<86>Sep 11 12:47:38 userdel[232606]: delete user 'rooter'
<86>Sep 11 12:47:38 userdel[232606]: removed group 'rooter' owned by 'rooter'
<86>Sep 11 12:47:38 userdel[232606]: removed shadow group 'rooter' owned by 'rooter'
<86>Sep 11 12:47:38 groupadd[232627]: group added to /etc/group: name=rooter, GID=555
<86>Sep 11 12:47:38 groupadd[232627]: group added to /etc/gshadow: name=rooter
<86>Sep 11 12:47:38 groupadd[232627]: new group: name=rooter, GID=555
<86>Sep 11 12:47:38 useradd[232638]: new user: name=rooter, UID=555, GID=555, home=/root, shell=/bin/bash
<86>Sep 11 12:47:38 userdel[232656]: delete user 'builder'
<86>Sep 11 12:47:38 userdel[232656]: removed group 'builder' owned by 'builder'
<86>Sep 11 12:47:38 userdel[232656]: removed shadow group 'builder' owned by 'builder'
<86>Sep 11 12:47:38 groupadd[232671]: group added to /etc/group: name=builder, GID=556
<86>Sep 11 12:47:38 groupadd[232671]: group added to /etc/gshadow: name=builder
<86>Sep 11 12:47:38 groupadd[232671]: new group: name=builder, GID=556
<86>Sep 11 12:47:38 useradd[232690]: new user: name=builder, UID=556, GID=556, home=/usr/src, shell=/bin/bash
Package bash-completion was not found in the pkg-config search path.
Perhaps you should add the directory containing `bash-completion.pc'
to the PKG_CONFIG_PATH environment variable
No package 'bash-completion' found
Package bash-completion was not found in the pkg-config search path.
Perhaps you should add the directory containing `bash-completion.pc'
to the PKG_CONFIG_PATH environment variable
No package 'bash-completion' found
Package bash-completion was not found in the pkg-config search path.
Perhaps you should add the directory containing `bash-completion.pc'
to the PKG_CONFIG_PATH environment variable
No package 'bash-completion' found
Package bash-completion was not found in the pkg-config search path.
Perhaps you should add the directory containing `bash-completion.pc'
to the PKG_CONFIG_PATH environment variable
No package 'bash-completion' found
Package bash-completion was not found in the pkg-config search path.
Perhaps you should add the directory containing `bash-completion.pc'
to the PKG_CONFIG_PATH environment variable
No package 'bash-completion' found
<13>Sep 11 12:47:41 rpmi: libidn2-2.3.0-alt1 sisyphus+240846.100.1.2 1573870475 installed
<13>Sep 11 12:47:41 rpmi: libexpat-2.2.9-alt1 sisyphus+252464.200.2.1 1590958865 installed
<13>Sep 11 12:47:41 rpmi: publicsuffix-list-dafsa-20200909-alt1 sisyphus+257852.100.1.1 1599760590 installed
<13>Sep 11 12:47:41 rpmi: libpsl-0.21.1-alt1 sisyphus+255206.100.1.1 1595348938 installed
<13>Sep 11 12:47:41 rpmi: libnghttp2-1.41.0-alt1 sisyphus+253680.100.1.1 1592642271 installed
<13>Sep 11 12:47:41 rpmi: libbrotlicommon-1.0.9-alt2 sisyphus+257777.100.1.1 1599688017 installed
<13>Sep 11 12:47:41 rpmi: libbrotlidec-1.0.9-alt2 sisyphus+257777.100.1.1 1599688017 installed
<13>Sep 11 12:47:41 rpmi: rsync-3.1.3-alt1 1518721086 installed
<13>Sep 11 12:47:41 rpmi: libverto-0.3.0-alt1_7 sisyphus+225932.100.1.1 1553994919 installed
<13>Sep 11 12:47:41 rpmi: liblmdb-0.9.23-alt1 sisyphus+225277.100.2.1 1553001679 installed
<13>Sep 11 12:47:41 rpmi: libkeyutils-1.6.1-alt1 sisyphus+256015.100.1.1 1596820124 installed
<13>Sep 11 12:47:41 rpmi: libcom_err-1.44.6-alt1 sisyphus+224154.100.1.1 1552091678 installed
<13>Sep 11 12:47:41 rpmi: libedit3-3.1.20190324-alt1 sisyphus+236523.100.1.1 1566578247 installed
<13>Sep 11 12:47:41 rpmi: less-530-alt1 sisyphus+226367.200.2.2 1554151813 installed
<13>Sep 11 12:47:41 rpmi: diffstat-1.63-alt1 sisyphus+243663.100.1.1 1577480060 installed
<13>Sep 11 12:47:41 rpmi: libp11-kit-0.23.15-alt2 sisyphus+252784.100.2.2 1591274901 installed
<13>Sep 11 12:47:41 rpmi: libtasn1-4.16.0-alt1 sisyphus+245480.100.1.1 1580825062 installed
<13>Sep 11 12:47:41 rpmi: bash-completion-1:2.9-alt1 sisyphus+236390.200.2.1 1566513984 installed
<13>Sep 11 12:47:41 rpmi: rpm-macros-alternatives-0.5.1-alt1 sisyphus+226946.100.1.1 1554830426 installed
<13>Sep 11 12:47:41 rpmi: alternatives-0.5.1-alt1 sisyphus+226946.100.1.1 1554830426 installed
<13>Sep 11 12:47:41 rpmi: ca-certificates-2020.06.29-alt1 sisyphus+254237.300.1.1 1593450881 installed
<13>Sep 11 12:47:41 rpmi: ca-trust-0.1.2-alt1 sisyphus+233348.100.1.1 1561653823 installed
<13>Sep 11 12:47:41 rpmi: p11-kit-trust-0.23.15-alt2 sisyphus+252784.100.2.2 1591274901 installed
<13>Sep 11 12:47:41 rpmi: libcrypto1.1-1.1.1g-alt1 sisyphus+249982.60.8.1 1587743711 installed
<13>Sep 11 12:47:41 rpmi: libssl1.1-1.1.1g-alt1 sisyphus+249982.60.8.1 1587743711 installed
<86>Sep 11 12:47:41 groupadd[239626]: group added to /etc/group: name=_keytab, GID=499
<86>Sep 11 12:47:41 groupadd[239626]: group added to /etc/gshadow: name=_keytab
<86>Sep 11 12:47:41 groupadd[239626]: new group: name=_keytab, GID=499
<13>Sep 11 12:47:41 rpmi: libkrb5-1.18.2-alt2 sisyphus+254565.100.4.1 1594375666 installed
<86>Sep 11 12:47:41 groupadd[239796]: group added to /etc/group: name=sasl, GID=498
<86>Sep 11 12:47:41 groupadd[239796]: group added to /etc/gshadow: name=sasl
<86>Sep 11 12:47:41 groupadd[239796]: new group: name=sasl, GID=498
<13>Sep 11 12:47:41 rpmi: libsasl2-3-2.1.27-alt2.1 sisyphus+255909.100.2.1 1597199456 installed
<13>Sep 11 12:47:41 rpmi: libldap-2.4.48-alt3 sisyphus+238816.100.1.1 1570449022 installed
<13>Sep 11 12:47:42 rpmi: libcurl-7.72.0-alt1 sisyphus+252078.300.3.1 1597838879 installed
<13>Sep 11 12:47:42 rpmi: openssh-common-7.9p1-alt1 sisyphus+233206.100.1.1 1561507843 installed
<86>Sep 11 12:47:42 groupadd[240090]: group added to /etc/group: name=sshagent, GID=497
<86>Sep 11 12:47:42 groupadd[240090]: group added to /etc/gshadow: name=sshagent
<86>Sep 11 12:47:42 groupadd[240090]: new group: name=sshagent, GID=497
<13>Sep 11 12:47:42 rpmi: openssh-clients-7.9p1-alt1 sisyphus+233206.100.1.1 1561507843 installed
<13>Sep 11 12:47:42 rpmi: git-core-2.25.4-alt1 sisyphus+250334.100.1.1 1587406402 installed
<13>Sep 11 12:47:42 rpmi: bash-completion-util-linux-2.35.2-alt2 sisyphus+253892.100.2.1 1592922962 installed
Building target platforms: i586
Building for target i586
Wrote: /usr/src/in/nosrpm/lynis-3.0.0-alt2.nosrc.rpm
Installing lynis-3.0.0-alt2.src.rpm
Building target platforms: i586
Building for target i586
Executing(%prep): /bin/sh -e /usr/src/tmp/rpm-tmp.76743
+ umask 022
+ /bin/mkdir -p /usr/src/RPM/BUILD
+ cd /usr/src/RPM/BUILD
+ cd /usr/src/RPM/BUILD
+ rm -rf lynis
+ echo 'Source #0 (lynis-3.0.0.tar.gz):'
