4809 lines
380 KiB
Plaintext
4809 lines
380 KiB
Plaintext
|
2021-01-07 15:41:25 Starting Lynis 3.0.3 with PID 78900, build date 2021-01-07
|
|||
|
2021-01-07 15:41:25 ====
|
|||
|
2021-01-07 15:41:25 ### 2007-2021, CISOfy - https://cisofy.com/lynis/ ###
|
|||
|
2021-01-07 15:41:25 Checking permissions of /root/scans/lynis/include/profiles
|
|||
|
2021-01-07 15:41:25 File permissions are OK
|
|||
|
2021-01-07 15:41:25 Reading profile/configuration /root/scans/lynis/default.prf
|
|||
|
2021-01-07 15:41:25 Action: created temporary file /tmp/lynis.sHalySRbTD
|
|||
|
2021-01-07 15:41:25 Language set via profile to ''
|
|||
|
2021-01-07 15:41:25 Plugin 'authentication' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'compliance' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'configuration' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'control-panels' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'crypto' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'dns' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'docker' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'file-integrity' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'file-systems' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'firewalls' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'forensics' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'hardware' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'intrusion-detection' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'intrusion-prevention' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'kernel' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'malware' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'memory' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'nginx' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'pam' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'processes' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'security-modules' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'software' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'system-integrity' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'systemd' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:25 Plugin 'users' enabled according profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:26 Set option to default value: NTPD_ROLE --> client
|
|||
|
2021-01-07 15:41:26 ====
|
|||
|
2021-01-07 15:41:26 EOL check: 1
|
|||
|
2021-01-07 15:41:26 Warning: This version 14.04 is marked end-of-life as of 2019-05-01 [test:GEN-0010] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:26 Program version: 3.0.3
|
|||
|
2021-01-07 15:41:26 Operating system: Linux
|
|||
|
2021-01-07 15:41:26 Operating system name: Ubuntu
|
|||
|
2021-01-07 15:41:26 Operating system version: 14.04
|
|||
|
2021-01-07 15:41:26 Kernel version: 4.4.0
|
|||
|
2021-01-07 15:41:26 Kernel version (full): 4.4.0-142-generic
|
|||
|
2021-01-07 15:41:26 Hardware platform: x86_64
|
|||
|
2021-01-07 15:41:26 -----------------------------------------------------
|
|||
|
2021-01-07 15:41:26 Hostname: ubuntu1404
|
|||
|
2021-01-07 15:41:26 Auditor: [Not Specified]
|
|||
|
2021-01-07 15:41:26 Profiles: /root/scans/lynis/default.prf
|
|||
|
2021-01-07 15:41:26 Work directory: /root/scans/lynis
|
|||
|
2021-01-07 15:41:26 Include directory: /root/scans/lynis/include
|
|||
|
2021-01-07 15:41:26 Plugin directory: ./plugins
|
|||
|
2021-01-07 15:41:26 -----------------------------------------------------
|
|||
|
2021-01-07 15:41:26 Log file: /var/log/lynis.log
|
|||
|
2021-01-07 15:41:26 Report file: /var/log/lynis-report.dat
|
|||
|
2021-01-07 15:41:26 Report version: 1.0
|
|||
|
2021-01-07 15:41:26 -----------------------------------------------------
|
|||
|
2021-01-07 15:41:26 Test category: all
|
|||
|
2021-01-07 15:41:26 Test group: all
|
|||
|
2021-01-07 15:41:26 BusyBox used: 0
|
|||
|
2021-01-07 15:41:26 ====
|
|||
|
2021-01-07 15:41:26 Test: Checking for program update...
|
|||
|
2021-01-07 15:41:26 Current installed version : 303
|
|||
|
2021-01-07 15:41:26 Latest stable version : 303
|
|||
|
2021-01-07 15:41:26 No Lynis update available.
|
|||
|
2021-01-07 15:41:26 ====
|
|||
|
2021-01-07 15:41:26 Checking permissions of /root/scans/lynis/include/binaries
|
|||
|
2021-01-07 15:41:26 File permissions are OK
|
|||
|
2021-01-07 15:41:26 ====
|
|||
|
2021-01-07 15:41:26 Action: Performing tests from category: System tools
|
|||
|
2021-01-07 15:41:26 Start scanning for available audit binaries and tools...
|
|||
|
2021-01-07 15:41:26 ====
|
|||
|
2021-01-07 15:41:26 Performing test ID CORE-1000 (Check all system binaries)
|
|||
|
2021-01-07 15:41:26 Status: Starting binary scan...
|
|||
|
2021-01-07 15:41:26 Test: Checking binaries in directory /usr/local/games
|
|||
|
2021-01-07 15:41:26 Directory /usr/local/games exists. Starting directory scanning...
|
|||
|
2021-01-07 15:41:26 Test: Checking binaries in directory /usr/games
|
|||
|
2021-01-07 15:41:26 Directory /usr/games exists. Starting directory scanning...
|
|||
|
2021-01-07 15:41:26 Test: Checking binaries in directory /bin
|
|||
|
2021-01-07 15:41:26 Directory /bin exists. Starting directory scanning...
|
|||
|
2021-01-07 15:41:26 Found known binary: cat (generic file handling) - /bin/cat
|
|||
|
2021-01-07 15:41:26 Found known binary: dnsdomainname (DNS domain) - /bin/dnsdomainname
|
|||
|
2021-01-07 15:41:26 Found known binary: domainname (NIS domain) - /bin/domainname
|
|||
|
2021-01-07 15:41:26 Found known binary: egrep (text search) - /bin/egrep
|
|||
|
2021-01-07 15:41:26 Found known binary: grep (text search) - /bin/grep
|
|||
|
2021-01-07 15:41:26 Found known binary: gzip (compressing utility) - /bin/gzip
|
|||
|
2021-01-07 15:41:26 Found known binary: ip (IP configuration) - /bin/ip
|
|||
|
2021-01-07 15:41:26 Found known binary: ls (file listing) - /bin/ls
|
|||
|
2021-01-07 15:41:26 Found known binary: lsblk (block devices) - /bin/lsblk
|
|||
|
2021-01-07 15:41:26 Found known binary: lsmod (kernel modules) - /bin/lsmod
|
|||
|
2021-01-07 15:41:26 Found known binary: mount (disk utility) - /bin/mount
|
|||
|
2021-01-07 15:41:26 Found known binary: netstat (network statistics) - /bin/netstat
|
|||
|
2021-01-07 15:41:26 Found known binary: ps (process listing) - /bin/ps
|
|||
|
2021-01-07 15:41:26 Found known binary: readlink (follows symlinks) - /bin/readlink
|
|||
|
2021-01-07 15:41:26 Found known binary: sed (text stream editor) - /bin/sed
|
|||
|
2021-01-07 15:41:26 Found known binary: ss (show sockets) - /bin/ss
|
|||
|
2021-01-07 15:41:26 Found known binary: uname (operating system details) - /bin/uname
|
|||
|
2021-01-07 15:41:26 Found known binary: zgrep (text search for compressed files) - /bin/zgrep
|
|||
|
2021-01-07 15:41:26 Test: Checking binaries in directory /sbin
|
|||
|
2021-01-07 15:41:26 Directory /sbin exists. Starting directory scanning...
|
|||
|
2021-01-07 15:41:26 Found known binary: blkid (information about block devices) - /sbin/blkid
|
|||
|
2021-01-07 15:41:26 Found known binary: getcap (kernel capabilities) - /sbin/getcap
|
|||
|
2021-01-07 15:41:26 Found known binary: ipconfig (IP configuration) - /sbin/ifconfig
|
|||
|
2021-01-07 15:41:26 Found known binary: initctl (client to upstart init) - /sbin/initctl
|
|||
|
2021-01-07 15:41:26 Found known binary: ip (IP configuration) - /sbin/ip
|
|||
|
2021-01-07 15:41:26 Found known binary: iptables (firewall) - /sbin/iptables
|
|||
|
2021-01-07 15:41:26 Found known binary: iptables-save (firewall) - /sbin/iptables-save
|
|||
|
2021-01-07 15:41:26 Found known binary: lsmod (kernel modules) - /sbin/lsmod
|
|||
|
2021-01-07 15:41:26 Found known binary: modprobe (kernel modules) - /sbin/modprobe
|
|||
|
2021-01-07 15:41:26 Found known binary: runlevel (system utility) - /sbin/runlevel
|
|||
|
2021-01-07 15:41:26 Found known binary: swapon (swap device tool) - /sbin/swapon
|
|||
|
2021-01-07 15:41:26 Found known binary: sysctl (kernel parameters) - /sbin/sysctl
|
|||
|
2021-01-07 15:41:26 Found known binary: tune2fs (file system tool) - /sbin/tune2fs
|
|||
|
2021-01-07 15:41:26 Test: Checking binaries in directory /usr/bin
|
|||
|
2021-01-07 15:41:26 Directory /usr/bin exists. Starting directory scanning...
|
|||
|
2021-01-07 15:41:26 Found known binary: apt (package manager) - /usr/bin/apt
|
|||
|
2021-01-07 15:41:26 Found known binary: awk (string tool) - /usr/bin/awk
|
|||
|
2021-01-07 15:41:26 Found known binary: base64 (encoding tool) - /usr/bin/base64
|
|||
|
2021-01-07 15:41:26 Found known binary: comm (file compare) - /usr/bin/comm
|
|||
|
2021-01-07 15:41:26 Found known binary: curl (browser, download utility) - /usr/bin/curl
|
|||
|
2021-01-07 15:41:26 Found known binary: cut (text stream editor) - /usr/bin/cut
|
|||
|
2021-01-07 15:41:26 Found known binary: dig (network/dns tool) - /usr/bin/dig
|
|||
|
2021-01-07 15:41:26 Found known binary: dpkg (package management) - /usr/bin/dpkg
|
|||
|
2021-01-07 15:41:26 Found known binary: file (file type detection) - /usr/bin/file
|
|||
|
2021-01-07 15:41:26 Found known binary: find (search tool) - /usr/bin/find
|
|||
|
2021-01-07 15:41:26 Found known binary: getent (query tool for name service switch libraries) - /usr/bin/getent
|
|||
|
2021-01-07 15:41:26 Found known binary: head (text filter) - /usr/bin/head
|
|||
|
2021-01-07 15:41:26 Found known binary: locate (file database) - /usr/bin/locate
|
|||
|
2021-01-07 15:41:26 Found known binary: lsattr (file attributes) - /usr/bin/lsattr
|
|||
|
2021-01-07 15:41:26 Found known binary: lsof (open files) - /usr/bin/lsof
|
|||
|
2021-01-07 15:41:26 Found known binary: md5sum (hash tool) - /usr/bin/md5sum
|
|||
|
2021-01-07 15:41:26 Found /usr/bin/openssl (version 1.0.1f)
|
|||
|
2021-01-07 15:41:26 Found /usr/bin/perl (version 5.18.2)
|
|||
|
2021-01-07 15:41:26 Found known binary: pgrep (search in process list) - /usr/bin/pgrep
|
|||
|
2021-01-07 15:41:26 Found known binary: python (programming language interpreter) - /usr/bin/python (version 2.7.6)
|
|||
|
2021-01-07 15:41:26 Found known binary: python2 (programming language interpreter) - /usr/bin/python2 (version 2.7.6)
|
|||
|
2021-01-07 15:41:26 Found known binary: python3 (programming language interpreter) - /usr/bin/python3 (version 3.4.3)
|
|||
|
2021-01-07 15:41:26 Found known binary: service (system services) - /usr/bin/service
|
|||
|
2021-01-07 15:41:26 Found known binary: sha1/sha1sum/shasum (crypto hashing) - /usr/bin/sha1sum
|
|||
|
2021-01-07 15:41:26 Found known binary: sha256/sha256sum (crypto hashing) - /usr/bin/sha256sum
|
|||
|
2021-01-07 15:41:26 Found known binary: sha1/sha1sum/shasum (crypto hashing) - /usr/bin/shasum
|
|||
|
2021-01-07 15:41:26 Found known binary: sort (sort data streams) - /usr/bin/sort
|
|||
|
2021-01-07 15:41:26 Found known binary: ssh-keyscan (scanner for SSH keys) - /usr/bin/ssh-keyscan
|
|||
|
2021-01-07 15:41:26 Found known binary: stat (file information) - /usr/bin/stat
|
|||
|
2021-01-07 15:41:26 Found known binary: tail (text filter) - /usr/bin/tail
|
|||
|
2021-01-07 15:41:26 Found known binary: timedatectl (timedate client) - /usr/bin/timedatectl
|
|||
|
2021-01-07 15:41:26 Found known binary: tr (text transformation) - /usr/bin/tr
|
|||
|
2021-01-07 15:41:26 Found known binary: uniq (text manipulation utility) - /usr/bin/uniq
|
|||
|
2021-01-07 15:41:26 Found known binary: wc (word count) - /usr/bin/wc
|
|||
|
2021-01-07 15:41:26 Found /usr/bin/wget (version 1.15)
|
|||
|
2021-01-07 15:41:26 Found known binary: xargs (command output redirection) - /usr/bin/xargs
|
|||
|
2021-01-07 15:41:26 Test: Checking binaries in directory /usr/sbin
|
|||
|
2021-01-07 15:41:26 Directory /usr/sbin exists. Starting directory scanning...
|
|||
|
2021-01-07 15:41:26 Found known binary: aa-status (apparmor component) - /usr/sbin/aa-status
|
|||
|
2021-01-07 15:41:26 Found known binary: dmidecode (hardware collector tool) - /usr/sbin/dmidecode
|
|||
|
2021-01-07 15:41:26 Found known binary: grpck (consistency checker) - /usr/sbin/grpck
|
|||
|
2021-01-07 15:41:26 Found known binary: logrotate (log rotation tool) - /usr/sbin/logrotate
|
|||
|
2021-01-07 15:41:26 Found known binary: service (system services) - /usr/sbin/service
|
|||
|
2021-01-07 15:41:26 Found /usr/sbin/sshd (version 6.6.1)
|
|||
|
2021-01-07 15:41:26 Found known binary: vmtoolsd (VMWare tools) - /usr/sbin/vmtoolsd
|
|||
|
2021-01-07 15:41:26 Test: Checking binaries in directory /usr/local/bin
|
|||
|
2021-01-07 15:41:26 Directory /usr/local/bin exists. Starting directory scanning...
|
|||
|
2021-01-07 15:41:26 Test: Checking binaries in directory /usr/local/sbin
|
|||
|
2021-01-07 15:41:26 Directory /usr/local/sbin exists. Starting directory scanning...
|
|||
|
2021-01-07 15:41:26 Discovered directories: /usr/local/games,/usr/games,/bin,/sbin,/usr/bin,/usr/sbin,/usr/local/bin,/usr/local/sbin
|
|||
|
2021-01-07 15:41:26 Result: found 1098 binaries including 24 set-uid and 19 set-gid
|
|||
|
2021-01-07 15:41:26 Result: set-uid binaries: /bin/fusermount /bin/mount /bin/ping /bin/ping6 /bin/su /bin/umount /usr/bin/at /usr/bin/atq /usr/bin/atrm /usr/bin/chfn /usr/bin/chsh /usr/bin/gpasswd /usr/bin/mtr /usr/bin/newgrp /usr/bin/passwd /usr/bin/pkexec /usr/bin/sg /usr/bin/sudo /usr/bin/sudoedit /usr/bin/traceroute6 /usr/bin/traceroute6.iputils /usr/bin/vmware-user /usr/sbin/pppd /usr/sbin/uuidd
|
|||
|
2021-01-07 15:41:26 Result: set-gid binaries: /sbin/unix_chkpwd /usr/bin/at /usr/bin/atq /usr/bin/atrm /usr/bin/bsd-write /usr/bin/chage /usr/bin/crontab /usr/bin/dotlockfile /usr/bin/expiry /usr/bin/locate /usr/bin/mail-lock /usr/bin/mail-touchlock /usr/bin/mail-unlock /usr/bin/mlocate /usr/bin/screen /usr/bin/ssh-agent /usr/bin/wall /usr/bin/write /usr/sbin/uuidd
|
|||
|
2021-01-07 15:41:26 ====
|
|||
|
2021-01-07 15:41:26 Informational: package manager is used
|
|||
|
2021-01-07 15:41:26 Test: Determine if this system is a virtual machine
|
|||
|
2021-01-07 15:41:26 Result: facter utility not found
|
|||
|
2021-01-07 15:41:26 Result: systemd-detect-virt not found
|
|||
|
2021-01-07 15:41:26 Test: trying to guess virtualization with lscpu
|
|||
|
2021-01-07 15:41:26 Result: found VMware
|
|||
|
2021-01-07 15:41:26 Result: skipped dmidecode test, as we already found machine type
|
|||
|
2021-01-07 15:41:26 Result: skipped processes test, as we already found platform
|
|||
|
2021-01-07 15:41:26 Result: skipped Amazon EC2 test, as we already found platform
|
|||
|
2021-01-07 15:41:26 Result: skipped sysctl test, as we already found platform
|
|||
|
2021-01-07 15:41:26 Result: skipped lshw test, as we already found machine type
|
|||
|
2021-01-07 15:41:26 Result: found virtual machine (type: vmware, VMware product)
|
|||
|
2021-01-07 15:41:26 Result: Lynis is not running in container
|
|||
|
2021-01-07 15:41:26 Result: systemd not found
|
|||
|
2021-01-07 15:41:26 ====
|
|||
|
2021-01-07 15:41:26 Action: Performing plugin tests
|
|||
|
2021-01-07 15:41:26 Searching plugins...
|
|||
|
2021-01-07 15:41:26 Found plugin file: ./plugins/plugin_pam_phase1
|
|||
|
2021-01-07 15:41:26 Action: checking plugin status in profile: /root/scans/lynis/default.prf
|
|||
|
2021-01-07 15:41:26 Result: plugin enabled in profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:26 Result: plugin pam is enabled
|
|||
|
2021-01-07 15:41:26 Checking permissions of ./plugins/plugin_pam_phase1
|
|||
|
2021-01-07 15:41:26 File permissions are OK
|
|||
|
2021-01-07 15:41:26 Including plugin file: ./plugins/plugin_pam_phase1 (version: 1.0.5)
|
|||
|
2021-01-07 15:41:26 ====
|
|||
|
2021-01-07 15:41:26 Skipped test PLGN-0008 (Check PAM configuration (pwquality.conf))
|
|||
|
2021-01-07 15:41:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:26 ====
|
|||
|
2021-01-07 15:41:26 Performing test ID PLGN-0010 (Check PAM configuration)
|
|||
|
2021-01-07 15:41:26 Result: /etc/pam.d exists
|
|||
|
2021-01-07 15:41:26 Now checking PAM file /etc/pam.d/newusers
|
|||
|
2021-01-07 15:41:26 Now checking PAM file /etc/pam.d/passwd
|
|||
|
2021-01-07 15:41:26 Now checking PAM file /etc/pam.d/sshd
|
|||
|
2021-01-07 15:41:26 Result: using module pam_nologin.so (required) without options configured
|
|||
|
2021-01-07 15:41:26 Result: Found brackets in line, indicating multiple options for control flags: success=ok ignore=ignore module_unknown=ignore default=bad
|
|||
|
2021-01-07 15:41:26 Result: brackets used, ignoring control flags
|
|||
|
2021-01-07 15:41:26 Result: using module pam_selinux.so (other) with options close
|
|||
|
2021-01-07 15:41:26 Result: using module pam_loginuid.so (required) without options configured
|
|||
|
2021-01-07 15:41:26 Result: using module pam_keyinit.so (optional) with options force revoke
|
|||
|
2021-01-07 15:41:26 Result: using module pam_motd.so (optional) with options motd=/run/motd.dynamic noupdate
|
|||
|
2021-01-07 15:41:27 Result: using module pam_motd.so (optional) without options configured
|
|||
|
2021-01-07 15:41:27 Result: using module pam_mail.so (optional) with options standard noenv
|
|||
|
2021-01-07 15:41:27 Result: using module pam_limits.so (required) without options configured
|
|||
|
2021-01-07 15:41:27 Result: using module pam_env.so (required) without options configured
|
|||
|
2021-01-07 15:41:27 Result: using module pam_env.so (required) with options user_readenv=1 envfile=/etc/default/locale
|
|||
|
2021-01-07 15:41:27 Result: Found brackets in line, indicating multiple options for control flags: success=ok ignore=ignore module_unknown=ignore default=bad
|
|||
|
2021-01-07 15:41:27 Result: brackets used, ignoring control flags
|
|||
|
2021-01-07 15:41:27 Result: using module pam_selinux.so (other) with options open
|
|||
|
2021-01-07 15:41:27 Now checking PAM file /etc/pam.d/common-auth
|
|||
|
2021-01-07 15:41:27 Result: Found brackets in line, indicating multiple options for control flags: success=1 default=ignore
|
|||
|
2021-01-07 15:41:27 Result: brackets used, ignoring control flags
|
|||
|
2021-01-07 15:41:27 Result: using module pam_unix.so (other) with options nullok_secure
|
|||
|
2021-01-07 15:41:27 Result: found pam_unix.so module (generic)
|
|||
|
2021-01-07 15:41:27 Result: using module pam_deny.so (requisite) without options configured
|
|||
|
2021-01-07 15:41:27 Result: using module pam_permit.so (required) without options configured
|
|||
|
2021-01-07 15:41:27 Result: using module pam_cap.so (optional) without options configured
|
|||
|
2021-01-07 15:41:27 Now checking PAM file /etc/pam.d/polkit-1
|
|||
|
2021-01-07 15:41:27 Result: using module pam_env.so (required) with options readenv=1 user_readenv=0
|
|||
|
2021-01-07 15:41:27 Result: using module pam_env.so (required) with options readenv=1 envfile=/etc/default/locale user_readenv=0
|
|||
|
2021-01-07 15:41:27 Now checking PAM file /etc/pam.d/cron
|
|||
|
2021-01-07 15:41:27 Result: using module pam_env.so (required) without options configured
|
|||
|
2021-01-07 15:41:27 Result: using module pam_env.so (required) with options envfile=/etc/default/locale
|
|||
|
2021-01-07 15:41:27 Result: using module pam_limits.so (required) without options configured
|
|||
|
2021-01-07 15:41:27 Now checking PAM file /etc/pam.d/other
|
|||
|
2021-01-07 15:41:27 Now checking PAM file /etc/pam.d/chsh
|
|||
|
2021-01-07 15:41:27 Result: using module pam_shells.so (required) without options configured
|
|||
|
2021-01-07 15:41:27 Result: using module pam_rootok.so (sufficient) without options configured
|
|||
|
2021-01-07 15:41:27 Now checking PAM file /etc/pam.d/su
|
|||
|
2021-01-07 15:41:27 Result: using module pam_rootok.so (sufficient) without options configured
|
|||
|
2021-01-07 15:41:27 Result: using module pam_env.so (required) with options readenv=1
|
|||
|
2021-01-07 15:41:28 Result: using module pam_env.so (required) with options readenv=1 envfile=/etc/default/locale
|
|||
|
2021-01-07 15:41:28 Result: using module pam_mail.so (optional) with options nopen
|
|||
|
2021-01-07 15:41:28 Now checking PAM file /etc/pam.d/common-password
|
|||
|
2021-01-07 15:41:28 Result: Found brackets in line, indicating multiple options for control flags: success=1 default=ignore
|
|||
|
2021-01-07 15:41:28 Result: brackets used, ignoring control flags
|
|||
|
2021-01-07 15:41:28 Result: using module pam_unix.so (other) with options obscure sha512
|
|||
|
2021-01-07 15:41:28 Result: found pam_unix.so module (generic)
|
|||
|
2021-01-07 15:41:28 Result: using module pam_deny.so (requisite) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_permit.so (required) without options configured
|
|||
|
2021-01-07 15:41:28 Now checking PAM file /etc/pam.d/common-session-noninteractive
|
|||
|
2021-01-07 15:41:28 Result: Found brackets in line, indicating multiple options for control flags: default=1
|
|||
|
2021-01-07 15:41:28 Result: brackets used, ignoring control flags
|
|||
|
2021-01-07 15:41:28 Result: using module pam_permit.so (other) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_deny.so (requisite) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_permit.so (required) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_umask.so (optional) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_unix.so (required) without options configured
|
|||
|
2021-01-07 15:41:28 Result: found pam_unix.so module (generic)
|
|||
|
2021-01-07 15:41:28 Now checking PAM file /etc/pam.d/vmtoolsd
|
|||
|
2021-01-07 15:41:28 Result: using module pam_shells.so (required) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_unix.so (sufficient) with options shadow
|
|||
|
2021-01-07 15:41:28 Result: found pam_unix.so module (generic)
|
|||
|
2021-01-07 15:41:28 Result: using module pam_unix_auth.so (required) with options shadow
|
|||
|
2021-01-07 15:41:28 Result: using module pam_shells.so (required) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_unix.so (sufficient) without options configured
|
|||
|
2021-01-07 15:41:28 Result: found pam_unix.so module (generic)
|
|||
|
2021-01-07 15:41:28 Result: using module pam_unix_acct.so (required) without options configured
|
|||
|
2021-01-07 15:41:28 Now checking PAM file /etc/pam.d/common-session
|
|||
|
2021-01-07 15:41:28 Result: Found brackets in line, indicating multiple options for control flags: default=1
|
|||
|
2021-01-07 15:41:28 Result: brackets used, ignoring control flags
|
|||
|
2021-01-07 15:41:28 Result: using module pam_permit.so (other) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_deny.so (requisite) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_permit.so (required) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_umask.so (optional) without options configured
|
|||
|
2021-01-07 15:41:28 Result: using module pam_unix.so (required) without options configured
|
|||
|
2021-01-07 15:41:28 Result: found pam_unix.so module (generic)
|
|||
|
2021-01-07 15:41:28 Result: using module pam_systemd.so (optional) without options configured
|
|||
|
2021-01-07 15:41:28 Now checking PAM file /etc/pam.d/common-account
|
|||
|
2021-01-07 15:41:29 Result: Found brackets in line, indicating multiple options for control flags: success=1 new_authtok_reqd=done default=ignore
|
|||
|
2021-01-07 15:41:29 Result: brackets used, ignoring control flags
|
|||
|
2021-01-07 15:41:29 Result: using module pam_unix.so (other) without options configured
|
|||
|
2021-01-07 15:41:29 Result: found pam_unix.so module (generic)
|
|||
|
2021-01-07 15:41:29 Result: using module pam_deny.so (requisite) without options configured
|
|||
|
2021-01-07 15:41:29 Result: using module pam_permit.so (required) without options configured
|
|||
|
2021-01-07 15:41:29 Now checking PAM file /etc/pam.d/sudo
|
|||
|
2021-01-07 15:41:29 Result: using module pam_env.so (required) with options readenv=1 user_readenv=0
|
|||
|
2021-01-07 15:41:29 Result: using module pam_env.so (required) with options readenv=1 envfile=/etc/default/locale user_readenv=0
|
|||
|
2021-01-07 15:41:29 Now checking PAM file /etc/pam.d/atd
|
|||
|
2021-01-07 15:41:29 Result: using module pam_limits.so (required) without options configured
|
|||
|
2021-01-07 15:41:29 Result: using module pam_env.so (required) with options user_readenv=1
|
|||
|
2021-01-07 15:41:29 Now checking PAM file /etc/pam.d/ppp
|
|||
|
2021-01-07 15:41:29 Result: using module pam_nologin.so (required) without options configured
|
|||
|
2021-01-07 15:41:29 Now checking PAM file /etc/pam.d/chfn
|
|||
|
2021-01-07 15:41:29 Result: using module pam_rootok.so (sufficient) without options configured
|
|||
|
2021-01-07 15:41:29 Now checking PAM file /etc/pam.d/accountsservice
|
|||
|
2021-01-07 15:41:29 Unknown control flag found (substack)
|
|||
|
2021-01-07 15:41:29 Result: using module common-password (substack) without options configured
|
|||
|
2021-01-07 15:41:29 Result: found pluggable authentication module common-password, which is unknown
|
|||
|
2021-01-07 15:41:29 Result: using module pam_pin.so (optional) without options configured
|
|||
|
2021-01-07 15:41:29 Result: found pluggable authentication module pam_pin.so, which is unknown
|
|||
|
2021-01-07 15:41:29 Now checking PAM file /etc/pam.d/chpasswd
|
|||
|
2021-01-07 15:41:29 Now checking PAM file /etc/pam.d/login
|
|||
|
2021-01-07 15:41:29 Result: using module pam_faildelay.so (optional) with options delay=3000000
|
|||
|
2021-01-07 15:41:29 Result: Found brackets in line, indicating multiple options for control flags: success=ok new_authtok_reqd=ok ignore=ignore user_unknown=bad default=die
|
|||
|
2021-01-07 15:41:29 Result: brackets used, ignoring control flags
|
|||
|
2021-01-07 15:41:29 Result: using module pam_securetty.so (other) without options configured
|
|||
|
2021-01-07 15:41:29 Result: using module pam_nologin.so (requisite) without options configured
|
|||
|
2021-01-07 15:41:29 Result: Found brackets in line, indicating multiple options for control flags: success=ok ignore=ignore module_unknown=ignore default=bad
|
|||
|
2021-01-07 15:41:29 Result: brackets used, ignoring control flags
|
|||
|
2021-01-07 15:41:29 Result: using module pam_selinux.so (other) with options close
|
|||
|
2021-01-07 15:41:29 Result: using module pam_env.so (required) with options readenv=1
|
|||
|
2021-01-07 15:41:29 Result: using module pam_env.so (required) with options readenv=1 envfile=/etc/default/locale
|
|||
|
2021-01-07 15:41:29 Result: using module pam_group.so (optional) without options configured
|
|||
|
2021-01-07 15:41:29 Result: using module pam_limits.so (required) without options configured
|
|||
|
2021-01-07 15:41:29 Result: using module pam_lastlog.so (optional) without options configured
|
|||
|
2021-01-07 15:41:30 Result: using module pam_motd.so (optional) with options motd=/run/motd.dynamic noupdate
|
|||
|
2021-01-07 15:41:30 Result: using module pam_motd.so (optional) without options configured
|
|||
|
2021-01-07 15:41:30 Result: using module pam_mail.so (optional) with options standard
|
|||
|
2021-01-07 15:41:30 Result: Found brackets in line, indicating multiple options for control flags: success=ok ignore=ignore module_unknown=ignore default=bad
|
|||
|
2021-01-07 15:41:30 Result: brackets used, ignoring control flags
|
|||
|
2021-01-07 15:41:30 Result: using module pam_selinux.so (other) with options open
|
|||
|
2021-01-07 15:41:30 [PAM] PAM 2F authentication enabled: 0
|
|||
|
2021-01-07 15:41:30 [PAM] PAM 2F authentication required: 0
|
|||
|
2021-01-07 15:41:30 [PAM] Authentication unlock time: not configured
|
|||
|
2021-01-07 15:41:30 [PAM] Password brute force protection: 0
|
|||
|
2021-01-07 15:41:30 [PAM] Minimum password length: not configured
|
|||
|
2021-01-07 15:41:30 [PAM] Password strength testing enabled: 0
|
|||
|
2021-01-07 15:41:30 [PAM] Password maximum retry: Not configured
|
|||
|
2021-01-07 15:41:30 [PAM] Password history with pam_pwhistory IS NOT enabled
|
|||
|
2021-01-07 15:41:30 [PAM] Password history with pam_unix IS NOT enabled
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Result: pam plugin (phase 1) finished
|
|||
|
2021-01-07 15:41:30 --
|
|||
|
2021-01-07 15:41:30 Found plugin file: ./plugins/plugin_systemd_phase1
|
|||
|
2021-01-07 15:41:30 Action: checking plugin status in profile: /root/scans/lynis/default.prf
|
|||
|
2021-01-07 15:41:30 Result: plugin enabled in profile (/root/scans/lynis/default.prf)
|
|||
|
2021-01-07 15:41:30 Result: plugin systemd is enabled
|
|||
|
2021-01-07 15:41:30 Checking permissions of ./plugins/plugin_systemd_phase1
|
|||
|
2021-01-07 15:41:30 File permissions are OK
|
|||
|
2021-01-07 15:41:30 Including plugin file: ./plugins/plugin_systemd_phase1 (version: 1.0.4)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3800 (Gather systemctl exit code)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3802 (Query systemd version and options)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3804 (Gather systemd unit files and their status)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3806 (Gather failed systemd units)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3808 (Gather systemd machine ID)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3810 (Query main systemd binaries)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3812 (Query journal for boot related information)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3814 (Verify journal integrity)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3816 (Query journal for boot related information)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3818 (Query journal meta data)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3820 (Check for journal FSS configuration)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3830 (Query systemd status)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3832 (Query systemd status for processes which can not be found)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3834 (Collect service units which can not be found in systemd)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3856 (Check if systemd-coredump is used)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test PLGN-3860 (Query coredumps from journals since Yesterday)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Result: systemd plugin (phase 1) finished
|
|||
|
2021-01-07 15:41:30 --
|
|||
|
2021-01-07 15:41:30 Result: Found 2 plugins of which 2 are enabled
|
|||
|
2021-01-07 15:41:30 Result: Plugins phase 1 finished
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Info: using hardware address 00:0c:29:d7:de:37 to create ID
|
|||
|
2021-01-07 15:41:30 Result: Found HostID: 605d4ca91000f6389fbf4706cb904caab69b2b15
|
|||
|
2021-01-07 15:41:30 Info: creating a HostID (version 2)
|
|||
|
2021-01-07 15:41:30 Result: found file ssh_host_ed25519_key.pub in /etc/ssh, using that to create host identifier
|
|||
|
2021-01-07 15:41:30 Using SSH public key to create the second host identifier
|
|||
|
2021-01-07 15:41:30 Hash (hostname): c72655fc467dee3c64ab04fd46a37dc5ec1bf9769ada12cce421fda8b581f281
|
|||
|
2021-01-07 15:41:30 Hash (ssh or machineid): 9e032cc594257ab07ca76d51fb5bccee42dbceab2614a1f9ff1ae03970922b8f
|
|||
|
2021-01-07 15:41:30 Info: found valid HostID 605d4ca91000f6389fbf4706cb904caab69b2b15
|
|||
|
2021-01-07 15:41:30 Info: no machine ID found
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Info: perform tests from all categories
|
|||
|
2021-01-07 15:41:30 Security check: file is normal
|
|||
|
2021-01-07 15:41:30 Checking permissions of /root/scans/lynis/include/tests_boot_services
|
|||
|
2021-01-07 15:41:30 File permissions are OK
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Action: Performing tests from category: Boot and services
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test BOOT-5102 (Check for AIX boot device)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Incorrect guest OS (AIX only)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5104 (Determine service manager)
|
|||
|
2021-01-07 15:41:30 Result: cmdline found = /sbin/init
|
|||
|
2021-01-07 15:41:30 Result: file on disk = /sbin/init
|
|||
|
2021-01-07 15:41:30 Found: init
|
|||
|
2021-01-07 15:41:30 Result: service manager found = upstart
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test BOOT-5106 (Check EFI boot file on Mac OS X/macOS)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Incorrect guest OS (macOS only)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5108 (Check Syslinux as bootloader)
|
|||
|
2021-01-07 15:41:30 Test: checking if file /boot/syslinux/syslinux.cfg exists
|
|||
|
2021-01-07 15:41:30 Result: file /boot/syslinux/syslinux.cfg NOT found
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5109 (Check rEFInd as bootloader)
|
|||
|
2021-01-07 15:41:30 Test: checking if file /boot/refind_linux.conf exists
|
|||
|
2021-01-07 15:41:30 Result: file /boot/refind_linux.conf NOT found
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5116 (Check if system is booted in UEFI mode)
|
|||
|
2021-01-07 15:41:30 Test: checking if UEFI is used
|
|||
|
2021-01-07 15:41:30 Result: UEFI not used, can't find /sys/firmware/efi directory
|
|||
|
2021-01-07 15:41:30 Test: determine if Secure Boot is used
|
|||
|
2021-01-07 15:41:30 Result: system not booted with Secure Boot (no SecureBoot file found)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test BOOT-5117 (Check for systemd-boot bootloader presence)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5121 (Check for GRUB boot loader presence)
|
|||
|
2021-01-07 15:41:30 Test: Checking for presence GRUB conf file (/boot/grub/grub.conf or /boot/grub/menu.lst)
|
|||
|
2021-01-07 15:41:30 Result: found GRUB2 configuration file (/boot/grub/grub.cfg)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5122 (Check for GRUB boot password)
|
|||
|
2021-01-07 15:41:30 Found file /boot/grub/grub.cfg, proceeding with tests.
|
|||
|
2021-01-07 15:41:30 Test: check if we can access /boot/grub/grub.cfg (escaped: /boot/grub/grub.cfg)
|
|||
|
2021-01-07 15:41:30 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:30 Result: file /boot/grub/grub.cfg is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:30 Result: did not find hashed password line in this file
|
|||
|
2021-01-07 15:41:30 Result: File '/boot/grub/custom.cfg' does not exist
|
|||
|
2021-01-07 15:41:30 Found file /etc/grub.d/30_os-prober, proceeding with tests.
|
|||
|
2021-01-07 15:41:30 Test: check if we can access /etc/grub.d/30_os-prober (escaped: /etc/grub.d/30_os-prober)
|
|||
|
2021-01-07 15:41:30 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:30 Result: file /etc/grub.d/30_os-prober is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:30 Result: did not find hashed password line in this file
|
|||
|
2021-01-07 15:41:30 Found file /etc/grub.d/30_uefi-firmware, proceeding with tests.
|
|||
|
2021-01-07 15:41:30 Test: check if we can access /etc/grub.d/30_uefi-firmware (escaped: /etc/grub.d/30_uefi-firmware)
|
|||
|
2021-01-07 15:41:30 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:30 Result: file /etc/grub.d/30_uefi-firmware is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:30 Result: did not find hashed password line in this file
|
|||
|
2021-01-07 15:41:30 Found file /etc/grub.d/20_memtest86+, proceeding with tests.
|
|||
|
2021-01-07 15:41:30 Test: check if we can access /etc/grub.d/20_memtest86+ (escaped: /etc/grub.d/20_memtest86+)
|
|||
|
2021-01-07 15:41:30 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:30 Result: file /etc/grub.d/20_memtest86+ is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:30 Result: did not find hashed password line in this file
|
|||
|
2021-01-07 15:41:30 Found file /etc/grub.d/40_custom, proceeding with tests.
|
|||
|
2021-01-07 15:41:30 Test: check if we can access /etc/grub.d/40_custom (escaped: /etc/grub.d/40_custom)
|
|||
|
2021-01-07 15:41:30 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:30 Result: file /etc/grub.d/40_custom is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:30 Result: did not find hashed password line in this file
|
|||
|
2021-01-07 15:41:30 Found file /etc/grub.d/10_linux, proceeding with tests.
|
|||
|
2021-01-07 15:41:30 Test: check if we can access /etc/grub.d/10_linux (escaped: /etc/grub.d/10_linux)
|
|||
|
2021-01-07 15:41:30 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:30 Result: file /etc/grub.d/10_linux is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:30 Result: did not find hashed password line in this file
|
|||
|
2021-01-07 15:41:30 Found file /etc/grub.d/41_custom, proceeding with tests.
|
|||
|
2021-01-07 15:41:30 Test: check if we can access /etc/grub.d/41_custom (escaped: /etc/grub.d/41_custom)
|
|||
|
2021-01-07 15:41:30 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:30 Result: file /etc/grub.d/41_custom is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:30 Result: did not find hashed password line in this file
|
|||
|
2021-01-07 15:41:30 Found file /etc/grub.d/05_debian_theme, proceeding with tests.
|
|||
|
2021-01-07 15:41:30 Test: check if we can access /etc/grub.d/05_debian_theme (escaped: /etc/grub.d/05_debian_theme)
|
|||
|
2021-01-07 15:41:30 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:30 Result: file /etc/grub.d/05_debian_theme is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:30 Result: did not find hashed password line in this file
|
|||
|
2021-01-07 15:41:30 Found file /etc/grub.d/20_linux_xen, proceeding with tests.
|
|||
|
2021-01-07 15:41:30 Test: check if we can access /etc/grub.d/20_linux_xen (escaped: /etc/grub.d/20_linux_xen)
|
|||
|
2021-01-07 15:41:30 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:30 Result: file /etc/grub.d/20_linux_xen is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:30 Result: did not find hashed password line in this file
|
|||
|
2021-01-07 15:41:30 Found file /etc/grub.d/00_header, proceeding with tests.
|
|||
|
2021-01-07 15:41:30 Test: check if we can access /etc/grub.d/00_header (escaped: /etc/grub.d/00_header)
|
|||
|
2021-01-07 15:41:30 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:30 Result: file /etc/grub.d/00_header is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:30 Result: did not find hashed password line in this file
|
|||
|
2021-01-07 15:41:30 Result: Didn't find hashed password line in GRUB configuration
|
|||
|
2021-01-07 15:41:30 Suggestion: Set a password on GRUB boot loader to prevent altering boot configuration (e.g. boot in single user mode without password) [test:BOOT-5122] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:30 Hardening: assigned partial number of hardening points (0 of 2). Currently having 0 points (out of 2)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test BOOT-5124 (Check for FreeBSD boot loader presence)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Incorrect guest OS (FreeBSD only)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test BOOT-5261 (Check for DragonFly boot loader presence)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Incorrect guest OS (DragonFly only)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test BOOT-5126 (Check for NetBSD boot loader presence)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Incorrect guest OS (NetBSD only)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5139 (Check for LILO boot loader presence)
|
|||
|
2021-01-07 15:41:30 Test: checking for presence LILO configuration file
|
|||
|
2021-01-07 15:41:30 Result: LILO configuration file not found
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5142 (Check SPARC Improved boot loader (SILO))
|
|||
|
2021-01-07 15:41:30 Result: no SILO configuration file found.
