lynis?

Zvinoenderana newebhusaiti yayo yepamutemo, vagadziri vayo vanotsanangura muchidimbu software yakati, seinotevera:

"Lynis ihondo-yakaedzwa kuchengetedza chishandiso kune masisitimu anomhanyisa Linux, macOS, kana Unix-yakavakirwa masisitimu anoshanda. Inoita ongororo yakazara yehutano hwemasisitimu ako kutsigira kuomarara kwehurongwa uye kuyedzwa kwekuteerera. Iyo purojekiti yakavhurika sosi software ine rezinesi pasi peGPL uye yave kuwanikwa kubva 2007." Lynis: Ongorora, kuomesa sisitimu, kuyedzwa kwekuteerera

Izvo zvinoita kuti chinangwa chayo uye kushanda kwayo kuve pachena. Zvisinei, mune yake chikamu chepamutemo paGitHub, kuwedzera kwairi, zvinotevera:

"Chinangwa chikuru chaLynis ndechekuedza kudzivirira uye kupa mazano ekuwedzera kusimbisa hurongwa. Kuti uite izvi, inotarisa ruzivo rwese system, panjodzi yemasoftware mapakeji, uye zvinokwanisika kugadzirisa matambudziko. Chii chinoita kuti ive yakakodzera, kuitira kuti vatariri vehurongwa uye IT auditors vanogona kuongorora kuchengetedzwa kwemaitiro avo uye nemidziyo yesangano.

Uyezve, zvakakosha kusimbisa Lynisque ndinokutendai zvikuru ckutanga kwezvishandiso zvinosanganisirwa, chishandiso chinofarirwa nevakawanda pen testers (System Penetration Testers) uye dzimwe nyanzvi dzeRuzivo Chekuchengetedza pasi rese.

Yakaiswa sei uye inoshandiswa sei paLinux?

Yakaiswa sei uye inoshandiswa sei paLinux?

Kuiisa kubva kuGitHub uye kuimhanyisa paLinux kuri nyore uye nekukurumidza. Kuti uite izvi, iwe unongoda kuita zvinotevera 2 nhanho:

git clone https://github.com/CISOfy/lynis
cd lynis && ./lynis audit system

Uye ipapo, nguva yega yega inoda kuurayiwa, ingori yekupedzisira mutsara wekuraira. Nekudaro, misiyano yeinotevera odha inogona kushandiswa kana zvichidikanwa:

cd lynis && ./lynis audit system --quick

cd lynis && ./lynis audit system --wait

Kuti uwedzere kujekesa kana kuita zvishoma nezvishoma nekupindira kwemushandisi anozviita.

Ruzivo rwupi rwainopa?

Kana yangoitwa, inopa ruzivo pane anotevera tekinoroji mapoinzi:

Pakutanga

  • Iwo ekutanga kukosha kwechishandiso cheLynis, sisitimu yekushandisa inoshandiswa, maturusi nemapulagi akaiswa kana kwete, uye magadzirirwo ebhutsu nemasevhisi akaonekwa pairi.

Lynis - Ruzivo rweBhutsu - Screenshot 1

Lynis - Ruzivo rweBhutsu - Screenshot 2

Lynis - Ruzivo rweBhutsu - Screenshot 3

Lynis - Ruzivo rweBhutsu - Screenshot 4

Lynis - Ruzivo rweBhutsu - Screenshot 5

  • Iyo Kernel, ndangariro uye OS maitiro.

Screenshot 6

  • Vashandisi nemapoka, uye OS yekusimbisa.

Screenshot 7

  • Iyo Shell uye Faira Systems yeOS.

Screenshot 8

  • Audit information on: Iyo USB nemidziyo yekuchengetedza iripo muOS.

Screenshot 9

  • Iyo NFS, DNS, Ports uye Mapakeji eOS.

Screenshot 10

  • Network Kubatana, Printer uye Spools, uye Email uye Messaging Software yakaiswa.

Screenshot 11

  • Firewalls uye Web Servers akaiswa muOS.

Screenshot 12

Screenshot 13

  • Iyo SSH sevhisi yakagadziriswa muOS.

Screenshot 14

  • SNMP rutsigiro, dhatabhesi, iyo LDAP sevhisi uye iyo PHP system yakagadziriswa muOS.