Source #0 (lynis-3.0.0.tar.gz):
+ /bin/gzip -dc /usr/src/RPM/SOURCES/lynis-3.0.0.tar.gz
+ /bin/tar -xf -
+ cd lynis
+ /bin/chmod -c -Rf u+rwX,go-w .
+ exit 0
Executing(%build): /bin/sh -e /usr/src/tmp/rpm-tmp.89122
+ umask 022
+ /bin/mkdir -p /usr/src/RPM/BUILD
+ cd /usr/src/RPM/BUILD
+ cd lynis
+ exit 0
Executing(%install): /bin/sh -e /usr/src/tmp/rpm-tmp.89122
+ umask 022
+ /bin/mkdir -p /usr/src/RPM/BUILD
+ cd /usr/src/RPM/BUILD
+ /bin/chmod -Rf u+rwX -- /usr/src/tmp/lynis-buildroot
+ :
+ /bin/rm -rf -- /usr/src/tmp/lynis-buildroot
+ cd lynis
+ mkdir -p /usr/src/tmp/lynis-buildroot/etc/lynis
+ install -p default.prf /usr/src/tmp/lynis-buildroot/etc/lynis
+ mkdir -p /usr/src/tmp/lynis-buildroot/usr/bin
+ install -p lynis /usr/src/tmp/lynis-buildroot/usr/bin
+ mkdir -p /usr/src/tmp/lynis-buildroot/usr/share/man/man8
+ install -p lynis.8 /usr/src/tmp/lynis-buildroot/usr/share/man/man8
+ mkdir -p /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/
+ install -p include/binaries include/consts include/data_upload include/functions include/helper_audit_dockerfile include/helper_configure include/helper_generate include/helper_show include/helper_system_remote_scan include/helper_update include/osdetection include/parameters include/profiles include/report include/tests_accounting include/tests_authentication include/tests_banners include/tests_boot_services include/tests_containers include/tests_crypto include/tests_custom.template include/tests_databases include/tests_dns include/tests_file_integrity include/tests_file_permissions include/tests_filesystems include/tests_firewalls include/tests_hardening include/tests_homedirs include/tests_insecure_services include/tests_kernel include/tests_kernel_hardening include/tests_ldap include/tests_logging include/tests_mac_frameworks include/tests_mail_messaging include/tests_malware include/tests_memory_processes include/tests_nameservices include/tests_networking include/tests_php include/tests_ports_packages include/tests_printers_spoolers include/tests_scheduling include/tests_shells include/tests_snmp include/tests_squid include/tests_ssh include/tests_storage include/tests_storage_nfs include/tests_system_integrity include/tests_time include/tests_tooling include/tests_usb include/tests_virtualization include/tests_webservers include/tool_tips /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/
+ chmod 644 /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/binaries /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/consts /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/data_upload /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/functions /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_audit_dockerfile /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_configure /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_generate /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_show /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_system_remote_scan /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_update /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/osdetection /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/parameters /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/profiles /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/report /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_accounting /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_authentication /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_banners /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_boot_services /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_containers /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_crypto /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_custom.template /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_databases /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_dns /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_file_integrity /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_file_permissions /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_filesystems /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_firewalls /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_hardening /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_homedirs /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_insecure_services /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_kernel /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_kernel_hardening /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_ldap /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_logging /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_mac_frameworks /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_mail_messaging /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_malware /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_memory_processes /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_nameservices /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_networking /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_php /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_ports_packages /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_printers_spoolers /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_scheduling /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_shells /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_snmp /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_squid /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_ssh /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_storage /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_storage_nfs /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_system_integrity /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_time /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_tooling /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_usb /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_virtualization /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_webservers /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tool_tips
+ mkdir -p /usr/src/tmp/lynis-buildroot/usr/share/lynis/plugins/
+ install -p plugins/README plugins/custom_plugin.template /usr/src/tmp/lynis-buildroot/usr/share/lynis/plugins/
+ cp -pR db/ /usr/src/tmp/lynis-buildroot/usr/share/lynis/
+ mkdir -p /usr/src/tmp/lynis-buildroot/usr/share/bash-completion/completions