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5155 (Check for YABOOT boot loader configuration file)
|
|||
|
2021-01-07 15:41:30 Test: Check for /etc/yaboot.conf
|
|||
|
2021-01-07 15:41:30 Result: no YABOOT configuration file found.
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test BOOT-5159 (Check for OpenBSD boot loader presence)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Incorrect guest OS (OpenBSD only)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test BOOT-5165 (Check for FreeBSD boot services)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Incorrect guest OS (FreeBSD only)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Skipped test BOOT-5170 (Check for Solaris boot daemons)
|
|||
|
2021-01-07 15:41:30 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5177 (Check for Linux boot and running services)
|
|||
|
2021-01-07 15:41:30 Test: checking presence systemctl binary
|
|||
|
2021-01-07 15:41:30 Result: systemctl binary not found, checking chkconfig binary
|
|||
|
2021-01-07 15:41:30 Result: both systemctl and chkconfig not found. Skipping this test
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5180 (Check for Linux boot services (Debian style))
|
|||
|
2021-01-07 15:41:30 Result: found runlevel 2
|
|||
|
2021-01-07 15:41:30 Result: performing find in /etc/rc2.d as runlevel 2 is found
|
|||
|
2021-01-07 15:41:30 Found service (at boot, runlevel 2): dns-clean
|
|||
|
2021-01-07 15:41:30 Found service (at boot, runlevel 2): grub-common
|
|||
|
2021-01-07 15:41:30 Found service (at boot, runlevel 2): ondemand
|
|||
|
2021-01-07 15:41:30 Found service (at boot, runlevel 2): pppd-dns
|
|||
|
2021-01-07 15:41:30 Found service (at boot, runlevel 2): rc.local
|
|||
|
2021-01-07 15:41:30 Found service (at boot, runlevel 2): rsync
|
|||
|
2021-01-07 15:41:30 Found service (at boot, runlevel 2): screen-cleanup
|
|||
|
2021-01-07 15:41:30 Result: found 7 services
|
|||
|
2021-01-07 15:41:30 ====
|
|||
|
2021-01-07 15:41:30 Performing test ID BOOT-5184 (Check permissions for boot files/scripts)
|
|||
|
2021-01-07 15:41:30 Result: checking /etc/init.d scripts for writable bit
|
|||
|
2021-01-07 15:41:30 Test: checking if directory /etc/init.d exists
|
|||
|
2021-01-07 15:41:30 Result: directory /etc/init.d found
|
|||
|
2021-01-07 15:41:30 Test: checking for available files in directory
|
|||
|
2021-01-07 15:41:30 Result: found files in directory, checking permissions now
|
|||
|
2021-01-07 15:41:30 Test: checking permissions of file /etc/init.d/.legacy-bootordering
|
|||
|
2021-01-07 15:41:30 Result: good, file /etc/init.d/.legacy-bootordering not world writable
|
|||
|
2021-01-07 15:41:30 Test: checking permissions of file /etc/init.d/README
|
|||
|
2021-01-07 15:41:30 Result: good, file /etc/init.d/README not world writable
|
|||
|
2021-01-07 15:41:30 Test: checking permissions of file /etc/init.d/acpid
|
|||
|
2021-01-07 15:41:30 Result: good, file /etc/init.d/acpid not world writable
|
|||
|
2021-01-07 15:41:30 Test: checking permissions of file /etc/init.d/apparmor
|
|||
|
2021-01-07 15:41:30 Result: good, file /etc/init.d/apparmor not world writable
|
|||
|
2021-01-07 15:41:30 Test: checking permissions of file /etc/init.d/apport
|
|||
|
2021-01-07 15:41:30 Result: good, file /etc/init.d/apport not world writable
|
|||
|
2021-01-07 15:41:30 Test: checking permissions of file /etc/init.d/atd
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/atd not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/console-setup
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/console-setup not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/dbus
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/dbus not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/dns-clean
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/dns-clean not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/grub-common
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/grub-common not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/halt
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/halt not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/irqbalance
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/irqbalance not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/killprocs
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/killprocs not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/kmod
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/kmod not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/networking
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/networking not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/ondemand
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/ondemand not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/pppd-dns
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/pppd-dns not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/procps
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/procps not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/rc
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/rc not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/rc.local
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/rc.local not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/rcS
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/rcS not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/reboot
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/reboot not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/resolvconf
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/resolvconf not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/rsync
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/rsync not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/rsyslog
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/rsyslog not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/screen-cleanup
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/screen-cleanup not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/sendsigs
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/sendsigs not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/single
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/single not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/skeleton
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/skeleton not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/ssh
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/ssh not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/sudo
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/sudo not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/udev
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/udev not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/umountfs
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/umountfs not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/umountnfs.sh
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/umountnfs.sh not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/umountroot
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/umountroot not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/unattended-upgrades
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/unattended-upgrades not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/init.d/urandom
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/init.d/urandom not world writable
|
|||
|
2021-01-07 15:41:31 Test: checking if directory /etc/rc.d exists
|
|||
|
2021-01-07 15:41:31 Result: directory /etc/rc.d not found. Skipping..
|
|||
|
2021-01-07 15:41:31 Test: checking if directory /etc/rcS.d exists
|
|||
|
2021-01-07 15:41:31 Result: directory /etc/rcS.d found
|
|||
|
2021-01-07 15:41:31 Test: checking for available files in directory
|
|||
|
2021-01-07 15:41:31 Result: found files in directory, checking permissions now
|
|||
|
2021-01-07 15:41:31 Test: checking permissions of file /etc/rcS.d/README
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/rcS.d/README not world writable
|
|||
|
2021-01-07 15:41:31 Test: Checking /etc/rc0.d scripts for writable bit
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/rc0.d/README not world writable
|
|||
|
2021-01-07 15:41:31 Test: Checking /etc/rc1.d scripts for writable bit
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/rc1.d/README not world writable
|
|||
|
2021-01-07 15:41:31 Test: Checking /etc/rc2.d scripts for writable bit
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/rc2.d/README not world writable
|
|||
|
2021-01-07 15:41:31 Test: Checking /etc/rc3.d scripts for writable bit
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/rc3.d/README not world writable
|
|||
|
2021-01-07 15:41:31 Test: Checking /etc/rc4.d scripts for writable bit
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/rc4.d/README not world writable
|
|||
|
2021-01-07 15:41:31 Test: Checking /etc/rc5.d scripts for writable bit
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/rc5.d/README not world writable
|
|||
|
2021-01-07 15:41:31 Test: Checking /etc/rc6.d scripts for writable bit
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/rc6.d/README not world writable
|
|||
|
2021-01-07 15:41:31 Action: checking symlink for file /etc/rc.local
|
|||
|
2021-01-07 15:41:31 Result: file /etc/rc.local is not a symlink
|
|||
|
2021-01-07 15:41:31 Test: Checking /etc/rc.local file for writable bit
|
|||
|
2021-01-07 15:41:31 Result: good, file /etc/rc.local not world writable
|
|||
|
2021-01-07 15:41:31 Hardening: assigned maximum number of hardening points for this item (3). Currently having 3 points (out of 5)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID BOOT-5202 (Check uptime of system)
|
|||
|
2021-01-07 15:41:31 Uptime (in seconds): 3324
|
|||
|
2021-01-07 15:41:31 Uptime (in days): 0
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID BOOT-5260 (Check single user mode for systemd)
|
|||
|
2021-01-07 15:41:31 Test: Searching /usr/lib/systemd/system/rescue.service
|
|||
|
2021-01-07 15:41:31 Result: file /usr/lib/systemd/system/rescue.service does not exist
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Skipped test BOOT-5262 (Check for OpenBSD boot daemons)
|
|||
|
2021-01-07 15:41:31 Reason to skip: Incorrect guest OS (OpenBSD only)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Skipped test BOOT-5263 (Check permissions for boot files/scripts)
|
|||
|
2021-01-07 15:41:31 Reason to skip: Incorrect guest OS (OpenBSD only)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Skipped test BOOT-5264 (Run systemd-analyze security)
|
|||
|
2021-01-07 15:41:31 Reason to skip: systemd-analyze not available
|
|||
|
2021-01-07 15:41:31 Security check: file is normal
|
|||
|
2021-01-07 15:41:31 Checking permissions of /root/scans/lynis/include/tests_kernel
|
|||
|
2021-01-07 15:41:31 File permissions are OK
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Action: Performing tests from category: Kernel
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID KRNL-5622 (Determine Linux default run level)
|
|||
|
2021-01-07 15:41:31 Test: Checking for systemd default.target
|
|||
|
2021-01-07 15:41:31 Result: no systemd found, so trying inittab
|
|||
|
2021-01-07 15:41:31 Test: Checking /etc/inittab
|
|||
|
2021-01-07 15:41:31 Result: file /etc/inittab not found
|
|||
|
2021-01-07 15:41:31 Test: Checking run level with who -r, for Debian based systems
|
|||
|
2021-01-07 15:41:31 Result: Found default run level '2'
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID KRNL-5677 (Check CPU options and support)
|
|||
|
2021-01-07 15:41:31 Test: Checking /proc/cpuinfo
|
|||
|
2021-01-07 15:41:31 Result: found /proc/cpuinfo
|
|||
|
2021-01-07 15:41:31 Test: Checking CPU options (XD/NX/PAE)
|
|||
|
2021-01-07 15:41:31 PAE: Yes
|
|||
|
2021-01-07 15:41:31 NX: Yes
|
|||
|
2021-01-07 15:41:31 Result: PAE or No eXecute option(s) both found
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID KRNL-5695 (Determine Linux kernel version and release number)
|
|||
|
2021-01-07 15:41:31 Result: found kernel release 4.4.0-142-generic
|
|||
|
2021-01-07 15:41:31 Result: found kernel version #168~14.04.1-Ubuntu SMP Sat Jan 19 11:26:28 UTC 2019
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID KRNL-5723 (Determining if Linux kernel is monolithic)
|
|||
|
2021-01-07 15:41:31 Test: checking if kernel is monolithic or modular
|
|||
|
2021-01-07 15:41:31 Result: Found modular kernel
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID KRNL-5726 (Checking Linux loaded kernel modules)
|
|||
|
2021-01-07 15:41:31 Loaded modules according lsmod:
|
|||
|
2021-01-07 15:41:31 Loaded module: 8250_fintek
|
|||
|
2021-01-07 15:41:31 Loaded module: ablk_helper
|
|||
|
2021-01-07 15:41:31 Loaded module: ac97_bus
|
|||
|
2021-01-07 15:41:31 Loaded module: aes_x86_64
|
|||
|
2021-01-07 15:41:31 Loaded module: aesni_intel
|
|||
|
2021-01-07 15:41:31 Loaded module: ahci
|
|||
|
2021-01-07 15:41:31 Loaded module: btrfs
|
|||
|
2021-01-07 15:41:31 Loaded module: cpuid
|
|||
|
2021-01-07 15:41:31 Loaded module: crc32_pclmul
|
|||
|
2021-01-07 15:41:31 Loaded module: crct10dif_pclmul
|
|||
|
2021-01-07 15:41:31 Loaded module: cryptd
|
|||
|
2021-01-07 15:41:31 Loaded module: drm
|
|||
|
2021-01-07 15:41:31 Loaded module: drm_kms_helper
|
|||
|
2021-01-07 15:41:31 Loaded module: e1000
|
|||
|
2021-01-07 15:41:31 Loaded module: fb_sys_fops
|
|||
|
2021-01-07 15:41:31 Loaded module: fjes
|
|||
|
2021-01-07 15:41:31 Loaded module: gameport
|
|||
|
2021-01-07 15:41:31 Loaded module: gf128mul
|
|||
|
2021-01-07 15:41:31 Loaded module: ghash_clmulni_intel
|
|||
|
2021-01-07 15:41:31 Loaded module: glue_helper
|
|||
|
2021-01-07 15:41:31 Loaded module: hfs
|
|||
|
2021-01-07 15:41:31 Loaded module: hfsplus
|
|||
|
2021-01-07 15:41:31 Loaded module: hid
|
|||
|
2021-01-07 15:41:31 Loaded module: hid_generic
|
|||
|
2021-01-07 15:41:31 Loaded module: i2c_piix4
|
|||
|
2021-01-07 15:41:31 Loaded module: inet_diag
|
|||
|
2021-01-07 15:41:31 Loaded module: input_leds
|
|||
|
2021-01-07 15:41:31 Loaded module: ip_tables
|
|||
|
2021-01-07 15:41:31 Loaded module: iptable_filter
|
|||
|
2021-01-07 15:41:31 Loaded module: iptable_nat
|
|||
|
2021-01-07 15:41:31 Loaded module: jfs
|
|||
|
2021-01-07 15:41:31 Loaded module: joydev
|
|||
|
2021-01-07 15:41:31 Loaded module: libahci
|
|||
|
2021-01-07 15:41:31 Loaded module: libcrc32c
|
|||
|
2021-01-07 15:41:31 Loaded module: lp
|
|||
|
2021-01-07 15:41:31 Loaded module: lrw
|
|||
|
2021-01-07 15:41:31 Loaded module: mac_hid
|
|||
|
2021-01-07 15:41:31 Loaded module: minix
|
|||
|
2021-01-07 15:41:31 Loaded module: mptbase
|
|||
|
2021-01-07 15:41:31 Loaded module: mptscsih
|
|||
|
2021-01-07 15:41:31 Loaded module: mptspi
|
|||
|
2021-01-07 15:41:31 Loaded module: msdos
|
|||
|
2021-01-07 15:41:31 Loaded module: nf_conntrack
|
|||
|
2021-01-07 15:41:31 Loaded module: nf_conntrack_ipv4
|
|||
|
2021-01-07 15:41:31 Loaded module: nf_defrag_ipv4
|
|||
|
2021-01-07 15:41:31 Loaded module: nf_nat
|
|||
|
2021-01-07 15:41:31 Loaded module: nf_nat_ipv4
|
|||
|
2021-01-07 15:41:31 Loaded module: ntfs
|
|||
|
2021-01-07 15:41:31 Loaded module: parport
|
|||
|
2021-01-07 15:41:31 Loaded module: pata_acpi
|
|||
|
2021-01-07 15:41:31 Loaded module: psmouse
|
|||
|
2021-01-07 15:41:31 Loaded module: qnx4
|
|||
|
2021-01-07 15:41:31 Loaded module: raid6_pq
|
|||
|
2021-01-07 15:41:31 Loaded module: scsi_transport_spi
|
|||
|
2021-01-07 15:41:31 Loaded module: serio_raw
|
|||
|
2021-01-07 15:41:31 Loaded module: shpchp
|
|||
|
2021-01-07 15:41:31 Loaded module: snd
|
|||
|
2021-01-07 15:41:31 Loaded module: snd_ac97_codec
|
|||
|
2021-01-07 15:41:31 Loaded module: snd_ens1371
|
|||
|
2021-01-07 15:41:31 Loaded module: snd_pcm
|
|||
|
2021-01-07 15:41:31 Loaded module: snd_rawmidi
|
|||
|
2021-01-07 15:41:31 Loaded module: snd_seq_device
|
|||
|
2021-01-07 15:41:31 Loaded module: snd_timer
|
|||
|
2021-01-07 15:41:31 Loaded module: soundcore
|
|||
|
2021-01-07 15:41:31 Loaded module: syscopyarea
|
|||
|
2021-01-07 15:41:31 Loaded module: sysfillrect
|
|||
|
2021-01-07 15:41:31 Loaded module: sysimgblt
|
|||
|
2021-01-07 15:41:31 Loaded module: tcp_diag
|
|||
|
2021-01-07 15:41:31 Loaded module: ttm
|
|||
|
2021-01-07 15:41:31 Loaded module: udp_diag
|
|||
|
2021-01-07 15:41:31 Loaded module: ufs
|
|||
|
2021-01-07 15:41:31 Loaded module: usbhid
|
|||
|
2021-01-07 15:41:31 Loaded module: vmw_balloon
|
|||
|
2021-01-07 15:41:31 Loaded module: vmw_vmci
|
|||
|
2021-01-07 15:41:31 Loaded module: vmw_vsock_vmci_transport
|
|||
|
2021-01-07 15:41:31 Loaded module: vmwgfx
|
|||
|
2021-01-07 15:41:31 Loaded module: vsock
|
|||
|
2021-01-07 15:41:31 Loaded module: x_tables
|
|||
|
2021-01-07 15:41:31 Loaded module: xfs
|
|||
|
2021-01-07 15:41:31 Loaded module: xor
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID KRNL-5728 (Checking Linux kernel config)
|
|||
|
2021-01-07 15:41:31 Result: found config (/boot/config-4.4.0-142-generic)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID KRNL-5730 (Checking disk I/O kernel scheduler)
|
|||
|
2021-01-07 15:41:31 Test: Checking the default I/O kernel scheduler
|
|||
|
2021-01-07 15:41:31 Result: found IO scheduler 'deadline'
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Skipped test KRNL-5745 (Checking FreeBSD loaded kernel modules)
|
|||
|
2021-01-07 15:41:31 Reason to skip: Incorrect guest OS (FreeBSD only)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Skipped test KRNL-5831 (Checking DragonFly loaded kernel modules)
|
|||
|
2021-01-07 15:41:31 Reason to skip: Incorrect guest OS (DragonFly only)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Skipped test KRNL-5770 (Checking active kernel modules)
|
|||
|
2021-01-07 15:41:31 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID KRNL-5788 (Checking availability new Linux kernel)
|
|||
|
2021-01-07 15:41:31 Test: Searching apt-cache, to determine if a newer kernel is available
|
|||
|
2021-01-07 15:41:31 Result: found /usr/bin/apt-cache
|
|||
|
2021-01-07 15:41:31 Test: checking presence of /vmlinuz or /boot/vmlinuz
|
|||
|
2021-01-07 15:41:31 Result: found /vmlinuz
|
|||
|
2021-01-07 15:41:31 Test: checking readlink location of /vmlinuz
|
|||
|
2021-01-07 15:41:31 Output: readlink reported file /boot/vmlinuz-4.4.0-148-generic
|
|||
|
2021-01-07 15:41:31 Test: checking package from dpkg -S
|
|||
|
2021-01-07 15:41:31 Output: dpkg -S reported package linux-image-4.4.0-148-generic
|
|||
|
2021-01-07 15:41:31 Test: Using apt-cache policy to determine if there is an update available
|
|||
|
2021-01-07 15:41:31 Kernel installed: 4.4.0-148.174~14.04.1
|
|||
|
2021-01-07 15:41:31 Kernel candidate: 4.4.0-148.174~14.04.1
|
|||
|
2021-01-07 15:41:31 Result: no kernel update available
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID KRNL-5820 (Checking core dumps configuration)
|
|||
|
2021-01-07 15:41:31 Test: Checking presence of systemd
|
|||
|
2021-01-07 15:41:31 Test: Checking presence /etc/profile
|
|||
|
2021-01-07 15:41:31 Test: Checking if 'ulimit -c 0' exists in /etc/profile or /etc/profile.d/*.sh
|
|||
|
2021-01-07 15:41:31 Result: core dumps are not disabled in /etc/profile or /etc/profile.d/*.sh config files. Didn't find setting 'ulimit -c 0'
|
|||
|
2021-01-07 15:41:31 Hardening: assigned partial number of hardening points (0 of 1). Currently having 3 points (out of 6)
|
|||
|
2021-01-07 15:41:31 Test: Checking presence /etc/security/limits.conf
|
|||
|
2021-01-07 15:41:31 Result: file /etc/security/limits.conf exists
|
|||
|
2021-01-07 15:41:31 Test: Checking if core dumps are disabled in /etc/security/limits.conf and /etc/security/limits.d/*
|
|||
|
2021-01-07 15:41:31 Result: core dumps are not explicitly disabled
|
|||
|
2021-01-07 15:41:31 Suggestion: If not required, consider explicit disabling of core dump in /etc/security/limits.conf file [test:KRNL-5820] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:31 Hardening: assigned partial number of hardening points (1 of 3). Currently having 4 points (out of 9)
|
|||
|
2021-01-07 15:41:31 Test: Checking sysctl value of fs.suid_dumpable
|
|||
|
2021-01-07 15:41:31 Result: value 2 found
|
|||
|
2021-01-07 15:41:31 Result: programs can dump core dump, but only readable by root (value 2, for debugging with file protection)
|
|||
|
2021-01-07 15:41:31 Hardening: assigned maximum number of hardening points for this item (1). Currently having 5 points (out of 10)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID KRNL-5830 (Checking if system is running on the latest installed kernel)
|
|||
|
2021-01-07 15:41:31 Test: Checking presence /var/run/reboot-required.pkgs
|
|||
|
2021-01-07 15:41:31 Result: file /var/run/reboot-required.pkgs exists
|
|||
|
2021-01-07 15:41:31 Result: reboot is needed, related to 2 packages
|
|||
|
2021-01-07 15:41:31 Package: 2
|
|||
|
2021-01-07 15:41:31 Result: /boot exists, performing more tests from here
|
|||
|
2021-01-07 15:41:31 Result: found /boot/vmlinuz-4.4.0-148-generic
|
|||
|
2021-01-07 15:41:31 Result: version derived from file name is '4.4.0-148-generic'
|
|||
|
2021-01-07 15:41:31 Result: found version 4.4.0-148-generic
|
|||
|
2021-01-07 15:41:31 Result: active kernel version 4.4.0-142-generic
|
|||
|
2021-01-07 15:41:31 Result: reboot needed, as there is a difference between active kernel and the one on disk
|
|||
|
2021-01-07 15:41:31 Result: /var/cache/apt/archives/ does not exist
|
|||
|
2021-01-07 15:41:31 Warning: Reboot of system is most likely needed [test:KRNL-5830] [details:] [solution:text:reboot]
|
|||
|
2021-01-07 15:41:31 Hardening: assigned partial number of hardening points (0 of 5). Currently having 5 points (out of 15)
|
|||
|
2021-01-07 15:41:31 Security check: file is normal
|
|||
|
2021-01-07 15:41:31 Checking permissions of /root/scans/lynis/include/tests_memory_processes
|
|||
|
2021-01-07 15:41:31 File permissions are OK
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Action: Performing tests from category: Memory and Processes
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID PROC-3602 (Checking /proc/meminfo for memory details)
|
|||
|
2021-01-07 15:41:31 Result: found /proc/meminfo
|
|||
|
2021-01-07 15:41:31 Result: Found 4028204 kB memory
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Skipped test PROC-3604 (Query prtconf for memory details)
|
|||
|
2021-01-07 15:41:31 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID PROC-3612 (Check dead or zombie processes)
|
|||
|
2021-01-07 15:41:31 Result: no zombie processes found
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID PROC-3614 (Check heavy IO waiting based processes)
|
|||
|
2021-01-07 15:41:31 Result: No processes were waiting for IO requests to be handled first
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID PROC-3802 (Check presence of prelink tooling)
|
|||
|
2021-01-07 15:41:31 Result: prelink package is NOT installed
|
|||
|
2021-01-07 15:41:31 Hardening: assigned maximum number of hardening points for this item (3). Currently having 8 points (out of 18)
|
|||
|
2021-01-07 15:41:31 Security check: file is normal
|
|||
|
2021-01-07 15:41:31 Checking permissions of /root/scans/lynis/include/tests_authentication
|
|||
|
2021-01-07 15:41:31 File permissions are OK
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Action: Performing tests from category: Users, Groups and Authentication
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID AUTH-9204 (Check users with an UID of zero)
|
|||
|
2021-01-07 15:41:31 Test: Searching accounts with UID 0
|
|||
|
2021-01-07 15:41:31 Result: No accounts found with UID 0 other than root.
