Navigation

    ML
    • Register
    • Login
    • Search
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups

    Using Lynis to Scan Linux for Vulnerabilities

    IT Discussion
    linux lynis
    3
    10
    1808
    Loading More Posts
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
    Reply
    • Reply as topic
    Log in to reply
    This topic has been deleted. Only users with topic management privileges can see it.
    • scottalanmiller
      scottalanmiller last edited by

      This is a new tool that I just learned about and wanted to share. Lynis is a Linux vulnerability scanner.

      1 Reply Last reply Reply Quote 1
      • Ambarishrh
        Ambarishrh last edited by

        This will be really helpful, thanks!

        1 Reply Last reply Reply Quote 0
        • Ambarishrh
          Ambarishrh last edited by

          Thanks once again @scottalanmiller had a customer who wanted to secure his linux web server and he was about to face an audit! I installed the server with all necessary updates, patches and setup configserverfirewall, scanned for issues, fixed that as well. Then used Lynis and scanned and fixed the issues shown on that as well. To my surprise, the audit team also scanned with Lynis and found everything OK! :+1:

          I am adding this tool to my fav list! :)

          Thank you!

          1 Reply Last reply Reply Quote 0
          • scottalanmiller
            scottalanmiller last edited by

            That's awesome. Good to know that Linux security auditors use this too. That's very good to know.

            1 Reply Last reply Reply Quote 0
            • Reid Cooper
              Reid Cooper last edited by

              Sounds like a good tool to know!

              1 Reply Last reply Reply Quote 0
              • Ambarishrh
                Ambarishrh last edited by

                Yes, it is! I am planning to have the enterprise version for all our hosting servers, just as an added security measure. It even scans your server and show if you are patched against the shellshock and other vulnerabilities.

                1 Reply Last reply Reply Quote 1
                • Ambarishrh
                  Ambarishrh last edited by

                  I was just checking the enterprise version, but the initial licensing is minimum 10 servers with 1 year plan. So on the last stage of registration, I dropped the plan, as I wanted to make sure the enterprise version is worth the upgrade before going full fledge.

                  Today I got an email from the Lynis team, offered me a single server enterprise version for testing. Response and support from them seems to be good. Will evaluate a test server with that and share the details here.

                  scottalanmiller 1 Reply Last reply Reply Quote 0
                  • scottalanmiller
                    scottalanmiller @Ambarishrh last edited by

                    @ambarishrh said:

                    Today I got an email from the Lynis team, offered me a single server enterprise version for testing. Response and support from them seems to be good. Will evaluate a test server with that and share the details here.

                    Awesome. Looking forward to hearing how it is.

                    1 Reply Last reply Reply Quote 0
                    • Ambarishrh
                      Ambarishrh last edited by Ambarishrh

                      So I got a chance to work on Lynis enterprise edition and here are some snapshots from the web interface.

                      The solution is getting regular updates, so the real screenshots might look somewhat different. I think the images are pretty self explanatory!!

                      lynis-enterprise-screenshots-dashboard-720.png

                      lynis-enterprise-screenshots-improvement-plan-720.png

                      lynis-enterprise-screenshots-reports-720.png

                      lynis-enterprise-screenshots-system-details-720.png

                      lynis-enterprise-screenshots-systems-720.png

                      2014-11-25_19-48-53.png

                      2014-11-25_19-45-51.png

                      2014-11-25_19-45-04.png

                      1 Reply Last reply Reply Quote 0
                      • scottalanmiller
                        scottalanmiller last edited by

                        Very nice. that's a great tool!!

                        1 Reply Last reply Reply Quote 0
                        • First post
                          Last post