BFthPMdW

12018-11-14 09:24:22 ===---------------------------------------------------------------===
22018-11-14 09:24:22 Skipped test PKGS-7310 (Checking package list with pacman)
32018-11-14 09:24:22 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
42018-11-14 09:24:22 ===---------------------------------------------------------------===
52018-11-14 09:24:22 Skipped test PKGS-7312 (Checking available updates for pacman based system)
62018-11-14 09:24:22 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
72018-11-14 09:24:22 Result: pacman binary NOT found on this system, test skipped
82018-11-14 09:24:22 ===---------------------------------------------------------------===
92018-11-14 09:24:22 Skipped test PKGS-7314 (Checking pacman configuration options)
102018-11-14 09:24:22 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
112018-11-14 09:24:22 ===---------------------------------------------------------------===
122018-11-14 09:24:22 Skipped test PKGS-7320 (Checking for arch-audit tooling)
132018-11-14 09:24:22 Reason to skip: Test only applies to Arch Linux
142018-11-14 09:24:22 ===---------------------------------------------------------------===
152018-11-14 09:24:22 Skipped test PKGS-7322 (Discover vulnerable packages with arch-audit)
162018-11-14 09:24:22 Reason to skip: arch-audit not found
172018-11-14 09:24:22 ===---------------------------------------------------------------===
182018-11-14 09:24:22 Skipped test PKGS-7328 (Querying Zypper for installed packages)
192018-11-14 09:24:22 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
202018-11-14 09:24:22 ===---------------------------------------------------------------===
212018-11-14 09:24:22 Skipped test PKGS-7330 (Querying Zypper for vulnerable packages)
222018-11-14 09:24:22 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
232018-11-14 09:24:22 ===---------------------------------------------------------------===
242018-11-14 09:24:22 Skipped test PKGS-7332 (Query macOS ports)
252018-11-14 09:24:22 Reason to skip: Incorrect guest OS (macOS only)
262018-11-14 09:24:22 ===---------------------------------------------------------------===
272018-11-14 09:24:22 Skipped test PKGS-7334 (Query port for port upgrades)
282018-11-14 09:24:22 Reason to skip: Incorrect guest OS (macOS only)
292018-11-14 09:24:22 ===---------------------------------------------------------------===
302018-11-14 09:24:22 Performing test ID PKGS-7345 (Querying dpkg)
312018-11-14 09:24:22 Result: Found dpkg binary
322018-11-14 09:24:22 Test: Querying dpkg -l to get package list
332018-11-14 09:24:22 Output:
342018-11-14 09:24:22 Found package: adduser (version: 3.115)
352018-11-14 09:24:23 Found package: apt (version: 1.4.8)
362018-11-14 09:24:23 Found package: apt-transport-https (version: 1.4.8)
372018-11-14 09:24:23 Found package: apt-utils (version: 1.4.8)
382018-11-14 09:24:23 Found package: base-files (version: 9.9+deb9u5)
392018-11-14 09:24:23 Found package: base-passwd (version: 3.5.43)