+ install -p extras/bash_completion.d/lynis /usr/src/tmp/lynis-buildroot/usr/share/bash-completion/completions/
+ mkdir -p /usr/src/tmp/lynis-buildroot/var/log/
+ touch /usr/src/tmp/lynis-buildroot/var/log/lynis.log
+ touch /usr/src/tmp/lynis-buildroot/var/log/lynis-report.dat
+ for rpm404_ghost in /var/log/lynis.log /var/log/lynis-report.dat
++ dirname /var/log/lynis.log
+ mkdir -p /usr/src/tmp/lynis-buildroot/var/log
+ touch /usr/src/tmp/lynis-buildroot/var/log/lynis.log
+ for rpm404_ghost in /var/log/lynis.log /var/log/lynis-report.dat
++ dirname /var/log/lynis-report.dat
+ mkdir -p /usr/src/tmp/lynis-buildroot/var/log
+ touch /usr/src/tmp/lynis-buildroot/var/log/lynis-report.dat
+ /usr/lib/rpm/brp-alt
Cleaning files in /usr/src/tmp/lynis-buildroot (auto)
Verifying and fixing files in /usr/src/tmp/lynis-buildroot (binconfig,pkgconfig,libtool,desktop)
Checking contents of files in /usr/src/tmp/lynis-buildroot/ (default)
Compressing files in /usr/src/tmp/lynis-buildroot (auto)
mode of '/usr/src/tmp/lynis-buildroot/usr/share/man/man8/lynis.8' changed from 0755 (rwxr-xr-x) to 0644 (rw-r--r--)
Verifying ELF objects in /usr/src/tmp/lynis-buildroot (arch=normal,fhs=normal,lfs=relaxed,lint=relaxed,rpath=normal,stack=normal,textrel=normal,unresolved=normal)
Hardlinking identical .pyc and .pyo files
Executing(%check): /bin/sh -e /usr/src/tmp/rpm-tmp.89122
+ umask 022
+ /bin/mkdir -p /usr/src/RPM/BUILD
+ cd /usr/src/RPM/BUILD
+ cd lynis
+ ./lynis audit system --quick
�[1;37m[ Lynis 3.0.0 ]�[0m
################################################################################
Lynis comes with ABSOLUTELY NO WARRANTY. This is free software, and you are
welcome to redistribute it under the terms of the GNU General Public License.
See the LICENSE file for details about using this software.
2007-2020, CISOfy - https://cisofy.com/lynis/
Enterprise support available (compliance, plugins, interface and tools)
################################################################################
[+] �[1;33mInitializing program�[0m
------------------------------------
�[1;37m
###################################################################
# #
# �[0;35mNON-PRIVILEGED SCAN MODE�[1;37m #
# #
###################################################################
�[0m
�[1;33mNOTES:�[0m
--------------
�[1;37m*�[0m Some tests will be skipped (as they require root permissions)
�[1;37m*�[0m Some tests might fail silently or give different results
=================================================================
�[1;31mException found!�[0m
Function/test: [OS Detection]
Message: �[1;37mUnknown OS found in /etc/os-release�[0m
Help improving the Lynis community with your feedback!
Steps:
- Ensure you are running the latest version (./lynis update check)
- If so, create a GitHub issue at https://github.com/CISOfy/lynis
- Include relevant parts of the log file or configuration file
Thanks!
=================================================================
�[2C- Detecting OS... �[41C [ �[1;32mDONE�[0m ]
�[2C- Checking profiles...�[37C [ �[1;32mDONE�[0m ]
---------------------------------------------------
Program version: 3.0.0
Operating system: Linux
Operating system name: Linux
Operating system version: 5.4.49-std-def-alt2
Kernel version: 5.4.49
Hardware platform: i686
Hostname: localhost
---------------------------------------------------
Profiles: /usr/src/RPM/BUILD/lynis/default.prf
Log file: /usr/src/lynis.log
Report file: /usr/src/lynis-report.dat
Report version: 1.0
Plugin directory: ./plugins
---------------------------------------------------
Auditor: [Not Specified]
Language: en
Test category: all
Test group: all
---------------------------------------------------
�[2C- Program update status... �[32C [ �[1;33mSKIPPED�[0m ]
[+] �[1;33mSystem Tools�[0m
------------------------------------
�[2C- Scanning available tools...�[30C
�[2C- Checking system binaries...�[30C
lscpu: failed to determine number of CPUs: /sys/devices/system/cpu/possible: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
[+] �[1;35mPlugins (phase 1)�[0m
------------------------------------
�[0CNote: plugins have more extensive tests and may take several minutes to complete�[0C
�[0C �[0C
�[2C- Plugins enabled�[42C [ �[1;37mNONE�[0m ]
=================================================================
�[1;31mException found!�[0m
Function/test: [GetHostID]
Message: �[1;37mBoth ip and ifconfig tools are missing�[0m
Help improving the Lynis community with your feedback!
Steps:
- Ensure you are running the latest version (./lynis update check)
- If so, create a GitHub issue at https://github.com/CISOfy/lynis
- Include relevant parts of the log file or configuration file
Thanks!
=================================================================
=================================================================
�[1;31mException found!�[0m
Function/test: [GetHostID]
Message: �[1;37mCan't create HOSTID, command ip not found�[0m
Help improving the Lynis community with your feedback!
Steps:
- Ensure you are running the latest version (./lynis update check)
- If so, create a GitHub issue at https://github.com/CISOfy/lynis
- Include relevant parts of the log file or configuration file
Thanks!
=================================================================
=================================================================
�[1;31mException found!�[0m
Function/test: [GetHostID]
Message: �[1;37mNo unique host identifier could be created.�[0m
Help improving the Lynis community with your feedback!
Steps:
- Ensure you are running the latest version (./lynis update check)
- If so, create a GitHub issue at https://github.com/CISOfy/lynis
- Include relevant parts of the log file or configuration file
Thanks!
=================================================================
[+] �[1;33mBoot and services�[0m
------------------------------------
�[30;43m[WARNING]�[0m: Test CORE-1000 had a long execution: 15.414680 seconds�[0m
�[2C- Service Manager�[42C [ �[1;33mUNKNOWN�[0m ]
�[4C- Boot loader�[44C [ �[1;33mNONE FOUND�[0m ]
�[2C- Check startup files (permissions)�[24C [ �[1;32mOK�[0m ]
�[2C- Checking uptime�[42C [ �[1;33mSKIPPED�[0m ]
=================================================================
�[1;31mException found!�[0m
Function/test: [BOOT-5202:1]
Message: �[1;37mNo uptime test available for this operating system (/proc/uptime missing)�[0m
Help improving the Lynis community with your feedback!