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID AUTH-9208 (Check non-unique accounts in passwd file)
|
|||
|
2021-01-07 15:41:31 Test: Checking for non-unique accounts
|
|||
|
2021-01-07 15:41:31 Result: all accounts found in /etc/passwd are unique
|
|||
|
2021-01-07 15:41:31 Remarks: Non unique UIDs can be a risk for the system or part of a configuration mistake
|
|||
|
2021-01-07 15:41:31 Prerequisite test: /usr/sbin/chkgrp
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Skipped test AUTH-9212 (Test group file)
|
|||
|
2021-01-07 15:41:31 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID AUTH-9216 (Check group and shadow group files)
|
|||
|
2021-01-07 15:41:31 Test: Checking for grpck binary output
|
|||
|
2021-01-07 15:41:31 Result: grpck binary didn't find any errors in the group files
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Skipped test AUTH-9218 (Check login shells for passwordless accounts)
|
|||
|
2021-01-07 15:41:31 Reason to skip: Incorrect guest OS (DragonFly FreeBSD NetBSD OpenBSD only)
|
|||
|
2021-01-07 15:41:31 ====
|
|||
|
2021-01-07 15:41:31 Performing test ID AUTH-9222 (Check unique groups (IDs))
|
|||
|
2021-01-07 15:41:31 Test: Checking for non unique group ID's in /etc/group
|
|||
|
2021-01-07 15:41:32 Result: All group ID's are unique
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9226 (Check unique group names)
|
|||
|
2021-01-07 15:41:32 Test: Checking for non unique group names in /etc/group
|
|||
|
2021-01-07 15:41:32 Result: All group names are unique
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9228 (Check password file consistency with pwck)
|
|||
|
2021-01-07 15:41:32 Test: Checking password file consistency (pwck)
|
|||
|
2021-01-07 15:41:32 Result: pwck check didn't find any problems
|
|||
|
2021-01-07 15:41:32 Hardening: assigned maximum number of hardening points for this item (2). Currently having 10 points (out of 20)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9229 (Check password hashing methods)
|
|||
|
2021-01-07 15:41:32 Test: Checking password hashing methods
|
|||
|
2021-01-07 15:41:32 Result: poor password hashing methods found: sha256crypt/sha512crypt(default<=5000rounds)
|
|||
|
2021-01-07 15:41:32 Suggestion: Check PAM configuration, add rounds if applicable and expire passwords to encrypt with new values [test:AUTH-9229] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:32 Hardening: assigned partial number of hardening points (0 of 2). Currently having 10 points (out of 22)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9230 (Check password hashing rounds)
|
|||
|
2021-01-07 15:41:32 Test: Checking SHA_CRYPT_{MIN,MAX}_ROUNDS option in /etc/login.defs
|
|||
|
2021-01-07 15:41:32 Result: number of password hashing rounds is not configured
|
|||
|
2021-01-07 15:41:32 Suggestion: Configure password hashing rounds in /etc/login.defs [test:AUTH-9230] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:32 Hardening: assigned partial number of hardening points (0 of 2). Currently having 10 points (out of 24)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9234 (Query user accounts)
|
|||
|
2021-01-07 15:41:32 Test: Read system users (including root user) from password database (e.g. /etc/passwd)
|
|||
|
2021-01-07 15:41:32 Result: found minimal user id specified: 1000
|
|||
|
2021-01-07 15:41:32 Linux real users output (ID = 0, or 1000+, but not 65534):
|
|||
|
2021-01-07 15:41:32 Real user: root,0
|
|||
|
2021-01-07 15:41:32 Real user: ll,1000
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9240 (Query NIS+ authentication support)
|
|||
|
2021-01-07 15:41:32 Result: NIS+ authentication not enabled
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9242 (Query NIS authentication support)
|
|||
|
2021-01-07 15:41:32 Result: NIS authentication not enabled
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9250 (Checking sudoers file)
|
|||
|
2021-01-07 15:41:32 Test: checking presence /etc/sudoers
|
|||
|
2021-01-07 15:41:32 Result: found file (/etc/sudoers)
|
|||
|
2021-01-07 15:41:32 Test: checking presence /usr/local/etc/sudoers
|
|||
|
2021-01-07 15:41:32 Result: file /usr/local/etc/sudoers not found
|
|||
|
2021-01-07 15:41:32 Test: checking presence /usr/pkg/etc/sudoers
|
|||
|
2021-01-07 15:41:32 Result: file /usr/pkg/etc/sudoers not found
|
|||
|
2021-01-07 15:41:32 Result: sudoers file found (/etc/sudoers)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9252 (Check ownership and permissions for sudo configuration files)
|
|||
|
2021-01-07 15:41:32 Test: checking drop-in directory (/etc/sudoers.d)
|
|||
|
2021-01-07 15:41:32 Result: Found directory permissions: rwxr-xr-x and owner UID GID: 00
|
|||
|
2021-01-07 15:41:32 Result: directory /etc/sudoers.d has possibly unsafe permissions
|
|||
|
2021-01-07 15:41:32 Result: directory /etc/sudoers.d ownership OK
|
|||
|
2021-01-07 15:41:32 Test: checking file (/etc/sudoers)
|
|||
|
2021-01-07 15:41:32 Result: Found file permissions: r--r----- and owner UID GID: 00
|
|||
|
2021-01-07 15:41:32 Result: file /etc/sudoers permissions OK
|
|||
|
2021-01-07 15:41:32 Result: file /etc/sudoers ownership OK
|
|||
|
2021-01-07 15:41:32 Test: checking file (/etc/sudoers.d/README)
|
|||
|
2021-01-07 15:41:32 Result: Found file permissions: r--r----- and owner UID GID: 00
|
|||
|
2021-01-07 15:41:32 Result: file /etc/sudoers.d/README permissions OK
|
|||
|
2021-01-07 15:41:32 Result: file /etc/sudoers.d/README ownership OK
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Skipped test AUTH-9254 (Solaris passwordless accounts)
|
|||
|
2021-01-07 15:41:32 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9262 (Checking presence password strength testing tools (PAM))
|
|||
|
2021-01-07 15:41:32 Searching PAM password testing modules (cracklib, passwdqc, pwquality)
|
|||
|
2021-01-07 15:41:32 Result: pam_cracklib.so NOT found (crack library PAM)
|
|||
|
2021-01-07 15:41:32 Result: pam_passwdqc.so NOT found (passwd quality control PAM)
|
|||
|
2021-01-07 15:41:32 Result: pam_pwquality.so NOT found (pwquality control PAM)
|
|||
|
2021-01-07 15:41:32 Result: no PAM modules for password strength testing found
|
|||
|
2021-01-07 15:41:32 Suggestion: Install a PAM module for password strength testing like pam_cracklib or pam_passwdqc [test:AUTH-9262] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:32 Hardening: assigned partial number of hardening points (0 of 3). Currently having 10 points (out of 27)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9264 (Checking presence pam.conf)
|
|||
|
2021-01-07 15:41:32 Test: Checking file /etc/pam.conf
|
|||
|
2021-01-07 15:41:32 Result: file /etc/pam.conf exists
|
|||
|
2021-01-07 15:41:32 Test: searching PAM configuration files
|
|||
|
2021-01-07 15:41:32 Result: File has no configuration options defined (empty, or only filled with comments and empty lines)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9266 (Checking presence pam.d files)
|
|||
|
2021-01-07 15:41:32 Test: Checking directory /etc/pam.d
|
|||
|
2021-01-07 15:41:32 Result: directory /etc/pam.d exists
|
|||
|
2021-01-07 15:41:32 Test: searching PAM configuration files
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/accountsservice
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/atd
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/chfn
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/chpasswd
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/chsh
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/common-account
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/common-auth
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/common-password
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/common-session
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/common-session-noninteractive
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/cron
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/login
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/newusers
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/other
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/passwd
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/polkit-1
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/ppp
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/sshd
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/su
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/sudo
|
|||
|
2021-01-07 15:41:32 Found file: /etc/pam.d/vmtoolsd
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9268 (Checking presence pam.d files)
|
|||
|
2021-01-07 15:41:32 Test: Searching pam modules
|
|||
|
2021-01-07 15:41:32 Test: Checking /lib/arm-linux-gnueabihf/security
|
|||
|
2021-01-07 15:41:32 Result: directory /lib/arm-linux-gnueabihf/security could not be found or is a symlink to another directory
|
|||
|
2021-01-07 15:41:32 Test: Checking /lib/i386-linux-gnu/security
|
|||
|
2021-01-07 15:41:32 Result: directory /lib/i386-linux-gnu/security could not be found or is a symlink to another directory
|
|||
|
2021-01-07 15:41:32 Test: Checking /lib/security
|
|||
|
2021-01-07 15:41:32 Result: directory /lib/security could not be found or is a symlink to another directory
|
|||
|
2021-01-07 15:41:32 Test: Checking /lib/x86_64-linux-gnu/security
|
|||
|
2021-01-07 15:41:32 Result: directory /lib/x86_64-linux-gnu/security exists
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_access.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_cap.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_debug.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_deny.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_echo.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_env.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_exec.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_faildelay.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_filter.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_ftp.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_group.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_issue.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_keyinit.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_lastlog.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_limits.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_listfile.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_localuser.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_loginuid.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_mail.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_mkhomedir.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_motd.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_namespace.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_nologin.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_permit.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_pwhistory.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_rhosts.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_rootok.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_securetty.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_selinux.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_sepermit.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_shells.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_stress.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_succeed_if.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_systemd.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_tally.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_tally2.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_time.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_timestamp.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_tty_audit.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_umask.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_unix.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_userdb.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_warn.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_wheel.so
|
|||
|
2021-01-07 15:41:32 Found file: /lib/x86_64-linux-gnu/security/pam_xauth.so
|
|||
|
2021-01-07 15:41:32 Test: Checking /lib64/security
|
|||
|
2021-01-07 15:41:32 Result: directory /lib64/security could not be found or is a symlink to another directory
|
|||
|
2021-01-07 15:41:32 Test: Checking /usr/lib
|
|||
|
2021-01-07 15:41:32 Result: directory /usr/lib exists
|
|||
|
2021-01-07 15:41:32 Test: Checking /usr/lib/security
|
|||
|
2021-01-07 15:41:32 Result: directory /usr/lib/security could not be found or is a symlink to another directory
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9278 (Determine LDAP support in PAM files)
|
|||
|
2021-01-07 15:41:32 Test: checking presence /etc/pam.d/common-auth
|
|||
|
2021-01-07 15:41:32 Result: file /etc/pam.d/common-auth exists
|
|||
|
2021-01-07 15:41:32 Test: checking presence LDAP module
|
|||
|
2021-01-07 15:41:32 Result: LDAP module not found
|
|||
|
2021-01-07 15:41:32 Test: checking presence /etc/pam.d/system-auth
|
|||
|
2021-01-07 15:41:32 Result: file /etc/pam.d/system-auth not found, skipping test
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9282 (Checking password protected account without expire date)
|
|||
|
2021-01-07 15:41:32 Test: Checking Linux version and password expire date status
|
|||
|
2021-01-07 15:41:32 Result: found one or more accounts without expire date set
|
|||
|
2021-01-07 15:41:32 Account without expire date: ll
|
|||
|
2021-01-07 15:41:32 Suggestion: When possible set expire dates for all password protected accounts [test:AUTH-9282] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9283 (Checking accounts without password)
|
|||
|
2021-01-07 15:41:32 Test: Checking passwordless accounts
|
|||
|
2021-01-07 15:41:32 Result: all accounts seem to have a password
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9284 (Check locked user accounts in /etc/passwd)
|
|||
|
2021-01-07 15:41:32 Test: Checking locked accounts
|
|||
|
2021-01-07 15:41:32 Result: all accounts seem to be unlocked
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9286 (Checking user password aging)
|
|||
|
2021-01-07 15:41:32 Test: Checking PASS_MIN_DAYS option in /etc/login.defs
|
|||
|
2021-01-07 15:41:32 Result: password minimum age is not configured
|
|||
|
2021-01-07 15:41:32 Suggestion: Configure minimum password age in /etc/login.defs [test:AUTH-9286] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:32 Hardening: assigned partial number of hardening points (0 of 1). Currently having 10 points (out of 28)
|
|||
|
2021-01-07 15:41:32 Test: Checking PASS_MAX_DAYS option in /etc/login.defs
|
|||
|
2021-01-07 15:41:32 Result: password aging limits are not configured
|
|||
|
2021-01-07 15:41:32 Suggestion: Configure maximum password age in /etc/login.defs [test:AUTH-9286] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:32 Hardening: assigned partial number of hardening points (0 of 1). Currently having 10 points (out of 29)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9288 (Checking for expired passwords)
|
|||
|
2021-01-07 15:41:32 Test: check if we can access /etc/shadow (escaped: /etc/shadow)
|
|||
|
2021-01-07 15:41:32 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:32 Result: file /etc/shadow is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:32 Data: Days since epoch is 18634
|
|||
|
2021-01-07 15:41:32 Test: collecting accounts which have an expired password (last day changed + maximum change time)
|
|||
|
2021-01-07 15:41:32 Result: good, no passwords have been expired
|
|||
|
2021-01-07 15:41:32 Hardening: assigned maximum number of hardening points for this item (10). Currently having 20 points (out of 39)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Skipped test AUTH-9304 (Check single user login configuration)
|
|||
|
2021-01-07 15:41:32 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Skipped test AUTH-9306 (Check single boot authentication)
|
|||
|
2021-01-07 15:41:32 Reason to skip: Incorrect guest OS (HP-UX only)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9308 (Check single user login configuration)
|
|||
|
2021-01-07 15:41:32 Test: Searching /etc/inittab
|
|||
|
2021-01-07 15:41:32 Result: file /etc/inittab does not exist
|
|||
|
2021-01-07 15:41:32 Test: Searching /etc/sysconfig/init
|
|||
|
2021-01-07 15:41:32 Result: file /etc/sysconfig/init does not exist
|
|||
|
2021-01-07 15:41:32 Test: going to check several systemd targets now
|
|||
|
2021-01-07 15:41:32 Test: checking if target console-shell.service is available (/lib/systemd/system/console-shell.service)
|
|||
|
2021-01-07 15:41:32 Result: target console-shell.service not found
|
|||
|
2021-01-07 15:41:32 Test: checking if target emergency.service is available (/lib/systemd/system/emergency.service)
|
|||
|
2021-01-07 15:41:32 Result: target emergency.service not found
|
|||
|
2021-01-07 15:41:32 Test: checking if target rescue.service is available (/lib/systemd/system/rescue.service)
|
|||
|
2021-01-07 15:41:32 Result: target rescue.service not found
|
|||
|
2021-01-07 15:41:32 Result: no tests performed
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9328 (Default umask values)
|
|||
|
2021-01-07 15:41:32 Test: Checking /etc/profile.d directory
|
|||
|
2021-01-07 15:41:32 Result: found /etc/profile.d, with one or more files in it
|
|||
|
2021-01-07 15:41:32 Test: Checking /etc/profile
|
|||
|
2021-01-07 15:41:32 Result: file /etc/profile exists
|
|||
|
2021-01-07 15:41:32 Test: Checking umask value in /etc/profile
|
|||
|
2021-01-07 15:41:32 Result: did not find umask in /etc/profile
|
|||
|
2021-01-07 15:41:32 Result: found no umask. Please check if this is correct
|
|||
|
2021-01-07 15:41:32 Test: Checking umask entries in /etc/passwd (pam_umask)
|
|||
|
2021-01-07 15:41:32 Result: file /etc/passwd exists
|
|||
|
2021-01-07 15:41:32 Test: Checking umask value in /etc/passwd
|
|||
|
2021-01-07 15:41:32 Manual: one or more manual actions are required for further testing of this control/plugin
|
|||
|
2021-01-07 15:41:32 Test: Checking /etc/login.defs
|
|||
|
2021-01-07 15:41:32 Result: file /etc/login.defs exists
|
|||
|
2021-01-07 15:41:32 Test: Checking umask value in /etc/login.defs
|
|||
|
2021-01-07 15:41:32 Result: found umask 022, which could be improved
|
|||
|
2021-01-07 15:41:32 Suggestion: Default umask in /etc/login.defs could be more strict like 027 [test:AUTH-9328] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:32 Hardening: assigned partial number of hardening points (0 of 2). Currently having 20 points (out of 41)
|
|||
|
2021-01-07 15:41:32 Test: Checking /etc/init.d/functions
|
|||
|
2021-01-07 15:41:32 Result: file /etc/init.d/functions does not exist
|
|||
|
2021-01-07 15:41:32 Test: Checking /etc/init.d/rc
|
|||
|
2021-01-07 15:41:32 Result: file /etc/init.d/rc exists
|
|||
|
2021-01-07 15:41:32 Test: Checking UMASK value in /etc/init.d/rc
|
|||
|
2021-01-07 15:41:32 Result: found umask 022, which could be improved
|
|||
|
2021-01-07 15:41:32 Suggestion: Default umask in /etc/init.d/rc could be more strict like 027 [test:AUTH-9328] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:32 Hardening: assigned partial number of hardening points (0 of 2). Currently having 20 points (out of 43)
|
|||
|
2021-01-07 15:41:32 Test: Checking /etc/init.d/rcS
|
|||
|
2021-01-07 15:41:32 Result: file /etc/init.d/rcS exists
|
|||
|
2021-01-07 15:41:32 Test: Checking if script runs another script.
|
|||
|
2021-01-07 15:41:32 Result: exec line present in file, setting of umask not needed in this script
|
|||
|
2021-01-07 15:41:32 Output: /etc/init.d/rc
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Skipped test AUTH-9340 (Solaris account locking)
|
|||
|
2021-01-07 15:41:32 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9402 (Query LDAP authentication support)
|
|||
|
2021-01-07 15:41:32 Result: LDAP authentication not enabled
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Skipped test AUTH-9406 (Query LDAP servers in client configuration)
|
|||
|
2021-01-07 15:41:32 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID AUTH-9408 (Logging of failed login attempts)
|
|||
|
2021-01-07 15:41:32 Result: did not find /var/log/tallylog on disk or its file size is zero bytes
|
|||
|
2021-01-07 15:41:32 Result: found pam_tally2 module on disk
|
|||
|
2021-01-07 15:41:32 Outcome: it looks like pam_tally2 is not configured to log failed login attempts
|
|||
|
2021-01-07 15:41:32 Test: Checking FAILLOG_ENAB option in /etc/login.defs
|
|||
|
2021-01-07 15:41:32 Result: FAILLOG_ENAB is set to 'yes'
|
|||
|
2021-01-07 15:41:32 Outcome: failed login attempts are logged in /var/log/faillog
|
|||
|
2021-01-07 15:41:32 Hardening: assigned maximum number of hardening points for this item (3). Currently having 23 points (out of 46)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Skipped test AUTH-9409 (Checking /etc/doas.conf file)
|
|||
|
2021-01-07 15:41:32 Reason to skip: Incorrect guest OS (OpenBSD only)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Skipped test AUTH-9410 (Check /etc/doas.conf file permissions)
|
|||
|
2021-01-07 15:41:32 Reason to skip: Incorrect guest OS (OpenBSD only)
|
|||
|
2021-01-07 15:41:32 Security check: file is normal
|
|||
|
2021-01-07 15:41:32 Checking permissions of /root/scans/lynis/include/tests_shells
|
|||
|
2021-01-07 15:41:32 File permissions are OK
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Action: Performing tests from category: Shells
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Skipped test SHLL-6202 (Check console TTYs)
|
|||
|
2021-01-07 15:41:32 Reason to skip: Incorrect guest OS (FreeBSD only)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID SHLL-6211 (Available and valid shells)
|
|||
|
2021-01-07 15:41:32 Test: Searching for /etc/shells
|
|||
|
2021-01-07 15:41:32 Result: Found /etc/shells file
|
|||
|
2021-01-07 15:41:32 Test: Reading available shells from /etc/shells
|
|||
|
2021-01-07 15:41:32 Found installed shell: /bin/sh
|
|||
|
2021-01-07 15:41:32 Found installed shell: /bin/dash
|
|||
|
2021-01-07 15:41:32 Found installed shell: /bin/bash
|
|||
|
2021-01-07 15:41:32 Found installed shell: /bin/rbash
|
|||
|
2021-01-07 15:41:32 Found installed shell: /usr/bin/tmux
|
|||
|
2021-01-07 15:41:32 Found installed shell: /usr/bin/screen
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID SHLL-6220 (Idle session killing tools or settings)
|
|||
|
2021-01-07 15:41:32 Test: Search for session timeout tools or settings in shell
|
|||
|
2021-01-07 15:41:32 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:32 IsRunning: process 'timeoutd' not found
|
|||
|
2021-01-07 15:41:32 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:32 IsRunning: process 'autolog' not found
|
|||
|
2021-01-07 15:41:32 Result: could not find TMOUT setting in /etc/profile
|
|||
|
2021-01-07 15:41:32 Result: could not find export, readonly or typeset -r in /etc/profile
|
|||
|
2021-01-07 15:41:32 Result: could not find TMOUT setting in /etc/profile.d/*.sh
|
|||
|
2021-01-07 15:41:32 Result: could not find export, readonly or typeset -r in /etc/profile
|
|||
|
2021-01-07 15:41:32 Hardening: assigned partial number of hardening points (1 of 3). Currently having 24 points (out of 49)
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Performing test ID SHLL-6230 (Perform umask check for shell configurations)
|
|||
|
2021-01-07 15:41:32 Result: file /etc/bashrc not found
|
|||
|
2021-01-07 15:41:32 Result: file /etc/bash.bashrc exists
|
|||
|
2021-01-07 15:41:32 Result: did not find umask configured in /etc/bash.bashrc
|
|||
|
2021-01-07 15:41:32 Result: file /etc/bash.bashrc.local not found
|
|||
|
2021-01-07 15:41:32 Result: file /etc/csh.cshrc not found
|
|||
|
2021-01-07 15:41:32 Result: file /etc/profile exists
|
|||
|
2021-01-07 15:41:32 Result: did not find umask configured in /etc/profile
|
|||
|
2021-01-07 15:41:32 Security check: file is normal
|
|||
|
2021-01-07 15:41:32 Checking permissions of /root/scans/lynis/include/tests_filesystems
|
|||
|
2021-01-07 15:41:32 File permissions are OK
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:32 Action: Performing tests from category: File systems
|
|||
|
2021-01-07 15:41:32 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6310 (Checking /tmp, /home and /var directory)
|
|||
|
2021-01-07 15:41:33 Test: Checking if /home is mounted separately or mounted on / file system
|
|||
|
2021-01-07 15:41:33 Result: directory /home exists
|
|||
|
2021-01-07 15:41:33 Result: /home not found in mount list. Directory most likely stored on / file system
|
|||
|
2021-01-07 15:41:33 Suggestion: To decrease the impact of a full /home file system, place /home on a separate partition [test:FILE-6310] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (9 of 10). Currently having 33 points (out of 59)
|
|||
|
2021-01-07 15:41:33 Test: Checking if /tmp is mounted separately or mounted on / file system
|
|||
|
2021-01-07 15:41:33 Result: directory /tmp exists
|
|||
|
2021-01-07 15:41:33 Result: /tmp not found in mount list. Directory most likely stored on / file system
|
|||
|
2021-01-07 15:41:33 Suggestion: To decrease the impact of a full /tmp file system, place /tmp on a separate partition [test:FILE-6310] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (9 of 10). Currently having 42 points (out of 69)
|
|||
|
2021-01-07 15:41:33 Test: Checking if /var is mounted separately or mounted on / file system
|
|||
|
2021-01-07 15:41:33 Result: directory /var exists
|
|||
|
2021-01-07 15:41:33 Result: /var not found in mount list. Directory most likely stored on / file system
|
|||
|
2021-01-07 15:41:33 Suggestion: To decrease the impact of a full /var file system, place /var on a separate partition [test:FILE-6310] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (9 of 10). Currently having 51 points (out of 79)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test FILE-6311 (Checking LVM volume groups)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test FILE-6312 (Checking LVM volumes)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6323 (Checking EXT file systems)
|
|||
|
2021-01-07 15:41:33 Test: Checking for Linux EXT file systems
|
|||
|
2021-01-07 15:41:33 Result: found one or more EXT file systems
|
|||
|
2021-01-07 15:41:33 File system: / (type: ext4)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6324 (Checking XFS file systems)
|
|||
|
2021-01-07 15:41:33 Test: Checking for Linux XFS file systems
|
|||
|
2021-01-07 15:41:33 Result: no XFS file systems found
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6329 (Checking FFS/UFS file systems)
|
|||
|
2021-01-07 15:41:33 Test: Query /etc/fstab for available FFS/UFS mount points
|
|||
|
2021-01-07 15:41:33 Result: unable to find any single mount point (FFS/UFS)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test FILE-6330 (Checking ZFS file systems)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Incorrect guest OS (FreeBSD only)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test FILE-6439 (Checking HAMMER PFS mounts)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Incorrect guest OS (DragonFly only)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6332 (Checking swap partitions)
|
|||
|
2021-01-07 15:41:33 Test: query swap partitions from /etc/fstab file
|
|||
|
2021-01-07 15:41:33 Swap partition found: UUID=43e4066c-3702-46ff-8e97-fa2d6b0e2bc8
|
|||
|
2021-01-07 15:41:33 Result: Using 43e4066c-3702-46ff-8e97-fa2d6b0e2bc8 as UUID
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6336 (Checking swap mount options)
|
|||
|
2021-01-07 15:41:33 Test: check swap partitions with incorrect mount options
|
|||
|
2021-01-07 15:41:33 Result: all swap partitions have correct options (sw or swap)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6344 (Checking proc mount options)
|
|||
|
2021-01-07 15:41:33 Test: check proc mount with incorrect mount options
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (0 of 3). Currently having 51 points (out of 82)
|
|||
|
2021-01-07 15:41:33 Result: /proc filesystem is not mounted with option hidepid=1 or hidepid=2
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6354 (Searching for old files in /tmp)
|
|||
|
2021-01-07 15:41:33 Test: Searching for old files in /tmp
|
|||
|
2021-01-07 15:41:33 Result: no files found in /tmp which are older than 3 months
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6362 (Checking /tmp sticky bit)
|
|||
|
2021-01-07 15:41:33 Result: sticky bit found on /tmp directory
|
|||
|
2021-01-07 15:41:33 Hardening: assigned maximum number of hardening points for this item (3). Currently having 54 points (out of 85)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6363 (Checking /var/tmp sticky bit)
|
|||
|
2021-01-07 15:41:33 Result: sticky bit found on /var/tmp directory
|
|||
|
2021-01-07 15:41:33 Hardening: assigned maximum number of hardening points for this item (3). Currently having 57 points (out of 88)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6368 (Checking ACL support on root file system)
|
|||
|
2021-01-07 15:41:33 Test: Checking acl option on ext[2-4] root file system
|
|||
|
2021-01-07 15:41:33 Result: mount point probably mounted with defaults
|
|||
|
2021-01-07 15:41:33 Test: Checking device which holds root file system
|
|||
|
2021-01-07 15:41:33 Result: found /dev/sda1
|
|||
|
2021-01-07 15:41:33 Test: Checking default options on /dev/sda1
|
|||
|
2021-01-07 15:41:33 Result: found ACL option in default mount options
|
|||
|
2021-01-07 15:41:33 Test: Checking acl option on xfs root file system
|
|||
|
2021-01-07 15:41:33 Result: ACL option enabled on root file system
|
|||
|
2021-01-07 15:41:33 Hardening: assigned maximum number of hardening points for this item (3). Currently having 60 points (out of 91)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6372 (Checking / mount options)
|
|||
|
2021-01-07 15:41:33 Result: mount system / is configured with options: errors=remount-ro
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6374 (Linux mount options)
|
|||
|
2021-01-07 15:41:33 Result: file system /boot not found in /etc/fstab
|
|||
|
2021-01-07 15:41:33 File system: /dev
|
|||
|
2021-01-07 15:41:33 Expected flags: noexec nosuid
|
|||
|
2021-01-07 15:41:33 Found flags: (rw mode=0755)
|
|||
|
2021-01-07 15:41:33 Result: Could not find mount option noexec on file system /dev
|
|||
|
2021-01-07 15:41:33 Result: Could not find mount option nosuid on file system /dev
|
|||
|
2021-01-07 15:41:33 Result: marked /dev options as non-default (unclear about hardening)
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (4 of 5). Currently having 64 points (out of 96)
|
|||
|
2021-01-07 15:41:33 Result: file system /dev/shm not found in /etc/fstab
|
|||
|
2021-01-07 15:41:33 Result: file system /home not found in /etc/fstab
|
|||
|
2021-01-07 15:41:33 File system: /run
|
|||
|
2021-01-07 15:41:33 Expected flags: nodev nosuid
|
|||
|
2021-01-07 15:41:33 Found flags: (rw noexec nosuid size=10% mode=0755)
|
|||
|
2021-01-07 15:41:33 Result: Could not find mount option nodev on file system /run
|
|||
|
2021-01-07 15:41:33 Result: GOOD, found mount option nosuid on file system /run
|
|||
|
2021-01-07 15:41:33 Result: marked /run as partially hardened
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (4 of 5). Currently having 68 points (out of 101)
|
|||
|
2021-01-07 15:41:33 Result: file system /tmp not found in /etc/fstab
|
|||
|
2021-01-07 15:41:33 Result: file system /var not found in /etc/fstab
|
|||
|
2021-01-07 15:41:33 Result: file system /var/log not found in /etc/fstab
|
|||
|
2021-01-07 15:41:33 Result: file system /var/log/audit not found in /etc/fstab
|
|||
|
2021-01-07 15:41:33 Result: file system /var/tmp not found in /etc/fstab
|
|||
|
2021-01-07 15:41:33 Result: Total without nodev:9 noexec:10 nosuid:7 ro or noexec (W^X): 10, of total 17
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6376 (Determine if /var/tmp is bound to /tmp)
|
|||
|
2021-01-07 15:41:33 Result: no mount point /var/tmp or expected options found
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6394 (Determine level of swappiness.)
|
|||
|
2021-01-07 15:41:33 Test: checking level of vm.swappiness: 60
|
|||
|
2021-01-07 15:41:33 Result: vm.swappiness=60 which is the standard level of swappiness and works well for desktop systems.
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6410 (Checking Locate database)
|
|||
|
2021-01-07 15:41:33 Test: Checking locate database
|
|||
|
2021-01-07 15:41:33 Result: locate database found (/var/lib/mlocate/mlocate.db)
|
|||
|
2021-01-07 15:41:33 Result: file /var/lib/locate/locatedb not found
|
|||
|
2021-01-07 15:41:33 Result: file /var/lib/locatedb not found
|
|||
|
2021-01-07 15:41:33 Result: file /var/lib/slocate/slocate.db not found
|
|||
|
2021-01-07 15:41:33 Result: file /var/cache/locate/locatedb not found
|
|||
|
2021-01-07 15:41:33 Result: file /var/db/locate.database not found
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID FILE-6430 (Disable mounting of some filesystems)
|
|||
|
2021-01-07 15:41:33 Result: found cramfs support in the kernel (output = insmod /lib/modules/4.4.0-142-generic/kernel/fs/cramfs/cramfs.ko )
|
|||
|
2021-01-07 15:41:33 Test: Checking if cramfs is active
|
|||
|
2021-01-07 15:41:33 Result: module cramfs is currently not loaded in the kernel.
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (2 of 3). Currently having 70 points (out of 104)
|
|||
|
2021-01-07 15:41:33 Result: found freevxfs support in the kernel (output = insmod /lib/modules/4.4.0-142-generic/kernel/fs/freevxfs/freevxfs.ko )
|
|||
|
2021-01-07 15:41:33 Test: Checking if freevxfs is active
|
|||
|
2021-01-07 15:41:33 Result: module freevxfs is currently not loaded in the kernel.
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (2 of 3). Currently having 72 points (out of 107)
|
|||
|
2021-01-07 15:41:33 Hardening: assigned maximum number of hardening points for this item (3). Currently having 75 points (out of 110)
|
|||
|
2021-01-07 15:41:33 Hardening: assigned maximum number of hardening points for this item (3). Currently having 78 points (out of 113)
|
|||
|
2021-01-07 15:41:33 Result: found jffs2 support in the kernel (output = insmod /lib/modules/4.4.0-142-generic/kernel/fs/jffs2/jffs2.ko )
|
|||
|
2021-01-07 15:41:33 Test: Checking if jffs2 is active
|
|||
|
2021-01-07 15:41:33 Result: module jffs2 is currently not loaded in the kernel.
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (2 of 3). Currently having 80 points (out of 116)
|
|||
|
2021-01-07 15:41:33 Hardening: assigned maximum number of hardening points for this item (3). Currently having 83 points (out of 119)
|
|||
|
2021-01-07 15:41:33 Result: found udf support in the kernel (output = insmod /lib/modules/4.4.0-142-generic/kernel/fs/udf/udf.ko )
|
|||
|
2021-01-07 15:41:33 Test: Checking if udf is active
|
|||
|
2021-01-07 15:41:33 Result: module udf is currently not loaded in the kernel.
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (2 of 3). Currently having 85 points (out of 122)
|
|||
|
2021-01-07 15:41:33 Suggestion: Consider disabling unused kernel modules [test:FILE-6430] [details:/etc/modprobe.d/blacklist.conf] [solution:Add 'install MODULENAME /bin/true' (without quotes)]
|
|||
|
2021-01-07 15:41:33 Security check: file is normal
|
|||
|
2021-01-07 15:41:33 Checking permissions of /root/scans/lynis/include/tests_usb
|
|||
|
2021-01-07 15:41:33 File permissions are OK
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Action: Performing tests from category: USB Devices
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID USB-1000 (Check if USB storage is disabled)
|
|||
|
2021-01-07 15:41:33 Test: Checking USB storage driver in directory /etc/modprobe.d and configuration file /etc/modprobe.conf
|
|||
|
2021-01-07 15:41:33 Result: usb-storage driver is not explicitly disabled
|
|||
|
2021-01-07 15:41:33 Suggestion: Disable drivers like USB storage when not used, to prevent unauthorized storage or data theft [test:USB-1000] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (2 of 3). Currently having 87 points (out of 125)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID USB-2000 (Check USB authorizations)
|
|||
|
2021-01-07 15:41:33 Test: checking presence of USB devices path (/sys/bus/usb/devices)
|
|||
|
2021-01-07 15:41:33 Test: Checking USB devices authorization to connect to the system
|
|||
|
2021-01-07 15:41:33 Test: /sys/bus/usb/devices/usb1 is authorized by default (authorized_default=1)
|
|||
|
2021-01-07 15:41:33 Test: /sys/bus/usb/devices/usb1 is authorized currently (authorized=1)
|
|||
|
2021-01-07 15:41:33 Test: /sys/bus/usb/devices/usb2 is authorized by default (authorized_default=1)
|
|||
|
2021-01-07 15:41:33 Test: /sys/bus/usb/devices/usb2 is authorized currently (authorized=1)
|
|||
|
2021-01-07 15:41:33 Result: Some USB devices are authorized by default (or temporary) to connect to the system
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (0 of 3). Currently having 87 points (out of 128)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID USB-3000 (Check for presence of USBGuard)
|
|||
|
2021-01-07 15:41:33 Result: USBGuard not found
|
|||
|
2021-01-07 15:41:33 Hardening: assigned partial number of hardening points (0 of 8). Currently having 87 points (out of 136)
|
|||
|
2021-01-07 15:41:33 Security check: file is normal
|
|||
|
2021-01-07 15:41:33 Checking permissions of /root/scans/lynis/include/tests_storage
|
|||
|
2021-01-07 15:41:33 File permissions are OK
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Action: Performing tests from category: Storage
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID STRG-1846 (Check if firewire storage is disabled)
|
|||
|
2021-01-07 15:41:33 Test: Checking firewire storage driver in directory /etc/modprobe.d and configuration file /etc/modprobe.conf
|
|||
|
2021-01-07 15:41:33 Result: found firewire ohci driver in disabled state
|
|||
|
2021-01-07 15:41:33 Result: firewire ohci driver is disabled
|
|||
|
2021-01-07 15:41:33 Hardening: assigned maximum number of hardening points for this item (3). Currently having 90 points (out of 139)
|
|||
|
2021-01-07 15:41:33 Security check: file is normal
|
|||
|
2021-01-07 15:41:33 Checking permissions of /root/scans/lynis/include/tests_storage_nfs
|
|||
|
2021-01-07 15:41:33 File permissions are OK
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Action: Performing tests from category: NFS
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test STRG-1902 (Check rpcinfo registered programs)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test STRG-1904 (Check nfs rpc)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test STRG-1906 (Check nfs rpc)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID STRG-1920 (Checking NFS daemon)
|
|||
|
2021-01-07 15:41:33 Test: Checking running NFS daemon
|
|||
|
2021-01-07 15:41:33 Output: NFS daemon is not running
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test STRG-1926 (Checking NFS exports)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test STRG-1928 (Checking empty /etc/exports)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test STRG-1930 (Check client access to nfs share)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:33 Security check: file is normal
|
|||
|
2021-01-07 15:41:33 Checking permissions of /root/scans/lynis/include/tests_nameservices
|
|||
|
2021-01-07 15:41:33 File permissions are OK
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Action: Performing tests from category: Name services
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID NAME-4016 (Check /etc/resolv.conf default domain)
|
|||
|
2021-01-07 15:41:33 Test: check /etc/resolv.conf for default domain
|
|||
|
2021-01-07 15:41:33 Result: /etc/resolv.conf found
|
|||
|
2021-01-07 15:41:33 Result: no default domain found
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID NAME-4018 (Check /etc/resolv.conf search domains)
|
|||
|
2021-01-07 15:41:33 Test: check /etc/resolv.conf for search domains
|
|||
|
2021-01-07 15:41:33 Result: /etc/resolv.conf found
|
|||
|
2021-01-07 15:41:33 Found search domain: localdomain
|
|||
|
2021-01-07 15:41:33 Result: Found 1 search domains
|
|||
|
2021-01-07 15:41:33 Result: found 1 line(s) with a search statement (expecting less than 2 lines)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID NAME-4020 (Check non default options)
|
|||
|
2021-01-07 15:41:33 Test: check /etc/resolv.conf for non default options
|
|||
|
2021-01-07 15:41:33 Result: /etc/resolv.conf found
|
|||
|
2021-01-07 15:41:33 Result: no specific other options configured in /etc/resolv.conf
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test NAME-4024 (Solaris uname -n output)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test NAME-4026 (Check /etc/nodename)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID NAME-4028 (Check domain name)
|
|||
|
2021-01-07 15:41:33 Test: Checking if dnsdomainname command is available
|
|||
|
