"Fossies" - the Fresh Open Source Software Archive

Member "lynis/FAQ" (22 Jul 2021, 4489 Bytes) of package /linux/misc/lynis-3.0.6.tar.gz:


As a special service "Fossies" has tried to format the requested text file into HTML format (style: standard) with prefixed line numbers. Alternatively you can here view or download the uninterpreted source code file. See also the latest Fossies "Diffs" side-by-side code changes report for "FAQ": 3.0.5_vs_3.0.6.

    1 
    2 ================================================================================
    3 
    4   Lynis - Frequently Asked Questions
    5 
    6 ================================================================================
    7 
    8   Author:                   2007-2013, Michael Boelen (michael.boelen@cisofy.com)
    9                             2013-now, CISOfy development team
   10   Description:              Security and system auditing tool
   11   Web site:                 https://cisofy.com/lynis/
   12   GitHub:                   https://github.com/CISOfy/lynis
   13   Support address:          lynis-dev@cisofy.com
   14   Development:              May 2007 - Now
   15   Support:                  See README file and https://cisofy.com/support/
   16   Documentation:            See web site, README, FAQ and CHANGELOG file
   17 
   18 ================================================================================
   19 
   20 [+] General
   21 -------------------------------
   22 
   23   Q: I don't understand the program (output), what to do?
   24   A: Keep reading this FAQ. Also useful are the README file and the log file
   25      (default: /var/log/lynis.log). Or check out the documentation on the
   26      website: https://cisofy.com/support/
   27 
   28   Q: I can't find any configuration file for Lynis, where is it?
   29   A: Lynis uses profiles. A profile is similar to a configuration file and
   30      determines how a security scan should be performed. Profiles are usually
   31      stored in /etc/lynis or can be found using 'lynis show profiles'.
   32 
   33   Q: My version is outdated, what can I do to upgrade?
   34      Check out the upgrade guide: https://cisofy.com/documentation/lynis/upgrading/
   35 
   36   Q: Why is there no port/package for my operating system?
   37   A: Because there is no maintainer for it yet. If you have the time to keep
   38      the port/package current for your preferred operating system, let us know.
   39 
   40   Q: What to do with the report files?
   41   A: The output could be used for monitoring (baseline checks). For users of the
   42      Lynis Enterprise Suite, they will be used to upload data.
   43 
   44 
   45 
   46 [+] Bugs or issues
   47 -------------------------------
   48   Q: Where can I report an issue or bug?
   49   A: GitHub, or use the developer e-mail address lynis-dev@cisofy.com
   50 
   51 
   52 
   53 [+] Usage problems
   54 -------------------------------
   55   Q: Lynis hangs while testing the group files (grpck)
   56   A: Run the grpck command manually. It will most likely need user input, to
   57      repair incorrect groups.
   58 
   59   Q: Lynis doesn't display all messages on a white background
   60   A: White text is used for general (and important) messages. Most terminals
   61      have a dark background, so it gives extra attention to the message. However
   62      if you have a white background (for example Mac OS X), you can run Lynis
   63      with --no-colors to strip colors or --reverse-colors to reverse the color
   64      scheme. Another option is to change your terminal colors within Mac OS.
   65 
   66   Q: Some tests take very long to finish, what to do?
   67   A: Use a second console (or connection) and check the output of ps/lsof etc,
   68      to see the status of the active subroutine. If a specific test hangs for a
   69      very long time, try to kill that specific process (ie grpck) and see if
   70      Lynis continues. Afterwards, run the command manually to see the cause.
   71      Check the log file for additional information. Usually the last few lines
   72      will indicate what test is stuck.
   73 
   74   Q: When running Lynis, it shows me the usage help even while using correct
   75      parameters, why?
   76   A: This can happen with alternative shells. Try using a different shell to
   77      invoke Lynis (example: bash lynis audit system).
   78 
   79   Q: One or more tests are giving incorrect output. How to solve that?
   80   A: Check the log file. If that also has incorrect data, let us know via GitHub
   81      or use the developer e-mail address.
   82 
   83   Q: The program takes long to complete and also uses too much resources. Can it
   84      be tuned?
   85   A: The time it takes to complete depends on the amount of tests to run.
   86      However the resources it take can be slightly lowered by increasing the
   87      pause_between_tests profile option. Keep in mind this increases the total
   88      length of the scan to complete.
   89 
   90 
   91 
   92 [+] Network related issues
   93 -------------------------------
   94 
   95   Q: Lynis reports promiscuous interfaces, but they are needed for normal operation,
   96      how can I hide this warning?
   97   A: Whitelist the interface in the profile file (if_promisc).
   98 
   99 
  100 
  101 ================================================================================
  102  Lynis - Copyright 2007-2021, Michael Boelen, CISOfy - https://cisofy.com