"Fossies" - the Fresh Open Source Software Archive  

Source code changes of the file "include/tests_insecure_services" between
lynis-3.0.1.tar.gz and lynis-3.0.2.tar.gz

About: Lynis is a security and system auditing tool.

tests_insecure_services  (lynis-3.0.1):tests_insecure_services  (lynis-3.0.2)
skipping to change at line 25 skipping to change at line 25
# Lynis comes with ABSOLUTELY NO WARRANTY. This is free software, and you are # Lynis comes with ABSOLUTELY NO WARRANTY. This is free software, and you are
# welcome to redistribute it under the terms of the GNU General Public License. # welcome to redistribute it under the terms of the GNU General Public License.
# See LICENSE file for usage of this software. # See LICENSE file for usage of this software.
# #
################################################################################ # ################################################################################ #
# #
# Insecure services # Insecure services
# #
################################################################################ # ################################################################################ #
# #
InsertSection "Insecure services" InsertSection "${SECTION_INSECURE_SERVICES}"
# #
################################################################################ # ################################################################################ #
# #
INETD_ACTIVE=0 INETD_ACTIVE=0
INETD_CONFIG_FILE="${ROOTDIR}etc/inetd.conf" INETD_CONFIG_FILE="${ROOTDIR}etc/inetd.conf"
INETD_PACKAGE_INSTALLED=0 INETD_PACKAGE_INSTALLED=0
XINETD_ACTIVE=0 XINETD_ACTIVE=0
XINETD_CONFIG_FILE="${ROOTDIR}etc/xinetd.conf" XINETD_CONFIG_FILE="${ROOTDIR}etc/xinetd.conf"
XINETD_CONFIG_DIR="${ROOTDIR}etc/xinetd.d" XINETD_CONFIG_DIR="${ROOTDIR}etc/xinetd.d"
# #
skipping to change at line 66 skipping to change at line 66
# #
# Test : INSE-8002 # Test : INSE-8002
# Description : Check for inetd status # Description : Check for inetd status
if [ ${INETD_PACKAGE_INSTALLED} -eq 1 ]; then PREQS_MET="YES"; else PREQS_ME T="NO"; fi if [ ${INETD_PACKAGE_INSTALLED} -eq 1 ]; then PREQS_MET="YES"; else PREQS_ME T="NO"; fi
Register --test-no INSE-8002 --preqs-met ${PREQS_MET} --weight L --network N O --category security --description "Check for enabled inet daemon" Register --test-no INSE-8002 --preqs-met ${PREQS_MET} --weight L --network N O --category security --description "Check for enabled inet daemon"
if [ ${SKIPTEST} -eq 0 ]; then if [ ${SKIPTEST} -eq 0 ]; then
# Check running processes # Check running processes
LogText "Test: Searching for active inet daemon" LogText "Test: Searching for active inet daemon"
if IsRunning "inetd"; then if IsRunning "inetd"; then
LogText "Result: inetd is running" LogText "Result: inetd is running"
Display --indent 4 --text "- inetd status" --result "ACTIVE" --color GREEN Display --indent 4 --text "- inetd status" --result "${STATUS_ACTIVE }" --color GREEN
INETD_ACTIVE=1 INETD_ACTIVE=1
else else
LogText "Result: inetd is NOT running" LogText "Result: inetd is NOT running"
Display --indent 4 --text "- inetd status" --result "NOT ACTIVE" --c olor GREEN Display --indent 4 --text "- inetd status" --result "${STATUS_NOT_AC TIVE}" --color GREEN
fi fi
fi fi
# #
################################################################################ # ################################################################################ #
# #
# Test : INSE-8004 # Test : INSE-8004
# Description : Check for inetd configuration file (inetd) # Description : Check for inetd configuration file (inetd)
if [ ${INETD_ACTIVE} -eq 1 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi if [ ${INETD_ACTIVE} -eq 1 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
Register --test-no INSE-8004 --preqs-met ${PREQS_MET} --weight L --network N O --category security --description "Presence of inetd configuration file" Register --test-no INSE-8004 --preqs-met ${PREQS_MET} --weight L --network N O --category security --description "Presence of inetd configuration file"
if [ ${SKIPTEST} -eq 0 ]; then if [ ${SKIPTEST} -eq 0 ]; then
skipping to change at line 161 skipping to change at line 161
################################################################################ # ################################################################################ #
# #
# Test : INSE-8102 # Test : INSE-8102
# Description : Check for xinetd status # Description : Check for xinetd status
Register --test-no INSE-8102 --weight L --network NO --category security --d escription "Check for active xinet daemon" Register --test-no INSE-8102 --weight L --network NO --category security --d escription "Check for active xinet daemon"
if [ ${SKIPTEST} -eq 0 ]; then if [ ${SKIPTEST} -eq 0 ]; then
# Check running processes # Check running processes
LogText "Test: Searching for active extended internet services daemon (x inetd)" LogText "Test: Searching for active extended internet services daemon (x inetd)"
if IsRunning "xinetd"; then if IsRunning "xinetd"; then
LogText "Result: xinetd is running" LogText "Result: xinetd is running"
Display --indent 4 --text "- xinetd status" --result "ACTIVE" --colo r GREEN Display --indent 4 --text "- xinetd status" --result "${STATUS_ACTIV E}" --color GREEN
XINETD_ACTIVE=1 XINETD_ACTIVE=1
else else
LogText "Result: xinetd is NOT running" LogText "Result: xinetd is NOT running"
Display --indent 4 --text "- xinetd status" --result "NOT ACTIVE" -- color GREEN Display --indent 4 --text "- xinetd status" --result "${STATUS_NOT_A CTIVE}" --color GREEN
fi fi
fi fi
# #
################################################################################ # ################################################################################ #
# #
# Test : INSE-8104 # Test : INSE-8104
# Description : Check for xinetd configuration file # Description : Check for xinetd configuration file
if [ ${XINETD_ACTIVE} -eq 1 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi if [ ${XINETD_ACTIVE} -eq 1 ]; then PREQS_MET="YES"; else PREQS_MET="NO"; fi
Register --test-no INSE-8104 --preqs-met ${PREQS_MET} --weight L --network N O --category security --description "Check for enabled xinet daemon" Register --test-no INSE-8104 --preqs-met ${PREQS_MET} --weight L --network N O --category security --description "Check for enabled xinet daemon"
if [ ${SKIPTEST} -eq 0 ]; then if [ ${SKIPTEST} -eq 0 ]; then
 End of changes. 5 change blocks. 
5 lines changed or deleted 5 lines changed or added

Home  |  About  |  Features  |  All  |  Newest  |  Dox  |  Diffs  |  RSS Feeds  |  Screenshots  |  Comments  |  Imprint  |  Privacy  |  HTTP(S)