I-Lynis: Isoftware yokuhlola ukhuseleko kwiLinux, macOS kunye neUNIX
Kwisithuba esandulela oku, siye sagubungela isifundo kwiinkcukacha zobugcisa, ukufakwa kunye nokusetyenziswa kwe umyalelo wophicotho, eyaziwa ngokuba yi Isakhelo soPhicotho lweLinux (isakhelo soPhicotho lweLinux). Yiyiphi, kwaye njengoko igama layo libonisa, inikeza a Inkqubo yophicotho ethobelayo ye-CAPP, ekwaziyo ukuqokelela ngokuthembekileyo ulwazi malunga naluphi na ukhuseleko olufanelekileyo (okanye hayi) isiganeko kwinkqubo yokusebenza ye Linux.
Ngesi sizathu, siye sabona ukuba kufanelekile kwaye kufanelekile ukujongana nesoftware efanayo namhlanje, egcwele ngakumbi, ephucukileyo kwaye esebenzayo, ebizwa ngokuba "Lynis". ekwangu-a isoftware yophicotho lokhuseleko, ikhululekile, ivulekile kwaye ikhululekile, kwaye ikhonza okufanayo nangaphezulu, njengoko siza kubona ngezantsi.
Isakhelo soPhicotho lweLinux: Konke malunga nomyalelo woPhicotho-zincwadi
Kodwa, ngaphambi kokuba uqale le post inomdla malunga ne isoftware yophicotho lokhuseleko "Lynis", sicebisa i Iposi elidlulileyo elidibeneyo, ukuze ufunde kamva:
Lynis: Isixhobo soPhicotho loKhuseleko oluzenzekelayo
Yintoni uLynis?
Ngokwewebhusayithi yayo esemthethweni, abaphuhlisi bayo bachaza ngokufutshane isoftware, ngolu hlobo lulandelayo:
“I-Lynis sisixhobo sokhuseleko esivavanyiweyo kwidabi kwiinkqubo ezisebenzisa iLinux, iMacOS, okanye ii-Unix-based operating systems. Wenza uhlalutyo olubanzi lwempilo yeenkqubo zakho ukuxhasa ukuqina kwenkqubo kunye novavanyo lokuthotyelwa. Le projekthi yisoftware yomthombo ovulekileyo enelayisensi phantsi kwe-GPL kwaye ikhona ukusukela ngo-2007." Lynis: Uphicotho-zincwadi, ukuqina kwenkqubo, uvavanyo lokuthotyelwa
Nto leyo eyenza ukuba injongo kunye nokusebenza kwayo kucace kakhulu. Nangona kunjalo, kwimeko yakhe icandelo elisemthethweni kwi-GitHub, yongeza kuyo, oku kulandelayo:
“Eyona njongo kaLynis kukuvavanya ukhuseleko nokubonelela ngeengcebiso zokuqinisa ngakumbi inkqubo. Ukwenza oku, ikhangela ulwazi lwesixokelelwano ngokubanzi, iipakethe zesoftware ezisesichengeni, kunye neengxaki zoqwalaselo ezinokwenzeka. Yintoni eyenza kube kufanelekile, ukuze abalawuli benkqubo kunye nabaphicothi-zincwadi be-IT banokuhlola ukhuseleko lweenkqubo zabo kunye nezixhobo zombutho.
Ngaphezu koko, kubalulekile ukugxininisa Lynis, que enkosi kakhulu cukuqala kwezixhobo ezibandakanyiweyo, sisixhobo esithandwayo sabaninzi abavavanyi ipeni (Abavavanyi beNkqubo yokuNgena) kunye nezinye iingcali zoKhuseleko loLwazi kwihlabathi jikelele.
Ifakwe kwaye isetyenziswe njani kwiLinux?
Ukuyifaka kwiGitHub kwaye uyiqhube kwiLinux kulula kakhulu kwaye iyakhawuleza. Ukwenza oku, kufuneka wenze la manyathelo ama-2 alandelayo:
git clone https://github.com/CISOfy/lyniscd lynis && ./lynis audit systemKwaye ke, ixesha ngalinye ifuna ukwenziwa, umgca wokugqibela womyalelo. Nangona kunjalo, ukwahluka kolu myalelo kulandelayo kunokusetyenziswa ukuba kuyimfuneko:
cd lynis && ./lynis audit system --quick
cd lynis && ./lynis audit system --wait
Ukwenza uphumezo olucacileyo okanye ufezekiso olucothayo ngongenelelo lomsebenzisi olwenzayo.
Luluphi ulwazi olunikelayo?
Nje ukuba yenziwe, inika ulwazi kwezi ndawo zilandelayo zobugcisa:
Ekuqaleni
- Amaxabiso okuqalisa esixhobo seLynis, inkqubo yokusebenza esetyenzisiweyo, izixhobo kunye neeplagi ezifakiweyo okanye hayi, kunye nokucwangciswa kwe-boot kunye neenkonzo ezifunyenwe kuyo.
