Mune positi yakatangira izvi, takafukidza chidzidzo chezvehunyanzvi ruzivo, kuisirwa uye kushandiswa kweiyo murayiro wekuongorora, anozivikanwa zviri nani sa Linux Audit Framework (Linux Audit Framework). Izvo, uye sezvinoratidza zita rayo, inopa a CAPP inoenderana nekuongorora system, iyo inokwanisa kuunganidza zvakavimbika ruzivo nezve chero chengetedzo-inoenderana (kana kwete) chiitiko pane Linux inoshanda sisitimu.
Nokuda kwechikonzero ichi, taona kuti zvakakodzera uye zvakakodzera kugadzirisa nhasi software yakafanana, yakawanda yakakwana, yepamusoro uye inoshanda, inonzi. "Lynis". izvo zvakare a chengetedzo yekuongorora software, yemahara, yakavhurika uye yemahara, uye inoshumira zvakafanana uye nezvimwe, sezvatichaona pazasi.
Asi, usati watanga iyi inonakidza positi nezve chengetedzo yekuongorora software "Lynis", tinokurudzira iyo yapfuura inoenderana posvo, kuti uverenge gare gare:
Lynis: Otomatiki Chengetedzo Audit Tool
Chii chinonzi Lynis?
Zvinoenderana newebhusaiti yayo yepamutemo, vagadziri vayo vanotsanangura muchidimbu software yakati, seinotevera:
"Lynis ihondo-yakaedzwa kuchengetedza chishandiso kune masisitimu anomhanyisa Linux, macOS, kana Unix-yakavakirwa masisitimu anoshanda. Inoita ongororo yakazara yehutano hwemasisitimu ako kutsigira kuomarara kwehurongwa uye kuyedzwa kwekuteerera. Iyo purojekiti yakavhurika sosi software ine rezinesi pasi peGPL uye yave kuwanikwa kubva 2007." Lynis: Ongorora, kuomesa sisitimu, kuyedzwa kwekuteerera
Izvo zvinoita kuti chinangwa chayo uye kushanda kwayo kuve pachena. Zvisinei, mune yake chikamu chepamutemo paGitHub, kuwedzera kwairi, zvinotevera:
"Chinangwa chikuru chaLynis ndechekuedza kudzivirira uye kupa mazano ekuwedzera kusimbisa hurongwa. Kuti uite izvi, inotarisa ruzivo rwese system, panjodzi yemasoftware mapakeji, uye zvinokwanisika kugadzirisa matambudziko. Chii chinoita kuti ive yakakodzera, kuitira kuti vatariri vehurongwa uye IT auditors vanogona kuongorora kuchengetedzwa kwemaitiro avo uye nemidziyo yesangano.
Uyezve, zvakakosha kusimbisa Lynisque ndinokutendai zvikuru ckutanga kwezvishandiso zvinosanganisirwa, chishandiso chinofarirwa nevakawanda pen testers (System Penetration Testers) uye dzimwe nyanzvi dzeRuzivo Chekuchengetedza pasi rese.
Yakaiswa sei uye inoshandiswa sei paLinux?
Kuiisa kubva kuGitHub uye kuimhanyisa paLinux kuri nyore uye nekukurumidza. Kuti uite izvi, iwe unongoda kuita zvinotevera 2 nhanho:
git clone https://github.com/CISOfy/lynis
cd lynis && ./lynis audit system
Uye ipapo, nguva yega yega inoda kuurayiwa, ingori yekupedzisira mutsara wekuraira. Nekudaro, misiyano yeinotevera odha inogona kushandiswa kana zvichidikanwa:
cd lynis && ./lynis audit system --quick
cd lynis && ./lynis audit system --wait
Kuti uwedzere kujekesa kana kuita zvishoma nezvishoma nekupindira kwemushandisi anozviita.
Ruzivo rwupi rwainopa?
Kana yangoitwa, inopa ruzivo pane anotevera tekinoroji mapoinzi:
Pakutanga
- Iwo ekutanga kukosha kwechishandiso cheLynis, sisitimu yekushandisa inoshandiswa, maturusi nemapulagi akaiswa kana kwete, uye magadzirirwo ebhutsu nemasevhisi akaonekwa pairi.