Steps:
- Ensure you are running the latest version (./lynis update check)
- If so, create a GitHub issue at https://github.com/CISOfy/lynis
- Include relevant parts of the log file or configuration file
Thanks!
=================================================================
[+] �[1;33mKernel�[0m
------------------------------------
�[2C- Checking kernel version and release�[22C [ �[1;32mDONE�[0m ]
�[2C- Checking Linux kernel configuration file�[17C [ �[1;37mNOT FOUND�[0m ]
�[2C- Checking core dumps configuration�[24C
�[4C- configuration in etc/profile�[27C [ �[1;37mDEFAULT�[0m ]
�[4C- 'hard' configuration in security/limits.conf�[11C [ �[1;37mDEFAULT�[0m ]
�[4C- 'soft' configuration in security/limits.conf�[11C [ �[1;32mDISABLED�[0m ]
�[4C- Checking setuid core dumps configuration�[15C [ �[1;32mDISABLED�[0m ]
�[2C- Check if reboot is needed�[32C [ �[1;33mUNKNOWN�[0m ]
[+] �[1;33mMemory and Processes�[0m
------------------------------------
/proc/self/stat: No such file or directory
�[2C- Searching for dead/zombie processes�[22C [ �[1;32mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
�[2C- Searching for IO waiting processes�[23C [ �[1;32mNOT FOUND�[0m ]
�[2C- Search prelink tooling�[35C [ �[1;32mNOT FOUND�[0m ]
[+] �[1;33mUsers, Groups and Authentication�[0m
------------------------------------
�[2C- Administrator accounts�[35C [ �[1;32mOK�[0m ]
�[2C- Unique UIDs�[46C [ �[1;32mOK�[0m ]
�[2C- Unique group IDs�[41C [ �[1;32mOK�[0m ]
�[2C- Unique group names�[39C [ �[1;32mOK�[0m ]
/bin/grep: /etc/login.defs: Permission denied
�[2C- Checking minimum group password hashing rounds�[11C [ �[1;33mDISABLED�[0m ]
/bin/grep: /etc/login.defs: Permission denied
�[2C- Checking maximum group password hashing rounds�[11C [ �[1;33mDISABLED�[0m ]
/bin/grep: /etc/login.defs: Permission denied
�[2C- Query system users (non daemons)�[25C [ �[1;32mDONE�[0m ]
�[2C- NIS+ authentication support�[30C [ �[1;37mNOT ENABLED�[0m ]
�[2C- NIS authentication support�[31C [ �[1;37mNOT ENABLED�[0m ]
�[2C- Sudoers file�[45C [ �[1;33mNOT FOUND�[0m ]
�[2C- PAM password strength tools�[30C [ �[1;32mOK�[0m ]
�[2C- PAM configuration file (pam.conf)�[24C [ �[1;37mNOT FOUND�[0m ]
�[2C- PAM configuration files (pam.d)�[26C [ �[1;32mFOUND�[0m ]
�[2C- PAM modules�[46C [ �[1;32mFOUND�[0m ]
�[2C- LDAP module in PAM�[39C [ �[1;37mNOT FOUND�[0m ]
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 865: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
/usr/src/RPM/BUILD/lynis/include/tests_authentication: line 866: passwd: command not found
�[2C- Accounts without expire date�[29C [ �[1;32mOK�[0m ]
�[2C- Accounts without password�[32C [ �[1;32mOK�[0m ]
/bin/grep: /etc/login.defs: Permission denied
�[2C- Checking user password aging (minimum)�[19C [ �[1;33mDISABLED�[0m ]
/bin/grep: /etc/login.defs: Permission denied
�[2C- User password aging (maximum)�[28C [ �[1;33mDISABLED�[0m ]
�[2C- Determining default umask�[32C
�[4C- umask (/etc/profile and /etc/profile.d)�[16C [ �[1;33mSUGGESTION�[0m ]
/bin/grep: /etc/login.defs: Permission denied
�[4C- umask (/etc/login.defs)�[32C [ �[1;33mSUGGESTION�[0m ]
�[4C- umask (/etc/init.d/functions)�[26C [ �[1;37mNONE�[0m ]
�[2C- LDAP authentication support�[30C [ �[1;37mNOT ENABLED�[0m ]
/bin/grep: /etc/login.defs: Permission denied
�[2C- Logging failed login attempts�[28C [ �[1;33mDISABLED�[0m ]
[+] �[1;33mShells�[0m
------------------------------------
�[2C- Checking shells from /etc/shells�[25C
�[4CResult: found 8 shells (valid shells: 2).�[16C
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
�[4C- Session timeout settings/tools�[25C [ �[1;33mNONE�[0m ]
�[2C- Checking default umask values�[28C
�[4C- Checking default umask in /etc/bashrc�[18C [ �[1;33mNONE�[0m ]
�[4C- Checking default umask in /etc/profile�[17C [ �[1;33mWEAK�[0m ]
[+] �[1;33mFile systems�[0m
------------------------------------
�[2C- Checking mount points�[36C
�[4C- Checking /home mount point�[29C [ �[1;33mSUGGESTION�[0m ]
�[4C- Checking /tmp mount point�[30C [ �[1;33mSUGGESTION�[0m ]
�[4C- Checking /var mount point�[30C [ �[1;33mSUGGESTION�[0m ]
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 155: -t: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 176: -t: command not found
�[2C- Query swap partitions (fstab)�[28C [ �[1;33mNONE�[0m ]
�[2C- Testing swap partitions�[34C [ �[1;32mOK�[0m ]
�[2C- Testing /proc mount (hidepid)�[28C [ �[1;33mSUGGESTION�[0m ]
�[2C- Checking for old files in /tmp�[27C [ �[1;32mOK�[0m ]
�[2C- Checking /tmp sticky bit�[33C [ �[1;32mOK�[0m ]
�[2C- Checking /var/tmp sticky bit�[29C [ �[1;32mOK�[0m ]
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 585: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 586: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 585: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 586: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 585: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 586: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 585: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 586: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 585: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 586: mount: command not found
�[2C- Mount options of /tmp�[36C [ �[1;33mPARTIALLY HARDENED�[0m ]
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 585: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 586: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 585: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 586: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 585: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 586: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 585: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 586: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 632: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 633: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 634: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 635: mount: command not found
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 636: mount: command not found
�[2C- Total without nodev:0 noexec:0 nosuid:0 ro or noexec (W^X): 0 of total 0�[0C
/bin/cat: /proc/sys/vm/swappiness: No such file or directory