- I-Kernel, imemori kunye neenkqubo ze-OS.
- Abasebenzisi kunye namaqela, kunye noqinisekiso lwe-OS.
- IShell kunye neeNkqubo zeFayile ze-OS.
- ulwazi lophicotho kwi: I-USB kunye nezixhobo zokugcina ezikhoyo kwi-OS.
- I-NFS, i-DNS, iZibuko kunye neePakethi ze-OS.
- UQhagamshelwano lweNethiwekhi, Iiprinta kunye neeSpools, kunye ne-imeyile kunye neSoftware yeMiyalezo efakiwe.
- IiFirewall kunye neeSeva zeWebhu ezifakwe kwi-OS.
- Inkonzo ye-SSH iqwalaselwe kwi-OS.
- Inkxaso ye-SNMP, oovimba beenkcukacha, inkonzo ye-LDAP kunye nenkqubo ye-PHP elungiselelwe kwi-OS.
- Inkxaso yeskwidi, ukuLoga kunye neefayile zayo, iiNkonzo ezingakhuselekanga kunye neeBhana kunye neendlela zokuchonga ezilungiselelwe kwi-OS.
- Imisebenzi ecwangcisiweyo, i-Akhawuntingi, ixesha kunye nongqamaniso.
- I-Cryptography, i-Virtualization, iinkqubo ze-Container, i-Frameworks zoKhuseleko, kunye nesofthiwe ehambelana nokuthembeka kwefayile kunye nezixhobo zenkqubo
- I-Software yohlobo lwe-Malware, iiMvume zeFayile, iziLawuli zeKhaya, Ukuqina kweKernel kunye nokuQiniseka ngokubanzi, kunye noVavanyo lweSiko.
Ekupheleni
Xa Lynis iyaphela, ishwankathela iziphumo ezifunyenweyo, yahlulwe yaba:
- Izilumkiso kunye neengcebiso (iingxaki ezingxamisekileyo kunye neengcebiso ezibalulekileyo)
Qaphela: Ukubona kamva, izilumkiso kunye neengcebiso singenza le miyalelo ilandelayo
sudo grep Warning /var/log/lynis.log
sudo grep Suggestion /var/log/lynis.log- Iinkcukacha zeskena sokhuseleko
Kweli nqanaba, siya kukwazi kancinci kancinci Phonononga iifayile ngophicotho olwenziweyo, kwindlela ebonisiweyo, njengoko kuboniswe kumfanekiso ongaphambili ongentla, ukuqala ukusombulula ingxaki nganye, ukusilela kunye nobuthathaka bufunyenwe.
Iifayile (iifayile ezinophicotho olwenziweyo):
-Uvavanyo kunye nolwazi lokucoca : /home/myuser/lynis.log
– Ingxelo yedatha : /home/myusername/lynis-report.dat
Kwaye okokugqibela, uLynis unikeza ithuba lokufumana ulwazi oluninzi malunga nengcebiso nganye eyenziweyo, usebenzisa umyalelo Bonisa iinkcukacha ilandelwa linani TEST_ID, njengoko kubonisiwe ngezantsi:
lynis show details KRNL-5830
lynis show details FILE-7524
Kwaye ku Okungakumbi malunga noLynis ezi linki zilandelayo ziyafumaneka:
Isishwankathelo
Isishwankathelo, sinethemba lokuba olu papasho lunxulumene nesimahla, evulekileyo nesimahla, isoftware yokuhlola ukhuseleko kwiLinux, macOS kunye neUnix kubizwa "Lynis", vumela abaninzi, amandla uphicotho (vavanya kwaye uvavanye) ikhompyuter yabo kunye neenkqubo zokusebenza zomncedisi ngokulula ngakumbi. Ukuze, ngenxa yoko, bakwazi ukuzomeleza (ziqinise) ngokwemigaqo yesoftware, ngokufumanisa kunye nokulungisa nawuphi na umba okanye uqwalaselo, olusilelayo, olungonelanga okanye olungekhoyo. Ngaloo ndlela, ukukwazi ukunciphisa kunye nokuphepha ukusilela okanye uhlaselo olunokwenzeka ngenxa yobuthathaka obungaziwayo.
Okokugqibela, ungalibali ukufaka uluvo lwakho ngesihloko sanamhlanje, ngamagqabantshintshi. Kwaye ukuba uyayithanda le post, Sukuyeka ukwabelana nabanye. Kwakhona, khumbula ndwendwela iphepha lethu lasekhaya en «DesdeLinux» ukujonga iindaba ezingakumbi, kwaye ujoyine ijelo lethu elisemthethweni le ITelegram ye DesdeLinux, Bucala ngasekunene iqela ngolwazi oluthe vetshe ngesihloko sanamhlanje.