2021-01-07 15:41:33 Result: dnsdomainname command returned no value
|
|||
|
2021-01-07 15:41:33 Result: using domain name from FQDN hostname (ubuntu1404)
|
|||
|
2021-01-07 15:41:33 Suggestion: Check DNS configuration for the dns domain name [test:NAME-4028] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID NAME-4032 (Check nscd status)
|
|||
|
2021-01-07 15:41:33 Test: checking nscd status
|
|||
|
2021-01-07 15:41:33 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:33 IsRunning: process 'nscd' not found
|
|||
|
2021-01-07 15:41:33 Result: nscd is not running
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID NAME-4034 (Check Unbound status)
|
|||
|
2021-01-07 15:41:33 Test: checking Unbound (unbound) status
|
|||
|
2021-01-07 15:41:33 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:33 IsRunning: process 'unbound' not found
|
|||
|
2021-01-07 15:41:33 Result: Unbound daemon is not running
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Skipped test NAME-4036 (Check Unbound configuration file)
|
|||
|
2021-01-07 15:41:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:33 ====
|
|||
|
2021-01-07 15:41:33 Performing test ID NAME-4202 (Check BIND status)
|
|||
|
2021-01-07 15:41:33 Test: Checking for running BIND instance
|
|||
|
2021-01-07 15:41:33 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:34 IsRunning: process 'named' not found
|
|||
|
2021-01-07 15:41:34 Result: BIND not running
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test NAME-4204 (Search BIND configuration file)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test NAME-4206 (Check BIND configuration consistency)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test NAME-4210 (Check DNS banner)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Performing test ID NAME-4230 (Check PowerDNS status)
|
|||
|
2021-01-07 15:41:34 Test: Checking for running PowerDNS instance
|
|||
|
2021-01-07 15:41:34 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:34 IsRunning: process 'pdns_server' not found
|
|||
|
2021-01-07 15:41:34 Result: PowerDNS not running
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test NAME-4232 (Search PowerDNS configuration file)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test NAME-4236 (Check PowerDNS backends)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test NAME-4238 (Check PowerDNS authoritative status)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Performing test ID NAME-4304 (Check NIS ypbind status)
|
|||
|
2021-01-07 15:41:34 Test: Checking status of ypbind daemon
|
|||
|
2021-01-07 15:41:34 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:34 IsRunning: process 'ypbind' not found
|
|||
|
2021-01-07 15:41:34 Result: ypbind is not active
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test NAME-4306 (Check NIS domain)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Performing test ID NAME-4402 (Check duplicate line in /etc/hosts)
|
|||
|
2021-01-07 15:41:34 Test: check duplicate line in /etc/hosts
|
|||
|
2021-01-07 15:41:34 Result: OK, no duplicate lines found
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Performing test ID NAME-4404 (Check /etc/hosts contains an entry for this server name)
|
|||
|
2021-01-07 15:41:34 Test: Check /etc/hosts contains an entry for this server name
|
|||
|
2021-01-07 15:41:34 Result: Found entry for ubuntu1404 in /etc/hosts
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Performing test ID NAME-4406 (Check server hostname mapping)
|
|||
|
2021-01-07 15:41:34 Test: Check server hostname not locally mapped in /etc/hosts
|
|||
|
2021-01-07 15:41:34 Result: this server hostname is not mapped to a local address
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Performing test ID NAME-4408 (Check localhost entry)
|
|||
|
2021-01-07 15:41:34 Test: Check server hostname not locally mapped in /etc/hosts
|
|||
|
2021-01-07 15:41:34 Result: localhost mapped to ::1
|
|||
|
2021-01-07 15:41:34 Security check: file is normal
|
|||
|
2021-01-07 15:41:34 Checking permissions of /root/scans/lynis/include/tests_dns
|
|||
|
2021-01-07 15:41:34 File permissions are OK
|
|||
|
2021-01-07 15:41:34 Security check: file is normal
|
|||
|
2021-01-07 15:41:34 Checking permissions of /root/scans/lynis/include/tests_ports_packages
|
|||
|
2021-01-07 15:41:34 File permissions are OK
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Action: Performing tests from category: Ports and packages
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7301 (Query FreeBSD pkg)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7302 (Query FreeBSD/NetBSD pkg_info)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7303 (Query brew package manager)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 Result: brew can NOT be found on this system
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7304 (Querying Gentoo packages)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 Result: emerge can NOT be found on this system
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7306 (Querying Solaris packages)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:34 Result: pkginfo can NOT be found on this system
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7308 (Checking package list with RPM)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 Result: RPM binary NOT found on this system, test skipped
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7310 (Checking package list with pacman)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7312 (Checking available updates for pacman based system)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 Result: pacman binary NOT found on this system, test skipped
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7314 (Checking pacman configuration options)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7320 (Checking for arch-audit tooling)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Test only applies to Arch Linux
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7322 (Discover vulnerable packages with arch-audit)
|
|||
|
2021-01-07 15:41:34 Reason to skip: arch-audit not found
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7328 (Querying Zypper for installed packages)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7330 (Querying Zypper for vulnerable packages)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7332 (Query macOS ports)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Incorrect guest OS (macOS only)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Skipped test PKGS-7334 (Query port for port upgrades)
|
|||
|
2021-01-07 15:41:34 Reason to skip: Incorrect guest OS (macOS only)
|
|||
|
2021-01-07 15:41:34 ====
|
|||
|
2021-01-07 15:41:34 Performing test ID PKGS-7345 (Querying dpkg)
|
|||
|
2021-01-07 15:41:34 Result: Found dpkg binary
|
|||
|
2021-01-07 15:41:34 Test: Querying dpkg -l to get package list
|
|||
|
2021-01-07 15:41:34 Output:
|
|||
|
2021-01-07 15:41:34 Found package: accountsservice (version: 0.6.35-0ubuntu7.3)
|
|||
|
2021-01-07 15:41:34 Found package: acpid (version: 1:2.0.21-1ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: adduser (version: 3.113+nmu3ubuntu3)
|
|||
|
2021-01-07 15:41:34 Found package: amd64-microcode (version: 3.20180524.1~ubuntu0.14.04.2+really20130710.1ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: apparmor (version: 2.10.95-0ubuntu2.6~14.04.4)
|
|||
|
2021-01-07 15:41:34 Found package: apport (version: 2.14.1-0ubuntu3.29)
|
|||
|
2021-01-07 15:41:34 Found package: apport-symptoms (version: 0.20)
|
|||
|
2021-01-07 15:41:34 Found package: apt (version: 1.0.1ubuntu2.24)
|
|||
|
2021-01-07 15:41:34 Found package: apt-transport-https (version: 1.0.1ubuntu2.24)
|
|||
|
2021-01-07 15:41:34 Found package: apt-utils (version: 1.0.1ubuntu2.24)
|
|||
|
2021-01-07 15:41:34 Found package: apt-xapian-index (version: 0.45ubuntu4)
|
|||
|
2021-01-07 15:41:34 Found package: aptitude (version: 0.6.8.2-1ubuntu4)
|
|||
|
2021-01-07 15:41:34 Found package: aptitude-common (version: 0.6.8.2-1ubuntu4)
|
|||
|
2021-01-07 15:41:34 Found package: at (version: 3.1.14-1ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: base-files (version: 7.2ubuntu5.6)
|
|||
|
2021-01-07 15:41:34 Found package: base-passwd (version: 3.5.33)
|
|||
|
2021-01-07 15:41:34 Found package: bash (version: 4.3-7ubuntu1.7)
|
|||
|
2021-01-07 15:41:34 Found package: bash-completion (version: 1:2.1-4ubuntu0.2)
|
|||
|
2021-01-07 15:41:34 Found package: bc (version: 1.06.95-8ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: bind9-host (version: 1:9.9.5.dfsg-3ubuntu0.19)
|
|||
|
2021-01-07 15:41:34 Found package: biosdevname (version: 0.4.1-0ubuntu6.3)
|
|||
|
2021-01-07 15:41:34 Found package: bsdmainutils (version: 9.0.5ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: bsdutils (version: 1:2.20.1-5.1ubuntu20.9)
|
|||
|
2021-01-07 15:41:34 Found package: busybox-initramfs (version: 1:1.21.0-1ubuntu1.4)
|
|||
|
2021-01-07 15:41:34 Found package: busybox-static (version: 1:1.21.0-1ubuntu1.4)
|
|||
|
2021-01-07 15:41:34 Found package: byobu (version: 5.77-0ubuntu1.2)
|
|||
|
2021-01-07 15:41:34 Found package: bzip2 (version: 1.0.6-5)
|
|||
|
2021-01-07 15:41:34 Found package: ca-certificates (version: 20170717~14.04.2)
|
|||
|
2021-01-07 15:41:34 Found package: command-not-found (version: 0.3ubuntu12)
|
|||
|
2021-01-07 15:41:34 Found package: command-not-found-data (version: 0.3ubuntu12)
|
|||
|
2021-01-07 15:41:34 Found package: console-setup (version: 1.70ubuntu8)
|
|||
|
2021-01-07 15:41:34 Found package: coreutils (version: 8.21-1ubuntu5.4)
|
|||
|
2021-01-07 15:41:34 Found package: cpio (version: 2.11+dfsg-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:34 Found package: crda (version: 1.1.2-1ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: cron (version: 3.0pl1-124ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: curl (version: 7.35.0-1ubuntu2.20)
|
|||
|
2021-01-07 15:41:34 Found package: dash (version: 0.5.7-4ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: dbus (version: 1.6.18-0ubuntu4.5)
|
|||
|
2021-01-07 15:41:34 Found package: debconf (version: 1.5.51ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: debconf-i18n (version: 1.5.51ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: debianutils (version: 4.4)
|
|||
|
2021-01-07 15:41:34 Found package: dh-python (version: 1.20140128-1ubuntu8.2)
|
|||
|
2021-01-07 15:41:34 Found package: diffutils (version: 1:3.3-1)
|
|||
|
2021-01-07 15:41:34 Found package: dmidecode (version: 2.12-2)
|
|||
|
2021-01-07 15:41:34 Found package: dmsetup (version: 2:1.02.77-6ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: dnsutils (version: 1:9.9.5.dfsg-3ubuntu0.19)
|
|||
|
2021-01-07 15:41:34 Found package: dosfstools (version: 3.0.26-1ubuntu0.1)
|
|||
|
2021-01-07 15:41:34 Found package: dpkg (version: 1.17.5ubuntu5.8)
|
|||
|
2021-01-07 15:41:34 Found package: e2fslibs:amd64 (version: 1.42.9-3ubuntu1.3)
|
|||
|
2021-01-07 15:41:34 Found package: e2fsprogs (version: 1.42.9-3ubuntu1.3)
|
|||
|
2021-01-07 15:41:34 Found package: ed (version: 1.9-2)
|
|||
|
2021-01-07 15:41:34 Found package: eject (version: 2.1.5+deb1+cvs20081104-13.1ubuntu0.14.04.1)
|
|||
|
2021-01-07 15:41:34 Found package: ethtool (version: 1:3.13-1)
|
|||
|
2021-01-07 15:41:34 Found package: file (version: 1:5.14-2ubuntu3.4)
|
|||
|
2021-01-07 15:41:34 Found package: findutils (version: 4.4.2-7)
|
|||
|
2021-01-07 15:41:34 Found package: fonts-ubuntu-font-family-console (version: 0.80-0ubuntu6)
|
|||
|
2021-01-07 15:41:34 Found package: friendly-recovery (version: 0.2.25)
|
|||
|
2021-01-07 15:41:34 Found package: ftp (version: 0.17-28)
|
|||
|
2021-01-07 15:41:34 Found package: fuse (version: 2.9.2-4ubuntu4.14.04.1)
|
|||
|
2021-01-07 15:41:34 Found package: gawk (version: 1:4.0.1+dfsg-2.1ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: gcc-4.8-base:amd64 (version: 4.8.4-2ubuntu1~14.04.4)
|
|||
|
2021-01-07 15:41:34 Found package: gcc-4.9-base:amd64 (version: 4.9.3-0ubuntu4)
|
|||
|
2021-01-07 15:41:34 Found package: geoip-database (version: 20140313-1)
|
|||
|
2021-01-07 15:41:34 Found package: gettext-base (version: 0.18.3.1-1ubuntu3.1)
|
|||
|
2021-01-07 15:41:34 Found package: gir1.2-glib-2.0 (version: 1.40.0-1ubuntu0.2)
|
|||
|
2021-01-07 15:41:34 Found package: git (version: 1:1.9.1-1ubuntu0.10)
|
|||
|
2021-01-07 15:41:34 Found package: git-man (version: 1:1.9.1-1ubuntu0.10)
|
|||
|
2021-01-07 15:41:34 Found package: gnupg (version: 1.4.16-1ubuntu2.6)
|
|||
|
2021-01-07 15:41:34 Found package: gpgv (version: 1.4.16-1ubuntu2.6)
|
|||
|
2021-01-07 15:41:34 Found package: grep (version: 2.16-1)
|
|||
|
2021-01-07 15:41:34 Found package: groff-base (version: 1.22.2-5)
|
|||
|
2021-01-07 15:41:34 Found package: grub-common (version: 2.02~beta2-9ubuntu1.17)
|
|||
|
2021-01-07 15:41:34 Found package: grub-gfxpayload-lists (version: 0.6)
|
|||
|
2021-01-07 15:41:34 Found package: grub-pc (version: 2.02~beta2-9ubuntu1.17)
|
|||
|
2021-01-07 15:41:34 Found package: grub-pc-bin (version: 2.02~beta2-9ubuntu1.17)
|
|||
|
2021-01-07 15:41:34 Found package: grub2-common (version: 2.02~beta2-9ubuntu1.17)
|
|||
|
2021-01-07 15:41:34 Found package: gzip (version: 1.6-3ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: hdparm (version: 9.43-1ubuntu3)
|
|||
|
2021-01-07 15:41:34 Found package: hostname (version: 3.15ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: ifupdown (version: 0.7.47.2ubuntu4.5)
|
|||
|
2021-01-07 15:41:34 Found package: info (version: 5.2.0.dfsg.1-2)
|
|||
|
2021-01-07 15:41:34 Found package: init-system-helpers (version: 1.14ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: initramfs-tools (version: 0.103ubuntu4.11)
|
|||
|
2021-01-07 15:41:34 Found package: initramfs-tools-bin (version: 0.103ubuntu4.11)
|
|||
|
2021-01-07 15:41:34 Found package: initscripts (version: 2.88dsf-41ubuntu6.3)
|
|||
|
2021-01-07 15:41:34 Found package: insserv (version: 1.14.0-5ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: install-info (version: 5.2.0.dfsg.1-2)
|
|||
|
2021-01-07 15:41:34 Found package: installation-report (version: 2.54ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: intel-microcode (version: 3.20190618.0ubuntu0.14.04.1)
|
|||
|
2021-01-07 15:41:34 Found package: iproute2 (version: 3.12.0-2ubuntu1.2)
|
|||
|
2021-01-07 15:41:34 Found package: iptables (version: 1.4.21-1ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: iputils-ping (version: 3:20121221-4ubuntu1.1)
|
|||
|
2021-01-07 15:41:34 Found package: iputils-tracepath (version: 3:20121221-4ubuntu1.1)
|
|||
|
2021-01-07 15:41:34 Found package: irqbalance (version: 1.0.6-2ubuntu0.14.04.4)
|
|||
|
2021-01-07 15:41:34 Found package: isc-dhcp-client (version: 4.2.4-7ubuntu12.13)
|
|||
|
2021-01-07 15:41:34 Found package: isc-dhcp-common (version: 4.2.4-7ubuntu12.13)
|
|||
|
2021-01-07 15:41:34 Found package: iso-codes (version: 3.52-1)
|
|||
|
2021-01-07 15:41:34 Found package: iucode-tool (version: 1.0.1-1)
|
|||
|
2021-01-07 15:41:34 Found package: kbd (version: 1.15.5-1ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: keyboard-configuration (version: 1.70ubuntu8)
|
|||
|
2021-01-07 15:41:34 Found package: klibc-utils (version: 2.0.3-0ubuntu1.14.04.3)
|
|||
|
2021-01-07 15:41:34 Found package: kmod (version: 15-0ubuntu7)
|
|||
|
2021-01-07 15:41:34 Found package: krb5-locales (version: 1.12+dfsg-2ubuntu5.4)
|
|||
|
2021-01-07 15:41:34 Found package: landscape-common (version: 14.12-0ubuntu6.14.04.4)
|
|||
|
2021-01-07 15:41:34 Found package: language-pack-en (version: 1:14.04+20160720)
|
|||
|
2021-01-07 15:41:34 Found package: language-pack-en-base (version: 1:14.04+20160720)
|
|||
|
2021-01-07 15:41:34 Found package: language-selector-common (version: 0.129.3)
|
|||
|
2021-01-07 15:41:34 Found package: laptop-detect (version: 0.13.7ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: less (version: 458-2)
|
|||
|
2021-01-07 15:41:34 Found package: libaccountsservice0:amd64 (version: 0.6.35-0ubuntu7.3)
|
|||
|
2021-01-07 15:41:34 Found package: libacl1:amd64 (version: 2.2.52-1)
|
|||
|
2021-01-07 15:41:34 Found package: libapparmor-perl (version: 2.10.95-0ubuntu2.6~14.04.4)
|
|||
|
2021-01-07 15:41:34 Found package: libapparmor1:amd64 (version: 2.10.95-0ubuntu2.6~14.04.4)
|
|||
|
2021-01-07 15:41:34 Found package: libapt-inst1.5:amd64 (version: 1.0.1ubuntu2.24)
|
|||
|
2021-01-07 15:41:34 Found package: libapt-pkg4.12:amd64 (version: 1.0.1ubuntu2.24)
|
|||
|
2021-01-07 15:41:34 Found package: libarchive-extract-perl (version: 0.70-1)
|
|||
|
2021-01-07 15:41:34 Found package: libasn1-8-heimdal:amd64 (version: 1.6~git20131207+dfsg-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:34 Found package: libasprintf0c2:amd64 (version: 0.18.3.1-1ubuntu3.1)
|
|||
|
2021-01-07 15:41:34 Found package: libattr1:amd64 (version: 1:2.4.47-1ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: libaudit-common (version: 1:2.3.2-2ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: libaudit1:amd64 (version: 1:2.3.2-2ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: libbind9-90 (version: 1:9.9.5.dfsg-3ubuntu0.19)
|
|||
|
2021-01-07 15:41:34 Found package: libblkid1:amd64 (version: 2.20.1-5.1ubuntu20.9)
|
|||
|
2021-01-07 15:41:34 Found package: libboost-iostreams1.54.0:amd64 (version: 1.54.0-4ubuntu3.1)
|
|||
|
2021-01-07 15:41:34 Found package: libbsd0:amd64 (version: 0.6.0-2ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: libbz2-1.0:amd64 (version: 1.0.6-5)
|
|||
|
2021-01-07 15:41:34 Found package: libc-bin (version: 2.19-0ubuntu6.15)
|
|||
|
2021-01-07 15:41:34 Found package: libc6:amd64 (version: 2.19-0ubuntu6.15)
|
|||
|
2021-01-07 15:41:34 Found package: libcap-ng0 (version: 0.7.3-1ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: libcap2-bin (version: 1:2.24-0ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: libcap2:amd64 (version: 1:2.24-0ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: libcgmanager0:amd64 (version: 0.24-0ubuntu7.5)
|
|||
|
2021-01-07 15:41:34 Found package: libck-connector0:amd64 (version: 0.4.5-3.1ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: libclass-accessor-perl (version: 0.34-1)
|
|||
|
2021-01-07 15:41:34 Found package: libcomerr2:amd64 (version: 1.42.9-3ubuntu1.3)
|
|||
|
2021-01-07 15:41:34 Found package: libcurl3-gnutls:amd64 (version: 7.35.0-1ubuntu2.20)
|
|||
|
2021-01-07 15:41:34 Found package: libcurl3:amd64 (version: 7.35.0-1ubuntu2.20)
|
|||
|
2021-01-07 15:41:34 Found package: libcwidget3 (version: 0.5.16-3.5ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: libdb5.3:amd64 (version: 5.3.28-3ubuntu3.1)
|
|||
|
2021-01-07 15:41:34 Found package: libdbus-1-3:amd64 (version: 1.6.18-0ubuntu4.5)
|
|||
|
2021-01-07 15:41:34 Found package: libdbus-glib-1-2:amd64 (version: 0.100.2-1)
|
|||
|
2021-01-07 15:41:34 Found package: libdebconfclient0:amd64 (version: 0.187ubuntu1)
|
|||
|
2021-01-07 15:41:34 Found package: libdevmapper1.02.1:amd64 (version: 2:1.02.77-6ubuntu2)
|
|||
|
2021-01-07 15:41:34 Found package: libdns100 (version: 1:9.9.5.dfsg-3ubuntu0.19)
|
|||
|
2021-01-07 15:41:34 Found package: libdrm2:amd64 (version: 2.4.67-1ubuntu0.14.04.2)
|
|||
|
2021-01-07 15:41:34 Found package: libedit2:amd64 (version: 3.1-20130712-2)
|
|||
|
2021-01-07 15:41:35 Found package: libelf1:amd64 (version: 0.158-0ubuntu5.3)
|
|||
|
2021-01-07 15:41:35 Found package: libept1.4.12:amd64 (version: 1.0.12)
|
|||
|
2021-01-07 15:41:35 Found package: liberror-perl (version: 0.17-1.1)
|
|||
|
2021-01-07 15:41:35 Found package: libestr0 (version: 0.1.9-0ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: libevent-2.0-5:amd64 (version: 2.0.21-stable-1ubuntu1.14.04.2)
|
|||
|
2021-01-07 15:41:35 Found package: libexpat1:amd64 (version: 2.1.0-4ubuntu1.4)
|
|||
|
2021-01-07 15:41:35 Found package: libffi6:amd64 (version: 3.1~rc1+r3.0.13-12ubuntu0.2)
|
|||
|
2021-01-07 15:41:35 Found package: libfreetype6:amd64 (version: 2.5.2-1ubuntu2.8)
|
|||
|
2021-01-07 15:41:35 Found package: libfribidi0:amd64 (version: 0.19.6-1)
|
|||
|
2021-01-07 15:41:35 Found package: libfuse2:amd64 (version: 2.9.2-4ubuntu4.14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: libgc1c2:amd64 (version: 1:7.2d-5ubuntu2.1)
|
|||
|
2021-01-07 15:41:35 Found package: libgcc1:amd64 (version: 1:4.9.3-0ubuntu4)
|
|||
|
2021-01-07 15:41:35 Found package: libgck-1-0:amd64 (version: 3.10.1-1)
|
|||
|
2021-01-07 15:41:35 Found package: libgcr-3-common (version: 3.10.1-1)
|
|||
|
2021-01-07 15:41:35 Found package: libgcr-base-3-1:amd64 (version: 3.10.1-1)
|
|||
|
2021-01-07 15:41:35 Found package: libgcrypt11:amd64 (version: 1.5.3-2ubuntu4.6)
|
|||
|
2021-01-07 15:41:35 Found package: libgdbm3:amd64 (version: 1.8.3-12build1)
|
|||
|
2021-01-07 15:41:35 Found package: libgeoip1:amd64 (version: 1.6.0-1)
|
|||
|
2021-01-07 15:41:35 Found package: libgirepository-1.0-1 (version: 1.40.0-1ubuntu0.2)
|
|||
|
2021-01-07 15:41:35 Found package: libglib2.0-0:amd64 (version: 2.40.2-0ubuntu1.1)
|
|||
|
2021-01-07 15:41:35 Found package: libglib2.0-data (version: 2.40.2-0ubuntu1.1)
|
|||
|
2021-01-07 15:41:35 Found package: libgnutls-openssl27:amd64 (version: 2.12.23-12ubuntu2.8)
|
|||
|
2021-01-07 15:41:35 Found package: libgnutls26:amd64 (version: 2.12.23-12ubuntu2.8)
|
|||
|
2021-01-07 15:41:35 Found package: libgpg-error0:amd64 (version: 1.12-0.2ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libgpm2:amd64 (version: 1.20.4-6.1)
|
|||
|
2021-01-07 15:41:35 Found package: libgssapi-krb5-2:amd64 (version: 1.12+dfsg-2ubuntu5.4)
|
|||
|
2021-01-07 15:41:35 Found package: libgssapi3-heimdal:amd64 (version: 1.6~git20131207+dfsg-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: libhcrypto4-heimdal:amd64 (version: 1.6~git20131207+dfsg-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: libheimbase1-heimdal:amd64 (version: 1.6~git20131207+dfsg-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: libheimntlm0-heimdal:amd64 (version: 1.6~git20131207+dfsg-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: libhx509-5-heimdal:amd64 (version: 1.6~git20131207+dfsg-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: libidn11:amd64 (version: 1.28-1ubuntu2.2)
|
|||
|
2021-01-07 15:41:35 Found package: libio-string-perl (version: 1.08-3)
|
|||
|
2021-01-07 15:41:35 Found package: libisc95 (version: 1:9.9.5.dfsg-3ubuntu0.19)
|
|||
|
2021-01-07 15:41:35 Found package: libisccc90 (version: 1:9.9.5.dfsg-3ubuntu0.19)
|
|||
|
2021-01-07 15:41:35 Found package: libisccfg90 (version: 1:9.9.5.dfsg-3ubuntu0.19)
|
|||
|
2021-01-07 15:41:35 Found package: libiw30:amd64 (version: 30~pre9-8ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libjson-c2:amd64 (version: 0.11-3ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: libjson0:amd64 (version: 0.11-3ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: libk5crypto3:amd64 (version: 1.12+dfsg-2ubuntu5.4)
|
|||
|
2021-01-07 15:41:35 Found package: libkeyutils1:amd64 (version: 1.5.6-1)
|
|||
|
2021-01-07 15:41:35 Found package: libklibc (version: 2.0.3-0ubuntu1.14.04.3)
|
|||
|
2021-01-07 15:41:35 Found package: libkmod2:amd64 (version: 15-0ubuntu7)
|
|||
|
2021-01-07 15:41:35 Found package: libkrb5-26-heimdal:amd64 (version: 1.6~git20131207+dfsg-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: libkrb5-3:amd64 (version: 1.12+dfsg-2ubuntu5.4)
|
|||
|
2021-01-07 15:41:35 Found package: libkrb5support0:amd64 (version: 1.12+dfsg-2ubuntu5.4)
|
|||
|
2021-01-07 15:41:35 Found package: libldap-2.4-2:amd64 (version: 2.4.31-1+nmu2ubuntu8.5)
|
|||
|
2021-01-07 15:41:35 Found package: liblocale-gettext-perl (version: 1.05-7build3)
|
|||
|
2021-01-07 15:41:35 Found package: liblockfile-bin (version: 1.09-6ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: liblockfile1:amd64 (version: 1.09-6ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: liblog-message-simple-perl (version: 0.10-1)
|
|||
|
2021-01-07 15:41:35 Found package: liblwres90 (version: 1:9.9.5.dfsg-3ubuntu0.19)
|
|||
|
2021-01-07 15:41:35 Found package: liblzma5:amd64 (version: 5.1.1alpha+20120614-2ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: libmagic1:amd64 (version: 1:5.14-2ubuntu3.4)
|
|||
|
2021-01-07 15:41:35 Found package: libmodule-pluggable-perl (version: 5.1-1)
|
|||
|
2021-01-07 15:41:35 Found package: libmount1:amd64 (version: 2.20.1-5.1ubuntu20.9)
|
|||
|
2021-01-07 15:41:35 Found package: libmpdec2:amd64 (version: 2.4.0-6)
|
|||
|
2021-01-07 15:41:35 Found package: libncurses5:amd64 (version: 5.9+20140118-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libncursesw5:amd64 (version: 5.9+20140118-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libnewt0.52:amd64 (version: 0.52.15-2ubuntu5)
|
|||
|
2021-01-07 15:41:35 Found package: libnfnetlink0:amd64 (version: 1.0.1-2)
|
|||
|
2021-01-07 15:41:35 Found package: libnih-dbus1:amd64 (version: 1.0.3-4ubuntu25)
|
|||
|
2021-01-07 15:41:35 Found package: libnih1:amd64 (version: 1.0.3-4ubuntu25)
|
|||
|
2021-01-07 15:41:35 Found package: libnl-3-200:amd64 (version: 3.2.21-1ubuntu4.1)
|
|||
|
2021-01-07 15:41:35 Found package: libnl-genl-3-200:amd64 (version: 3.2.21-1ubuntu4.1)
|
|||
|
2021-01-07 15:41:35 Found package: libnuma1:amd64 (version: 2.0.9~rc5-1ubuntu3.14.04.2)
|
|||
|
2021-01-07 15:41:35 Found package: libp11-kit0:amd64 (version: 0.20.2-2ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: libpam-cap:amd64 (version: 1:2.24-0ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: libpam-modules-bin (version: 1.1.8-1ubuntu2.2)
|
|||
|
2021-01-07 15:41:35 Found package: libpam-modules:amd64 (version: 1.1.8-1ubuntu2.2)
|
|||
|
2021-01-07 15:41:35 Found package: libpam-runtime (version: 1.1.8-1ubuntu2.2)
|
|||
|
2021-01-07 15:41:35 Found package: libpam-systemd:amd64 (version: 204-5ubuntu20.31)
|
|||
|
2021-01-07 15:41:35 Found package: libpam0g:amd64 (version: 1.1.8-1ubuntu2.2)
|
|||
|
2021-01-07 15:41:35 Found package: libparse-debianchangelog-perl (version: 1.2.0-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libparted0debian1:amd64 (version: 2.3-19ubuntu1.14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: libpcap0.8:amd64 (version: 1.5.3-2)
|
|||
|
2021-01-07 15:41:35 Found package: libpci3:amd64 (version: 1:3.2.1-1ubuntu5.1)
|
|||
|
2021-01-07 15:41:35 Found package: libpcre3:amd64 (version: 1:8.31-2ubuntu2.3)
|
|||
|
2021-01-07 15:41:35 Found package: libpcsclite1:amd64 (version: 1.8.10-1ubuntu1.1)
|
|||
|
2021-01-07 15:41:35 Found package: libpipeline1:amd64 (version: 1.3.0-1)
|
|||
|
2021-01-07 15:41:35 Found package: libplymouth2:amd64 (version: 0.8.8-0ubuntu17.2)
|
|||
|
2021-01-07 15:41:35 Found package: libpng12-0:amd64 (version: 1.2.50-1ubuntu2.14.04.3)
|
|||
|
2021-01-07 15:41:35 Found package: libpod-latex-perl (version: 0.61-1)
|
|||
|
2021-01-07 15:41:35 Found package: libpolkit-agent-1-0:amd64 (version: 0.105-4ubuntu3.14.04.6)
|
|||
|
2021-01-07 15:41:35 Found package: libpolkit-backend-1-0:amd64 (version: 0.105-4ubuntu3.14.04.6)
|
|||
|
2021-01-07 15:41:35 Found package: libpolkit-gobject-1-0:amd64 (version: 0.105-4ubuntu3.14.04.6)
|
|||
|
2021-01-07 15:41:35 Found package: libpopt0:amd64 (version: 1.16-8ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libprocps3:amd64 (version: 1:3.3.9-1ubuntu2.3)
|
|||
|
2021-01-07 15:41:35 Found package: libpython-stdlib:amd64 (version: 2.7.5-5ubuntu3)
|
|||
|
2021-01-07 15:41:35 Found package: libpython2.7-minimal:amd64 (version: 2.7.6-8ubuntu0.5)
|
|||
|
2021-01-07 15:41:35 Found package: libpython2.7-stdlib:amd64 (version: 2.7.6-8ubuntu0.5)
|
|||
|
2021-01-07 15:41:35 Found package: libpython2.7:amd64 (version: 2.7.6-8ubuntu0.5)
|
|||
|
2021-01-07 15:41:35 Found package: libpython3-stdlib:amd64 (version: 3.4.0-0ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: libpython3.4-minimal:amd64 (version: 3.4.3-1ubuntu1~14.04.7)
|
|||
|
2021-01-07 15:41:35 Found package: libpython3.4-stdlib:amd64 (version: 3.4.3-1ubuntu1~14.04.7)
|
|||
|
2021-01-07 15:41:35 Found package: libreadline5:amd64 (version: 5.2+dfsg-2)
|
|||
|
2021-01-07 15:41:35 Found package: libreadline6:amd64 (version: 6.3-4ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: libroken18-heimdal:amd64 (version: 1.6~git20131207+dfsg-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: librtmp0:amd64 (version: 2.4+20121230.gitdf6c518-1ubuntu0.1)
|
|||
|
2021-01-07 15:41:35 Found package: libsasl2-2:amd64 (version: 2.1.25.dfsg1-17build1)
|
|||
|
2021-01-07 15:41:35 Found package: libsasl2-modules-db:amd64 (version: 2.1.25.dfsg1-17build1)
|
|||
|
2021-01-07 15:41:35 Found package: libsasl2-modules:amd64 (version: 2.1.25.dfsg1-17build1)
|
|||
|
2021-01-07 15:41:35 Found package: libselinux1:amd64 (version: 2.2.2-1ubuntu0.1)
|
|||
|
2021-01-07 15:41:35 Found package: libsemanage-common (version: 2.2-1)
|
|||
|
2021-01-07 15:41:35 Found package: libsemanage1:amd64 (version: 2.2-1)
|
|||
|
2021-01-07 15:41:35 Found package: libsepol1:amd64 (version: 2.2-1ubuntu0.1)
|
|||
|
2021-01-07 15:41:35 Found package: libsigc++-2.0-0c2a:amd64 (version: 2.2.10-0.2ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: libsigsegv2:amd64 (version: 2.10-2)
|
|||
|
2021-01-07 15:41:35 Found package: libslang2:amd64 (version: 2.2.4-15ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libsqlite3-0:amd64 (version: 3.8.2-1ubuntu2.2)
|
|||
|
2021-01-07 15:41:35 Found package: libss2:amd64 (version: 1.42.9-3ubuntu1.3)
|
|||
|
2021-01-07 15:41:35 Found package: libssl1.0.0:amd64 (version: 1.0.1f-1ubuntu2.27)
|
|||
|
2021-01-07 15:41:35 Found package: libstdc++6:amd64 (version: 4.8.4-2ubuntu1~14.04.4)
|
|||
|
2021-01-07 15:41:35 Found package: libsub-name-perl (version: 0.05-1build4)
|
|||
|
2021-01-07 15:41:35 Found package: libsystemd-daemon0:amd64 (version: 204-5ubuntu20.31)
|
|||
|
2021-01-07 15:41:35 Found package: libsystemd-login0:amd64 (version: 204-5ubuntu20.31)
|
|||
|
2021-01-07 15:41:35 Found package: libtasn1-6:amd64 (version: 3.4-3ubuntu0.6)
|
|||
|
2021-01-07 15:41:35 Found package: libterm-ui-perl (version: 0.42-1)
|
|||
|
2021-01-07 15:41:35 Found package: libtext-charwidth-perl (version: 0.04-7build3)
|
|||
|
2021-01-07 15:41:35 Found package: libtext-iconv-perl (version: 1.7-5build2)
|
|||
|
2021-01-07 15:41:35 Found package: libtext-soundex-perl (version: 3.4-1build1)
|
|||
|
2021-01-07 15:41:35 Found package: libtext-wrapi18n-perl (version: 0.06-7)
|
|||
|
2021-01-07 15:41:35 Found package: libtimedate-perl (version: 2.3000-1)
|
|||
|
2021-01-07 15:41:35 Found package: libtinfo5:amd64 (version: 5.9+20140118-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libudev1:amd64 (version: 204-5ubuntu20.31)
|
|||
|
2021-01-07 15:41:35 Found package: libusb-0.1-4:amd64 (version: 2:0.1.12-23.3ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libusb-1.0-0:amd64 (version: 2:1.0.17-1ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: libustr-1.0-1:amd64 (version: 1.0.4-3ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: libuuid1:amd64 (version: 2.20.1-5.1ubuntu20.9)
|
|||
|
2021-01-07 15:41:35 Found package: libwind0-heimdal:amd64 (version: 1.6~git20131207+dfsg-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: libwrap0:amd64 (version: 7.6.q-25)
|
|||
|
2021-01-07 15:41:35 Found package: libx11-6:amd64 (version: 2:1.6.2-1ubuntu2.1)
|
|||
|
2021-01-07 15:41:35 Found package: libx11-data (version: 2:1.6.2-1ubuntu2.1)
|
|||
|
2021-01-07 15:41:35 Found package: libxapian22 (version: 1.2.16-2ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libxau6:amd64 (version: 1:1.0.8-1)
|
|||
|
2021-01-07 15:41:35 Found package: libxcb1:amd64 (version: 1.10-2ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libxdmcp6:amd64 (version: 1:1.1.1-1)
|
|||
|
2021-01-07 15:41:35 Found package: libxext6:amd64 (version: 2:1.3.2-1ubuntu0.0.14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: libxml2:amd64 (version: 2.9.1+dfsg1-3ubuntu4.13)
|
|||
|
2021-01-07 15:41:35 Found package: libxmuu1:amd64 (version: 2:1.1.1-1)
|
|||
|
2021-01-07 15:41:35 Found package: libxtables10 (version: 1.4.21-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: libyaml-0-2:amd64 (version: 0.1.4-3ubuntu3.1)
|
|||
|
2021-01-07 15:41:35 Found package: linux-base (version: 4.5ubuntu1~14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: linux-firmware (version: 1.127.24)
|
|||
|
2021-01-07 15:41:35 Found package: linux-generic-lts-xenial (version: 4.4.0.148.130)
|
|||
|
2021-01-07 15:41:35 Found package: linux-headers-4.4.0-142 (version: 4.4.0-142.168~14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: linux-headers-4.4.0-142-generic (version: 4.4.0-142.168~14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: linux-headers-4.4.0-148 (version: 4.4.0-148.174~14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: linux-headers-4.4.0-148-generic (version: 4.4.0-148.174~14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: linux-headers-generic-lts-xenial (version: 4.4.0.148.130)
|
|||
|
2021-01-07 15:41:35 Found package: linux-image-4.4.0-142-generic (version: 4.4.0-142.168~14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: linux-image-4.4.0-148-generic (version: 4.4.0-148.174~14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: linux-image-extra-4.4.0-142-generic (version: 4.4.0-142.168~14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: linux-image-generic-lts-xenial (version: 4.4.0.148.130)
|
|||
|
2021-01-07 15:41:35 Found package: linux-modules-4.4.0-148-generic (version: 4.4.0-148.174~14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: linux-modules-extra-4.4.0-148-generic (version: 4.4.0-148.174~14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: locales (version: 2.13+git20120306-12.1)
|
|||
|
2021-01-07 15:41:35 Found package: lockfile-progs (version: 0.1.17)
|
|||
|
2021-01-07 15:41:35 Found package: login (version: 1:4.1.5.1-1ubuntu9.5)
|
|||
|
2021-01-07 15:41:35 Found package: logrotate (version: 3.8.7-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: lsb-base (version: 4.1+Debian11ubuntu6.2)
|
|||
|
2021-01-07 15:41:35 Found package: lsb-release (version: 4.1+Debian11ubuntu6.2)
|
|||
|
2021-01-07 15:41:35 Found package: lshw (version: 02.16-2ubuntu1.4)
|
|||
|
2021-01-07 15:41:35 Found package: lsof (version: 4.86+dfsg-1ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: ltrace (version: 0.7.3-4ubuntu5.1)
|
|||
|
2021-01-07 15:41:35 Found package: makedev (version: 2.3.1-93ubuntu2~ubuntu14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: man-db (version: 2.6.7.1-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: manpages (version: 3.54-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: mawk (version: 1.3.3-17ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: memtest86+ (version: 4.20-1.1ubuntu8)
|
|||
|
2021-01-07 15:41:35 Found package: mime-support (version: 3.54ubuntu1.1)
|
|||
|
2021-01-07 15:41:35 Found package: mlocate (version: 0.26-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: module-init-tools (version: 15-0ubuntu7)
|
|||
|
2021-01-07 15:41:35 Found package: mount (version: 2.20.1-5.1ubuntu20.9)
|
|||
|
2021-01-07 15:41:35 Found package: mountall (version: 2.53ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: mtr-tiny (version: 0.85-2)
|
|||
|
2021-01-07 15:41:35 Found package: multiarch-support (version: 2.19-0ubuntu6.15)
|
|||
|
2021-01-07 15:41:35 Found package: nano (version: 2.2.6-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: ncurses-base (version: 5.9+20140118-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: ncurses-bin (version: 5.9+20140118-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: ncurses-term (version: 5.9+20140118-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: net-tools (version: 1.60-25ubuntu2.1)
|
|||
|
2021-01-07 15:41:35 Found package: netbase (version: 5.2)
|
|||
|
2021-01-07 15:41:35 Found package: netcat-openbsd (version: 1.105-7ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: ntfs-3g (version: 1:2013.1.13AR.1-2ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: ntpdate (version: 1:4.2.6.p5+dfsg-3ubuntu2.14.04.13)
|
|||
|
2021-01-07 15:41:35 Found package: openssh-client (version: 1:6.6p1-2ubuntu2.13)
|
|||
|
2021-01-07 15:41:35 Found package: openssh-server (version: 1:6.6p1-2ubuntu2.13)
|
|||
|
2021-01-07 15:41:35 Found package: openssh-sftp-server (version: 1:6.6p1-2ubuntu2.13)
|
|||
|
2021-01-07 15:41:35 Found package: openssl (version: 1.0.1f-1ubuntu2.27)
|
|||
|
2021-01-07 15:41:35 Found package: os-prober (version: 1.63ubuntu1.1)
|
|||
|
2021-01-07 15:41:35 Found package: parted (version: 2.3-19ubuntu1.14.04.1)
|
|||
|
2021-01-07 15:41:35 Found package: passwd (version: 1:4.1.5.1-1ubuntu9.5)
|
|||
|
2021-01-07 15:41:35 Found package: patch (version: 2.7.1-4ubuntu2.4)
|
|||
|
2021-01-07 15:41:35 Found package: pciutils (version: 1:3.2.1-1ubuntu5.1)
|
|||
|
2021-01-07 15:41:35 Found package: perl (version: 5.18.2-2ubuntu1.7)
|
|||
|
2021-01-07 15:41:35 Found package: perl-base (version: 5.18.2-2ubuntu1.7)
|
|||
|
2021-01-07 15:41:35 Found package: perl-modules (version: 5.18.2-2ubuntu1.7)
|
|||
|
2021-01-07 15:41:35 Found package: plymouth (version: 0.8.8-0ubuntu17.2)
|
|||
|
2021-01-07 15:41:35 Found package: plymouth-theme-ubuntu-text (version: 0.8.8-0ubuntu17.2)
|
|||
|
2021-01-07 15:41:35 Found package: policykit-1 (version: 0.105-4ubuntu3.14.04.6)
|
|||
|
2021-01-07 15:41:35 Found package: popularity-contest (version: 1.57ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: powermgmt-base (version: 1.31build1)
|
|||
|
2021-01-07 15:41:35 Found package: ppp (version: 2.4.5-5.1ubuntu2.3)
|
|||
|
2021-01-07 15:41:35 Found package: pppconfig (version: 2.3.19ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: pppoeconf (version: 1.20ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: procps (version: 1:3.3.9-1ubuntu2.3)
|
|||
|
2021-01-07 15:41:35 Found package: psmisc (version: 22.20-1ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: python (version: 2.7.5-5ubuntu3)
|
|||
|
2021-01-07 15:41:35 Found package: python-apt (version: 0.9.3.5ubuntu3)
|
|||
|
2021-01-07 15:41:35 Found package: python-apt-common (version: 0.9.3.5ubuntu3)
|
|||
|
2021-01-07 15:41:35 Found package: python-chardet (version: 2.0.1-2build2)
|
|||
|
2021-01-07 15:41:35 Found package: python-configobj (version: 4.7.2+ds-5build1)
|
|||
|
2021-01-07 15:41:35 Found package: python-debian (version: 0.1.21+nmu2ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: python-gdbm (version: 2.7.5-1ubuntu1)
|
|||
|
2021-01-07 15:41:35 Found package: python-minimal (version: 2.7.5-5ubuntu3)
|
|||
|
2021-01-07 15:41:35 Found package: python-openssl (version: 0.13-2ubuntu6)
|
|||
|
2021-01-07 15:41:35 Found package: python-pam (version: 0.4.2-13.1ubuntu3)
|
|||
|
2021-01-07 15:41:35 Found package: python-pkg-resources (version: 3.3-1ubuntu2)
|
|||
|
2021-01-07 15:41:35 Found package: python-requests (version: 2.2.1-1ubuntu0.4)
|
|||
|
2021-01-07 15:41:35 Found package: python-serial (version: 2.6-1build1)
|
|||
|
2021-01-07 15:41:35 Found package: python-six (version: 1.5.2-1ubuntu1.1)
|
|||
|
2021-01-07 15:41:35 Found package: python-twisted-bin (version: 13.2.0-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:35 Found package: python-twisted-core (version: 13.2.0-1ubuntu1.2)
|
|||
|
2021-01-07 15:41:36 Found package: python-urllib3 (version: 1.7.1-1ubuntu4.1)
|
|||
|
2021-01-07 15:41:36 Found package: python-xapian (version: 1.2.16-2ubuntu1)
|
|||
|
2021-01-07 15:41:36 Found package: python-zope.interface (version: 4.0.5-1ubuntu4)
|
|||
|
2021-01-07 15:41:36 Found package: python2.7 (version: 2.7.6-8ubuntu0.5)
|
|||
|
2021-01-07 15:41:36 Found package: python2.7-minimal (version: 2.7.6-8ubuntu0.5)
|
|||
|
2021-01-07 15:41:36 Found package: python3 (version: 3.4.0-0ubuntu2)
|
|||
|
2021-01-07 15:41:36 Found package: python3-apport (version: 2.14.1-0ubuntu3.29)
|
|||
|
2021-01-07 15:41:36 Found package: python3-apt (version: 0.9.3.5ubuntu3)
|
|||
|
2021-01-07 15:41:36 Found package: python3-commandnotfound (version: 0.3ubuntu12)
|
|||
|
2021-01-07 15:41:36 Found package: python3-dbus (version: 1.2.0-2build2)
|
|||
|
2021-01-07 15:41:36 Found package: python3-distupgrade (version: 1:0.220.11)
|
|||
|
2021-01-07 15:41:36 Found package: python3-gdbm:amd64 (version: 3.4.3-1~14.04.2)
|
|||
|
2021-01-07 15:41:36 Found package: python3-gi (version: 3.12.0-1ubuntu1)
|
|||
|
2021-01-07 15:41:36 Found package: python3-minimal (version: 3.4.0-0ubuntu2)
|
|||
|
2021-01-07 15:41:36 Found package: python3-newt (version: 0.52.15-2ubuntu5)
|
|||
|
2021-01-07 15:41:36 Found package: python3-pkg-resources (version: 3.3-1ubuntu2)
|
|||
|
2021-01-07 15:41:36 Found package: python3-problem-report (version: 2.14.1-0ubuntu3.29)
|
|||
|
2021-01-07 15:41:36 Found package: python3-pycurl (version: 7.19.3-0ubuntu3)
|
|||
|
2021-01-07 15:41:36 Found package: python3-software-properties (version: 0.92.37.8)
|
|||
|
2021-01-07 15:41:36 Found package: python3-update-manager (version: 1:0.196.25)
|
|||
|
2021-01-07 15:41:36 Found package: python3-yaml (version: 3.10-4ubuntu0.1)
|
|||
|
2021-01-07 15:41:36 Found package: python3.4 (version: 3.4.3-1ubuntu1~14.04.7)
|
|||
|
2021-01-07 15:41:36 Found package: python3.4-minimal (version: 3.4.3-1ubuntu1~14.04.7)
