Skip to content

Lynis 2.4.0
Compare
Choose a tag to compare
@mboelen mboelen released this 27 Oct 10:51
· 2134 commits to master since this release
2.4.0
7155afa

Lynis 2.4.0 (2016-10-27)

Exactly one month after previous release, the Lynis project is proud to announce
a new release. This release had the specific focus to improve support for macOS
users. Thanks to testers and contributors to make this possible.

New:

  • New group "system integrity" added
  • Support for clamconf utility
  • Chinese translation (language=cn)
  • New command "upload-only" to upload just the data instead of a full audit
  • Enhanced support for macOS, including HostID2 generation for macOS
  • Support for CoreOS
  • Detection for pkg binary (FreeBSD)
  • New command: lynis show hostids (show host ID)
  • New command: lynis show environment (hardware, VM, or container type)
  • New command: lynis show os (show operating system details)

Changes:

  • Several new sysctl values have been added to the default profile
  • Existing tests have been enhanced to support macOS

Tests:

  • AUTH-9234 - Support for macOS user gathering
  • BOOT-5139 - Support for machine roles in LILO test
  • BOOT-5202 - Improve uptime detection for macOS and others
  • FIRE-4518 - Improve pf detection and mark as root-only test
  • FIRE-4530 - Don't show error on screen for missing IPFW sysctl key
  • FIRE-4534 - Check Little Snitch on macOS
  • INSE-8050 - Test for insecure services on macOS
  • MACF-6208 - Allow non-privileged execution and filter permission issues
  • MALW-3280 - Detection for Avast and Bitdefender daemon on macOS
  • NETW-3004 - Support for macOS
  • PKGS-7381 - Improve test for pkg audit on FreeBSD
  • TIME-3104 - Chrony support extended

Plugins (community and commercial):

  • PLGN-1430 - Gather installed software packages for macOS
  • PLGN-4602 - Support for Clam definition check on macOS
Assets 2
Loading