- Iyo Kernel, ndangariro uye OS maitiro.
- Vashandisi nemapoka, uye OS yekusimbisa.
- Iyo Shell uye Faira Systems yeOS.
- Audit information on: Iyo USB nemidziyo yekuchengetedza iripo muOS.
- Iyo NFS, DNS, Ports uye Mapakeji eOS.
- Network Kubatana, Printer uye Spools, uye Email uye Messaging Software yakaiswa.
- Firewalls uye Web Servers akaiswa muOS.
- Iyo SSH sevhisi yakagadziriswa muOS.
- SNMP rutsigiro, dhatabhesi, iyo LDAP sevhisi uye iyo PHP system yakagadziriswa muOS.
- Tsigiro yeSquid, Kutema uye mafaera ayo, kusachengeteka masevhisi uye maBanner uye nzira dzekuzivikanwa dzakagadzirirwa muOS.
- Yakarongwa mabasa, Accounting, Nguva uye kuwiriranisa.
- Cryptography, Virtualization, Container systems, Security Frameworks, uye software ine chekuita nefaira kutendeseka uye maturusi ehurongwa
- Malware-type Software, File Permissions, Home Directories, Kernel Hardening uye General Hardening, uye Tsika Kuedza.
Pakupera
When Lynis inopera, inopfupikisa zvawanikwa, yakakamurwa kuita:
- Yambiro uye mazano (matambudziko anokurumidza uye mazano anokosha)
chitsamba: Kuti uone gare gare, yambiro uye mazano tinogona kuita mirairo inotevera
sudo grep Warning /var/log/lynis.log
sudo grep Suggestion /var/log/lynis.log
- Iwo ruzivo rwekuchengetedza scan
Panguva ino, tichakwanisa zvishoma nezvishoma Ongorora mafaera neakadhirowa yakaitwa, munzira yakaratidzwa, sezvakaratidzwa mumufananidzo wekupedzisira uri pamusoro, kuti utange kugadzirisa dambudziko rega rega, kushomeka uye kusagadzikana kunoonekwa.
Mafaira (mafaira ane ongororo yakagadzirwa):
-Kuedza uye kugadzirisa ruzivo: /home/myuser/lynis.log
- Taura data: /home/myusername/lynis-report.dat
Uye pakupedzisira, Lynis anopa mukana wekuwana rumwe ruzivo nezve yega yega zano rinogadzirwa, uchishandisa iwo murairo ratidza zvakadzama ichiteverwa nenhamba TEST_ID, sezvakaratidzwa pasi apa:
lynis show details KRNL-5830
lynis show details FILE-7524
Uye ku Zvimwe pamusoro paLynis ma links anotevera aripo:
Resumen
Muchidimbu, tinovimba kuti chinyorwa ichi chine chekuita nemahara, akavhurika uye emahara, chengetedzo yekuongorora software paLinux, macOS uye Unix akadanwa "Lynis", bvumira vazhinji, simba kuongorora (kuongorora uye kuongorora) yavo yakatarisana komputa uye server masisitimu anoshanda zviri nyore. Zvekuti, nekudaro, vanokwanisa kuvasimbisa (kuomesa) maererano nesoftware, nekuona nekugadzirisa chero chimiro kana kumisikidzwa, kushomeka, kusakwana kana kusavapo. Nenzira yakadai, kukwanisa kudzikisira uye kudzivirira kukundikana kunobvira kana kurwiswa kuburikidza nekusaziva kusasimba.
Chekupedzisira, usakanganwa kupa maonero ako pane yanhasi musoro, kuburikidza nemhinduro. Uye kana iwe wakafarira iyi positi, usarega kugovana nevamwe. Uyewo, yeuka shanyira peji redu rekutanga en «DesdeLinux» kuongorora dzimwe nhau, uye kujoina yedu yepamutemo chiteshi che Teregiramu ye DesdeLinux, Madokero boka kuti uwane rumwe ruzivo nezvenyaya yanhasi.