|
|||
|
2021-01-07 15:41:36 Found package: readline-common (version: 6.3-4ubuntu2)
|
|||
|
2021-01-07 15:41:36 Found package: resolvconf (version: 1.69ubuntu1.4)
|
|||
|
2021-01-07 15:41:36 Found package: rsync (version: 3.1.0-2ubuntu0.4)
|
|||
|
2021-01-07 15:41:36 Found package: rsyslog (version: 7.4.4-1ubuntu2.7)
|
|||
|
2021-01-07 15:41:36 Found package: run-one (version: 1.17-0ubuntu1)
|
|||
|
2021-01-07 15:41:36 Found package: screen (version: 4.1.0~20120320gitdb59704-9)
|
|||
|
2021-01-07 15:41:36 Found package: sed (version: 4.2.2-4ubuntu1)
|
|||
|
2021-01-07 15:41:36 Found package: sensible-utils (version: 0.0.9ubuntu0.14.04.1)
|
|||
|
2021-01-07 15:41:36 Found package: sgml-base (version: 1.26+nmu4ubuntu1)
|
|||
|
2021-01-07 15:41:36 Found package: shared-mime-info (version: 1.2-0ubuntu3)
|
|||
|
2021-01-07 15:41:36 Found package: software-properties-common (version: 0.92.37.8)
|
|||
|
2021-01-07 15:41:36 Found package: ssh-import-id (version: 3.21-0ubuntu1)
|
|||
|
2021-01-07 15:41:36 Found package: strace (version: 4.8-1ubuntu5)
|
|||
|
2021-01-07 15:41:36 Found package: sudo (version: 1.8.9p5-1ubuntu1.4)
|
|||
|
2021-01-07 15:41:36 Found package: systemd-services (version: 204-5ubuntu20.31)
|
|||
|
2021-01-07 15:41:36 Found package: systemd-shim (version: 6-2bzr1)
|
|||
|
2021-01-07 15:41:36 Found package: sysv-rc (version: 2.88dsf-41ubuntu6.3)
|
|||
|
2021-01-07 15:41:36 Found package: sysvinit-utils (version: 2.88dsf-41ubuntu6.3)
|
|||
|
2021-01-07 15:41:36 Found package: tar (version: 1.27.1-1ubuntu0.1)
|
|||
|
2021-01-07 15:41:36 Found package: tasksel (version: 2.88ubuntu15)
|
|||
|
2021-01-07 15:41:36 Found package: tasksel-data (version: 2.88ubuntu15)
|
|||
|
2021-01-07 15:41:36 Found package: tcpd (version: 7.6.q-25)
|
|||
|
2021-01-07 15:41:36 Found package: tcpdump (version: 4.9.2-0ubuntu0.14.04.1)
|
|||
|
2021-01-07 15:41:36 Found package: telnet (version: 0.17-36build2)
|
|||
|
2021-01-07 15:41:36 Found package: time (version: 1.7-24)
|
|||
|
2021-01-07 15:41:36 Found package: tmux (version: 1.8-5)
|
|||
|
2021-01-07 15:41:36 Found package: tzdata (version: 2019a-0ubuntu0.14.04)
|
|||
|
2021-01-07 15:41:36 Found package: ubuntu-advantage-tools (version: 19.6~ubuntu14.04.4)
|
|||
|
2021-01-07 15:41:36 Found package: ubuntu-keyring (version: 2012.05.19)
|
|||
|
2021-01-07 15:41:36 Found package: ubuntu-minimal (version: 1.325.1)
|
|||
|
2021-01-07 15:41:36 Found package: ubuntu-release-upgrader-core (version: 1:0.220.11)
|
|||
|
2021-01-07 15:41:36 Found package: ubuntu-standard (version: 1.325.1)
|
|||
|
2021-01-07 15:41:36 Found package: ucf (version: 3.0027+nmu1)
|
|||
|
2021-01-07 15:41:36 Found package: udev (version: 204-5ubuntu20.31)
|
|||
|
2021-01-07 15:41:36 Found package: ufw (version: 0.34~rc-0ubuntu2)
|
|||
|
2021-01-07 15:41:36 Found package: unattended-upgrades (version: 0.82.1ubuntu2.5)
|
|||
|
2021-01-07 15:41:36 Found package: update-manager-core (version: 1:0.196.25)
|
|||
|
2021-01-07 15:41:36 Found package: update-notifier-common (version: 0.154.1ubuntu8)
|
|||
|
2021-01-07 15:41:36 Found package: upstart (version: 1.12.1-0ubuntu4.2)
|
|||
|
2021-01-07 15:41:36 Found package: ureadahead (version: 0.100.0-16)
|
|||
|
2021-01-07 15:41:36 Found package: usbutils (version: 1:007-2ubuntu1.1)
|
|||
|
2021-01-07 15:41:36 Found package: util-linux (version: 2.20.1-5.1ubuntu20.9)
|
|||
|
2021-01-07 15:41:36 Found package: uuid-runtime (version: 2.20.1-5.1ubuntu20.9)
|
|||
|
2021-01-07 15:41:36 Found package: vim (version: 2:7.4.052-1ubuntu3.1)
|
|||
|
2021-01-07 15:41:36 Found package: vim-common (version: 2:7.4.052-1ubuntu3.1)
|
|||
|
2021-01-07 15:41:36 Found package: vim-runtime (version: 2:7.4.052-1ubuntu3.1)
|
|||
|
2021-01-07 15:41:36 Found package: vim-tiny (version: 2:7.4.052-1ubuntu3.1)
|
|||
|
2021-01-07 15:41:36 Found package: w3m (version: 0.5.3-15ubuntu0.2)
|
|||
|
2021-01-07 15:41:36 Found package: wget (version: 1.15-1ubuntu1.14.04.5)
|
|||
|
2021-01-07 15:41:36 Found package: whiptail (version: 0.52.15-2ubuntu5)
|
|||
|
2021-01-07 15:41:36 Found package: wireless-regdb (version: 2013.02.13-1ubuntu1)
|
|||
|
2021-01-07 15:41:36 Found package: wireless-tools (version: 30~pre9-8ubuntu1)
|
|||
|
2021-01-07 15:41:36 Found package: wpasupplicant (version: 2.1-0ubuntu1.7)
|
|||
|
2021-01-07 15:41:36 Found package: xauth (version: 1:1.0.7-1ubuntu1)
|
|||
|
2021-01-07 15:41:36 Found package: xkb-data (version: 2.10.1-1ubuntu1)
|
|||
|
2021-01-07 15:41:36 Found package: xml-core (version: 0.13+nmu2)
|
|||
|
2021-01-07 15:41:36 Found package: xz-utils (version: 5.1.1alpha+20120614-2ubuntu2)
|
|||
|
2021-01-07 15:41:36 Found package: zlib1g:amd64 (version: 1:1.2.8.dfsg-1ubuntu1.1)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Performing test ID PKGS-7346 (Search unpurged packages on system)
|
|||
|
2021-01-07 15:41:36 Test: Querying dpkg -l to get unpurged packages
|
|||
|
2021-01-07 15:41:36 Result: no packages found with left overs
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7348 (Check for old distfiles)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Incorrect guest OS (FreeBSD only)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7350 (Checking for installed packages with DNF utility)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7352 (Checking for security updates with DNF utility)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7354 (Checking package database integrity)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7366 (Checking for debsecan utility)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Performing test ID PKGS-7370 (Checking for debsums utility)
|
|||
|
2021-01-07 15:41:36 Result: debsums utility is not installed.
|
|||
|
2021-01-07 15:41:36 Hardening: assigned partial number of hardening points (0 of 2). Currently having 90 points (out of 141)
|
|||
|
2021-01-07 15:41:36 Suggestion: Install debsums utility for the verification of packages with known good database. [test:PKGS-7370] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7378 (Query portmaster for port upgrades)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7380 (Check for vulnerable NetBSD packages)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Incorrect guest OS (NetBSD only)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7381 (Check for vulnerable FreeBSD packages with pkg)
|
|||
|
2021-01-07 15:41:36 Reason to skip: pkg tool not available
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7382 (Check for vulnerable FreeBSD packages with portaudit)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7383 (Check for YUM package update management)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7384 (Check for YUM utils package)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7386 (Check for YUM security package)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Skipped test PKGS-7387 (Check for GPG signing in YUM security package)
|
|||
|
2021-01-07 15:41:36 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Performing test ID PKGS-7388 (Check security repository in apt sources.list file)
|
|||
|
2021-01-07 15:41:36 Searching for security.debian.org/security.ubuntu.com or security repositories in /etc/apt/sources.list file
|
|||
|
2021-01-07 15:41:36 Result: Found security repository in /etc/apt/sources.list
|
|||
|
2021-01-07 15:41:36 Output: deb http://security.ubuntu.com/ubuntu trusty-security main restricted
|
|||
|
2021-01-07 15:41:36 Output: deb-src http://security.ubuntu.com/ubuntu trusty-security main restricted
|
|||
|
2021-01-07 15:41:36 Output: deb http://security.ubuntu.com/ubuntu trusty-security universe
|
|||
|
2021-01-07 15:41:36 Output: deb-src http://security.ubuntu.com/ubuntu trusty-security universe
|
|||
|
2021-01-07 15:41:36 Output: deb http://security.ubuntu.com/ubuntu trusty-security multiverse
|
|||
|
2021-01-07 15:41:36 Output: deb-src http://security.ubuntu.com/ubuntu trusty-security multiverse
|
|||
|
2021-01-07 15:41:36 Searching for security.debian.org/security.ubuntu.com or security repositories in /etc/apt/sources.list.d directory
|
|||
|
2021-01-07 15:41:36 Result: Found security repository in one or more files in directory /etc/apt/sources.list.d
|
|||
|
2021-01-07 15:41:36 Output: /etc/apt/sources.list.d/ubuntu-esm-infra-trusty.list:deb https://esm.ubuntu.com/ubuntu trusty-infra-security main
|
|||
|
2021-01-07 15:41:36 Result: security repository was found
|
|||
|
2021-01-07 15:41:36 Hardening: assigned maximum number of hardening points for this item (3). Currently having 93 points (out of 144)
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Performing test ID PKGS-7390 (Check Ubuntu database consistency)
|
|||
|
2021-01-07 15:41:36 Test: Package database consistency by running apt-get check
|
|||
|
2021-01-07 15:41:36 Result: package database seems to be consistent.
|
|||
|
2021-01-07 15:41:36 ====
|
|||
|
2021-01-07 15:41:36 Performing test ID PKGS-7392 (Check for Debian/Ubuntu security updates)
|
|||
|
2021-01-07 15:41:36 Action: updating package repository with apt-get
|
|||
|
2021-01-07 15:41:42 Result: apt-get finished
|
|||
|
2021-01-07 15:41:42 Test: Checking if /usr/lib/update-notifier/apt-check exists
|
|||
|
2021-01-07 15:41:42 Result: found /usr/lib/update-notifier/apt-check
|
|||
|
2021-01-07 15:41:42 Test: checking if any of the updates contain security updates
|
|||
|
2021-01-07 15:41:43 Result: no vulnerable packages found via apt-check
|
|||
|
2021-01-07 15:41:43 Result: no vulnerable packages found
|
|||
|
2021-01-07 15:41:43 ====
|
|||
|
2021-01-07 15:41:43 Skipped test PKGS-7393 (Check for Gentoo vulnerable packages)
|
|||
|
2021-01-07 15:41:43 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:43 ====
|
|||
|
2021-01-07 15:41:43 Performing test ID PKGS-7394 (Check for Ubuntu updates)
|
|||
|
2021-01-07 15:41:43 Test: checking /usr/bin/apt-show-versions
|
|||
|
2021-01-07 15:41:44 Result: /usr/bin/apt-show-versions not found
|
|||
|
2021-01-07 15:41:44 Suggestion: Install package apt-show-versions for patch management purposes [test:PKGS-7394] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID PKGS-7398 (Check for package audit tool)
|
|||
|
2021-01-07 15:41:44 Test: checking for package audit tool
|
|||
|
2021-01-07 15:41:44 Result: found package audit tool: apt-check
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID PKGS-7410 (Count installed kernel packages)
|
|||
|
2021-01-07 15:41:44 Test: Checking how many kernel packages are installed
|
|||
|
2021-01-07 15:41:44 Result: found 2 kernel packages on the system, which is fine
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID PKGS-7420 (Detect toolkit to automatically download and apply upgrades)
|
|||
|
2021-01-07 15:41:44 Result: found unattended-upgrade
|
|||
|
2021-01-07 15:41:44 Hardening: assigned maximum number of hardening points for this item (5). Currently having 98 points (out of 149)
|
|||
|
2021-01-07 15:41:44 Security check: file is normal
|
|||
|
2021-01-07 15:41:44 Checking permissions of /root/scans/lynis/include/tests_networking
|
|||
|
2021-01-07 15:41:44 File permissions are OK
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Action: Performing tests from category: Networking
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-2400 (Hostname length and value check)
|
|||
|
2021-01-07 15:41:44 Result: FQDN is defined and not longer than 253 characters (10 characters)
|
|||
|
2021-01-07 15:41:44 Result: hostnamed is defined and not longer than 63 characters
|
|||
|
2021-01-07 15:41:44 Result: good, no unexpected characters discovered in hostname
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-2600 (Checking IPv6 configuration)
|
|||
|
2021-01-07 15:41:44 Result: IPV6 mode is auto
|
|||
|
2021-01-07 15:41:44 Result: IPv6 only configuration: NO
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-2704 (Basic nameserver configuration tests)
|
|||
|
2021-01-07 15:41:44 Test: Checking /etc/resolv.conf file
|
|||
|
2021-01-07 15:41:44 Result: Found /etc/resolv.conf file
|
|||
|
2021-01-07 15:41:44 Test: Querying nameservers
|
|||
|
2021-01-07 15:41:44 Found nameserver: 192.168.37.2
|
|||
|
2021-01-07 15:41:44 Nameserver 192.168.37.2 seems to respond to queries from this host.
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-2705 (Check availability two nameservers)
|
|||
|
2021-01-07 15:41:44 Result: less than 2 responsive nameservers found
|
|||
|
2021-01-07 15:41:44 Warning: Couldn't find 2 responsive nameservers [test:NETW-2705] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:44 Note: Non responsive nameservers can give problems for your system(s). Like the lack of recursive lookups, bad connectivity to update servers etc.
|
|||
|
2021-01-07 15:41:44 Suggestion: Check your resolv.conf file and fill in a backup nameserver if possible [test:NETW-2705] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:44 Hardening: assigned partial number of hardening points (1 of 2). Currently having 99 points (out of 151)
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Skipped test NETW-2706 (Check systemd-resolved and upstream DNSSEC status)
|
|||
|
2021-01-07 15:41:44 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:44 Result: Test most likely skipped due to not having resolvectl
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-3001 (Find default gateway (route))
|
|||
|
2021-01-07 15:41:44 Test: Searching default gateway(s)
|
|||
|
2021-01-07 15:41:44 Result: Found default gateway 192.168.37.2
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-3004 (Search for available network interfaces)
|
|||
|
2021-01-07 15:41:44 Found network interface: lo
|
|||
|
2021-01-07 15:41:44 Found network interface: eth0
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-3006 (Get network MAC addresses)
|
|||
|
2021-01-07 15:41:44 Found MAC address: 00:0c:29:d7:de:37
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-3008 (Get network IP addresses)
|
|||
|
2021-01-07 15:41:44 Found IPv4 address: 192.168.37.132
|
|||
|
2021-01-07 15:41:44 Found IPv4 address: 127.0.0.1
|
|||
|
2021-01-07 15:41:44 Found IPv6 address: fe80::20c:29ff:fed7:de37/64
|
|||
|
2021-01-07 15:41:44 Found IPv6 address: ::1/128
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-3012 (Check listening ports)
|
|||
|
2021-01-07 15:41:44 Test: Retrieving ss information to find listening ports
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Skipped test NETW-3014 (Checking promiscuous interfaces (BSD))
|
|||
|
2021-01-07 15:41:44 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-3015 (Checking promiscuous interfaces (Linux))
|
|||
|
2021-01-07 15:41:44 Test: Using ip binary to retrieve network interfaces
|
|||
|
2021-01-07 15:41:44 Test: Checking all interfaces to discover any with promiscuous mode enabled
|
|||
|
2021-01-07 15:41:44 Result: No promiscuous interfaces found
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-3028 (Checking connections in WAIT state)
|
|||
|
2021-01-07 15:41:44 Test: Using netstat for check for connections in WAIT state
|
|||
|
2021-01-07 15:41:44 Result: currently 2 connections are in a waiting state (max configured: 5000).
|
|||
|
2021-01-07 15:41:44 Result: 2 connections are in WAIT state
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-3030 (Checking DHCP client status)
|
|||
|
2021-01-07 15:41:44 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:44 IsRunning: process 'dhclient' found (1277 )
|
|||
|
2021-01-07 15:41:44 ====
|
|||
|
2021-01-07 15:41:44 Performing test ID NETW-3032 (Checking for ARP monitoring software)
|
|||
|
2021-01-07 15:41:44 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'addrwatch' not found
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'arpwatch' not found
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'arpon' not found
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID NETW-3200 (Determine available network protocols)
|
|||
|
2021-01-07 15:41:45 Test: checking the status of some network protocols that typically are not used
|
|||
|
2021-01-07 15:41:45 Test: now checking module 'dccp'
|
|||
|
2021-01-07 15:41:45 Suggestion: Determine if protocol 'dccp' is really needed on this system [test:NETW-3200] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:45 Test: now checking module 'sctp'
|
|||
|
2021-01-07 15:41:45 Suggestion: Determine if protocol 'sctp' is really needed on this system [test:NETW-3200] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:45 Test: now checking module 'rds'
|
|||
|
2021-01-07 15:41:45 Suggestion: Determine if protocol 'rds' is really needed on this system [test:NETW-3200] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:45 Test: now checking module 'tipc'
|
|||
|
2021-01-07 15:41:45 Suggestion: Determine if protocol 'tipc' is really needed on this system [test:NETW-3200] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:45 Security check: file is normal
|
|||
|
2021-01-07 15:41:45 Checking permissions of /root/scans/lynis/include/tests_printers_spoolers
|
|||
|
2021-01-07 15:41:45 File permissions are OK
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Action: Performing tests from category: Printers and Spools
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test PRNT-2302 (Check for printcap consistency)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Incorrect guest OS (FreeBSD only)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID PRNT-2304 (Check cupsd status)
|
|||
|
2021-01-07 15:41:45 Test: Checking cupsd status
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'cupsd' not found
|
|||
|
2021-01-07 15:41:45 Result: cups daemon not running, cups daemon tests skipped
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test PRNT-2306 (Check CUPSd configuration file)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test PRNT-2307 (Check CUPSd configuration file permissions)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test PRNT-2308 (Check CUPSd network configuration)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID PRNT-2314 (Check lpd status)
|
|||
|
2021-01-07 15:41:45 Test: Checking lpd status
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'lpd' not found
|
|||
|
2021-01-07 15:41:45 Result: lp daemon not running
|
|||
|
2021-01-07 15:41:45 Hardening: assigned maximum number of hardening points for this item (4). Currently having 103 points (out of 155)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test PRNT-2316 (Checking /etc/qconfig file)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Incorrect guest OS (AIX only)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test PRNT-2418 (Checking qdaemon printer spooler status)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Incorrect guest OS (AIX only)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test PRNT-2420 (Checking old print jobs)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Incorrect guest OS (AIX only)
|
|||
|
2021-01-07 15:41:45 Security check: file is normal
|
|||
|
2021-01-07 15:41:45 Checking permissions of /root/scans/lynis/include/tests_mail_messaging
|
|||
|
2021-01-07 15:41:45 File permissions are OK
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Action: Performing tests from category: Software: e-mail and messaging
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID MAIL-8802 (Check Exim status)
|
|||
|
2021-01-07 15:41:45 Test: check Exim status
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'exim4' not found
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'exim' not found
|
|||
|
2021-01-07 15:41:45 Result: no running Exim processes found
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test MAIL-8804 (Exim configuration options)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID MAIL-8814 (Check postfix process status)
|
|||
|
2021-01-07 15:41:45 Test: check Postfix status
|
|||
|
2021-01-07 15:41:45 Result: no running Postfix processes found
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test MAIL-8816 (Check Postfix configuration)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test MAIL-8817 (Check Postfix configuration errors)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test MAIL-8818 (Check Postfix configuration: banner)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID MAIL-8820 (Postfix configuration scan)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID MAIL-8838 (Check dovecot process)
|
|||
|
2021-01-07 15:41:45 Test: check dovecot status
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'dovecot' not found
|
|||
|
2021-01-07 15:41:45 Result: dovecot not found
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID MAIL-8860 (Check Qmail status)
|
|||
|
2021-01-07 15:41:45 Test: check Qmail status
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'qmail-smtpd' not found
|
|||
|
2021-01-07 15:41:45 Result: no running Qmail processes found
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID MAIL-8880 (Check Sendmail status)
|
|||
|
2021-01-07 15:41:45 Test: check sendmail status
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'sendmail' not found
|
|||
|
2021-01-07 15:41:45 Result: no running Sendmail processes found
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test MAIL-8920 (Check OpenSMTPD status)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 Security check: file is normal
|
|||
|
2021-01-07 15:41:45 Checking permissions of /root/scans/lynis/include/tests_firewalls
|
|||
|
2021-01-07 15:41:45 File permissions are OK
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Action: Performing tests from category: Software: firewalls
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID FIRE-4502 (Check iptables kernel module)
|
|||
|
2021-01-07 15:41:45 Result: Found iptables in loaded kernel modules
|
|||
|
2021-01-07 15:41:45 Found module: ip_tables
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID FIRE-4508 (Check used policies of iptables chains)
|
|||
|
2021-01-07 15:41:45 Test: gathering information from table filter
|
|||
|
2021-01-07 15:41:45 Result: iptables -- policy is .
|
|||
|
2021-01-07 15:41:45 Result:
|
|||
|
2021-01-07 15:41:45 Result: iptables filter -- INPUT policy is ACCEPT.
|
|||
|
2021-01-07 15:41:45 Result: ACCEPT
|
|||
|
2021-01-07 15:41:45 Result: Found ACCEPT for INPUT (table: filter)
|
|||
|
2021-01-07 15:41:45 Hardening: assigned partial number of hardening points (1 of 3). Currently having 104 points (out of 158)
|
|||
|
2021-01-07 15:41:45 Result: iptables filter -- FORWARD policy is ACCEPT.
|
|||
|
2021-01-07 15:41:45 Result: ACCEPT
|
|||
|
2021-01-07 15:41:45 Result: iptables filter -- OUTPUT policy is ACCEPT.
|
|||
|
2021-01-07 15:41:45 Result: ACCEPT
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID FIRE-4512 (Check iptables for empty ruleset)
|
|||
|
2021-01-07 15:41:45 Result: iptables ruleset seems to be empty (found 0 rules)
|
|||
|
2021-01-07 15:41:45 Warning: iptables module(s) loaded, but no rules active [test:FIRE-4512] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID FIRE-4513 (Check iptables for unused rules)
|
|||
|
2021-01-07 15:41:45 Result: There are no unused rules present
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test FIRE-4518 (Check pf firewall components)
|
|||
|
2021-01-07 15:41:45 Reason to skip: No /dev/pf device
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test FIRE-4520 (Check pf configuration consistency)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID FIRE-4524 (Check for CSF presence)
|
|||
|
2021-01-07 15:41:45 Test: check /etc/csf/csf.conf
|
|||
|
2021-01-07 15:41:45 Result: /etc/csf/csf.conf does NOT exist
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test FIRE-4526 (Check ipf status)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test FIRE-4530 (Check IPFW status)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Incorrect guest OS (FreeBSD only)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test FIRE-4532 (Check macOS application firewall)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Incorrect guest OS (macOS only)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test FIRE-4534 (Check for presence of outbound firewalls on macOS)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Incorrect guest OS (macOS only)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test FIRE-4536 (Check nftables status)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test FIRE-4538 (Check nftables basic configuration)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test FIRE-4540 (Check for empty nftables configuration)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID FIRE-4586 (Check firewall logging)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID FIRE-4590 (Check firewall status)
|
|||
|
2021-01-07 15:41:45 Result: host based firewall or packet filter is active
|
|||
|
2021-01-07 15:41:45 Hardening: assigned maximum number of hardening points for this item (5). Currently having 108 points (out of 160)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID FIRE-4594 (Check for APF presence)
|
|||
|
2021-01-07 15:41:45 Test: check /etc/apf/conf.apf
|
|||
|
2021-01-07 15:41:45 Result: /etc/apf/conf.apf does NOT exist
|
|||
|
2021-01-07 15:41:45 Security check: file is normal
|
|||
|
2021-01-07 15:41:45 Checking permissions of /root/scans/lynis/include/tests_webservers
|
|||
|
2021-01-07 15:41:45 File permissions are OK
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Action: Performing tests from category: Software: webserver
|
|||
|
2021-01-07 15:41:45 Action: created temporary file /tmp/lynis.TjjgqfBS3g
|
|||
|
2021-01-07 15:41:45 Action: created temporary file /tmp/lynis.Kky3GynQHb
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID HTTP-6622 (Checking Apache presence)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6624 (Testing main Apache configuration file)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6626 (Testing other Apache configuration file)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6632 (Determining all available Apache modules)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6640 (Determining existence of specific Apache modules)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6641 (Determining existence of specific Apache modules)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6643 (Determining existence of specific Apache modules)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID HTTP-6702 (Check nginx process)
|
|||
|
2021-01-07 15:41:45 Test: searching running nginx process
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'nginx' not found
|
|||
|
2021-01-07 15:41:45 Result: no running nginx process found
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6704 (Check nginx configuration file)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6706 (Check for additional nginx configuration files)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6708 (Check discovered nginx configuration settings)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6710 (Check nginx SSL configuration settings)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6712 (Check nginx access logging)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6714 (Check for missing error logs in nginx)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6716 (Check for debug mode on error log in nginx)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Skipped test HTTP-6720 (Check Nginx log files)
|
|||
|
2021-01-07 15:41:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:45 Security check: file is normal
|
|||
|
2021-01-07 15:41:45 Checking permissions of /root/scans/lynis/include/tests_ssh
|
|||
|
2021-01-07 15:41:45 File permissions are OK
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Action: Performing tests from category: SSH Support
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID SSH-7402 (Check for running SSH daemon)
|
|||
|
2021-01-07 15:41:45 Test: Searching for a SSH daemon
|
|||
|
2021-01-07 15:41:45 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:45 IsRunning: process 'sshd' found (1341 )
|
|||
|
2021-01-07 15:41:45 Action: created temporary file /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID SSH-7404 (Check SSH daemon file location)
|
|||
|
2021-01-07 15:41:45 Test: searching for sshd_config file
|
|||
|
2021-01-07 15:41:45 Result: /etc/ssh/sshd_config exists
|
|||
|
2021-01-07 15:41:45 Test: check if we can access /etc/ssh/sshd_config (escaped: /etc/ssh/sshd_config)
|
|||
|
2021-01-07 15:41:45 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:45 Result: file /etc/ssh/sshd_config is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:45 Result: using last found configuration file: /etc/ssh/sshd_config
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID SSH-7406 (Determine OpenSSH version)
|
|||
|
2021-01-07 15:41:45 Result: discovered OpenSSH version is 6.6.1
|
|||
|
2021-01-07 15:41:45 Result: OpenSSH major version: 6
|
|||
|
2021-01-07 15:41:45 Result: OpenSSH minor version: 6
|
|||
|
2021-01-07 15:41:45 ====
|
|||
|
2021-01-07 15:41:45 Performing test ID SSH-7408 (Check SSH specific defined options)
|
|||
|
2021-01-07 15:41:45 Test: Checking specific defined options in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:45 Result: added additional options for OpenSSH 6.x and lower
|
|||
|
2021-01-07 15:41:45 Test: Checking AllowTcpForwarding in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:45 Result: Option AllowTcpForwarding found
|
|||
|
2021-01-07 15:41:45 Result: Option AllowTcpForwarding value is YES
|
|||
|
2021-01-07 15:41:45 Result: OpenSSH option AllowTcpForwarding is in a weak configuration state and should be fixed
|
|||
|
2021-01-07 15:41:45 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:AllowTcpForwarding (set YES to NO)] [solution:-]
|
|||
|
2021-01-07 15:41:45 Hardening: assigned partial number of hardening points (0 of 3). Currently having 108 points (out of 163)
|
|||
|
2021-01-07 15:41:45 Test: Checking ClientAliveCountMax in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:45 Result: Option ClientAliveCountMax found
|
|||
|
2021-01-07 15:41:45 Result: Option ClientAliveCountMax value is 3
|
|||
|
2021-01-07 15:41:45 Result: OpenSSH option ClientAliveCountMax is configured reasonably
|
|||
|
2021-01-07 15:41:45 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:ClientAliveCountMax (set 3 to 2)] [solution:-]
|
|||
|
2021-01-07 15:41:45 Hardening: assigned partial number of hardening points (1 of 3). Currently having 109 points (out of 166)
|
|||
|
2021-01-07 15:41:45 Test: Checking ClientAliveInterval in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:45 Result: Option ClientAliveInterval found
|
|||
|
2021-01-07 15:41:45 Result: Option ClientAliveInterval value is 0
|
|||
|
2021-01-07 15:41:45 Result: OpenSSH option ClientAliveInterval is configured very well
|
|||
|
2021-01-07 15:41:45 Hardening: assigned maximum number of hardening points for this item (3). Currently having 112 points (out of 169)
|
|||
|
2021-01-07 15:41:45 Test: Checking Compression in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:45 Result: Option Compression found
|
|||
|
2021-01-07 15:41:45 Result: Option Compression value is YES
|
|||
|
2021-01-07 15:41:45 Result: OpenSSH option Compression is in a weak configuration state and should be fixed
|
|||
|
2021-01-07 15:41:45 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:Compression (set YES to NO)] [solution:-]
|
|||
|
2021-01-07 15:41:45 Hardening: assigned partial number of hardening points (0 of 3). Currently having 112 points (out of 172)
|
|||
|
2021-01-07 15:41:45 Test: Checking FingerprintHash in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:45 Result: Option FingerprintHash not found in output
|
|||
|
2021-01-07 15:41:45 Test: Checking GatewayPorts in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:45 Result: Option GatewayPorts found
|
|||
|
2021-01-07 15:41:45 Result: Option GatewayPorts value is NO
|
|||
|
2021-01-07 15:41:45 Result: OpenSSH option GatewayPorts is configured very well
|
|||
|
2021-01-07 15:41:45 Hardening: assigned maximum number of hardening points for this item (3). Currently having 115 points (out of 175)
|
|||
|
2021-01-07 15:41:46 Test: Checking IgnoreRhosts in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option IgnoreRhosts found
|
|||
|
2021-01-07 15:41:46 Result: Option IgnoreRhosts value is YES
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option IgnoreRhosts is configured very well
|
|||
|
2021-01-07 15:41:46 Hardening: assigned maximum number of hardening points for this item (3). Currently having 118 points (out of 178)
|
|||
|
2021-01-07 15:41:46 Test: Checking LoginGraceTime in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option LoginGraceTime found
|
|||
|
2021-01-07 15:41:46 Result: Option LoginGraceTime value is 120
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option LoginGraceTime is configured very well
|
|||
|
2021-01-07 15:41:46 Hardening: assigned maximum number of hardening points for this item (3). Currently having 121 points (out of 181)
|
|||
|
2021-01-07 15:41:46 Test: Checking LogLevel in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option LogLevel found
|
|||
|
2021-01-07 15:41:46 Result: Option LogLevel value is INFO
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option LogLevel is configured reasonably
|
|||
|
2021-01-07 15:41:46 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:LogLevel (set INFO to VERBOSE)] [solution:-]
|
|||
|
2021-01-07 15:41:46 Hardening: assigned partial number of hardening points (1 of 3). Currently having 122 points (out of 184)
|
|||
|
2021-01-07 15:41:46 Test: Checking MaxAuthTries in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option MaxAuthTries found
|
|||
|
2021-01-07 15:41:46 Result: Option MaxAuthTries value is 6
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option MaxAuthTries is configured reasonably
|
|||
|
2021-01-07 15:41:46 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:MaxAuthTries (set 6 to 3)] [solution:-]
|
|||
|
2021-01-07 15:41:46 Hardening: assigned partial number of hardening points (1 of 3). Currently having 123 points (out of 187)
|
|||
|
2021-01-07 15:41:46 Test: Checking MaxSessions in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option MaxSessions found
|
|||
|
2021-01-07 15:41:46 Result: Option MaxSessions value is 10
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option MaxSessions is in a weak configuration state and should be fixed
|
|||
|
2021-01-07 15:41:46 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:MaxSessions (set 10 to 2)] [solution:-]
|
|||
|
2021-01-07 15:41:46 Hardening: assigned partial number of hardening points (0 of 3). Currently having 123 points (out of 190)
|
|||
|
2021-01-07 15:41:46 Test: Checking PermitRootLogin in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option PermitRootLogin found
|
|||
|
2021-01-07 15:41:46 Result: Option PermitRootLogin value is WITHOUT-PASSWORD
|
|||
|
2021-01-07 15:41:46 Expected value has multiple values, testing if active value is in list ((FORCED-COMMANDS-ONLY|NO|PROHIBIT-PASSWORD|WITHOUT-PASSWORD))
|
|||
|
2021-01-07 15:41:46 Result: found
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option PermitRootLogin is configured very well
|
|||
|
2021-01-07 15:41:46 Hardening: assigned maximum number of hardening points for this item (3). Currently having 126 points (out of 193)
|
|||
|
2021-01-07 15:41:46 Test: Checking PermitUserEnvironment in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option PermitUserEnvironment found
|
|||
|
2021-01-07 15:41:46 Result: Option PermitUserEnvironment value is NO
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option PermitUserEnvironment is configured very well
|
|||
|
2021-01-07 15:41:46 Hardening: assigned maximum number of hardening points for this item (3). Currently having 129 points (out of 196)
|
|||
|
2021-01-07 15:41:46 Test: Checking PermitTunnel in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option PermitTunnel found
|
|||
|
2021-01-07 15:41:46 Result: Option PermitTunnel value is NO
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option PermitTunnel is configured very well
|
|||
|
2021-01-07 15:41:46 Hardening: assigned maximum number of hardening points for this item (3). Currently having 132 points (out of 199)
|
|||
|
2021-01-07 15:41:46 Test: Checking Port in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option Port found
|
|||
|
2021-01-07 15:41:46 Result: Option Port value is 22
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option Port is in a weak configuration state and should be fixed
|
|||
|
2021-01-07 15:41:46 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:Port (set 22 to )] [solution:-]
|
|||
|
2021-01-07 15:41:46 Hardening: assigned partial number of hardening points (0 of 3). Currently having 132 points (out of 202)
|
|||
|
2021-01-07 15:41:46 Test: Checking PrintLastLog in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option PrintLastLog found
|
|||
|
2021-01-07 15:41:46 Result: Option PrintLastLog value is YES
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option PrintLastLog is configured very well
|
|||
|
2021-01-07 15:41:46 Hardening: assigned maximum number of hardening points for this item (3). Currently having 135 points (out of 205)
|
|||
|
2021-01-07 15:41:46 Test: Checking StrictModes in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option StrictModes found
|
|||
|
2021-01-07 15:41:46 Result: Option StrictModes value is YES
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option StrictModes is configured very well
|
|||
|
2021-01-07 15:41:46 Hardening: assigned maximum number of hardening points for this item (3). Currently having 138 points (out of 208)
|
|||
|
2021-01-07 15:41:46 Test: Checking TCPKeepAlive in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option TCPKeepAlive found
|
|||
|
2021-01-07 15:41:46 Result: Option TCPKeepAlive value is YES
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option TCPKeepAlive is in a weak configuration state and should be fixed
|
|||
|
2021-01-07 15:41:46 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:TCPKeepAlive (set YES to NO)] [solution:-]
|
|||
|
2021-01-07 15:41:46 Hardening: assigned partial number of hardening points (0 of 3). Currently having 138 points (out of 211)
|
|||
|
2021-01-07 15:41:46 Test: Checking UseDNS in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option UseDNS found
|
|||
|
2021-01-07 15:41:46 Result: Option UseDNS value is YES
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option UseDNS is in a weak configuration state and should be fixed
|
|||
|
2021-01-07 15:41:46 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:UseDNS (set YES to NO)] [solution:-]
|
|||
|
2021-01-07 15:41:46 Hardening: assigned partial number of hardening points (0 of 3). Currently having 138 points (out of 214)
|
|||
|
2021-01-07 15:41:46 Test: Checking X11Forwarding in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option X11Forwarding found
|
|||
|
2021-01-07 15:41:46 Result: Option X11Forwarding value is YES
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option X11Forwarding is in a weak configuration state and should be fixed
|
|||
|
2021-01-07 15:41:46 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:X11Forwarding (set YES to NO)] [solution:-]
|
|||
|
2021-01-07 15:41:46 Hardening: assigned partial number of hardening points (0 of 3). Currently having 138 points (out of 217)
|
|||
|
2021-01-07 15:41:46 Test: Checking AllowAgentForwarding in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option AllowAgentForwarding not found in output
|
|||
|
2021-01-07 15:41:46 Test: Checking UsePrivilegeSeparation in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option UsePrivilegeSeparation found
|
|||
|
2021-01-07 15:41:46 Result: Option UsePrivilegeSeparation value is YES
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option UsePrivilegeSeparation is configured reasonably
|
|||
|
2021-01-07 15:41:46 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:UsePrivilegeSeparation (set YES to SANDBOX)] [solution:-]
|
|||
|
2021-01-07 15:41:46 Hardening: assigned partial number of hardening points (1 of 3). Currently having 139 points (out of 220)
|
|||
|
2021-01-07 15:41:46 Test: Checking Protocol in /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:41:46 Result: Option Protocol found
|
|||
|
2021-01-07 15:41:46 Result: Option Protocol value is 2
|
|||
|
2021-01-07 15:41:46 Result: OpenSSH option Protocol is configured very well
|
|||
|
2021-01-07 15:41:46 Hardening: assigned maximum number of hardening points for this item (3). Currently having 142 points (out of 223)
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID SSH-7440 (Check OpenSSH option: AllowUsers and AllowGroups)
|
|||
|
2021-01-07 15:41:46 Result: AllowUsers is not set
|
|||
|
2021-01-07 15:41:46 Result: AllowGroups is not set
|
|||
|
2021-01-07 15:41:46 Result: SSH has no specific user or group limitation. Most likely all valid users can SSH to this machine.