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 698: [: -gt: unary operator expected
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 707: [: -eq: unary operator expected
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 710: [: -eq: unary operator expected
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 712: [: -eq: unary operator expected
/usr/src/RPM/BUILD/lynis/include/tests_filesystems: line 714: [: -lt: unary operator expected
[+] �[1;33mUSB Devices�[0m
------------------------------------
�[2C- Checking usb-storage driver (modprobe config)�[12C [ �[1;37mNOT DISABLED�[0m ]
�[2C- Checking USBGuard�[40C [ �[1;37mNOT FOUND�[0m ]
[+] �[1;33mStorage�[0m
------------------------------------
�[2C- Checking firewire ohci driver (modprobe config)�[10C [ �[1;37mNOT DISABLED�[0m ]
[+] �[1;33mNFS�[0m
------------------------------------
/proc/self/stat: No such file or directory
�[2C- Check running NFS daemon�[33C [ �[1;37mNOT FOUND�[0m ]
[+] �[1;33mName services�[0m
------------------------------------
�[2C- Searching DNS domain name�[32C [ �[1;32mFOUND�[0m ]
�[6CDomain name: localdomain�[31C
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
�[2C- Checking /etc/hosts�[38C
�[4C- Duplicate entries in hosts file�[24C [ �[1;32mNONE�[0m ]
�[4C- Presence of configured hostname in /etc/hosts�[10C [ �[1;32mFOUND�[0m ]
�[4C- Hostname mapped to localhost�[27C [ �[1;32mNOT FOUND�[0m ]
�[4C- Localhost mapping to IP address�[24C [ �[1;32mOK�[0m ]
[+] �[1;33mPorts and packages�[0m
------------------------------------
�[2C- Searching package managers�[31C
�[4C- Searching RPM package manager�[26C [ �[1;32mFOUND�[0m ]
�[6C- Querying RPM package manager�[25C
�[2C- Checking package audit tool�[30C [ �[1;31mNONE�[0m ]
=================================================================
�[1;31mException found!�[0m
Function/test: [KRNL-5840:1]
Message: �[1;37mCould not find any kernel packages via package manager�[0m
Help improving the Lynis community with your feedback!
Steps:
- Ensure you are running the latest version (./lynis update check)
- If so, create a GitHub issue at https://github.com/CISOfy/lynis
- Include relevant parts of the log file or configuration file
Thanks!
=================================================================
[+] �[1;33mNetworking�[0m
------------------------------------
�[2C- Checking IPv6 configuration�[30C [ �[1;37mDISABLED�[0m ]
�[2C- Checking configured nameservers�[26C
�[4C- Minimal of 2 responsive nameservers�[20C [ �[1;33mSKIPPED�[0m ]
=================================================================
�[1;31mException found!�[0m
Function/test: [NETW-3004:1]
Message: �[1;37mNo interfaces found on this system (OS=Linux)�[0m
Help improving the Lynis community with your feedback!
Steps:
- Ensure you are running the latest version (./lynis update check)
- If so, create a GitHub issue at https://github.com/CISOfy/lynis
- Include relevant parts of the log file or configuration file
Thanks!
=================================================================
=================================================================
�[1;31mException found!�[0m
Function/test: [NETW-3006:2]
Message: �[1;37mMissing ifconfig or ip command to collect hardware address (MAC)�[0m
Help improving the Lynis community with your feedback!
Steps:
- Ensure you are running the latest version (./lynis update check)
- If so, create a GitHub issue at https://github.com/CISOfy/lynis
- Include relevant parts of the log file or configuration file
Thanks!
=================================================================
=================================================================
�[1;31mException found!�[0m
Function/test: [NETW-3008:2]
Message: �[1;37mMissing ifconfig or ip command to collect hardware address (MAC)�[0m
Help improving the Lynis community with your feedback!
Steps:
- Ensure you are running the latest version (./lynis update check)
- If so, create a GitHub issue at https://github.com/CISOfy/lynis
- Include relevant parts of the log file or configuration file
Thanks!
=================================================================
=================================================================
�[1;31mException found!�[0m
Function/test: [NETW-3012:1]
Message: �[1;37mnetstat and ss binary missing to gather listening ports�[0m
Help improving the Lynis community with your feedback!
Steps:
- Ensure you are running the latest version (./lynis update check)
- If so, create a GitHub issue at https://github.com/CISOfy/lynis
- Include relevant parts of the log file or configuration file
Thanks!
=================================================================
�[2C- Getting listening ports (TCP/UDP)�[24C [ �[1;33mSKIPPED�[0m ]
�[2C- Checking promiscuous interfaces�[26C [ �[1;33mUNKNOWN�[0m ]
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
�[2C- Checking status DHCP client�[30C [ �[1;37mNOT ACTIVE�[0m ]
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
�[2C- Checking for ARP monitoring software�[21C [ �[1;33mNOT FOUND�[0m ]
�[2C- Uncommon network protocols�[31C [ �[1;33m0�[0m ]
[+] �[1;33mPrinters and Spools�[0m
------------------------------------
/proc/self/stat: No such file or directory
�[2C- Checking cups daemon�[37C [ �[1;37mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
�[2C- Checking lp daemon�[39C [ �[1;37mNOT RUNNING�[0m ]
[+] �[1;33mSoftware: e-mail and messaging�[0m
------------------------------------
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
[+] �[1;33mSoftware: firewalls�[0m
------------------------------------
�[2C- Checking iptables kernel module�[26C [ �[1;37mNOT FOUND�[0m ]
�[2C- Checking host based firewall�[29C [ �[1;33mNOT ACTIVE�[0m ]
[+] �[1;33mSoftware: webserver�[0m
------------------------------------
�[2C- Checking Apache�[42C [ �[1;37mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
�[2C- Checking nginx�[43C [ �[1;37mNOT FOUND�[0m ]
[+] �[1;33mSSH Support�[0m
------------------------------------
/proc/self/stat: No such file or directory
�[2C- Checking running SSH daemon�[30C [ �[1;37mNOT FOUND�[0m ]
[+] �[1;33mSNMP Support�[0m
------------------------------------
/proc/self/stat: No such file or directory
