Shulou(Shulou.com)06/02 Report--

How to understand Lynis 2.7.3, a multi-functional security audit tool for Unix and Linux systems, this article introduces in detail the corresponding analysis and answers to this problem, hoping to help more partners who want to solve this problem to find a more simple and feasible method.

Lynis introduction

Lynis is an open source security audit tool, which can be used by system administrators, security experts and auditors to audit Linux and Unix-like systems. The tool can be run directly on the test host, and Lynis has a wider range of security scans than regular vulnerability scanning tools.

Recently, researchers released a new version of the multi-functional security audit tool-Lynis. This release not only makes significant improvements to the core functionality of Lynis, but also adds a lot of additional security auditing capabilities.

Supported operating system

The tool does not need to install extra dependent components, so it can be run directly on all Unix-like systems, including:

AIXFreeBSDHP-UXLinuxmacOSNetBSDOpenBSDSolaris... .

In addition, it can also run on raspberry pies and other embedded devices.

Installation option

Lynis is a lightweight framework and is easy to use. We just need to copy the project file to the local system directory, and then use the following command to turn on security scanning:

. / lynis audit system

The tool is developed by Shell script and follows the GPL open source software license agreement.

Working mechanism

Lynis can perform hundreds of individual scanning tasks and judge the security status of the target system according to the scan results. From the initialization program to the generation of the final audit report, each security scanning task consists of multiple test phases.

Audit steps

1. Determine the target operating system

2. Search for available tools and utilities

3. Check Lynis is better.

4. Use enabled plug-ins for testing

5. Conduct safety testing according to classification

6. Generate a security scan report

In addition to the above data, Lynis generates a detailed technical analysis report, which is stored in a log file, which also includes security warnings, security recommendations, and collected data.

Use exampl

Because Lynis is so flexible that researchers can use it for a variety of purposes, here are several usage scenarios for Lynis:

Security audit

Compatibility testing (PCI, HIPAA, Sox)

Vulnerability detection and scanning

System security enhancement

Test resources

Many tools use the same data file to perform security tests. Because Lynis does not limit the number of Linux distributions that can be run, it can perform more standard tests than normal test tools.

BestpracticesCISNISTNSAOpenSCAPdataDebian GentooLynis plug-in

Plug-in capabilities enhance the functionality of Lynis, and when plug-in functionality is enabled, Lynis can perform additional security tests.

This is the answer to the question on how to understand Lynis 2.7.3, a multi-functional security audit tool for Unix and Linux systems. I hope the above content can be of some help to you. If you still have a lot of doubts to be solved, you can follow the industry information channel for more related knowledge.

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.