|
|||
|
2021-01-07 15:41:46 Hardening: assigned partial number of hardening points (0 of 1). Currently having 142 points (out of 224)
|
|||
|
2021-01-07 15:41:46 Security check: file is normal
|
|||
|
2021-01-07 15:41:46 Checking permissions of /root/scans/lynis/include/tests_snmp
|
|||
|
2021-01-07 15:41:46 File permissions are OK
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Action: Performing tests from category: SNMP Support
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID SNMP-3302 (Check for running SNMP daemon)
|
|||
|
2021-01-07 15:41:46 Test: Searching for a SNMP daemon
|
|||
|
2021-01-07 15:41:46 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:46 IsRunning: process 'snmpd' not found
|
|||
|
2021-01-07 15:41:46 Result: No running SNMP daemon found
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Skipped test SNMP-3304 (Check SNMP daemon file location)
|
|||
|
2021-01-07 15:41:46 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Skipped test SNMP-3306 (Check SNMP communities)
|
|||
|
2021-01-07 15:41:46 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:46 Security check: file is normal
|
|||
|
2021-01-07 15:41:46 Checking permissions of /root/scans/lynis/include/tests_databases
|
|||
|
2021-01-07 15:41:46 File permissions are OK
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Action: Performing tests from category: Databases
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID DBS-1804 (Checking active MySQL process)
|
|||
|
2021-01-07 15:41:46 Result: MySQL process not active
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Skipped test DBS-1816 (Checking MySQL root password)
|
|||
|
2021-01-07 15:41:46 Reason to skip: MySQL not installed, or not running
|
|||
|
2021-01-07 15:41:46 Test skipped, MySQL daemon not running or no MySQL client available
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID DBS-1818 (Check status of MongoDB server)
|
|||
|
2021-01-07 15:41:46 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:46 IsRunning: process 'mongod' not found
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID DBS-1820 (Check for authorization in MongoDB)
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID DBS-1826 (Checking active PostgreSQL processes)
|
|||
|
2021-01-07 15:41:46 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:46 IsRunning: process 'postgres:' not found
|
|||
|
2021-01-07 15:41:46 Result: PostgreSQL process not active
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Skipped test DBS-1828 (Test PostgreSQL configuration)
|
|||
|
2021-01-07 15:41:46 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID DBS-1840 (Checking active Oracle processes)
|
|||
|
2021-01-07 15:41:46 Result: Oracle process(es) not active
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID DBS-1860 (Checking active DB2 instances)
|
|||
|
2021-01-07 15:41:46 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:46 IsRunning: process 'db2sysc' not found
|
|||
|
2021-01-07 15:41:46 Result: No DB2 instances are running
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID DBS-1880 (Check for active Redis server)
|
|||
|
2021-01-07 15:41:46 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:46 IsRunning: process 'redis-server' not found
|
|||
|
2021-01-07 15:41:46 Result: No Redis processes are running
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Skipped test DBS-1882 (Redis configuration file)
|
|||
|
2021-01-07 15:41:46 Reason to skip: Redis not running
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Skipped test DBS-1884 (Redis: requirepass option configured)
|
|||
|
2021-01-07 15:41:46 Reason to skip: Redis not running, or no configuration file found
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Skipped test DBS-1886 (Redis: rename-command CONFIG used)
|
|||
|
2021-01-07 15:41:46 Reason to skip: Redis not running, or no configuration found
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Skipped test DBS-1888 (Redis: bind on localhost)
|
|||
|
2021-01-07 15:41:46 Reason to skip: Redis not running, or no configuration found
|
|||
|
2021-01-07 15:41:46 Security check: file is normal
|
|||
|
2021-01-07 15:41:46 Checking permissions of /root/scans/lynis/include/tests_ldap
|
|||
|
2021-01-07 15:41:46 File permissions are OK
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Action: Performing tests from category: LDAP Services
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID LDAP-2219 (Check running OpenLDAP instance)
|
|||
|
2021-01-07 15:41:46 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:46 IsRunning: process 'slapd' not found
|
|||
|
2021-01-07 15:41:46 Result: No running slapd process found.
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Skipped test LDAP-2224 (Check presence slapd.conf)
|
|||
|
2021-01-07 15:41:46 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:46 Security check: file is normal
|
|||
|
2021-01-07 15:41:46 Checking permissions of /root/scans/lynis/include/tests_php
|
|||
|
2021-01-07 15:41:46 File permissions are OK
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Action: Performing tests from category: PHP
|
|||
|
2021-01-07 15:41:46 ====
|
|||
|
2021-01-07 15:41:46 Performing test ID PHP-2211 (Check php.ini presence)
|
|||
|
2021-01-07 15:41:46 Test: Checking for presence php.ini
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php.ini.default
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php.ini.default not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php5.5/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php5.5/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php5.6/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php5.6/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php7.0/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php7.0/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php7.1/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php7.1/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php7.2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php7.2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php7.3/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php7.3/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php7.4/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php7.4/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cgi-php5/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cgi-php5/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cli-php5/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cli-php5/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/apache2-php5/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/apache2-php5/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/apache2-php5.5/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/apache2-php5.5/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/apache2-php5.6/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/apache2-php5.6/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/apache2-php7.0/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/apache2-php7.0/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/apache2-php7.1/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/apache2-php7.1/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/apache2-php7.2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/apache2-php7.2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/apache2-php7.3/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/apache2-php7.3/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/apache2-php7.4/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/apache2-php7.4/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cgi-php5.5/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cgi-php5.5/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cgi-php5.6/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cgi-php5.6/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cgi-php7.0/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cgi-php7.0/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cgi-php7.1/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cgi-php7.1/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cgi-php7.2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cgi-php7.2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cgi-php7.3/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cgi-php7.3/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cgi-php7.4/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cgi-php7.4/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cli-php5.5/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cli-php5.5/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cli-php5.6/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cli-php5.6/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cli-php7.0/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cli-php7.0/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cli-php7.1/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cli-php7.1/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cli-php7.2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cli-php7.2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cli-php7.3/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cli-php7.3/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/cli-php7.4/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/cli-php7.4/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/embed-php5.5/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/embed-php5.5/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/embed-php5.6/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/embed-php5.6/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/embed-php7.0/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/embed-php7.0/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/embed-php7.1/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/embed-php7.1/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/embed-php7.2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/embed-php7.2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/embed-php7.3/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/embed-php7.3/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/embed-php7.4/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/embed-php7.4/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/fpm-php7.4/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/fpm-php7.4/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/fpm-php7.3/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/fpm-php7.3/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/fpm-php7.2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/fpm-php7.2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/fpm-php7.1/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/fpm-php7.1/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/fpm-php7.0/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/fpm-php7.0/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/fpm-php5.5/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/fpm-php5.5/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/fpm-php5.6/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/fpm-php5.6/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php5/cgi/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php5/cgi/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php5/cli/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php5/cli/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php5/cli-php5.4/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php5/cli-php5.4/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php5/cli-php5.5/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php5/cli-php5.5/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php5/cli-php5.6/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php5/cli-php5.6/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php5/apache2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php5/apache2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php5/fpm/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php5/fpm/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /private/etc/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /private/etc/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.0/apache2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.0/apache2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.1/apache2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.1/apache2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.2/apache2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.2/apache2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.3/apache2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.3/apache2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.4/apache2/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.4/apache2/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.0/cli/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.0/cli/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.0/fpm/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.0/fpm/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.1/cli/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.1/cli/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.1/fpm/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.1/fpm/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.2/cli/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.2/cli/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.2/fpm/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.2/fpm/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.3/cli/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.3/cli/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.3/fpm/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.3/fpm/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.4/cli/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.4/cli/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /etc/php/7.4/fpm/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /etc/php/7.4/fpm/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /var/www/conf/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /var/www/conf/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /usr/local/etc/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /usr/local/etc/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /usr/local/lib/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /usr/local/lib/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /usr/local/etc/php5/cgi/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /usr/local/etc/php5/cgi/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /usr/local/php54/lib/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /usr/local/php54/lib/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /usr/local/php56/lib/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /usr/local/php56/lib/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /usr/local/php70/lib/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /usr/local/php70/lib/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /usr/local/php71/lib/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /usr/local/php71/lib/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /usr/local/php72/lib/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /usr/local/php72/lib/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /usr/local/php73/lib/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /usr/local/php73/lib/php.ini not found
|
|||
|
2021-01-07 15:41:46 Test: checking presence /usr/local/php74/lib/php.ini
|
|||
|
2021-01-07 15:41:46 Result: file /usr/local/php74/lib/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /usr/local/zend/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /usr/local/zend/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /usr/pkg/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /usr/pkg/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/cpanel/ea-php54/root/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/cpanel/ea-php54/root/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/cpanel/ea-php55/root/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/cpanel/ea-php55/root/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/cpanel/ea-php56/root/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/cpanel/ea-php56/root/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/cpanel/ea-php70/root/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/cpanel/ea-php70/root/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/cpanel/ea-php71/root/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/cpanel/ea-php71/root/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/cpanel/ea-php72/root/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/cpanel/ea-php72/root/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/cpanel/ea-php73/root/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/cpanel/ea-php73/root/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/cpanel/ea-php74/root/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/cpanel/ea-php74/root/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php44/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php44/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php51/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php51/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php52/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php52/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php53/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php53/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php54/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php54/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php55/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php55/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php56/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php56/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php70/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php70/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php71/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php71/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php72/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php72/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php73/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php73/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /opt/alt/php74/etc/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /opt/alt/php74/etc/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/opt/remi/php56/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/opt/remi/php56/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/opt/remi/php70/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/opt/remi/php70/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/opt/remi/php71/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/opt/remi/php71/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/opt/remi/php72/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/opt/remi/php72/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/opt/remi/php73/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/opt/remi/php73/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/opt/remi/php74/php.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/opt/remi/php74/php.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/php-5.6.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/php-5.6.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/php-7.0.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/php-7.0.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/php-7.1.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/php-7.1.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/php-7.2.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/php-7.2.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/php-7.3.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/php-7.3.ini not found
|
|||
|
2021-01-07 15:41:47 Test: checking presence /etc/php-7.4.ini
|
|||
|
2021-01-07 15:41:47 Result: file /etc/php-7.4.ini not found
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php5/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php/7.0/cli/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php/7.1/cli/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php/7.2/cli/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php/7.3/cli/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php/7.4/cli/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php/7.0/fpm/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php/7.1/fpm/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php/7.2/fpm/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php/7.3/fpm/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php/7.4/fpm/conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/cpanel/ea-php54/root/etc/php.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/cpanel/ea-php55/root/etc/php.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/cpanel/ea-php56/root/etc/php.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/cpanel/ea-php70/root/etc/php.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/cpanel/ea-php71/root/etc/php.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/cpanel/ea-php72/root/etc/php.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/cpanel/ea-php73/root/etc/php.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/cpanel/ea-php74/root/etc/php.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php44/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php51/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php52/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php53/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php54/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php55/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php56/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php70/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php71/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php72/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php73/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /opt/alt/php74/etc/php.d.all
|
|||
|
2021-01-07 15:41:47 Result: no files found for /usr/local/lib/php.conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /usr/local/php70/lib/php.conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /usr/local/php71/lib/php.conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /usr/local/php72/lib/php.conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /usr/local/php73/lib/php.conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /usr/local/php74/lib/php.conf.d
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php-5.6
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php-7.0
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php-7.1
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php-7.2
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php-7.3
|
|||
|
2021-01-07 15:41:47 Result: no files found for /etc/php-7.4
|
|||
|
2021-01-07 15:41:47 Result: no php.ini file found
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test PHP-2320 (Check PHP disabled functions)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test PHP-2368 (Check PHP register_globals option)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test PHP-2372 (Check PHP expose_php option)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test PHP-2374 (Check PHP enable_dl option)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test PHP-2376 (Check PHP allow_url_fopen option)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test PHP-2378 (Check PHP allow_url_include option)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test PHP-2382 (Check PHP expose_php option)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 Security check: file is normal
|
|||
|
2021-01-07 15:41:47 Checking permissions of /root/scans/lynis/include/tests_squid
|
|||
|
2021-01-07 15:41:47 File permissions are OK
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Action: Performing tests from category: Squid Support
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID SQD-3602 (Check for running Squid daemon)
|
|||
|
2021-01-07 15:41:47 Test: Searching for a Squid daemon
|
|||
|
2021-01-07 15:41:47 Result: No running Squid daemon found
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test SQD-3604 (Check Squid daemon file location)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test SQD-3606 (Check Squid version)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test SQD-3610 (Gather Squid settings)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test SQD-3613 (Check Squid file permissions)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test SQD-3614 (Check Squid authentication methods)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test SQD-3616 (Check external Squid authentication)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test SQD-3620 (Check Squid access control lists)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test SQD-3624 (Check Squid safe ports)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test SQD-3630 (Check Squid reply_body_max_size option)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test SQD-3680 (Check Squid version suppression)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 Security check: file is normal
|
|||
|
2021-01-07 15:41:47 Checking permissions of /root/scans/lynis/include/tests_logging
|
|||
|
2021-01-07 15:41:47 File permissions are OK
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Action: Performing tests from category: Logging and files
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2130 (Check for running syslog daemon)
|
|||
|
2021-01-07 15:41:47 Test: Searching for a logging daemon
|
|||
|
2021-01-07 15:41:47 Result: Found a logging daemon
|
|||
|
2021-01-07 15:41:47 Hardening: assigned maximum number of hardening points for this item (3). Currently having 145 points (out of 227)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2132 (Check for running syslog-ng daemon)
|
|||
|
2021-01-07 15:41:47 Test: Searching for syslog-ng daemon in process list
|
|||
|
2021-01-07 15:41:47 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:47 IsRunning: process 'syslog-ng' not found
|
|||
|
2021-01-07 15:41:47 Result: Syslog-ng NOT found in process list
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test LOGG-2134 (Checking Syslog-NG configuration file consistency)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2136 (Check for running systemd journal daemon)
|
|||
|
2021-01-07 15:41:47 Test: Searching for systemd journal daemon in process list
|
|||
|
2021-01-07 15:41:47 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:47 IsRunning: process 'systemd-journal' not found
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2210 (Check for running metalog daemon)
|
|||
|
2021-01-07 15:41:47 Test: Searching for metalog daemon in process list
|
|||
|
2021-01-07 15:41:47 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:47 IsRunning: process 'metalog' not found
|
|||
|
2021-01-07 15:41:47 Result: metalog NOT found in process list
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2230 (Check for running RSyslog daemon)
|
|||
|
2021-01-07 15:41:47 Test: Searching for RSyslog daemon in process list
|
|||
|
2021-01-07 15:41:47 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:47 IsRunning: process 'rsyslogd' found (497 )
|
|||
|
2021-01-07 15:41:47 Result: Found rsyslogd in process list
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2240 (Check for running RFC 3195 compliant daemon)
|
|||
|
2021-01-07 15:41:47 Test: Searching for RFC 3195 daemon (alias syslog reliable) in process list
|
|||
|
2021-01-07 15:41:47 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:47 IsRunning: process 'rfc3195d' not found
|
|||
|
2021-01-07 15:41:47 Result: rfc3195d NOT found in process list
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2138 (Checking kernel logger daemon on Linux)
|
|||
|
2021-01-07 15:41:47 Test: Searching kernel logger daemon (klogd)
|
|||
|
2021-01-07 15:41:47 Result: test skipped, because other facility is being used to log kernel messages
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2142 (Checking minilog daemon)
|
|||
|
2021-01-07 15:41:47 Result: Checking for unkilled minilogd instances
|
|||
|
2021-01-07 15:41:47 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:47 IsRunning: process 'minilogd' not found
|
|||
|
2021-01-07 15:41:47 Result: No minilogd is running
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2146 (Checking logrotate.conf and logrotate.d)
|
|||
|
2021-01-07 15:41:47 Test: Checking for /etc/logrotate.conf
|
|||
|
2021-01-07 15:41:47 Result: /etc/logrotate.conf found (file)
|
|||
|
2021-01-07 15:41:47 Test: Checking for /etc/logrotate.d (directory)
|
|||
|
2021-01-07 15:41:47 Result: /etc/logrotate.d found
|
|||
|
2021-01-07 15:41:47 Result: logrotate configuration found
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2148 (Checking logrotated files)
|
|||
|
2021-01-07 15:41:47 Test: Checking which files are rotated with logrotate and if they exist
|
|||
|
2021-01-07 15:41:47 Result: found one or more files which are rotated via logrotate
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/apport.log:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/aptitude:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/cron.log:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/daemon.log:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/debug:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/lpr.log:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/mail.err:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/mail.info:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/mail.log:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/mail.warn:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/messages:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/ppp-connect-errors:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/ufw.log:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/unattended-upgrades/unattended-upgrades.log:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/user.log:does_not_exist
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/alternatives.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/apport.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/apt/history.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/apt/term.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/aptitude:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/auth.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/btmp:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/cron.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/daemon.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/debug:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/dpkg.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/kern.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/lpr.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/mail.err:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/mail.info:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/mail.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/mail.warn:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/messages:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/ppp-connect-errors:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/syslog:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/ubuntu-advantage.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/ufw.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/unattended-upgrades/unattended-upgrades-shutdown.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/unattended-upgrades/unattended-upgrades.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/console-setup.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/container-detect.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/kmod.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/mountall.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/network-interface-eth0.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/networking.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/procps-static-network-up.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/procps-virtual-filesystems.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/rsyslog.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/systemd-logind.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/ureadahead.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/upstart/vmware-tools.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/user.log:exists
|
|||
|
2021-01-07 15:41:47 Output: File:/var/log/wtmp:exists
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2150 (Checking directories in logrotate configuration)
|
|||
|
2021-01-07 15:41:47 Test: Checking which directories can be found in logrotate configuration
|
|||
|
2021-01-07 15:41:47 Result: found one or more directories (via logrotate configuration)
|
|||
|
2021-01-07 15:41:47 Directory found: /var/log
|
|||
|
2021-01-07 15:41:47 Directory found: /var/log/apt
|
|||
|
2021-01-07 15:41:47 Directory found: /var/log/unattended-upgrades
|
|||
|
2021-01-07 15:41:47 Directory found: /var/log/upstart
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test LOGG-2152 (Checking loghost)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test LOGG-2153 (Checking loghost is localhost)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2154 (Checking syslog configuration file)
|
|||
|
2021-01-07 15:41:47 Test: analyzing file /etc/rsyslog.conf for remote target
|
|||
|
2021-01-07 15:41:47 Result: no remote target found
|
|||
|
2021-01-07 15:41:47 Test: analyzing file /etc/rsyslog.d/20-ufw.conf for remote target
|
|||
|
2021-01-07 15:41:47 Result: no remote target found
|
|||
|
2021-01-07 15:41:47 Test: analyzing file /etc/rsyslog.d/50-default.conf for remote target
|
|||
|
2021-01-07 15:41:47 Result: no remote target found
|
|||
|
2021-01-07 15:41:47 Result: no remote logging found
|
|||
|
2021-01-07 15:41:47 Suggestion: Enable logging to an external logging host for archiving purposes and additional protection [test:LOGG-2154] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:47 Hardening: assigned partial number of hardening points (1 of 3). Currently having 146 points (out of 230)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test LOGG-2160 (Checking /etc/newsyslog.conf)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test LOGG-2162 (Checking directories in /etc/newsyslog.conf)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test LOGG-2164 (Checking files specified /etc/newsyslog.conf)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2170 (Checking log paths)
|
|||
|
2021-01-07 15:41:47 Test: Searching log paths
|
|||
|
2021-01-07 15:41:47 Result: directory /var/log exists
|
|||
|
2021-01-07 15:41:47 Result: directory /var/adm can't be found
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2180 (Checking open log files)
|
|||
|
2021-01-07 15:41:47 Test: checking open log files with lsof
|
|||
|
2021-01-07 15:41:47 Found logfile: /root/scans/outputs/lynis-console-2.log
|
|||
|
2021-01-07 15:41:47 Found logfile: /var/log/auth.log
|
|||
|
2021-01-07 15:41:47 Found logfile: /var/log/kern.log
|
|||
|
2021-01-07 15:41:47 Found logfile: /var/log/syslog
|
|||
|
2021-01-07 15:41:47 Found logfile: /var/log/upstart/systemd-logind.log
|
|||
|
2021-01-07 15:41:47 Found logfile: /var/log/vmware-vmsvc.log
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2190 (Checking for deleted files in use)
|
|||
|
2021-01-07 15:41:47 Test: checking deleted files that are still in use
|
|||
|
2021-01-07 15:41:47 Result: found one or more files which are deleted, but still in use
|
|||
|
2021-01-07 15:41:47 Found deleted file: /lib/systemd/systemd-logind(systemd-l)
|
|||
|
2021-01-07 15:41:47 Suggestion: Check what deleted files are still in use and why. [test:LOGG-2190] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID LOGG-2192 (Checking for open log files that are empty)
|
|||
|
2021-01-07 15:41:47 Result: all opened log files are bigger than zero bytes in size
|
|||
|
2021-01-07 15:41:47 Security check: file is normal
|
|||
|
2021-01-07 15:41:47 Checking permissions of /root/scans/lynis/include/tests_insecure_services
|
|||
|
2021-01-07 15:41:47 File permissions are OK
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Action: Performing tests from category: Insecure services
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Performing test ID INSE-8000 (Installed inetd package)
|
|||
|
2021-01-07 15:41:47 Test: Checking if inetd is installed
|
|||
|
2021-01-07 15:41:47 Result: inetd is NOT installed
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test INSE-8002 (Check for enabled inet daemon)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:47 Skipped test INSE-8004 (Presence of inetd configuration file)
|
|||
|
2021-01-07 15:41:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:47 ====
|
|||
|
2021-01-07 15:41:48 Skipped test INSE-8006 (Check configuration of inetd when disabled)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test INSE-8016 (Check for telnet via inetd)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID INSE-8100 (Check for installed xinetd daemon)
|
|||
|
2021-01-07 15:41:48 Test: Checking for installed xinetd daemon
|
|||
|
2021-01-07 15:41:48 Result: xinetd is NOT installed
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID INSE-8102 (Check for active xinet daemon)
|
|||
|
2021-01-07 15:41:48 Test: Searching for active extended internet services daemon (xinetd)
|
|||
|
2021-01-07 15:41:48 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:48 IsRunning: process 'xinetd' not found
|
|||
|
2021-01-07 15:41:48 Result: xinetd is NOT running
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test INSE-8104 (Check for enabled xinet daemon)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test INSE-8106 (Check configuration of xinetd when disabled)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test INSE-8116 (Insecure services enabled via xinetd)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test INSE-8200 (Check if tcp_wrappers is installed when inetd/xinetd is active)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID INSE-8300 (Check if rsh client is installed)
|
|||
|
2021-01-07 15:41:48 Test: Checking if rsh client is installed
|
|||
|
2021-01-07 15:41:48 Result: rsh client is NOT installed
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID INSE-8304 (Check if rsh server is installed)
|
|||
|
2021-01-07 15:41:48 Test: Checking if rsh server is installed
|
|||
|
2021-01-07 15:41:48 Result: rsh server is NOT installed
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID INSE-8310 (Check if telnet client is installed)
|
|||
|
2021-01-07 15:41:48 Test: Checking if telnet client is installed
|
|||
|
2021-01-07 15:41:48 Result: telnet client is NOT installed
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID INSE-8322 (Check if telnet server is installed)
|
|||
|
2021-01-07 15:41:48 Test: Checking if telnet server is installed
|
|||
|
2021-01-07 15:41:48 Result: telnet server is NOT installed
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID INSE-8314 (Check if NIS client is installed)
|
|||
|
2021-01-07 15:41:48 Test: Checking if NIS client is installed
|
|||
|
2021-01-07 15:41:48 Result: NIS client is NOT installed
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID INSE-8316 (Check if NIS server is installed)
|
|||
|
2021-01-07 15:41:48 Test: Checking if NIS server is installed
|
|||
|
2021-01-07 15:41:48 Result: NIS server is NOT installed
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID INSE-8318 (Check if TFTP client is installed)
|
|||
|
2021-01-07 15:41:48 Test: Checking if TFTP client is installed
|
|||
|
2021-01-07 15:41:48 Result: TFTP client is NOT installed
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID INSE-8320 (Check if TFTP server is installed)
|
|||
|
2021-01-07 15:41:48 Test: Checking if TFTP server is installed
|
|||
|
2021-01-07 15:41:48 Result: TFTP server is NOT installed
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test INSE-8050 (Check for insecure services on macOS)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Incorrect guest OS (macOS only)
|
|||
|
2021-01-07 15:41:48 Security check: file is normal
|
|||
|
2021-01-07 15:41:48 Checking permissions of /root/scans/lynis/include/tests_banners
|
|||
|
2021-01-07 15:41:48 File permissions are OK
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Action: Performing tests from category: Banners and identification
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test BANN-7113 (Check COPYRIGHT banner file)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Incorrect guest OS (FreeBSD only)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID BANN-7124 (Check issue banner file)
|
|||
|
2021-01-07 15:41:48 Test: Checking file /etc/issue
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID BANN-7126 (Check issue banner file contents)
|
|||
|
2021-01-07 15:41:48 Test: Checking file /etc/issue contents for legal key words
|
|||
|
2021-01-07 15:41:48 Result: Found only 0 key words (5 or more suggested), to warn unauthorized users and could be increased
|
|||
|
2021-01-07 15:41:48 Suggestion: Add a legal banner to /etc/issue, to warn unauthorized users [test:BANN-7126] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:48 Hardening: assigned partial number of hardening points (0 of 1). Currently having 146 points (out of 231)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID BANN-7128 (Check issue.net banner file)
|
|||
|
2021-01-07 15:41:48 Test: Checking file /etc/issue.net
|
|||
|
2021-01-07 15:41:48 Result: file /etc/issue.net exists
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID BANN-7130 (Check issue.net banner file contents)
|
|||
|
2021-01-07 15:41:48 Test: Checking file /etc/issue.net contents for legal key words
|
|||
|
2021-01-07 15:41:48 Result: Found only 0 key words, to warn unauthorized users and could be increased
|
|||
|
2021-01-07 15:41:48 Suggestion: Add legal banner to /etc/issue.net, to warn unauthorized users [test:BANN-7130] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:48 Hardening: assigned partial number of hardening points (0 of 1). Currently having 146 points (out of 232)
|
|||
|
2021-01-07 15:41:48 Security check: file is normal
|
|||
|
2021-01-07 15:41:48 Checking permissions of /root/scans/lynis/include/tests_scheduling
|
|||
|
2021-01-07 15:41:48 File permissions are OK
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Action: Performing tests from category: Scheduled tasks
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID SCHD-7702 (Check status of cron daemon)
|
|||
|
2021-01-07 15:41:48 Result: cron daemon running
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID SCHD-7704 (Check crontab/cronjobs)
|
|||
|
2021-01-07 15:41:48 Found cronjob (/etc/crontab): 17,*,*,*,*,root,cd,/,&&,run-parts,--report,/etc/cron.hourly
|
|||
|
2021-01-07 15:41:48 Found cronjob (/etc/crontab): 25,6,*,*,*,root,test,-x,/usr/sbin/anacron,||,(,cd,/,&&,run-parts,--report,/etc/cron.daily,)
|
|||
|
2021-01-07 15:41:48 Found cronjob (/etc/crontab): 47,6,*,*,7,root,test,-x,/usr/sbin/anacron,||,(,cd,/,&&,run-parts,--report,/etc/cron.weekly,)
|
|||
|
2021-01-07 15:41:48 Found cronjob (/etc/crontab): 52,6,1,*,*,root,test,-x,/usr/sbin/anacron,||,(,cd,/,&&,run-parts,--report,/etc/cron.monthly,)
|
|||
|
2021-01-07 15:41:48 Test: checking directory /etc/cron.d
|
|||
|
2021-01-07 15:41:48 Test: check if we can access /etc/cron.d (escaped: /etc/cron.d)
|
|||
|
2021-01-07 15:41:48 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:48 Result: file /etc/cron.d is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:48 Result: found directory /etc/cron.d
|
|||
|
2021-01-07 15:41:48 Test: searching files in /etc/cron.d
|
|||
|
2021-01-07 15:41:48 Result: no files found in /etc/cron.d
|
|||
|
2021-01-07 15:41:48 Test: checking directory /etc/cron.hourly
|
|||
|
2021-01-07 15:41:48 Result: found directory /etc/cron.hourly
|
|||
|
2021-01-07 15:41:48 Test: check if we can access /etc/cron.hourly (escaped: /etc/cron.hourly)
|
|||
|
2021-01-07 15:41:48 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:48 Result: file /etc/cron.hourly is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:48 Test: searching files in /etc/cron.hourly
|
|||
|
2021-01-07 15:41:48 Result: no files found in /etc/cron.hourly
|
|||
|
2021-01-07 15:41:48 Test: checking directory /etc/cron.daily
|
|||
|
2021-01-07 15:41:48 Result: found directory /etc/cron.daily
|
|||
|
2021-01-07 15:41:48 Test: check if we can access /etc/cron.daily (escaped: /etc/cron.daily)
|
|||
|
2021-01-07 15:41:48 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:48 Result: file /etc/cron.daily is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:48 Test: searching files in /etc/cron.daily
|
|||
|
2021-01-07 15:41:48 Result: found one or more files in /etc/cron.daily. Analyzing files..
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/passwd
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/apt
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/aptitude
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/logrotate
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/upstart
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/update-notifier-common
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/man-db
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/apport
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/dpkg
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/bsdmainutils
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/mlocate
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/popularity-contest
|
|||
|
2021-01-07 15:41:48 Result: done with analyzing files in /etc/cron.daily
|
|||
|
2021-01-07 15:41:48 Test: checking directory /etc/cron.weekly
|
|||
|
2021-01-07 15:41:48 Result: found directory /etc/cron.weekly
|
|||
|
2021-01-07 15:41:48 Test: check if we can access /etc/cron.weekly (escaped: /etc/cron.weekly)
|
|||
|
2021-01-07 15:41:48 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:48 Result: file /etc/cron.weekly is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:48 Test: searching files in /etc/cron.weekly
|
|||
|
2021-01-07 15:41:48 Result: found one or more files in /etc/cron.weekly. Analyzing files..
