Check & test your server for security holes - Lynis

T

his tutorial works for CentOS only. For your specific OS tutorial use the tags or serach function in the sidebar area.

 

You have just finished setup your server, you think it's ready to go.. but you asking a question "Have I forgot something?" "Is it secure to go online?".


Here comes Lynis - security and auditing tool. Lynis performs an in-depth local scan on the system and is therefore much more thorough than network based vulnerability scanners.

It starts with the bootloader and goes up to installed software packages. After the analysis it provides the administrator with discovered findings, including hints to further secure the system.

It scans the your Linux server operating system by performing many security control checks and tests, including searching for installed software and determine possible configuration flaws.

The primary goal of Lynis is to perform a quick scan on your systems and determine room for improvement.

Download & Run

We have to download manually from http://rootkit.nl/software/lynis/

 
[root@server][~]
$ cd ~

[root@server][~]
$ wget http://cisofy.com/files/lynis-1.5.2.tar.gz
--2014-05-12 10:55:33-- http://cisofy.com/files/lynis-1.5.2.tar.gz
Resolving cisofy.com... 149.210.134.182
Connecting to cisofy.com|149.210.134.182|:80... connected.
HTTP request sent, awaiting response... 200 OK
Length: 145963 (143K) [application/octet-stream]
Saving to: `lynis-1.5.2.tar.gz'

100%[==========================>] 145,963 --.-K/s in 0.1s

2014-05-12 10:55:33 (1.26 MB/s) - `lynis-1.5.2.tar.gz' saved [145963/145963]
 
 
$ tar xvf lynis-1.5.2.tar.gz
....
$ cd lynis-1.5.2.tar.gz/
 

And now you only execute

 
$ lynis -c
 

and watch the output :-)