402018-11-14 09:24:23 Found package: bash (version: 4.4-5)
412018-11-14 09:24:23 Found package: binutils (version: 2.28-5)
422018-11-14 09:24:23 Found package: bluez (version: 5.43-2+deb9u1)
432018-11-14 09:24:23 Found package: bsdmainutils (version: 9.0.12+nmu1)
442018-11-14 09:24:23 Found package: bsdutils (version: 1:2.29.2-1+deb9u1)
452018-11-14 09:24:23 Found package: build-essential (version: 12.3)
462018-11-14 09:24:23 Found package: bzip2 (version: 1.0.6-8.1)
472018-11-14 09:24:23 Found package: ca-certificates (version: 20161130+nmu1+deb9u1)
482018-11-14 09:24:23 Found package: cmake (version: 3.7.2-1)
492018-11-14 09:24:23 Found package: cmake-data (version: 3.7.2-1)
502018-11-14 09:24:23 Found package: coreutils (version: 8.26-3)
512018-11-14 09:24:23 Found package: cpio (version: 2.11+dfsg-6)
522018-11-14 09:24:23 Found package: cpp (version: 4:6.3.0-4)
532018-11-14 09:24:23 Found package: cpp-6 (version: 6.3.0-18+deb9u1)
542018-11-14 09:24:23 Found package: cron (version: 3.0pl1-128+deb9u1)
552018-11-14 09:24:23 Found package: dash (version: 0.5.8-2.4)
562018-11-14 09:24:23 Found package: dbus (version: 1.10.26-0+deb9u1)
572018-11-14 09:24:23 Found package: debconf (version: 1.5.61)
582018-11-14 09:24:23 Found package: debconf-i18n (version: 1.5.61)
592018-11-14 09:24:23 Found package: debian-archive-keyring (version: 2017.5)
602018-11-14 09:24:23 Found package: debianutils (version: 4.8.1.1)
612018-11-14 09:24:23 Found package: dh-python (version: 2.20170125)
622018-11-14 09:24:23 Found package: diffutils (version: 1:3.5-3)
632018-11-14 09:24:23 Found package: dirmngr (version: 2.1.18-8~deb9u2)
642018-11-14 09:24:23 Found package: distro-info-data (version: 0.36)
652018-11-14 09:24:23 Found package: dmidecode (version: 3.0-4)
662018-11-14 09:24:23 Found package: dmsetup (version: 2:1.02.137-2)
672018-11-14 09:24:23 Found package: dnsmasq (version: 2.76-5+deb9u1)
682018-11-14 09:24:23 Found package: dnsmasq-base (version: 2.76-5+deb9u1)
692018-11-14 09:24:23 Found package: dpkg (version: 1.18.25)
702018-11-14 09:24:23 Found package: dpkg-dev (version: 1.18.25)
712018-11-14 09:24:23 Found package: e2fslibs:armhf (version: 1.43.4-2)
722018-11-14 09:24:23 Found package: e2fsprogs (version: 1.43.4-2)
732018-11-14 09:24:23 Found package: fakeroot (version: 1.21-3.1)
742018-11-14 09:24:23 Found package: file (version: 1:5.30-1+deb9u2)
752018-11-14 09:24:23 Found package: findutils (version: 4.6.0+git+20161106-2)
762018-11-14 09:24:23 Found package: fitp (version: 2018.10.10-1)
772018-11-14 09:24:23 Found package: fping (version: 3.15-1)
782018-11-14 09:24:23 Found package: g++ (version: 4:6.3.0-4)
792018-11-14 09:24:23 Found package: g++-6 (version: 6.3.0-18+deb9u1)
802018-11-14 09:24:23 Found package: gateway (version: 1.0.6)
812018-11-14 09:24:23 Found package: gcc (version: 4:6.3.0-4)
822018-11-14 09:24:23 Found package: gcc-6 (version: 6.3.0-18+deb9u1)
832018-11-14 09:24:23 Found package: gcc-6-base:armhf (version: 6.3.0-18+deb9u1)