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.weekly): /etc/cron.weekly/apt-xapian-index
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.weekly): /etc/cron.weekly/update-notifier-common
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.weekly): /etc/cron.weekly/man-db
|
|||
|
2021-01-07 15:41:48 Result: Found cronjob (/etc/cron.weekly): /etc/cron.weekly/fstrim
|
|||
|
2021-01-07 15:41:48 Result: done with analyzing files in /etc/cron.weekly
|
|||
|
2021-01-07 15:41:48 Test: checking directory /etc/cron.monthly
|
|||
|
2021-01-07 15:41:48 Result: found directory /etc/cron.monthly
|
|||
|
2021-01-07 15:41:48 Test: check if we can access /etc/cron.monthly (escaped: /etc/cron.monthly)
|
|||
|
2021-01-07 15:41:48 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:48 Result: file /etc/cron.monthly is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:48 Test: searching files in /etc/cron.monthly
|
|||
|
2021-01-07 15:41:48 Result: no files found in /etc/cron.monthly
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID SCHD-7718 (Check at users)
|
|||
|
2021-01-07 15:41:48 Test: Checking atd status
|
|||
|
2021-01-07 15:41:48 Result: at daemon not active
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test SCHD-7720 (Check at users)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test SCHD-7724 (Check at jobs)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:48 Result: no scheduled Lynis execution found (e.g. crontab, cronjob)
|
|||
|
2021-01-07 15:41:48 Security check: file is normal
|
|||
|
2021-01-07 15:41:48 Checking permissions of /root/scans/lynis/include/tests_accounting
|
|||
|
2021-01-07 15:41:48 File permissions are OK
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Action: Performing tests from category: Accounting
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test ACCT-2754 (Check for available FreeBSD accounting information)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Incorrect guest OS (FreeBSD only)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Skipped test ACCT-2760 (Check for available OpenBSD accounting information)
|
|||
|
2021-01-07 15:41:48 Reason to skip: Incorrect guest OS (OpenBSD only)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID ACCT-9622 (Check for available Linux accounting information)
|
|||
|
2021-01-07 15:41:48 Test: Check accounting information
|
|||
|
2021-01-07 15:41:48 Result: No accounting information available (/var/account/pacct, /var/log/account/pact nor /var/log/pact exist)
|
|||
|
2021-01-07 15:41:48 Remark: Possibly there is another location where the accounting data is stored
|
|||
|
2021-01-07 15:41:48 Suggestion: Enable process accounting [test:ACCT-9622] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:48 Hardening: assigned partial number of hardening points (2 of 3). Currently having 148 points (out of 235)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID ACCT-9626 (Check for sysstat accounting data)
|
|||
|
2021-01-07 15:41:48 Test: check /etc/default/sysstat presence
|
|||
|
2021-01-07 15:41:48 Result: sysstat not found via /etc/default/sysstat or /etc/cron.d/sysstat or as a systemd unit
|
|||
|
2021-01-07 15:41:48 Suggestion: Enable sysstat to collect accounting (no results) [test:ACCT-9626] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:48 Performing test ID ACCT-9628 (Check for auditd)
|
|||
|
2021-01-07 15:41:48 Test: Check auditd status
|
|||
|
2021-01-07 15:41:48 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:48 IsRunning: process 'auditd' not found
|
|||
|
2021-01-07 15:41:48 Result: auditd not active
|
|||
|
2021-01-07 15:41:48 Suggestion: Enable auditd to collect audit information [test:ACCT-9628] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:48 Hardening: assigned partial number of hardening points (0 of 1). Currently having 148 points (out of 236)
|
|||
|
2021-01-07 15:41:48 ====
|
|||
|
2021-01-07 15:41:49 Skipped test ACCT-9630 (Check for auditd rules)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test ACCT-9632 (Check for auditd configuration file)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test ACCT-9634 (Check for auditd log file)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Performing test ID ACCT-9636 (Check for Snoopy wrapper and logger)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test ACCT-9650 (Check Solaris audit daemon)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test ACCT-9652 (Check auditd SMF status)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test ACCT-9654 (Check BSM auditing in /etc/system)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test ACCT-9656 (Check BSM auditing in module list)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test ACCT-9660 (Check location of audit events)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test ACCT-9662 (Check Solaris auditing stats)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:49 Security check: file is normal
|
|||
|
2021-01-07 15:41:49 Checking permissions of /root/scans/lynis/include/tests_time
|
|||
|
2021-01-07 15:41:49 File permissions are OK
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Action: Performing tests from category: Time and Synchronization
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Performing test ID TIME-3104 (Check for running NTP daemon or client)
|
|||
|
2021-01-07 15:41:49 Test: Searching for a running NTP daemon or available client
|
|||
|
2021-01-07 15:41:49 Result: no chrony configuration found
|
|||
|
2021-01-07 15:41:49 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:49 IsRunning: process 'dntpd' not found
|
|||
|
2021-01-07 15:41:49 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:49 IsRunning: process 'timed' not found
|
|||
|
2021-01-07 15:41:49 Result: crontab file /etc/anacrontab not found
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in crontab file /etc/crontab
|
|||
|
2021-01-07 15:41:49 Result: no ntpdate, rdate, sntp or ntpdig reference found in crontab file /etc/crontab
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/apport
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/apt
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/aptitude
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/bsdmainutils
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/dpkg
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/logrotate
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/man-db
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/mlocate
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/passwd
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/popularity-contest
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/update-notifier-common
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/upstart
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.weekly/apt-xapian-index
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.weekly/fstrim
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.weekly/man-db
|
|||
|
2021-01-07 15:41:49 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.weekly/update-notifier-common
|
|||
|
2021-01-07 15:41:49 Result: no ntpdate or rdate found in cron directories
|
|||
|
2021-01-07 15:41:49 Test: checking for file /etc/network/if-up.d/ntpdate
|
|||
|
2021-01-07 15:41:49 Result: found ntpdate action when network interface comes up
|
|||
|
2021-01-07 15:41:49 Result: Found a time syncing daemon/client.
|
|||
|
2021-01-07 15:41:49 Hardening: assigned maximum number of hardening points for this item (3). Currently having 151 points (out of 239)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3106 (Check systemd NTP time synchronization status)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3112 (Check active NTP associations ID's)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3116 (Check peers with stratum value of 16)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3120 (Check unreliable NTP peers)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3124 (Check selected time source)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3128 (Check preferred time source)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3132 (Check NTP falsetickers)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3136 (Check NTP protocol version)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Performing test ID TIME-3148 (Check TZ variable)
|
|||
|
2021-01-07 15:41:49 Test: testing for TZ variable
|
|||
|
2021-01-07 15:41:49 Result: found TZ variable with value notset
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3160 (Check empty NTP step-tickers)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Performing test ID TIME-3170 (Check configuration files)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3180 (Report if ntpctl cannot communicate with OpenNTPD)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3181 (Check status of OpenNTPD time synchronisation)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3182 (Check OpenNTPD has working peers)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Skipped test TIME-3185 (Check systemd-timesyncd synchronized time)
|
|||
|
2021-01-07 15:41:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:49 Security check: file is normal
|
|||
|
2021-01-07 15:41:49 Checking permissions of /root/scans/lynis/include/tests_crypto
|
|||
|
2021-01-07 15:41:49 File permissions are OK
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Action: Performing tests from category: Cryptography
|
|||
|
2021-01-07 15:41:49 ====
|
|||
|
2021-01-07 15:41:49 Performing test ID CRYP-7902 (Check expire date of SSL certificates)
|
|||
|
2021-01-07 15:41:49 Paths to scan: /etc/apache2 /etc/dovecot /etc/httpd /etc/letsencrypt /etc/pki /etc/postfix /etc/refind.d/keys /etc/ssl /opt/psa/var/certificates /usr/local/psa/var/certificates /usr/local/share/ca-certificates /usr/share/ca-certificates /usr/share/gnupg /var/www /srv/www
|
|||
|
2021-01-07 15:41:49 Paths to ignore: /etc/letsencrypt/archive
|
|||
|
2021-01-07 15:41:49 Result: SSL path /etc/apache2 does not exist
|
|||
|
2021-01-07 15:41:49 Result: SSL path /etc/dovecot does not exist
|
|||
|
2021-01-07 15:41:49 Result: SSL path /etc/httpd does not exist
|
|||
|
2021-01-07 15:41:49 Result: SSL path /etc/letsencrypt does not exist
|
|||
|
2021-01-07 15:41:49 Result: SSL path /etc/pki does not exist
|
|||
|
2021-01-07 15:41:49 Result: SSL path /etc/postfix does not exist
|
|||
|
2021-01-07 15:41:49 Result: SSL path /etc/refind.d/keys does not exist
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /etc/ssl (escaped: /etc/ssl)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /etc/ssl is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: found directory /etc/ssl
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /etc/ssl/certs/ca-certificates.crt (escaped: /etc/ssl/certs/ca-certificates.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /etc/ssl/certs/ca-certificates.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: file '/etc/ssl/certs/ca-certificates.crt' does most likely not belong to a package
|
|||
|
2021-01-07 15:41:49 Result: file is a certificate file
|
|||
|
2021-01-07 15:41:49 Result: certificate /etc/ssl/certs/ca-certificates.crt seems to be correct and still valid
|
|||
|
2021-01-07 15:41:49 Result: found 1 certificates in /etc/ssl
|
|||
|
2021-01-07 15:41:49 Result: SSL path /opt/psa/var/certificates does not exist
|
|||
|
2021-01-07 15:41:49 Result: SSL path /usr/local/psa/var/certificates does not exist
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/local/share/ca-certificates (escaped: /usr/local/share/ca-certificates)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/local/share/ca-certificates is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: found directory /usr/local/share/ca-certificates
|
|||
|
2021-01-07 15:41:49 Result: found 0 certificates in /usr/local/share/ca-certificates
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates (escaped: /usr/share/ca-certificates)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: found directory /usr/share/ca-certificates
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates/mozilla/ACCVRAIZ1.crt (escaped: /usr/share/ca-certificates/mozilla/ACCVRAIZ1.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates/mozilla/ACCVRAIZ1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: file '/usr/share/ca-certificates/mozilla/ACCVRAIZ1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates/mozilla/ACEDICOM_Root.crt (escaped: /usr/share/ca-certificates/mozilla/ACEDICOM_Root.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates/mozilla/ACEDICOM_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: file '/usr/share/ca-certificates/mozilla/ACEDICOM_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates/mozilla/AC_RAIZ_FNMT-RCM.crt (escaped: /usr/share/ca-certificates/mozilla/AC_RAIZ_FNMT-RCM.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates/mozilla/AC_RAIZ_FNMT-RCM.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: file '/usr/share/ca-certificates/mozilla/AC_RAIZ_FNMT-RCM.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates/mozilla/Actalis_Authentication_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Actalis_Authentication_Root_CA.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates/mozilla/Actalis_Authentication_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: file '/usr/share/ca-certificates/mozilla/Actalis_Authentication_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates/mozilla/AddTrust_External_Root.crt (escaped: /usr/share/ca-certificates/mozilla/AddTrust_External_Root.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates/mozilla/AddTrust_External_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: file '/usr/share/ca-certificates/mozilla/AddTrust_External_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates/mozilla/AddTrust_Low-Value_Services_Root.crt (escaped: /usr/share/ca-certificates/mozilla/AddTrust_Low-Value_Services_Root.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates/mozilla/AddTrust_Low-Value_Services_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: file '/usr/share/ca-certificates/mozilla/AddTrust_Low-Value_Services_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates/mozilla/AddTrust_Public_Services_Root.crt (escaped: /usr/share/ca-certificates/mozilla/AddTrust_Public_Services_Root.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates/mozilla/AddTrust_Public_Services_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: file '/usr/share/ca-certificates/mozilla/AddTrust_Public_Services_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates/mozilla/AddTrust_Qualified_Certificates_Root.crt (escaped: /usr/share/ca-certificates/mozilla/AddTrust_Qualified_Certificates_Root.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates/mozilla/AddTrust_Qualified_Certificates_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: file '/usr/share/ca-certificates/mozilla/AddTrust_Qualified_Certificates_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates/mozilla/AffirmTrust_Commercial.crt (escaped: /usr/share/ca-certificates/mozilla/AffirmTrust_Commercial.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates/mozilla/AffirmTrust_Commercial.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:49 Result: file '/usr/share/ca-certificates/mozilla/AffirmTrust_Commercial.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:49 Test: check if we can access /usr/share/ca-certificates/mozilla/AffirmTrust_Networking.crt (escaped: /usr/share/ca-certificates/mozilla/AffirmTrust_Networking.crt)
|
|||
|
2021-01-07 15:41:49 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:49 Result: file /usr/share/ca-certificates/mozilla/AffirmTrust_Networking.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/AffirmTrust_Networking.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/AffirmTrust_Premium.crt (escaped: /usr/share/ca-certificates/mozilla/AffirmTrust_Premium.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/AffirmTrust_Premium.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/AffirmTrust_Premium.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/AffirmTrust_Premium_ECC.crt (escaped: /usr/share/ca-certificates/mozilla/AffirmTrust_Premium_ECC.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/AffirmTrust_Premium_ECC.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/AffirmTrust_Premium_ECC.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Amazon_Root_CA_1.crt (escaped: /usr/share/ca-certificates/mozilla/Amazon_Root_CA_1.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/Amazon_Root_CA_1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/Amazon_Root_CA_1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Amazon_Root_CA_2.crt (escaped: /usr/share/ca-certificates/mozilla/Amazon_Root_CA_2.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/Amazon_Root_CA_2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/Amazon_Root_CA_2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Amazon_Root_CA_3.crt (escaped: /usr/share/ca-certificates/mozilla/Amazon_Root_CA_3.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/Amazon_Root_CA_3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/Amazon_Root_CA_3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Amazon_Root_CA_4.crt (escaped: /usr/share/ca-certificates/mozilla/Amazon_Root_CA_4.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/Amazon_Root_CA_4.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/Amazon_Root_CA_4.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Atos_TrustedRoot_2011.crt (escaped: /usr/share/ca-certificates/mozilla/Atos_TrustedRoot_2011.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/Atos_TrustedRoot_2011.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/Atos_TrustedRoot_2011.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Autoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.crt (escaped: /usr/share/ca-certificates/mozilla/Autoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/Autoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/Autoridad_de_Certificacion_Firmaprofesional_CIF_A62634068.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Baltimore_CyberTrust_Root.crt (escaped: /usr/share/ca-certificates/mozilla/Baltimore_CyberTrust_Root.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/Baltimore_CyberTrust_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/Baltimore_CyberTrust_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Buypass_Class_2_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Buypass_Class_2_Root_CA.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/Buypass_Class_2_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/Buypass_Class_2_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Buypass_Class_3_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Buypass_Class_3_Root_CA.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/Buypass_Class_3_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/Buypass_Class_3_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/CA_Disig_Root_R1.crt (escaped: /usr/share/ca-certificates/mozilla/CA_Disig_Root_R1.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/CA_Disig_Root_R1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/CA_Disig_Root_R1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/CA_Disig_Root_R2.crt (escaped: /usr/share/ca-certificates/mozilla/CA_Disig_Root_R2.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/CA_Disig_Root_R2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/CA_Disig_Root_R2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/CFCA_EV_ROOT.crt (escaped: /usr/share/ca-certificates/mozilla/CFCA_EV_ROOT.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/CFCA_EV_ROOT.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/CFCA_EV_ROOT.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/CNNIC_ROOT.crt (escaped: /usr/share/ca-certificates/mozilla/CNNIC_ROOT.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/CNNIC_ROOT.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/CNNIC_ROOT.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/COMODO_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/COMODO_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/COMODO_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/COMODO_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/COMODO_ECC_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/COMODO_ECC_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/COMODO_ECC_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/COMODO_ECC_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/COMODO_RSA_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/COMODO_RSA_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/COMODO_RSA_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/COMODO_RSA_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Camerfirma_Chambers_of_Commerce_Root.crt (escaped: /usr/share/ca-certificates/mozilla/Camerfirma_Chambers_of_Commerce_Root.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:50 Result: file /usr/share/ca-certificates/mozilla/Camerfirma_Chambers_of_Commerce_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:50 Result: file '/usr/share/ca-certificates/mozilla/Camerfirma_Chambers_of_Commerce_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:50 Test: check if we can access /usr/share/ca-certificates/mozilla/Camerfirma_Global_Chambersign_Root.crt (escaped: /usr/share/ca-certificates/mozilla/Camerfirma_Global_Chambersign_Root.crt)
|
|||
|
2021-01-07 15:41:50 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Camerfirma_Global_Chambersign_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Camerfirma_Global_Chambersign_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Certigna.crt (escaped: /usr/share/ca-certificates/mozilla/Certigna.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Certigna.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Certigna.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Certinomis_-_Autorité_Racine.crt (escaped: /usr/share/ca-certificates/mozilla/Certinomis_-_Autorité_Racine.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Certinomis_-_Autorité_Racine.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Certinomis_-_Autorité_Racine.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Certinomis_-_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Certinomis_-_Root_CA.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Certinomis_-_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Certinomis_-_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Certplus_Class_2_Primary_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Certplus_Class_2_Primary_CA.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Certplus_Class_2_Primary_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Certplus_Class_2_Primary_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Certplus_Root_CA_G1.crt (escaped: /usr/share/ca-certificates/mozilla/Certplus_Root_CA_G1.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Certplus_Root_CA_G1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Certplus_Root_CA_G1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Certplus_Root_CA_G2.crt (escaped: /usr/share/ca-certificates/mozilla/Certplus_Root_CA_G2.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Certplus_Root_CA_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Certplus_Root_CA_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Certum_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Certum_Root_CA.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Certum_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Certum_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Certum_Trusted_Network_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Certum_Trusted_Network_CA.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Certum_Trusted_Network_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Certum_Trusted_Network_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Certum_Trusted_Network_CA_2.crt (escaped: /usr/share/ca-certificates/mozilla/Certum_Trusted_Network_CA_2.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Certum_Trusted_Network_CA_2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Certum_Trusted_Network_CA_2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Chambers_of_Commerce_Root_-_2008.crt (escaped: /usr/share/ca-certificates/mozilla/Chambers_of_Commerce_Root_-_2008.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Chambers_of_Commerce_Root_-_2008.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Chambers_of_Commerce_Root_-_2008.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/China_Internet_Network_Information_Center_EV_Certificates_Root.crt (escaped: /usr/share/ca-certificates/mozilla/China_Internet_Network_Information_Center_EV_Certificates_Root.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/China_Internet_Network_Information_Center_EV_Certificates_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/China_Internet_Network_Information_Center_EV_Certificates_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Comodo_AAA_Services_root.crt (escaped: /usr/share/ca-certificates/mozilla/Comodo_AAA_Services_root.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Comodo_AAA_Services_root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Comodo_AAA_Services_root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Comodo_Secure_Services_root.crt (escaped: /usr/share/ca-certificates/mozilla/Comodo_Secure_Services_root.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Comodo_Secure_Services_root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Comodo_Secure_Services_root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Comodo_Trusted_Services_root.crt (escaped: /usr/share/ca-certificates/mozilla/Comodo_Trusted_Services_root.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Comodo_Trusted_Services_root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Comodo_Trusted_Services_root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Cybertrust_Global_Root.crt (escaped: /usr/share/ca-certificates/mozilla/Cybertrust_Global_Root.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/Cybertrust_Global_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/Cybertrust_Global_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/D-TRUST_Root_Class_3_CA_2_2009.crt (escaped: /usr/share/ca-certificates/mozilla/D-TRUST_Root_Class_3_CA_2_2009.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/D-TRUST_Root_Class_3_CA_2_2009.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/D-TRUST_Root_Class_3_CA_2_2009.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/D-TRUST_Root_Class_3_CA_2_EV_2009.crt (escaped: /usr/share/ca-certificates/mozilla/D-TRUST_Root_Class_3_CA_2_EV_2009.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/D-TRUST_Root_Class_3_CA_2_EV_2009.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/D-TRUST_Root_Class_3_CA_2_EV_2009.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/DST_ACES_CA_X6.crt (escaped: /usr/share/ca-certificates/mozilla/DST_ACES_CA_X6.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/DST_ACES_CA_X6.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/DST_ACES_CA_X6.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/DST_Root_CA_X3.crt (escaped: /usr/share/ca-certificates/mozilla/DST_Root_CA_X3.crt)
|
|||
|
2021-01-07 15:41:51 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:51 Result: file /usr/share/ca-certificates/mozilla/DST_Root_CA_X3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:51 Result: file '/usr/share/ca-certificates/mozilla/DST_Root_CA_X3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:51 Test: check if we can access /usr/share/ca-certificates/mozilla/Deutsche_Telekom_Root_CA_2.crt (escaped: /usr/share/ca-certificates/mozilla/Deutsche_Telekom_Root_CA_2.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/Deutsche_Telekom_Root_CA_2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/Deutsche_Telekom_Root_CA_2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_CA.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_G2.crt (escaped: /usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_G2.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_G3.crt (escaped: /usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_G3.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_G3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/DigiCert_Assured_ID_Root_G3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/DigiCert_Global_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/DigiCert_Global_Root_CA.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/DigiCert_Global_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/DigiCert_Global_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/DigiCert_Global_Root_G2.crt (escaped: /usr/share/ca-certificates/mozilla/DigiCert_Global_Root_G2.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/DigiCert_Global_Root_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/DigiCert_Global_Root_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/DigiCert_Global_Root_G3.crt (escaped: /usr/share/ca-certificates/mozilla/DigiCert_Global_Root_G3.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/DigiCert_Global_Root_G3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/DigiCert_Global_Root_G3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/DigiCert_High_Assurance_EV_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/DigiCert_High_Assurance_EV_Root_CA.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/DigiCert_High_Assurance_EV_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/DigiCert_High_Assurance_EV_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/DigiCert_Trusted_Root_G4.crt (escaped: /usr/share/ca-certificates/mozilla/DigiCert_Trusted_Root_G4.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/DigiCert_Trusted_Root_G4.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/DigiCert_Trusted_Root_G4.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/E-Tugra_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/E-Tugra_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/E-Tugra_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/E-Tugra_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/EC-ACC.crt (escaped: /usr/share/ca-certificates/mozilla/EC-ACC.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/EC-ACC.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/EC-ACC.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/EE_Certification_Centre_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/EE_Certification_Centre_Root_CA.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/EE_Certification_Centre_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/EE_Certification_Centre_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/Entrust.net_Premium_2048_Secure_Server_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Entrust.net_Premium_2048_Secure_Server_CA.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/Entrust.net_Premium_2048_Secure_Server_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/Entrust.net_Premium_2048_Secure_Server_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority_-_EC1.crt (escaped: /usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority_-_EC1.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority_-_EC1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority_-_EC1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority_-_G2.crt (escaped: /usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority_-_G2.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority_-_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/Entrust_Root_Certification_Authority_-_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/GeoTrust_Global_CA.crt (escaped: /usr/share/ca-certificates/mozilla/GeoTrust_Global_CA.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/GeoTrust_Global_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/GeoTrust_Global_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/GeoTrust_Global_CA_2.crt (escaped: /usr/share/ca-certificates/mozilla/GeoTrust_Global_CA_2.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/GeoTrust_Global_CA_2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/GeoTrust_Global_CA_2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority_-_G2.crt (escaped: /usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority_-_G2.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:52 Result: file /usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority_-_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:52 Result: file '/usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority_-_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:52 Test: check if we can access /usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority_-_G3.crt (escaped: /usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority_-_G3.crt)
|
|||
|
2021-01-07 15:41:52 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority_-_G3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/GeoTrust_Primary_Certification_Authority_-_G3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/GeoTrust_Universal_CA.crt (escaped: /usr/share/ca-certificates/mozilla/GeoTrust_Universal_CA.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/GeoTrust_Universal_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/GeoTrust_Universal_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/GeoTrust_Universal_CA_2.crt (escaped: /usr/share/ca-certificates/mozilla/GeoTrust_Universal_CA_2.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/GeoTrust_Universal_CA_2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/GeoTrust_Universal_CA_2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/GlobalSign_ECC_Root_CA_-_R4.crt (escaped: /usr/share/ca-certificates/mozilla/GlobalSign_ECC_Root_CA_-_R4.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/GlobalSign_ECC_Root_CA_-_R4.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/GlobalSign_ECC_Root_CA_-_R4.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/GlobalSign_ECC_Root_CA_-_R5.crt (escaped: /usr/share/ca-certificates/mozilla/GlobalSign_ECC_Root_CA_-_R5.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/GlobalSign_ECC_Root_CA_-_R5.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/GlobalSign_ECC_Root_CA_-_R5.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/GlobalSign_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R2.crt (escaped: /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R2.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R3.crt (escaped: /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R3.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/GlobalSign_Root_CA_-_R3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/Global_Chambersign_Root_-_2008.crt (escaped: /usr/share/ca-certificates/mozilla/Global_Chambersign_Root_-_2008.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/Global_Chambersign_Root_-_2008.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/Global_Chambersign_Root_-_2008.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/Go_Daddy_Class_2_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Go_Daddy_Class_2_CA.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/Go_Daddy_Class_2_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/Go_Daddy_Class_2_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/Go_Daddy_Root_Certificate_Authority_-_G2.crt (escaped: /usr/share/ca-certificates/mozilla/Go_Daddy_Root_Certificate_Authority_-_G2.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/Go_Daddy_Root_Certificate_Authority_-_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/Go_Daddy_Root_Certificate_Authority_-_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_ECC_RootCA_2015.crt (escaped: /usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_ECC_RootCA_2015.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_ECC_RootCA_2015.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_ECC_RootCA_2015.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_RootCA_2011.crt (escaped: /usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_RootCA_2011.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_RootCA_2011.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_RootCA_2011.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_RootCA_2015.crt (escaped: /usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_RootCA_2015.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_RootCA_2015.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/Hellenic_Academic_and_Research_Institutions_RootCA_2015.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/Hongkong_Post_Root_CA_1.crt (escaped: /usr/share/ca-certificates/mozilla/Hongkong_Post_Root_CA_1.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/Hongkong_Post_Root_CA_1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/Hongkong_Post_Root_CA_1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/ISRG_Root_X1.crt (escaped: /usr/share/ca-certificates/mozilla/ISRG_Root_X1.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/ISRG_Root_X1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/ISRG_Root_X1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/IdenTrust_Commercial_Root_CA_1.crt (escaped: /usr/share/ca-certificates/mozilla/IdenTrust_Commercial_Root_CA_1.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/IdenTrust_Commercial_Root_CA_1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/IdenTrust_Commercial_Root_CA_1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/IdenTrust_Public_Sector_Root_CA_1.crt (escaped: /usr/share/ca-certificates/mozilla/IdenTrust_Public_Sector_Root_CA_1.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/IdenTrust_Public_Sector_Root_CA_1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/IdenTrust_Public_Sector_Root_CA_1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/Izenpe.com.crt (escaped: /usr/share/ca-certificates/mozilla/Izenpe.com.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/Izenpe.com.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/Izenpe.com.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:53 Test: check if we can access /usr/share/ca-certificates/mozilla/LuxTrust_Global_Root_2.crt (escaped: /usr/share/ca-certificates/mozilla/LuxTrust_Global_Root_2.crt)
|
|||
|
2021-01-07 15:41:53 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:53 Result: file /usr/share/ca-certificates/mozilla/LuxTrust_Global_Root_2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:53 Result: file '/usr/share/ca-certificates/mozilla/LuxTrust_Global_Root_2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/Microsec_e-Szigno_Root_CA_2009.crt (escaped: /usr/share/ca-certificates/mozilla/Microsec_e-Szigno_Root_CA_2009.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/Microsec_e-Szigno_Root_CA_2009.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/Microsec_e-Szigno_Root_CA_2009.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/NetLock_Arany_=Class_Gold=_Főtanúsítvány.crt (escaped: /usr/share/ca-certificates/mozilla/NetLock_Arany_=Class_Gold=_Főtanúsítvány.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/NetLock_Arany_=Class_Gold=_Főtanúsítvány.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/NetLock_Arany_=Class_Gold=_Főtanúsítvány.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/Network_Solutions_Certificate_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/Network_Solutions_Certificate_Authority.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/Network_Solutions_Certificate_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/Network_Solutions_Certificate_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/OISTE_WISeKey_Global_Root_GA_CA.crt (escaped: /usr/share/ca-certificates/mozilla/OISTE_WISeKey_Global_Root_GA_CA.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/OISTE_WISeKey_Global_Root_GA_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/OISTE_WISeKey_Global_Root_GA_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/OISTE_WISeKey_Global_Root_GB_CA.crt (escaped: /usr/share/ca-certificates/mozilla/OISTE_WISeKey_Global_Root_GB_CA.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/OISTE_WISeKey_Global_Root_GB_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/OISTE_WISeKey_Global_Root_GB_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G1.crt (escaped: /usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G1.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G2.crt (escaped: /usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G2.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G3.crt (escaped: /usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G3.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/OpenTrust_Root_CA_G3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/PSCProcert.crt (escaped: /usr/share/ca-certificates/mozilla/PSCProcert.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/PSCProcert.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/PSCProcert.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/QuoVadis_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_1_G3.crt (escaped: /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_1_G3.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_1_G3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_1_G3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_2.crt (escaped: /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_2.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_2_G3.crt (escaped: /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_2_G3.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_2_G3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_2_G3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_3.crt (escaped: /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_3.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_3_G3.crt (escaped: /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_3_G3.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_3_G3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/QuoVadis_Root_CA_3_G3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/SZAFIR_ROOT_CA2.crt (escaped: /usr/share/ca-certificates/mozilla/SZAFIR_ROOT_CA2.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/SZAFIR_ROOT_CA2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/SZAFIR_ROOT_CA2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/SecureSign_RootCA11.crt (escaped: /usr/share/ca-certificates/mozilla/SecureSign_RootCA11.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/SecureSign_RootCA11.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/SecureSign_RootCA11.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/SecureTrust_CA.crt (escaped: /usr/share/ca-certificates/mozilla/SecureTrust_CA.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/SecureTrust_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/SecureTrust_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/Secure_Global_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Secure_Global_CA.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/Secure_Global_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/Secure_Global_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:54 Test: check if we can access /usr/share/ca-certificates/mozilla/Security_Communication_EV_RootCA1.crt (escaped: /usr/share/ca-certificates/mozilla/Security_Communication_EV_RootCA1.crt)
|
|||
|
2021-01-07 15:41:54 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:54 Result: file /usr/share/ca-certificates/mozilla/Security_Communication_EV_RootCA1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:54 Result: file '/usr/share/ca-certificates/mozilla/Security_Communication_EV_RootCA1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Security_Communication_RootCA2.crt (escaped: /usr/share/ca-certificates/mozilla/Security_Communication_RootCA2.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Security_Communication_RootCA2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Security_Communication_RootCA2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Security_Communication_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Security_Communication_Root_CA.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Security_Communication_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Security_Communication_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Sonera_Class_2_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Sonera_Class_2_Root_CA.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Sonera_Class_2_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Sonera_Class_2_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_EV_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_EV_Root_CA.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_EV_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_EV_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_Root_CA_-_G2.crt (escaped: /usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_Root_CA_-_G2.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_Root_CA_-_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_Root_CA_-_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_Root_CA_-_G3.crt (escaped: /usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_Root_CA_-_G3.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_Root_CA_-_G3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Staat_der_Nederlanden_Root_CA_-_G3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Starfield_Class_2_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Starfield_Class_2_CA.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Starfield_Class_2_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Starfield_Class_2_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Starfield_Root_Certificate_Authority_-_G2.crt (escaped: /usr/share/ca-certificates/mozilla/Starfield_Root_Certificate_Authority_-_G2.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Starfield_Root_Certificate_Authority_-_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Starfield_Root_Certificate_Authority_-_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Starfield_Services_Root_Certificate_Authority_-_G2.crt (escaped: /usr/share/ca-certificates/mozilla/Starfield_Services_Root_Certificate_Authority_-_G2.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Starfield_Services_Root_Certificate_Authority_-_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Starfield_Services_Root_Certificate_Authority_-_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/SwissSign_Gold_CA_-_G2.crt (escaped: /usr/share/ca-certificates/mozilla/SwissSign_Gold_CA_-_G2.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/SwissSign_Gold_CA_-_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/SwissSign_Gold_CA_-_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/SwissSign_Silver_CA_-_G2.crt (escaped: /usr/share/ca-certificates/mozilla/SwissSign_Silver_CA_-_G2.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/SwissSign_Silver_CA_-_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/SwissSign_Silver_CA_-_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Swisscom_Root_CA_1.crt (escaped: /usr/share/ca-certificates/mozilla/Swisscom_Root_CA_1.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Swisscom_Root_CA_1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Swisscom_Root_CA_1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Swisscom_Root_CA_2.crt (escaped: /usr/share/ca-certificates/mozilla/Swisscom_Root_CA_2.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Swisscom_Root_CA_2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Swisscom_Root_CA_2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Swisscom_Root_EV_CA_2.crt (escaped: /usr/share/ca-certificates/mozilla/Swisscom_Root_EV_CA_2.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/Swisscom_Root_EV_CA_2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/Swisscom_Root_EV_CA_2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/T-TeleSec_GlobalRoot_Class_2.crt (escaped: /usr/share/ca-certificates/mozilla/T-TeleSec_GlobalRoot_Class_2.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/T-TeleSec_GlobalRoot_Class_2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/T-TeleSec_GlobalRoot_Class_2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/T-TeleSec_GlobalRoot_Class_3.crt (escaped: /usr/share/ca-certificates/mozilla/T-TeleSec_GlobalRoot_Class_3.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/T-TeleSec_GlobalRoot_Class_3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/T-TeleSec_GlobalRoot_Class_3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/TUBITAK_Kamu_SM_SSL_Kok_Sertifikasi_-_Surum_1.crt (escaped: /usr/share/ca-certificates/mozilla/TUBITAK_Kamu_SM_SSL_Kok_Sertifikasi_-_Surum_1.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/TUBITAK_Kamu_SM_SSL_Kok_Sertifikasi_-_Surum_1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/TUBITAK_Kamu_SM_SSL_Kok_Sertifikasi_-_Surum_1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/TURKTRUST_Certificate_Services_Provider_Root_2007.crt (escaped: /usr/share/ca-certificates/mozilla/TURKTRUST_Certificate_Services_Provider_Root_2007.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/TURKTRUST_Certificate_Services_Provider_Root_2007.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/TURKTRUST_Certificate_Services_Provider_Root_2007.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/TWCA_Global_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/TWCA_Global_Root_CA.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/TWCA_Global_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/TWCA_Global_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/TWCA_Root_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/TWCA_Root_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:55 Result: file /usr/share/ca-certificates/mozilla/TWCA_Root_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:55 Result: file '/usr/share/ca-certificates/mozilla/TWCA_Root_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:55 Test: check if we can access /usr/share/ca-certificates/mozilla/Taiwan_GRCA.crt (escaped: /usr/share/ca-certificates/mozilla/Taiwan_GRCA.crt)
|
|||
|
2021-01-07 15:41:55 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/Taiwan_GRCA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/Taiwan_GRCA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/TeliaSonera_Root_CA_v1.crt (escaped: /usr/share/ca-certificates/mozilla/TeliaSonera_Root_CA_v1.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/TeliaSonera_Root_CA_v1.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/TeliaSonera_Root_CA_v1.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/Trustis_FPS_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/Trustis_FPS_Root_CA.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/Trustis_FPS_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/Trustis_FPS_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/TÜBİTAK_UEKAE_Kök_Sertifika_Hizmet_Sağlayıcısı_-_Sürüm_3.crt (escaped: /usr/share/ca-certificates/mozilla/TÜBİTAK_UEKAE_Kök_Sertifika_Hizmet_Sağlayıcısı_-_Sürüm_3.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/TÜBİTAK_UEKAE_Kök_Sertifika_Hizmet_Sağlayıcısı_-_Sürüm_3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/TÜBİTAK_UEKAE_Kök_Sertifika_Hizmet_Sağlayıcısı_-_Sürüm_3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/TÜRKTRUST_Elektronik_Sertifika_Hizmet_Sağlayıcısı_H5.crt (escaped: /usr/share/ca-certificates/mozilla/TÜRKTRUST_Elektronik_Sertifika_Hizmet_Sağlayıcısı_H5.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/TÜRKTRUST_Elektronik_Sertifika_Hizmet_Sağlayıcısı_H5.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/TÜRKTRUST_Elektronik_Sertifika_Hizmet_Sağlayıcısı_H5.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/USERTrust_ECC_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/USERTrust_ECC_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/USERTrust_ECC_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/USERTrust_ECC_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/USERTrust_RSA_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/USERTrust_RSA_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/USERTrust_RSA_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/USERTrust_RSA_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/UTN_USERFirst_Hardware_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/UTN_USERFirst_Hardware_Root_CA.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/UTN_USERFirst_Hardware_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/UTN_USERFirst_Hardware_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G4.crt (escaped: /usr/share/ca-certificates/mozilla/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G4.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G4.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G4.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G5.crt (escaped: /usr/share/ca-certificates/mozilla/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G5.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G5.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/VeriSign_Class_3_Public_Primary_Certification_Authority_-_G5.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/VeriSign_Universal_Root_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/VeriSign_Universal_Root_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/VeriSign_Universal_Root_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/VeriSign_Universal_Root_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/Verisign_Class_3_Public_Primary_Certification_Authority_-_G3.crt (escaped: /usr/share/ca-certificates/mozilla/Verisign_Class_3_Public_Primary_Certification_Authority_-_G3.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/Verisign_Class_3_Public_Primary_Certification_Authority_-_G3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/Verisign_Class_3_Public_Primary_Certification_Authority_-_G3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/Visa_eCommerce_Root.crt (escaped: /usr/share/ca-certificates/mozilla/Visa_eCommerce_Root.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/Visa_eCommerce_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/Visa_eCommerce_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/XRamp_Global_CA_Root.crt (escaped: /usr/share/ca-certificates/mozilla/XRamp_Global_CA_Root.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/XRamp_Global_CA_Root.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/XRamp_Global_CA_Root.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/certSIGN_ROOT_CA.crt (escaped: /usr/share/ca-certificates/mozilla/certSIGN_ROOT_CA.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/certSIGN_ROOT_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/certSIGN_ROOT_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/ePKI_Root_Certification_Authority.crt (escaped: /usr/share/ca-certificates/mozilla/ePKI_Root_Certification_Authority.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/ePKI_Root_Certification_Authority.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/ePKI_Root_Certification_Authority.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA.crt (escaped: /usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA_-_G2.crt (escaped: /usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA_-_G2.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA_-_G2.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA_-_G2.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA_-_G3.crt (escaped: /usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA_-_G3.crt)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA_-_G3.crt is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: file '/usr/share/ca-certificates/mozilla/thawte_Primary_Root_CA_-_G3.crt' belongs to package (ca-certificates)
|
|||
|
2021-01-07 15:41:56 Result: found 148 certificates in /usr/share/ca-certificates
|
|||
|
2021-01-07 15:41:56 Test: check if we can access /usr/share/gnupg (escaped: /usr/share/gnupg)
|
|||
|
2021-01-07 15:41:56 Result: file is owned by our current user ID (0), checking if it is readable
|
|||
|
2021-01-07 15:41:56 Result: file /usr/share/gnupg is readable (or directory accessible).