�[2C- Checking running SNMP daemon�[29C [ �[1;37mNOT FOUND�[0m ]
[+] �[1;33mDatabases�[0m
------------------------------------
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
�[4CNo database engines found�[32C
[+] �[1;33mLDAP Services�[0m
------------------------------------
/proc/self/stat: No such file or directory
�[2C- Checking OpenLDAP instance�[31C [ �[1;37mNOT FOUND�[0m ]
[+] �[1;33mPHP�[0m
------------------------------------
�[2C- Checking PHP�[45C [ �[1;37mNOT FOUND�[0m ]
[+] �[1;33mSquid Support�[0m
------------------------------------
/proc/self/stat: No such file or directory
�[2C- Checking running Squid daemon�[28C [ �[1;37mNOT FOUND�[0m ]
[+] �[1;33mLogging and files�[0m
------------------------------------
/proc/self/stat: No such file or directory
�[2C- Checking for a running log daemon�[24C [ �[1;31mWARNING�[0m ]
/proc/self/stat: No such file or directory
�[4C- Checking Syslog-NG status�[30C [ �[1;37mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
�[4C- Checking systemd journal status�[24C [ �[1;37mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
�[4C- Checking Metalog status�[32C [ �[1;37mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
�[4C- Checking RSyslog status�[32C [ �[1;37mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
�[4C- Checking RFC 3195 daemon status�[24C [ �[1;37mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
�[4C- Checking klogd�[41C [ �[1;31mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
�[4C- Checking minilogd instances�[28C [ �[1;37mNOT FOUND�[0m ]
�[2C- Checking logrotate presence�[30C [ �[1;31mWARNING�[0m ]
�[2C- Checking log directories (static list)�[19C [ �[1;32mDONE�[0m ]
�[2C- Checking open log files�[34C [ �[1;37mSKIPPED�[0m ]
[+] �[1;33mInsecure services�[0m
------------------------------------
�[2C- Installed inetd package�[34C [ �[1;32mNOT FOUND�[0m ]
�[2C- Installed xinetd package�[33C [ �[1;32mOK�[0m ]
/proc/self/stat: No such file or directory
�[4C- xinetd status�[42C [ �[1;32mNOT ACTIVE�[0m ]
�[2C- Installed rsh client package�[29C [ �[1;32mOK�[0m ]
�[2C- Installed rsh server package�[29C [ �[1;32mOK�[0m ]
�[2C- Installed telnet client package�[26C [ �[1;32mOK�[0m ]
�[2C- Installed telnet server package�[26C [ �[1;32mNOT FOUND�[0m ]
�[2C- Checking NIS client installation�[25C [ �[1;32mOK�[0m ]
�[2C- Checking NIS server installation�[25C [ �[1;32mOK�[0m ]
�[2C- Checking TFTP client installation�[24C [ �[1;32mOK�[0m ]
�[2C- Checking TFTP server installation�[24C [ �[1;32mOK�[0m ]
[+] �[1;33mBanners and identification�[0m
------------------------------------
�[2C- /etc/issue�[47C [ �[1;37mNOT FOUND�[0m ]
�[2C- /etc/issue.net�[43C [ �[1;37mNOT FOUND�[0m ]
[+] �[1;33mScheduled tasks�[0m
------------------------------------
/proc/self/stat: No such file or directory
�[2C- Checking crontab and cronjob files�[23C [ �[1;32mDONE�[0m ]
/proc/self/stat: No such file or directory
[+] �[1;33mAccounting�[0m
------------------------------------
�[2C- Checking accounting information�[26C [ �[1;33mNOT FOUND�[0m ]
�[2C- Checking sysstat accounting data�[25C [ �[1;33mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
�[2C- Checking auditd�[42C [ �[1;37mNOT FOUND�[0m ]
[+] �[1;33mTime and Synchronization�[0m
------------------------------------
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
�[2C- Checking for a running NTP daemon or client�[14C [ �[1;31mWARNING�[0m ]
[+] �[1;33mCryptography�[0m
------------------------------------
�[2C- HW RNG & rngd�[44C [ �[1;31mNO�[0m ]
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
�[2C- SW prng�[50C [ �[1;33mNO�[0m ]
[+] �[1;33mVirtualization�[0m
------------------------------------
[+] �[1;33mContainers�[0m
------------------------------------
/proc/self/stat: No such file or directory
[+] �[1;33mSecurity frameworks�[0m
------------------------------------
�[2C- Checking presence AppArmor�[31C [ �[1;37mNOT FOUND�[0m ]
�[2C- Checking presence SELinux�[32C [ �[1;37mNOT FOUND�[0m ]
�[2C- Checking presence TOMOYO Linux�[27C [ �[1;37mNOT FOUND�[0m ]
�[2C- Checking presence grsecurity�[29C [ �[1;37mNOT FOUND�[0m ]
�[2C- Checking for implemented MAC framework�[19C [ �[1;33mNONE�[0m ]
[+] �[1;33mSoftware: file integrity�[0m
------------------------------------
�[2C- Checking file integrity tools�[28C
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
�[2C- Checking presence integrity tool�[25C [ �[1;33mNOT FOUND�[0m ]
[+] �[1;33mSoftware: System tooling�[0m
------------------------------------
�[2C- Checking automation tooling�[30C
/proc/self/stat: No such file or directory
�[2C- Automation tooling�[39C [ �[1;33mNOT FOUND�[0m ]
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
�[2C- Checking for IDS/IPS tooling�[29C [ �[1;33mNONE�[0m ]
[+] �[1;33mSoftware: Malware�[0m
------------------------------------
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
/proc/self/stat: No such file or directory
[+] �[1;33mFile Permissions�[0m
------------------------------------
�[2C- Starting file permissions check�[26C
�[4CFile: /etc/group�[41C [ �[1;32mOK�[0m ]
�[4CFile: /etc/group-�[40C [ �[1;32mOK�[0m ]
�[4CFile: /etc/hosts.allow�[35C [ �[1;32mOK�[0m ]
�[4CFile: /etc/hosts.deny�[36C [ �[1;32mOK�[0m ]
�[4CFile: /etc/motd�[42C [ �[1;32mOK�[0m ]
�[4CFile: /etc/passwd�[40C [ �[1;32mOK�[0m ]
�[4CFile: /etc/passwd-�[39C [ �[1;32mOK�[0m ]
[+] �[1;33mHome directories�[0m
------------------------------------
�[2C- Permissions of home directories�[26C [ �[1;31mWARNING�[0m ]
�[2C- Ownership of home directories�[28C [ �[1;31mWARNING�[0m ]
�[2C- Checking shell history files�[29C [ �[1;32mOK�[0m ]
[+] �[1;33mKernel Hardening�[0m
------------------------------------
�[2C- Comparing sysctl key pairs with scan profile�[13C
[+] �[1;33mHardening�[0m
------------------------------------
�[4C- Installed compiler(s)�[34C [ �[1;31mFOUND�[0m ]
�[4C- Installed malware scanner�[30C [ �[1;31mNOT FOUND�[0m ]
[+] �[1;33mCustom tests�[0m
------------------------------------
�[2C- Running custom tests... �[33C [ �[1;37mNONE�[0m ]
[+] �[1;35mPlugins (phase 2)�[0m
------------------------------------
================================================================================