Screenshot 15

  • Tsigiro yeSquid, Kutema uye mafaera ayo, kusachengeteka masevhisi uye maBanner uye nzira dzekuzivikanwa dzakagadzirirwa muOS.

Screenshot 16

Screenshot 17

  • Yakarongwa mabasa, Accounting, Nguva uye kuwiriranisa.

Screenshot 18

  • Cryptography, Virtualization, Container systems, Security Frameworks, uye software ine chekuita nefaira kutendeseka uye maturusi ehurongwa

Screenshot 19

Screenshot 20

  • Malware-type Software, File Permissions, Home Directories, Kernel Hardening uye General Hardening, uye Tsika Kuedza.

Screenshot 21

Screenshot 22

Screenshot 22

Screenshot 23

Pakupera

When Lynis inopera, inopfupikisa zvawanikwa, yakakamurwa kuita:

  • Yambiro uye mazano (matambudziko anokurumidza uye mazano anokosha)

Lynis: Mufananidzo 24

Lynis: Mufananidzo 25

Lynis: Mufananidzo 26

Lynis: Mufananidzo 27

Lynis: Mufananidzo 28

chitsamba: Kuti uone gare gare, yambiro uye mazano tinogona kuita mirairo inotevera

sudo grep Warning /var/log/lynis.log
sudo grep Suggestion /var/log/lynis.log
  • Iwo ruzivo rwekuchengetedza scan

Lynis: Mufananidzo 29

Lynis: Mufananidzo 30

Panguva ino, tichakwanisa zvishoma nezvishoma Ongorora mafaera neakadhirowa yakaitwa, munzira yakaratidzwa, sezvakaratidzwa mumufananidzo wekupedzisira uri pamusoro, kuti utange kugadzirisa dambudziko rega rega, kushomeka uye kusagadzikana kunoonekwa.

Mafaira (mafaira ane ongororo yakagadzirwa):

-Kuedza uye kugadzirisa ruzivo: /home/myuser/lynis.log
- Taura data: /home/myusername/lynis-report.dat

Uye pakupedzisira, Lynis anopa mukana wekuwana rumwe ruzivo nezve yega yega zano rinogadzirwa, uchishandisa iwo murairo ratidza zvakadzama ichiteverwa nenhamba TEST_ID, sezvakaratidzwa pasi apa:

lynis show details KRNL-5830
lynis show details FILE-7524

Dzidza zvakawanda nezve Lynis

Uye ku Zvimwe pamusoro paLynis ma links anotevera aripo:

Roundup: Banner post 2021

Resumen

Muchidimbu, tinovimba kuti chinyorwa ichi chine chekuita nemahara, akavhurika uye emahara, chengetedzo yekuongorora software paLinux, macOS uye Unix akadanwa "Lynis", bvumira vazhinji, simba kuongorora (kuongorora uye kuongorora) yavo yakatarisana komputa uye server masisitimu anoshanda zviri nyore. Zvekuti, nekudaro, vanokwanisa kuvasimbisa (kuomesa) maererano nesoftware, nekuona nekugadzirisa chero chimiro kana kumisikidzwa, kushomeka, kusakwana kana kusavapo. Nenzira yakadai, kukwanisa kudzikisira uye kudzivirira kukundikana kunobvira kana kurwiswa kuburikidza nekusaziva kusasimba.

Chekupedzisira, usakanganwa kupa maonero ako pane yanhasi musoro, kuburikidza nemhinduro. Uye kana iwe wakafarira iyi positi, usarega kugovana nevamwe. Uyewo, yeuka shanyira peji redu rekutanga en «DesdeLinux» kuongorora dzimwe nhau, uye kujoina yedu yepamutemo chiteshi che Teregiramu ye DesdeLinux, Madokero boka kuti uwane rumwe ruzivo nezvenyaya yanhasi.


Siya yako yekutaura

Your kero e havazobvumirwi ichibudiswa. Raida minda anozivikanwa ne *

*

*

  1. Inotarisira iyo data: Miguel Ángel Gatón
  2. Chinangwa cheiyo data: Kudzora SPAM, manejimendi manejimendi.
  3. Legitimation: Kubvuma kwako
  4. Kutaurirana kwedata
  5. Dhata yekuchengetedza: Dhatabhesi inobatwa neOccentus Networks (EU)
  6. Kodzero: Panguva ipi neipi iwe unogona kudzora, kupora uye kudzima ruzivo rwako