842018-11-14 09:24:23 Found package: git (version: 1:2.11.0-3+deb9u3)
852018-11-14 09:24:23 Found package: git-man (version: 1:2.11.0-3+deb9u3)
862018-11-14 09:24:23 Found package: gnupg (version: 2.1.18-8~deb9u2)
872018-11-14 09:24:23 Found package: gnupg-agent (version: 2.1.18-8~deb9u2)
882018-11-14 09:24:23 Found package: gpgv (version: 2.1.18-8~deb9u2)
892018-11-14 09:24:23 Found package: grep (version: 2.27-2)
902018-11-14 09:24:23 Found package: gwman-client (version: 1.2-5)
912018-11-14 09:24:23 Found package: gzip (version: 1.6-5+b1)
922018-11-14 09:24:23 Found package: hostapd (version: 2:2.4-1+deb9u1)
932018-11-14 09:24:23 Found package: hostname (version: 3.18+b1)
942018-11-14 09:24:23 Found package: htop (version: 2.0.2-1)
952018-11-14 09:24:23 Found package: ifplugd (version: 0.28-19.2+b1)
962018-11-14 09:24:23 Found package: ifupdown (version: 0.8.19)
972018-11-14 09:24:23 Found package: init (version: 1.48)
982018-11-14 09:24:23 Found package: init-system-helpers (version: 1.48)
992018-11-14 09:24:23 Found package: iproute2 (version: 4.9.0-1+deb9u1)
1002018-11-14 09:24:23 Found package: iptables (version: 1.6.0+snapshot20161117-6)
1012018-11-14 09:24:23 Found package: iputils-ping (version: 3:20161105-1)
1022018-11-14 09:24:23 Found package: isc-dhcp-client (version: 4.3.5-3+deb9u1)
1032018-11-14 09:24:23 Found package: isc-dhcp-common (version: 4.3.5-3+deb9u1)
1042018-11-14 09:24:23 Found package: iw (version: 4.9-0.1)
1052018-11-14 09:24:23 Found package: kmod (version: 23-2)
1062018-11-14 09:24:23 Found package: less (version: 481-2.1)
1072018-11-14 09:24:23 Found package: libacl1:armhf (version: 2.2.52-3+b1)
1082018-11-14 09:24:23 Found package: libalgorithm-diff-perl (version: 1.19.03-1)
1092018-11-14 09:24:23 Found package: libalgorithm-diff-xs-perl (version: 0.04-4+b2)
1102018-11-14 09:24:23 Found package: libalgorithm-merge-perl (version: 0.08-3)
1112018-11-14 09:24:23 Found package: libapparmor1:armhf (version: 2.11.0-3+deb9u2)
1122018-11-14 09:24:23 Found package: libapt-inst2.0:armhf (version: 1.4.8)
1132018-11-14 09:24:23 Found package: libapt-pkg5.0:armhf (version: 1.4.8)
1142018-11-14 09:24:23 Found package: libarchive13:armhf (version: 3.2.2-2)
1152018-11-14 09:24:23 Found package: libasan3:armhf (version: 6.3.0-18+deb9u1)
1162018-11-14 09:24:23 Found package: libassuan0:armhf (version: 2.4.3-2)
1172018-11-14 09:24:23 Found package: libatomic1:armhf (version: 6.3.0-18+deb9u1)
1182018-11-14 09:24:23 Found package: libattr1:armhf (version: 1:2.4.47-2+b2)
1192018-11-14 09:24:23 Found package: libaudit-common (version: 1:2.6.7-2)
1202018-11-14 09:24:23 Found package: libaudit1:armhf (version: 1:2.6.7-2)
1212018-11-14 09:24:23 Found package: libblkid1:armhf (version: 2.29.2-1+deb9u1)
1222018-11-14 09:24:23 Found package: libbluetooth-dev (version: 5.43-2+deb9u1)
1232018-11-14 09:24:23 Found package: libbluetooth3:armhf (version: 5.43-2+deb9u1)
1242018-11-14 09:24:23 Found package: libboost-filesystem1.62.0:armhf (version: 1.62.0+dfsg-4)