-[ �[1;37mLynis 3.0.0 Results�[0m ]-
�[1;31mWarnings�[0m (1):
�[1;37m----------------------------�[0m
�[1;31m!�[0m klogd is not running, which could lead to missing kernel messages in log files [LOGG-2138]
https://cisofy.com/lynis/controls/LOGG-2138/
�[1;33mSuggestions�[0m (30):
�[1;37m----------------------------�[0m
�[1;33m*�[0m Configure minimum encryption algorithm rounds in /etc/login.defs [AUTH-9230]
�[0;37mhttps://cisofy.com/lynis/controls/AUTH-9230/�[0m
�[1;33m*�[0m Configure maximum encryption algorithm rounds in /etc/login.defs [AUTH-9230]
�[0;37mhttps://cisofy.com/lynis/controls/AUTH-9230/�[0m
�[1;33m*�[0m Configure minimum password age in /etc/login.defs [AUTH-9286]
�[0;37mhttps://cisofy.com/lynis/controls/AUTH-9286/�[0m
�[1;33m*�[0m Configure maximum password age in /etc/login.defs [AUTH-9286]
�[0;37mhttps://cisofy.com/lynis/controls/AUTH-9286/�[0m
�[1;33m*�[0m Default umask in /etc/profile or /etc/profile.d/custom.sh could be more strict (e.g. 027) [AUTH-9328]
�[0;37mhttps://cisofy.com/lynis/controls/AUTH-9328/�[0m
�[1;33m*�[0m Default umask in /etc/login.defs could not be found and defaults usually to 022, which could be more strict like 027 [AUTH-9328]
�[0;37mhttps://cisofy.com/lynis/controls/AUTH-9328/�[0m
�[1;33m*�[0m To decrease the impact of a full /home file system, place /home on a separate partition [FILE-6310]
�[0;37mhttps://cisofy.com/lynis/controls/FILE-6310/�[0m
�[1;33m*�[0m To decrease the impact of a full /tmp file system, place /tmp on a separate partition [FILE-6310]
�[0;37mhttps://cisofy.com/lynis/controls/FILE-6310/�[0m
�[1;33m*�[0m To decrease the impact of a full /var file system, place /var on a separate partition [FILE-6310]
�[0;37mhttps://cisofy.com/lynis/controls/FILE-6310/�[0m
�[1;33m*�[0m Disable drivers like USB storage when not used, to prevent unauthorized storage or data theft [USB-1000]
�[0;37mhttps://cisofy.com/lynis/controls/USB-1000/�[0m
�[1;33m*�[0m Disable drivers like firewire storage when not used, to prevent unauthorized storage or data theft [STRG-1846]
�[0;37mhttps://cisofy.com/lynis/controls/STRG-1846/�[0m
�[1;33m*�[0m Install a package audit tool to determine vulnerable packages [PKGS-7398]
�[0;37mhttps://cisofy.com/lynis/controls/PKGS-7398/�[0m
�[1;33m*�[0m Determine if protocol 'dccp' is really needed on this system [NETW-3200]
�[0;37mhttps://cisofy.com/lynis/controls/NETW-3200/�[0m
�[1;33m*�[0m Determine if protocol 'sctp' is really needed on this system [NETW-3200]
�[0;37mhttps://cisofy.com/lynis/controls/NETW-3200/�[0m
�[1;33m*�[0m Determine if protocol 'rds' is really needed on this system [NETW-3200]
�[0;37mhttps://cisofy.com/lynis/controls/NETW-3200/�[0m
�[1;33m*�[0m Determine if protocol 'tipc' is really needed on this system [NETW-3200]
�[0;37mhttps://cisofy.com/lynis/controls/NETW-3200/�[0m
�[1;33m*�[0m Configure a firewall/packet filter to filter incoming and outgoing traffic [FIRE-4590]
�[0;37mhttps://cisofy.com/lynis/controls/FIRE-4590/�[0m
�[1;33m*�[0m Check if any syslog daemon is running and correctly configured. [LOGG-2130]
�[0;37mhttps://cisofy.com/lynis/controls/LOGG-2130/�[0m
�[1;33m*�[0m Check if log files are properly rotated [LOGG-2146]
�[0;37mhttps://cisofy.com/lynis/controls/LOGG-2146/�[0m
�[1;33m*�[0m Enable process accounting [ACCT-9622]
�[0;37mhttps://cisofy.com/lynis/controls/ACCT-9622/�[0m
�[1;33m*�[0m Enable sysstat to collect accounting (no results) [ACCT-9626]
�[0;37mhttps://cisofy.com/lynis/controls/ACCT-9626/�[0m
�[1;33m*�[0m Enable auditd to collect audit information [ACCT-9628]
�[0;37mhttps://cisofy.com/lynis/controls/ACCT-9628/�[0m
�[1;33m*�[0m Use NTP daemon or NTP client to prevent time issues. [TIME-3104]
�[0;37mhttps://cisofy.com/lynis/controls/TIME-3104/�[0m
�[1;33m*�[0m Utilize software pseudo random number generators [CRYP-8005]
�[0;37mhttps://cisofy.com/lynis/controls/CRYP-8005/�[0m
�[1;33m*�[0m Install a file integrity tool to monitor changes to critical and sensitive files [FINT-4350]
�[0;37mhttps://cisofy.com/lynis/controls/FINT-4350/�[0m
�[1;33m*�[0m Determine if automation tools are present for system management [TOOL-5002]
�[0;37mhttps://cisofy.com/lynis/controls/TOOL-5002/�[0m
�[1;33m*�[0m Double check the permissions of home directories as some might be not strict enough. [HOME-9304]
�[0;37mhttps://cisofy.com/lynis/controls/HOME-9304/�[0m
�[1;33m*�[0m Double check the ownership of home directories as some might be incorrect. [HOME-9306]
�[0;37mhttps://cisofy.com/lynis/controls/HOME-9306/�[0m
�[1;33m*�[0m Harden compilers like restricting access to root user only [HRDN-7222]
�[0;37mhttps://cisofy.com/lynis/controls/HRDN-7222/�[0m
�[1;33m*�[0m Harden the system by installing at least one malware scanner, to perform periodic file system scans [HRDN-7230]
- Solution : Install a tool like rkhunter, chkrootkit, OSSEC
�[0;37mhttps://cisofy.com/lynis/controls/HRDN-7230/�[0m
�[0;36mFollow-up�[0m:
�[1;37m----------------------------�[0m
�[1;37m-�[0m Show details of a test (lynis show details TEST-ID)
�[1;37m-�[0m Check the logfile for all details (less /usr/src/lynis.log)
�[1;37m-�[0m Read security controls texts (https://cisofy.com)
�[1;37m-�[0m Use --upload to upload data to central system (Lynis Enterprise users)
================================================================================
�[1;37mLynis security scan details�[0m:
�[0;36mHardening index�[0m : �[1;37m53�[0m [�[1;33m##########�[0m ]
�[0;36mTests performed�[0m : �[1;37m194�[0m
�[0;36mPlugins enabled�[0m : �[1;37m0�[0m
�[1;37mComponents�[0m:
- Firewall [�[1;31mX�[0m]
- Malware scanner [�[1;31mX�[0m]
�[1;33mScan mode�[0m:
Normal [ ] Forensics [ ] Integration [ ] Pentest [V] (running non-privileged)
�[1;33mLynis modules�[0m:
- Compliance status [�[1;33m?�[0m]
- Security audit [�[1;32mV�[0m]
- Vulnerability scan [�[1;32mV�[0m]
�[1;33mFiles�[0m:
- Test and debug information : �[1;37m/usr/src/lynis.log�[0m
- Report data : �[1;37m/usr/src/lynis-report.dat�[0m
================================================================================
�[1;31mExceptions found�[0m
�[1;37mSome exceptional events or information was found!�[0m
�[0;36mWhat to do:�[0m
You can help by providing your log file (/usr/src/lynis.log).