|
|||
|
2021-01-07 15:41:56 Result: found directory /usr/share/gnupg
|
|||
|
2021-01-07 15:41:56 Result: found 0 certificates in /usr/share/gnupg
|
|||
|
2021-01-07 15:41:56 Result: SSL path /var/www does not exist
|
|||
|
2021-01-07 15:41:56 Result: SSL path /srv/www does not exist
|
|||
|
2021-01-07 15:41:56 Result: found a total of 149 certificates
|
|||
|
2021-01-07 15:41:56 ====
|
|||
|
2021-01-07 15:41:56 Performing test ID CRYP-7930 (Determine if system uses LUKS block device encryption)
|
|||
|
2021-01-07 15:41:56 ====
|
|||
|
2021-01-07 15:41:56 Skipped test CRYP-7931 (Determine if system uses encrypted swap)
|
|||
|
2021-01-07 15:41:56 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:56 ====
|
|||
|
2021-01-07 15:41:56 Performing test ID CRYP-8002 (Gather available kernel entropy)
|
|||
|
2021-01-07 15:41:56 Result: found kernel entropy value of 886
|
|||
|
2021-01-07 15:41:56 ====
|
|||
|
2021-01-07 15:41:56 Performing test ID CRYP-8004 (Presence of hardware random number generators)
|
|||
|
2021-01-07 15:41:56 Test: looking for /sys/class/misc/hw_random/rng_current
|
|||
|
2021-01-07 15:41:56 Result: no HW RNG available
|
|||
|
2021-01-07 15:41:56 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID CRYP-8005 (Presence of software pseudo random number generators)
|
|||
|
2021-01-07 15:41:57 Test: looking for software pseudo random number generators
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'audio-entropyd' not found
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'haveged' not found
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'jitterentropy-rngd' not found
|
|||
|
2021-01-07 15:41:57 Security check: file is normal
|
|||
|
2021-01-07 15:41:57 Checking permissions of /root/scans/lynis/include/tests_virtualization
|
|||
|
2021-01-07 15:41:57 File permissions are OK
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Action: Performing tests from category: Virtualization
|
|||
|
2021-01-07 15:41:57 Security check: file is normal
|
|||
|
2021-01-07 15:41:57 Checking permissions of /root/scans/lynis/include/tests_containers
|
|||
|
2021-01-07 15:41:57 File permissions are OK
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Action: Performing tests from category: Containers
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test CONT-8004 (Query running Solaris zones)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Incorrect guest OS (Solaris only)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID CONT-8102 (Checking Docker status and information)
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'dockerd' not found
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test CONT-8104 (Checking Docker info for any warnings)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test CONT-8106 (Gather basic stats from Docker)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test CONT-8107 (Check number of Docker containers)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test CONT-8108 (Check file permissions for Docker files)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 Security check: file is normal
|
|||
|
2021-01-07 15:41:57 Checking permissions of /root/scans/lynis/include/tests_mac_frameworks
|
|||
|
2021-01-07 15:41:57 File permissions are OK
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Action: Performing tests from category: Security frameworks
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MACF-6204 (Check AppArmor presence)
|
|||
|
2021-01-07 15:41:57 Result: aa-status binary found, AppArmor is installed
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MACF-6208 (Check if AppArmor is enabled)
|
|||
|
2021-01-07 15:41:57 Result: file /sys/kernel/security/apparmor/profiles is available and readable
|
|||
|
2021-01-07 15:41:57 Result: AppArmor is enabled and a policy is loaded
|
|||
|
2021-01-07 15:41:57 Hardening: assigned maximum number of hardening points for this item (3). Currently having 154 points (out of 242)
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1:init
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:2:kthreadd
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:489:dbus-daemon
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:497:rsyslogd
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:508:systemd-logind
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:880:getty
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:884:getty
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:889:getty
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:890:getty
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:892:getty
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:953:atd
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:954:cron
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:970:irqbalance
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1016:acpid
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1033:login
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1154:vmware-vmblock-
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1175:vmtoolsd
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1209:VGAuthService
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1341:sshd
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1464:bash
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1478:sudo
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1479:su
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1480:bash
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:1512:vmhgfs-fuse
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:63723:upstart-file-br
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:63726:upstart-socket-
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:65709:upstart-udev-br
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:65712:systemd-udevd
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:78898:scanner.js
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:78900:lynis
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:78901:tee
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:107767:lynis
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:107768:ps
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:107769:grep
|
|||
|
2021-01-07 15:41:57 Result: Unconfined process: unconfined:107770:tr
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MACF-6232 (Check SELINUX presence)
|
|||
|
2021-01-07 15:41:57 Test: checking if we have sestatus binary
|
|||
|
2021-01-07 15:41:57 Result: sestatus binary NOT found
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test MACF-6234 (Check SELINUX status)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MACF-6240 (Check TOMOYO Linux presence)
|
|||
|
2021-01-07 15:41:57 Test: checking if we have tomoyo-init binary
|
|||
|
2021-01-07 15:41:57 Result: tomoyo-init binary not found
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test MACF-6242 (Check TOMOYO Linux status)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID RBAC-6272 (Check grsecurity presence)
|
|||
|
2021-01-07 15:41:57 Result: no grsecurity found in kernel config
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MACF-6290 (Check for implemented MAC framework)
|
|||
|
2021-01-07 15:41:57 Hardening: assigned maximum number of hardening points for this item (3). Currently having 157 points (out of 245)
|
|||
|
2021-01-07 15:41:57 Result: found implemented MAC framework
|
|||
|
2021-01-07 15:41:57 Security check: file is normal
|
|||
|
2021-01-07 15:41:57 Checking permissions of /root/scans/lynis/include/tests_file_integrity
|
|||
|
2021-01-07 15:41:57 File permissions are OK
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Action: Performing tests from category: Software: file integrity
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID FINT-4310 (AFICK availability)
|
|||
|
2021-01-07 15:41:57 Test: Checking AFICK binary
|
|||
|
2021-01-07 15:41:57 Result: AFICK is not installed
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID FINT-4314 (AIDE availability)
|
|||
|
2021-01-07 15:41:57 Test: Checking AIDE binary
|
|||
|
2021-01-07 15:41:57 Result: AIDE is not installed
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test FINT-4315 (Check AIDE configuration file)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test FINT-4316 (Presence of AIDE database and size check)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID FINT-4318 (Osiris availability)
|
|||
|
2021-01-07 15:41:57 Test: Checking Osiris binary
|
|||
|
2021-01-07 15:41:57 Result: Osiris is not installed
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID FINT-4322 (Samhain availability)
|
|||
|
2021-01-07 15:41:57 Test: Checking Samhain binary
|
|||
|
2021-01-07 15:41:57 Result: Samhain is not installed
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID FINT-4326 (Tripwire availability)
|
|||
|
2021-01-07 15:41:57 Test: Checking Tripwire binary
|
|||
|
2021-01-07 15:41:57 Result: Tripwire is not installed
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID FINT-4328 (OSSEC syscheck daemon running)
|
|||
|
2021-01-07 15:41:57 Test: Checking if OSSEC syscheck daemon is running
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'ossec-syscheckd' not found
|
|||
|
2021-01-07 15:41:57 Result: syscheck (OSSEC) is not active
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID FINT-4330 (mtree availability)
|
|||
|
2021-01-07 15:41:57 Test: Checking mtree binary
|
|||
|
2021-01-07 15:41:57 Result: mtree is not installed
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test FINT-4334 (Check lfd daemon status)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test FINT-4336 (Check lfd configuration status)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID FINT-4338 (osqueryd syscheck daemon running)
|
|||
|
2021-01-07 15:41:57 Test: Checking if osqueryd syscheck daemon is running
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'osqueryd' not found
|
|||
|
2021-01-07 15:41:57 Result: syscheck (osquery) not installed
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test FINT-4339 (Check IMA/EVM status)
|
|||
|
2021-01-07 15:41:57 Reason to skip: No evmctl binary found
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test FINT-4340 (Check dm-integrity status)
|
|||
|
2021-01-07 15:41:57 Reason to skip: No integritysetup binary found
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test FINT-4341 (Check dm-verity status)
|
|||
|
2021-01-07 15:41:57 Reason to skip: No veritysetup binary found
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test FINT-4402 (AIDE configuration: Checksums (SHA256 or SHA512))
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID FINT-4350 (File integrity software installed)
|
|||
|
2021-01-07 15:41:57 Test: Check if at least on file integrity tool is available/installed
|
|||
|
2021-01-07 15:41:57 Result: No file integrity tools found
|
|||
|
2021-01-07 15:41:57 Suggestion: Install a file integrity tool to monitor changes to critical and sensitive files [test:FINT-4350] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:57 Hardening: assigned partial number of hardening points (0 of 5). Currently having 157 points (out of 250)
|
|||
|
2021-01-07 15:41:57 Security check: file is normal
|
|||
|
2021-01-07 15:41:57 Checking permissions of /root/scans/lynis/include/tests_tooling
|
|||
|
2021-01-07 15:41:57 File permissions are OK
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Action: Performing tests from category: Software: System tooling
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID TOOL-5002 (Checking for automation tools)
|
|||
|
2021-01-07 15:41:57 Test: checking if directory /root/.ansible exists
|
|||
|
2021-01-07 15:41:57 Result: directory /root/.ansible NOT found
|
|||
|
2021-01-07 15:41:57 Test: checking if directory /etc/ansible exists
|
|||
|
2021-01-07 15:41:57 Result: directory /etc/ansible NOT found
|
|||
|
2021-01-07 15:41:57 Test: checking if directory /root/.ansible exists
|
|||
|
2021-01-07 15:41:57 Result: directory /root/.ansible NOT found
|
|||
|
2021-01-07 15:41:57 Test: checking if directory /tmp/.ansible exists
|
|||
|
2021-01-07 15:41:57 Result: directory /tmp/.ansible NOT found
|
|||
|
2021-01-07 15:41:57 Test: checking if file /var/log/ansible.log exists
|
|||
|
2021-01-07 15:41:57 Result: file /var/log/ansible.log NOT found
|
|||
|
2021-01-07 15:41:57 Test: checking if file ~/.ansible-retry exists
|
|||
|
2021-01-07 15:41:57 Result: file ~/.ansible-retry NOT found
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'puppet master' not found
|
|||
|
2021-01-07 15:41:57 Suggestion: Determine if automation tools are present for system management [test:TOOL-5002] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID TOOL-5102 (Check for presence of Fail2ban)
|
|||
|
2021-01-07 15:41:57 Result: Fail2ban not present (fail2ban-server not found)
|
|||
|
2021-01-07 15:41:57 Checking Fail2ban configuration file
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test TOOL-5104 (Enabled tests in Fail2ban)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID TOOL-5120 (Check for presence of Snort)
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'snort' not found
|
|||
|
2021-01-07 15:41:57 Result: Snort not present (Snort not running)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID TOOL-5122 (Check Snort configuration file)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID TOOL-5130 (Check for active Suricata daemon)
|
|||
|
2021-01-07 15:41:57 Result: Suricata not installed (suricata not found)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID TOOL-5126 (Check for active OSSEC daemon)
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'ossec-analysisd' not found
|
|||
|
2021-01-07 15:41:57 Result: OSSEC analysis daemon not active
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'ossec-agentd' not found
|
|||
|
2021-01-07 15:41:57 Result: OSSEC agent daemon not active
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID TOOL-5190 (Check presence of IDS/IPS tool)
|
|||
|
2021-01-07 15:41:57 Hardening: assigned partial number of hardening points (0 of 2). Currently having 157 points (out of 252)
|
|||
|
2021-01-07 15:41:57 Security check: file is normal
|
|||
|
2021-01-07 15:41:57 Checking permissions of /root/scans/lynis/include/tests_malware
|
|||
|
2021-01-07 15:41:57 File permissions are OK
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Action: Performing tests from category: Software: Malware
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MALW-3275 (Check for chkrootkit)
|
|||
|
2021-01-07 15:41:57 Test: checking presence chkrootkit
|
|||
|
2021-01-07 15:41:57 Result: chkrootkit not found
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MALW-3276 (Check for Rootkit Hunter)
|
|||
|
2021-01-07 15:41:57 Test: checking presence Rootkit Hunter
|
|||
|
2021-01-07 15:41:57 Result: Rootkit Hunter not found
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MALW-3278 (Check for LMD)
|
|||
|
2021-01-07 15:41:57 Test: checking presence LMD
|
|||
|
2021-01-07 15:41:57 Result: LMD not found
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MALW-3280 (Check if anti-virus tool is installed)
|
|||
|
2021-01-07 15:41:57 Test: checking process com.avast.daemon
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'com.avast.daemon' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process Avira daemon
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'avqmd' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process epagd
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'bdagentd' not found
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'epagd' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process falcon-sensor (CrowdStrike)
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'falcon-sensor' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process CylanceSvc
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'CylanceSvc' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process esets_daemon
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'esets_daemon' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process wdserver or klnagent (Kaspersky)
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'klnagent' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process cma or cmdagent (McAfee)
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'cmdagent' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process savscand
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'savscand' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process SophosScanD
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'SophosScanD' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process rtvscand
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'rtvscand' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process Symantec management client service
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'smcd' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process Symantec Endpoint Protection configuration service
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'symcfgd' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process synoavd
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'synoavd' not found
|
|||
|
2021-01-07 15:41:57 Test: checking process TmccMac to test for Trend Micro anti-virus (macOS)
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'TmccMac' not found
|
|||
|
2021-01-07 15:41:57 Result: no commercial anti-virus tools found
|
|||
|
2021-01-07 15:41:57 Hardening: assigned partial number of hardening points (0 of 3). Currently having 157 points (out of 255)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MALW-3282 (Check for clamscan)
|
|||
|
2021-01-07 15:41:57 Test: checking presence clamscan
|
|||
|
2021-01-07 15:41:57 Result: clamscan couldn't be found
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID MALW-3284 (Check for clamd)
|
|||
|
2021-01-07 15:41:57 Test: checking running ClamAV daemon (clamd)
|
|||
|
2021-01-07 15:41:57 Performing pgrep scan without uid
|
|||
|
2021-01-07 15:41:57 IsRunning: process 'clamd' not found
|
|||
|
2021-01-07 15:41:57 Result: clamd not running
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test MALW-3286 (Check for freshclam)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Skipped test MALW-3288 (Check for ClamXav)
|
|||
|
2021-01-07 15:41:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
|
|||
|
2021-01-07 15:41:57 Security check: file is normal
|
|||
|
2021-01-07 15:41:57 Checking permissions of /root/scans/lynis/include/tests_file_permissions
|
|||
|
2021-01-07 15:41:57 File permissions are OK
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Action: Performing tests from category: File Permissions
|
|||
|
2021-01-07 15:41:57 ====
|
|||
|
2021-01-07 15:41:57 Performing test ID FILE-7524 (Perform file permissions check)
|
|||
|
2021-01-07 15:41:57 Test: Checking file permissions
|
|||
|
2021-01-07 15:41:57 Using profile /root/scans/lynis/default.prf for baseline.
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /boot/grub/grub.cfg
|
|||
|
2021-01-07 15:41:58 Test: checking if file /boot/grub/grub.cfg has the permissions set to 600 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: correct permissions (444)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /boot/grub2/grub.cfg
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /boot/grub2/grub.cfg as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /boot/grub2/user.cfg
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /boot/grub2/user.cfg as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/at.allow
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /etc/at.allow as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/at.deny
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/at.deny has the permissions set to 600 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: permissions of file /etc/at.deny are not matching expected value (640 != rw-------)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/cron.allow
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /etc/cron.allow as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/cron.deny
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /etc/cron.deny as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/crontab
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/crontab has the permissions set to 600 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: permissions of file /etc/crontab are not matching expected value (644 != rw-------)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/group
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/group has the permissions set to 644 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: correct permissions (644)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/group-
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/group- has the permissions set to 644 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: correct permissions (600)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/hosts.allow
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/hosts.allow has the permissions set to 644 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: correct permissions (644)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/hosts.deny
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/hosts.deny has the permissions set to 644 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: correct permissions (644)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/issue
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/issue has the permissions set to 644 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: correct permissions (644)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/issue.net
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/issue.net has the permissions set to 644 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: correct permissions (644)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/lilo.conf
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /etc/lilo.conf as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/motd
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /etc/motd as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/passwd
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/passwd has the permissions set to 644 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: correct permissions (644)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/passwd-
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/passwd- has the permissions set to 644 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: correct permissions (600)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/ssh/sshd_config
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/ssh/sshd_config has the permissions set to 600 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: permissions of file /etc/ssh/sshd_config are not matching expected value (644 != rw-------)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/hosts.equiv
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /etc/hosts.equiv as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/shosts.equiv
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /etc/shosts.equiv as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /root/.rhosts
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /root/.rhosts as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /root/.rlogin
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /root/.rlogin as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /root/.shosts
|
|||
|
2021-01-07 15:41:58 Skipping file/directory /root/.shosts as it does not exist on this system
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /root/.ssh
|
|||
|
2021-01-07 15:41:58 Test: checking if file /root/.ssh has the permissions set to 700 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: correct permissions (700)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/cron.d
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/cron.d has the permissions set to 700 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: permissions of file /etc/cron.d are not matching expected value (755 != rwx------)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/cron.daily
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/cron.daily has the permissions set to 700 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: permissions of file /etc/cron.daily are not matching expected value (755 != rwx------)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/cron.hourly
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/cron.hourly has the permissions set to 700 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: permissions of file /etc/cron.hourly are not matching expected value (755 != rwx------)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/cron.weekly
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/cron.weekly has the permissions set to 700 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: permissions of file /etc/cron.weekly are not matching expected value (755 != rwx------)
|
|||
|
2021-01-07 15:41:58 Test: checking file/directory /etc/cron.monthly
|
|||
|
2021-01-07 15:41:58 Test: checking if file /etc/cron.monthly has the permissions set to 700 or more restrictive
|
|||
|
2021-01-07 15:41:58 Outcome: permissions of file /etc/cron.monthly are not matching expected value (755 != rwx------)
|
|||
|
2021-01-07 15:41:58 Suggestion: Consider restricting file permissions [test:FILE-7524] [details:See screen output or log file] [solution:text:Use chmod to change file permissions]
|
|||
|
2021-01-07 15:41:58 Security check: file is normal
|
|||
|
2021-01-07 15:41:58 Checking permissions of /root/scans/lynis/include/tests_homedirs
|
|||
|
2021-01-07 15:41:58 File permissions are OK
|
|||
|
2021-01-07 15:41:58 ====
|
|||
|
2021-01-07 15:41:58 Action: Performing tests from category: Home directories
|
|||
|
2021-01-07 15:41:58 ====
|
|||
|
2021-01-07 15:41:58 Performing test ID HOME-9302 (Create list with home directories)
|
|||
|
2021-01-07 15:41:58 Test: query /etc/passwd to obtain home directories
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /bin (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /dev (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /home/ll (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /home/syslog (directory does not exist)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /nonexistent (directory does not exist)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /root (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /usr/games (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /usr/sbin (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/backups (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/cache/man (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/lib/gnats (directory does not exist)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/lib/landscape (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/lib/libuuid (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/list (directory does not exist)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/mail (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/run/dbus (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/run/ircd (directory does not exist)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/run/sshd (directory exists)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/spool/lpd (directory does not exist)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/spool/news (directory does not exist)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/spool/uucp (directory does not exist)
|
|||
|
2021-01-07 15:41:58 Result: found home directory: /var/www (directory does not exist)
|
|||
|
2021-01-07 15:41:58 ====
|
|||
|
2021-01-07 15:41:58 Performing test ID HOME-9304 (Check if users' home directories permissions are 750 or more restrictive)
|
|||
|
2021-01-07 15:41:58 Test: checking directory '/var/lib/libuuid' for user 'libuuid'
|
|||
|
2021-01-07 15:41:58 Result: permissions of home directory /var/lib/libuuid of user libuuid are not strict enough. Should be 750 or more restrictive. Change with: chmod 750 /var/lib/libuuid
|
|||
|
2021-01-07 15:41:58 Test: checking directory '/home/ll' for user 'll'
|
|||
|
2021-01-07 15:41:58 Result: permissions of home directory /home/ll of user ll are not strict enough. Should be 750 or more restrictive. Change with: chmod 750 /home/ll
|
|||
|
2021-01-07 15:41:58 Suggestion: Double check the permissions of home directories as some might be not strict enough. [test:HOME-9304] [details:-] [solution:-]
|
|||
|
2021-01-07 15:41:58 ====
|
|||
|
2021-01-07 15:41:58 Performing test ID HOME-9306 (Check if users own their home directories)
|
|||
|
2021-01-07 15:41:58 Test: checking directory '/var/lib/libuuid' for user 'libuuid'
|
|||
|
2021-01-07 15:41:58 Result: ownership of home directory /var/lib/libuuid for user libuuid looks to be correct
|
|||
|
2021-01-07 15:41:58 Test: checking directory '/home/ll' for user 'll'
|
|||
|
2021-01-07 15:41:58 Result: ownership of home directory /home/ll for user ll looks to be correct
|
|||
|
2021-01-07 15:41:58 Result: OK, all users own their home directories
|
|||
|
2021-01-07 15:41:58 ====
|
|||
|
2021-01-07 15:41:58 Performing test ID HOME-9310 (Checking for suspicious shell history files)
|
|||
|
2021-01-07 15:41:58 Result: Ok, history files are type 'file'.
|
|||
|
2021-01-07 15:41:58 Remark: History files are normally of the type 'file'. Symbolic links and other types are suspicious.
|
|||
|
2021-01-07 15:41:58 ====
|
|||
|
2021-01-07 15:41:58 Performing test ID HOME-9350 (Collecting information from home directories)
|
|||
|
2021-01-07 15:41:58 Result: IGNORE_HOME_DIRS empty, no paths excluded
|
|||
|
2021-01-07 15:41:58 Security check: file is normal
|
|||
|
2021-01-07 15:41:58 Checking permissions of /root/scans/lynis/include/tests_kernel_hardening
|
|||
|
2021-01-07 15:41:58 File permissions are OK
|
|||
|
2021-01-07 15:41:58 ====
|
|||
|
2021-01-07 15:41:58 Action: Performing tests from category: Kernel Hardening
|
|||
|
2021-01-07 15:41:58 ====
|
|||
|
2021-01-07 15:41:58 Performing test ID KRNL-6000 (Check sysctl key pairs in scan profile)
|
|||
|
2021-01-07 15:41:58 Result: key dev.tty.ldisc_autoload does not exist on this machine
|
|||
|
2021-01-07 15:41:58 Result: sysctl key fs.protected_fifos has a different value than expected in scan profile. Expected=2, Real=0
|
|||
|
2021-01-07 15:41:58 Hardening: assigned partial number of hardening points (0 of 1). Currently having 157 points (out of 256)
|
|||
|
2021-01-07 15:41:58 Result: sysctl key fs.protected_hardlinks contains equal expected and current value (1)
|
|||
|
2021-01-07 15:41:58 Hardening: assigned maximum number of hardening points for this item (1). Currently having 158 points (out of 257)
|
|||
|
2021-01-07 15:41:58 Result: sysctl key fs.protected_regular has a different value than expected in scan profile. Expected=2, Real=0
|
|||
|
2021-01-07 15:41:58 Hardening: assigned partial number of hardening points (0 of 1). Currently having 158 points (out of 258)
|
|||
|
2021-01-07 15:41:58 Result: sysctl key fs.protected_symlinks contains equal expected and current value (1)
|
|||
|
2021-01-07 15:41:58 Hardening: assigned maximum number of hardening points for this item (1). Currently having 159 points (out of 259)
|
|||
|
2021-01-07 15:41:58 Result: sysctl key fs.suid_dumpable has a different value than expected in scan profile. Expected=0, Real=2
|
|||
|
2021-01-07 15:41:58 Hardening: assigned partial number of hardening points (0 of 1). Currently having 159 points (out of 260)
|
|||
|
2021-01-07 15:41:58 Result: key hw.kbd.keymap_restrict_change does not exist on this machine
|
|||
|
2021-01-07 15:41:58 Result: key kern.sugid_coredump does not exist on this machine
|
|||
|
2021-01-07 15:41:58 Result: key kernel.core_setuid_ok does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: sysctl key kernel.core_uses_pid has a different value than expected in scan profile. Expected=1, Real=0
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 159 points (out of 261)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key kernel.ctrl-alt-del contains equal expected and current value (0)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 160 points (out of 262)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key kernel.dmesg_restrict has a different value than expected in scan profile. Expected=1, Real=0
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 160 points (out of 263)
|
|||
|
2021-01-07 15:41:59 Result: key kernel.exec-shield-randomize does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key kernel.exec-shield does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: sysctl key kernel.kptr_restrict has a different value than expected in scan profile. Expected=2, Real=1
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 160 points (out of 264)
|
|||
|
2021-01-07 15:41:59 Result: key kernel.maps_protect does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: sysctl key kernel.modules_disabled has a different value than expected in scan profile. Expected=1, Real=0
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 160 points (out of 265)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key kernel.perf_event_paranoid has a different value than expected in scan profile. Expected=3, Real=1
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 160 points (out of 266)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key kernel.randomize_va_space contains equal expected and current value (2)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 161 points (out of 267)
|
|||
|
2021-01-07 15:41:59 Result: key kernel.suid_dumpable does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: sysctl key kernel.sysrq has a different value than expected in scan profile. Expected=0, Real=176
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 161 points (out of 268)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key kernel.unprivileged_bpf_disabled has a different value than expected in scan profile. Expected=1, Real=0
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 161 points (out of 269)
|
|||
|
2021-01-07 15:41:59 Result: key kernel.use-nx does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: sysctl key kernel.yama.ptrace_scope contains equal expected and current value (1 2 3)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 162 points (out of 270)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.core.bpf_jit_harden has a different value than expected in scan profile. Expected=2, Real=0
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 162 points (out of 271)
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.icmp.bmcastecho does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.icmp.drop_redirect does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.icmp.rediraccept does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.icmp.timestamp does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.ip.accept_sourceroute does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.ip.check_interface does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.ip.forwarding does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.ip.linklocal.in.allowbadttl does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.ip.process_options does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.ip.random_id does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.ip.redirect does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.ip.sourceroute does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.ip6.redirect does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.tcp.always_keepalive does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.tcp.blackhole does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.tcp.drop_synfin does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.tcp.icmp_may_rst does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.tcp.nolocaltimewait does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.tcp.path_mtu_discovery does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet.udp.blackhole does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet6.icmp6.rediraccept does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet6.ip6.forwarding does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet6.ip6.fw.enable does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key net.inet6.ip6.redirect does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.all.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 162 points (out of 272)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.all.accept_source_route contains equal expected and current value (0)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 163 points (out of 273)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.all.bootp_relay contains equal expected and current value (0)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 164 points (out of 274)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.all.forwarding contains equal expected and current value (0)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 165 points (out of 275)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.all.log_martians has a different value than expected in scan profile. Expected=1, Real=0
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 165 points (out of 276)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.all.mc_forwarding contains equal expected and current value (0)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 166 points (out of 277)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.all.proxy_arp contains equal expected and current value (0)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 167 points (out of 278)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.all.rp_filter contains equal expected and current value (1)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 168 points (out of 279)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.all.send_redirects has a different value than expected in scan profile. Expected=0, Real=1
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 168 points (out of 280)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.default.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 168 points (out of 281)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.default.accept_source_route has a different value than expected in scan profile. Expected=0, Real=1
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 168 points (out of 282)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.conf.default.log_martians has a different value than expected in scan profile. Expected=1, Real=0
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 168 points (out of 283)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.icmp_echo_ignore_broadcasts contains equal expected and current value (1)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 169 points (out of 284)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.icmp_ignore_bogus_error_responses contains equal expected and current value (1)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 170 points (out of 285)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.tcp_syncookies contains equal expected and current value (1)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 171 points (out of 286)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv4.tcp_timestamps contains equal expected and current value (0 1)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 172 points (out of 287)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv6.conf.all.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 172 points (out of 288)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv6.conf.all.accept_source_route contains equal expected and current value (0)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 173 points (out of 289)
|
|||
|
2021-01-07 15:41:59 Result: key net.ipv6.conf.all.send_redirects does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv6.conf.default.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (0 of 1). Currently having 173 points (out of 290)
|
|||
|
2021-01-07 15:41:59 Result: sysctl key net.ipv6.conf.default.accept_source_route contains equal expected and current value (0)
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (1). Currently having 174 points (out of 291)
|
|||
|
2021-01-07 15:41:59 Result: key security.bsd.hardlink_check_gid does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key security.bsd.hardlink_check_uid does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key security.bsd.see_other_gids does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key security.bsd.see_other_uids does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key security.bsd.stack_guard_page does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key security.bsd.unprivileged_proc_debug does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: key security.bsd.unprivileged_read_msgbuf does not exist on this machine
|
|||
|
2021-01-07 15:41:59 Result: found 19 keys that can use tuning, according scan profile
|
|||
|
2021-01-07 15:41:59 Suggestion: One or more sysctl values differ from the scan profile and could be tweaked [test:KRNL-6000] [details:] [solution:Change sysctl value or disable test (skip-test=KRNL-6000:<sysctl-key>)]
|
|||
|
2021-01-07 15:41:59 Security check: file is normal
|
|||
|
2021-01-07 15:41:59 Checking permissions of /root/scans/lynis/include/tests_hardening
|
|||
|
2021-01-07 15:41:59 File permissions are OK
|
|||
|
2021-01-07 15:41:59 ====
|
|||
|
2021-01-07 15:41:59 Action: Performing tests from category: Hardening
|
|||
|
2021-01-07 15:41:59 ====
|
|||
|
2021-01-07 15:41:59 Performing test ID HRDN-7220 (Check if one or more compilers are installed)
|
|||
|
2021-01-07 15:41:59 Test: Check if one or more compilers can be found on the system
|
|||
|
2021-01-07 15:41:59 Result: no compilers found
|
|||
|
2021-01-07 15:41:59 Hardening: assigned maximum number of hardening points for this item (3). Currently having 177 points (out of 294)
|
|||
|
2021-01-07 15:41:59 ====
|
|||
|
2021-01-07 15:41:59 Performing test ID HRDN-7222 (Check compiler permissions)
|
|||
|
2021-01-07 15:41:59 Test: Check if one or more compilers can be found on the system
|
|||
|
2021-01-07 15:41:59 Result: no compilers found
|
|||
|
2021-01-07 15:41:59 ====
|
|||
|
2021-01-07 15:41:59 Performing test ID HRDN-7230 (Check for malware scanner)
|
|||
|
2021-01-07 15:41:59 Test: Check if a malware scanner is installed
|
|||
|
2021-01-07 15:41:59 Result: no malware scanner found
|
|||
|
2021-01-07 15:41:59 Suggestion: Harden the system by installing at least one malware scanner, to perform periodic file system scans [test:HRDN-7230] [details:-] [solution:Install a tool like rkhunter, chkrootkit, OSSEC]
|
|||
|
2021-01-07 15:41:59 Hardening: assigned partial number of hardening points (1 of 3). Currently having 178 points (out of 297)
|
|||
|
2021-01-07 15:41:59 Result: no malware scanner found
|
|||
|
2021-01-07 15:41:59 ====
|
|||
|
2021-01-07 15:41:59 Performing test ID HRDN-7231 (Check for registered non-native binary formats)
|
|||
|
2021-01-07 15:41:59 Test: Check for registered non-native binary formats
|
|||
|
2021-01-07 15:41:59 Result: no non-native binary formats found
|
|||
|
2021-01-07 15:41:59 ====
|
|||
|
2021-01-07 15:41:59 Action: Performing tests from category: Custom tests
|
|||
|
2021-01-07 15:41:59 Test: Checking for tests_custom file
|
|||
|
2021-01-07 15:41:59 ====
|
|||
|
2021-01-07 15:41:59 Action: Performing plugin tests
|
|||
|
2021-01-07 15:41:59 Result: Found 2 plugins of which 2 are enabled
|
|||
|
2021-01-07 15:41:59 Result: Plugins phase 2 finished
|
|||
|
2021-01-07 15:41:59 Checking permissions of /root/scans/lynis/include/report
|
|||
|
2021-01-07 15:41:59 File permissions are OK
|
|||
|
2021-01-07 15:41:59 Hardening index : [59] [########### ]
|
|||
|
2021-01-07 15:41:59 Hardening strength: System has been hardened, but could use additional hardening
|
|||
|
2021-01-07 15:41:59 ====
|
|||
|
2021-01-07 15:42:01 Checking permissions of /root/scans/lynis/include/tool_tips
|
|||
|
2021-01-07 15:42:01 File permissions are OK
|
|||
|
2021-01-07 15:42:01 Tool tips: enabled
|
|||
|
2021-01-07 15:42:01 ================================================================================
|
|||
|
2021-01-07 15:42:01 Tests performed: 239
|
|||
|
2021-01-07 15:42:01 Total tests: 455
|
|||
|
2021-01-07 15:42:01 Active plugins: 2
|
|||
|
2021-01-07 15:42:01 Total plugins: 2
|
|||
|
2021-01-07 15:42:01 ================================================================================
|
|||
|
2021-01-07 15:42:01 Lynis 3.0.3
|
|||
|
2021-01-07 15:42:01 2007-2021, CISOfy - https://cisofy.com/lynis/
|
|||
|
2021-01-07 15:42:01 Enterprise support available (compliance, plugins, interface and tools)
|
|||
|
2021-01-07 15:42:01 Program ended successfully
|
|||
|
2021-01-07 15:42:01 ================================================================================
|
|||
|
2021-01-07 15:42:01 PID file removed (/var/run/lynis.pid)
|
|||
|
2021-01-07 15:42:01 Temporary files: /tmp/lynis.sHalySRbTD /tmp/lynis.TjjgqfBS3g /tmp/lynis.Kky3GynQHb /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:42:01 Action: removing temporary file /tmp/lynis.sHalySRbTD
|
|||
|
2021-01-07 15:42:01 Info: temporary file /tmp/lynis.TjjgqfBS3g was already removed
|
|||
|
2021-01-07 15:42:01 Info: temporary file /tmp/lynis.Kky3GynQHb was already removed
|
|||
|
2021-01-07 15:42:01 Action: removing temporary file /tmp/lynis.w0Q6PEItQm
|
|||
|
2021-01-07 15:42:01 Lynis ended successfully.
|