1252018-11-14 09:24:24 Found package: libboost-system1.62.0:armhf (version: 1.62.0+dfsg-4)
1262018-11-14 09:24:24 Found package: libbsd0:armhf (version: 0.8.3-1)
1272018-11-14 09:24:24 Found package: libbz2-1.0:armhf (version: 1.0.6-8.1)
1282018-11-14 09:24:24 Found package: libc-ares2:armhf (version: 1.12.0-1+deb9u1)
1292018-11-14 09:24:24 Found package: libc-bin (version: 2.24-11+deb9u3)
1302018-11-14 09:24:24 Found package: libc-dev-bin (version: 2.24-11+deb9u3)
1312018-11-14 09:24:24 Found package: libc6-dev:armhf (version: 2.24-11+deb9u3)
1322018-11-14 09:24:24 Found package: libc6:armhf (version: 2.24-11+deb9u3)
1332018-11-14 09:24:24 Found package: libcap-ng0:armhf (version: 0.7.7-3+b1)
1342018-11-14 09:24:24 Found package: libcap2-bin (version: 1:2.25-1)
1352018-11-14 09:24:24 Found package: libcap2:armhf (version: 1:2.25-1)
1362018-11-14 09:24:24 Found package: libcc1-0:armhf (version: 6.3.0-18+deb9u1)
1372018-11-14 09:24:24 Found package: libcomerr2:armhf (version: 1.43.4-2)
1382018-11-14 09:24:24 Found package: libcppunit-1.13-0v5:armhf (version: 1.13.2-2.1)
1392018-11-14 09:24:24 Found package: libcppunit-dev (version: 1.13.2-2.1)
1402018-11-14 09:24:24 Found package: libcryptsetup4:armhf (version: 2:1.7.3-4)
1412018-11-14 09:24:24 Found package: libcurl3-gnutls:armhf (version: 7.52.1-5+deb9u6)
1422018-11-14 09:24:24 Found package: libcurl3:armhf (version: 7.52.1-5+deb9u6)
1432018-11-14 09:24:24 Found package: libdaemon0:armhf (version: 0.14-6)
1442018-11-14 09:24:24 Found package: libdb5.3:armhf (version: 5.3.28-12+deb9u1)
1452018-11-14 09:24:24 Found package: libdbus-1-3:armhf (version: 1.10.26-0+deb9u1)
1462018-11-14 09:24:24 Found package: libdebconfclient0:armhf (version: 0.227)
1472018-11-14 09:24:24 Found package: libdevmapper1.02.1:armhf (version: 2:1.02.137-2)
1482018-11-14 09:24:24 Found package: libdns-export162 (version: 1:9.10.3.dfsg.P4-12.3+deb9u4)
1492018-11-14 09:24:24 Found package: libdpkg-perl (version: 1.18.25)
1502018-11-14 09:24:24 Found package: libedit2:armhf (version: 3.1-20160903-3)
1512018-11-14 09:24:24 Found package: libelf1:armhf (version: 0.168-1)
1522018-11-14 09:24:24 Found package: liberror-perl (version: 0.17024-1)
1532018-11-14 09:24:24 Found package: libestr0 (version: 0.1.10-2)
1542018-11-14 09:24:24 Found package: libev4 (version: 1:4.22-1+b1)
1552018-11-14 09:24:24 Found package: libexif12:armhf (version: 0.6.21-2+b2)
1562018-11-14 09:24:24 Found package: libexpat1:armhf (version: 2.2.0-2+deb9u1)
1572018-11-14 09:24:24 Found package: libfakeroot:armhf (version: 1.21-3.1)
1582018-11-14 09:24:24 Found package: libfastjson4:armhf (version: 0.99.4-1)
1592018-11-14 09:24:24 Found package: libfdisk1:armhf (version: 2.29.2-1+deb9u1)
1602018-11-14 09:24:24 Found package: libffi6:armhf (version: 3.2.1-6)
1612018-11-14 09:24:24 Found package: libfile-fcntllock-perl (version: 0.22-3+b2)
1622018-11-14 09:24:24 Found package: libgcc-6-dev:armhf (version: 6.3.0-18+deb9u1)