Go to https://cisofy.com/contact/ and send your file to the e-mail address listed
================================================================================
�[0;35mSkipped tests due to non-privileged mode�[0m
BOOT-5108 - Check Syslinux as bootloader
BOOT-5109 - Check rEFInd as bootloader
BOOT-5116 - Check if system is booted in UEFI mode
AUTH-9229 - Check password hashing methods
AUTH-9288 - Checking for expired passwords
FILE-6368 - Checking ACL support on root file system
CRYP-7930 - Determine if system uses LUKS block device encryption
================================================================================
�[1;37mLynis�[0m 3.0.0
Auditing, system hardening, and compliance for UNIX-based systems
(Linux, macOS, BSD, and others)
2007-2020, CISOfy - https://cisofy.com/lynis/
�[1;37mEnterprise support available (compliance, plugins, interface and tools)�[0m
================================================================================
�[0;44m[TIP]�[0m: �[0;94mEnhance Lynis audits by adding your settings to custom.prf (see /usr/src/RPM/BUILD/lynis/default.prf for all settings)�[0m
+ exit 0
Processing files: lynis-3.0.0-alt2
Executing(%doc): /bin/sh -e /usr/src/tmp/rpm-tmp.11622
+ umask 022
+ /bin/mkdir -p /usr/src/RPM/BUILD
+ cd /usr/src/RPM/BUILD
+ cd lynis
+ DOCDIR=/usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ export DOCDIR
+ rm -rf /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ /bin/mkdir -p /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ cp -prL CHANGELOG.md CONTRIBUTORS.md FAQ README /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ chmod -R go-w /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ chmod -R a+rX /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ cp -prL extras/systemd/ /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ chmod -R go-w /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ chmod -R a+rX /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ cp -prL --no-dereference LICENSE /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ chmod -R go-w /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ chmod -R a+rX /usr/src/tmp/lynis-buildroot/usr/share/doc/lynis-3.0.0
+ exit 0
Finding Provides (using /usr/lib/rpm/find-provides)
Executing: /bin/sh -e /usr/src/tmp/rpm-tmp.mBxKCh
find-provides: running scripts (alternatives,debuginfo,lib,pam,perl,pkgconfig,python,shell)
Finding Requires (using /usr/lib/rpm/find-requires)
Executing: /bin/sh -e /usr/src/tmp/rpm-tmp.LOS28e
find-requires: running scripts (cpp,debuginfo,files,lib,pam,perl,pkgconfig,pkgconfiglib,python,rpmlib,shebang,shell,static,symlinks,systemd-services)
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/binaries is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/consts is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/data_upload is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/functions is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_audit_dockerfile is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_configure is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_generate is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_show is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_system_remote_scan is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/helper_update is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/osdetection is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/parameters is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/profiles is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/report is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_accounting is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_authentication is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_banners is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_boot_services is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_containers is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_crypto is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_custom.template is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_databases is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_dns is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_file_integrity is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_file_permissions is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_filesystems is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_firewalls is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_hardening is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_homedirs is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_insecure_services is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_kernel is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_kernel_hardening is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_ldap is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_logging is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_mac_frameworks is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_mail_messaging is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_malware is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_memory_processes is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_nameservices is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_networking is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_php is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_ports_packages is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_printers_spoolers is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_scheduling is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_shells is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_snmp is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_squid is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_ssh is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_storage is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_storage_nfs is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_system_integrity is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_time is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_tooling is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_usb is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_virtualization is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tests_webservers is not executable
shebang.req.files: executable script /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/tool_tips is not executable
shell.req: /usr/src/tmp/lynis-buildroot/usr/bin/lynis: /usr/xpg4/bin/sh -> /usr/xpg4/bin/sh (raw, not installed)
shell.req: /usr/src/tmp/lynis-buildroot/usr/share/lynis/include/functions: laptop-detect not found (skip)
++ /bin/sed -e /.usr.xpg4.bin.sh/d -e /.usr.xpg4.bin.sh/d
--- find-requires-deps 2020-09-11 12:49:49.517603984 +0000
+++ filter-requires-deps 2020-09-11 12:49:49.519603990 +0000
@@ -1,3 +1,2 @@
/bin/sh
-/usr/xpg4/bin/sh
coreutils
find-requires: FINDPACKAGE-COMMANDS: Fatal ShowError awk cat chmod find grep laptop-detect nroff rm sed sleep touch
Requires: audit, e2fsprogs, module-init-tools, /bin/sh, coreutils, findutils, gawk, grep, groff-base, sed
Wrote: /usr/src/RPM/RPMS/noarch/lynis-3.0.0-alt2.noarch.rpm
21.14user 9.54system 2:05.37elapsed 24%CPU (0avgtext+0avgdata 19600maxresident)k
0inputs+0outputs (0major+5242545minor)pagefaults 0swaps
27.10user 12.59system 2:15.34elapsed 29%CPU (0avgtext+0avgdata 109864maxresident)k
640inputs+0outputs (0major+5550107minor)pagefaults 0swaps