1632018-11-14 09:24:24 Found package: libgcc1:armhf (version: 1:6.3.0-18+deb9u1)
1642018-11-14 09:24:24 Found package: libgcrypt20:armhf (version: 1.7.6-2+deb9u3)
1652018-11-14 09:24:24 Found package: libgdbm3:armhf (version: 1.8.3-14)
1662018-11-14 09:24:24 Found package: libglib2.0-0:armhf (version: 2.50.3-2)
1672018-11-14 09:24:24 Found package: libglib2.0-bin (version: 2.50.3-2)
1682018-11-14 09:24:24 Found package: libglib2.0-data (version: 2.50.3-2)
1692018-11-14 09:24:24 Found package: libglib2.0-dev (version: 2.50.3-2)
1702018-11-14 09:24:24 Found package: libgmp10:armhf (version: 2:6.1.2+dfsg-1)
1712018-11-14 09:24:24 Found package: libgnutls30:armhf (version: 3.5.8-5+deb9u3)
1722018-11-14 09:24:24 Found package: libgomp1:armhf (version: 6.3.0-18+deb9u1)
1732018-11-14 09:24:24 Found package: libgpg-error0:armhf (version: 1.26-2)
1742018-11-14 09:24:24 Found package: libgpm2:armhf (version: 1.20.4-6.2+b1)
1752018-11-14 09:24:24 Found package: libgssapi-krb5-2:armhf (version: 1.15-1+deb9u1)
1762018-11-14 09:24:24 Found package: libhogweed4:armhf (version: 3.3-1+b2)
1772018-11-14 09:24:24 Found package: libicu57:armhf (version: 57.1-6+deb9u2)
1782018-11-14 09:24:24 Found package: libidn11:armhf (version: 1.33-1)
1792018-11-14 09:24:24 Found package: libidn2-0:armhf (version: 0.16-1+deb9u1)
1802018-11-14 09:24:24 Found package: libip4tc0:armhf (version: 1.6.0+snapshot20161117-6)
1812018-11-14 09:24:24 Found package: libip6tc0:armhf (version: 1.6.0+snapshot20161117-6)
1822018-11-14 09:24:24 Found package: libiptc0:armhf (version: 1.6.0+snapshot20161117-6)
1832018-11-14 09:24:24 Found package: libisc-export160 (version: 1:9.10.3.dfsg.P4-12.3+deb9u4)
1842018-11-14 09:24:24 Found package: libisl15:armhf (version: 0.18-1)
1852018-11-14 09:24:24 Found package: libiw30:armhf (version: 30~pre9-12+b1)
1862018-11-14 09:24:24 Found package: libjim0.76:armhf (version: 0.76-2+b1)
1872018-11-14 09:24:24 Found package: libjpeg62-turbo:armhf (version: 1:1.5.1-2)
1882018-11-14 09:24:24 Found package: libjsoncpp1:armhf (version: 1.7.4-3)
1892018-11-14 09:24:24 Found package: libk5crypto3:armhf (version: 1.15-1+deb9u1)
1902018-11-14 09:24:24 Found package: libkeyutils1:armhf (version: 1.5.9-9)
1912018-11-14 09:24:24 Found package: libkmod2:armhf (version: 23-2)
1922018-11-14 09:24:24 Found package: libkrb5-3:armhf (version: 1.15-1+deb9u1)
1932018-11-14 09:24:24 Found package: libkrb5support0:armhf (version: 1.15-1+deb9u1)
1942018-11-14 09:24:24 Found package: libksba8:armhf (version: 1.3.5-2)
1952018-11-14 09:24:24 Found package: libldap-2.4-2:armhf (version: 2.4.44+dfsg-5+deb9u2)
1962018-11-14 09:24:24 Found package: libldap-common (version: 2.4.44+dfsg-5+deb9u2)
1972018-11-14 09:24:24 Found package: liblocale-gettext-perl (version: 1.07-3+b1)
1982018-11-14 09:24:24 Found package: liblogging-stdlog0:armhf (version: 1.0.5-2+b2)
1992018-11-14 09:24:24 Found package: liblognorm5:armhf (version: 2.0.1-1.1+b1)
2002018-11-14 09:24:24 Found package: libltdl7:armhf (version: 2.4.6-2)
2012018-11-14 09:24:24 Found package: liblz4-1:armhf (version: 0.0~r131-2+b1)
2022018-11-14 09:24:24 Found package: liblzma5:armhf (version: 5.2.2-1.2+b1)
2032018-11-14 09:24:24 Found package: liblzo2-2:armhf (version: 2.08-1.2+b2)
2042018-11-14 09:24:24 Found package: libmagic-mgc (version: 1:5.30-1+deb9u2)
2052018-11-14 09:24:24 Found package: libmagic1:armhf (version: 1:5.30-1+deb9u2)
2062018-11-14 09:24:24 Found package: libmnl0:armhf (version: 1.0.4-2)
2072018-11-14 09:24:24 Found package: libmosquitto-dev:armhf (version: 1.4.10-3+deb9u1)
2082018-11-14 09:24:24 Found package: libmosquitto1:armhf (version: 1.4.10-3+deb9u1)
2092018-11-14 09:24:24 Found package: libmosquittopp-dev:armhf (version: 1.4.10-3+deb9u1)
2102018-11-14 09:24:24 Found package: libmosquittopp1:armhf (version: 1.4.10-3+deb9u1)
2112018-11-14 09:24:24 Found package: libmount1:armhf (version: 2.29.2-1+deb9u1)
2122018-11-14 09:24:24 Found package: libmpc3:armhf (version: 1.0.3-1+b2)
2132018-11-14 09:24:24 Found package: libmpdec2:armhf (version: 2.4.2-1)
2142018-11-14 09:24:24 Found package: libmpfr4:armhf (version: 3.1.5-1)
2152018-11-14 09:24:24 Found package: libncurses5:armhf (version: 6.0+20161126-1+deb9u2)
2162018-11-14 09:24:25 Found package: libncursesw5:armhf (version: 6.0+20161126-1+deb9u2)
2172018-11-14 09:24:25 Found package: libnetfilter-conntrack3:armhf (version: 1.0.6-2)
2182018-11-14 09:24:25 Found package: libnettle6:armhf (version: 3.3-1+b2)
2192018-11-14 09:24:25 Found package: libnewt0.52:armhf (version: 0.52.19-1+b1)
2202018-11-14 09:24:25 Found package: libnfnetlink0:armhf (version: 1.0.1-3)
2212018-11-14 09:24:25 Found package: libnghttp2-14:armhf (version: 1.18.1-1)
2222018-11-14 09:24:25 Found package: libnl-3-200:armhf (version: 3.2.27-2)
2232018-11-14 09:24:25 Found package: libnl-genl-3-200:armhf (version: 3.2.27-2)
2242018-11-14 09:24:25 Found package: libnl-route-3-200:armhf (version: 3.2.27-2)
2252018-11-14 09:24:25 Found package: libnpth0:armhf (version: 1.3-1)
2262018-11-14 09:24:25 Found package: libopenzwave1.5 (version: 1.5+ds-4)
2272018-11-14 09:24:25 Found package: libopts25:armhf (version: 1:5.18.12-3)
2282018-11-14 09:24:25 Found package: libp11-kit0:armhf (version: 0.23.3-2)
2292018-11-14 09:24:25 Found package: libpaho.mqtt.c (version: 1.2.0-2)
2302018-11-14 09:24:25 Found package: libpam-modules-bin (version: 1.1.8-3.6)
2312018-11-14 09:24:25 Found package: libpam-modules:armhf (version: 1.1.8-3.6)
2322018-11-14 09:24:25 Found package: libpam-runtime (version: 1.1.8-3.6)
2332018-11-14 09:24:25 Found package: libpam0g:armhf (version: 1.1.8-3.6)
2342018-11-14 09:24:25 Found package: libpcre16-3:armhf (version: 2:8.39-3)
2352018-11-14 09:24:25 Found package: libpcre3-dev:armhf (version: 2:8.39-3)
2362018-11-14 09:24:25 Found package: libpcre32-3:armhf (version: 2:8.39-3)
2372018-11-14 09:24:25 Found package: libpcre3:armhf (version: 2:8.39-3)
2382018-11-14 09:24:25 Found package: libpcrecpp0v5:armhf (version: 2:8.39-3)
2392018-11-14 09:24:25 Found package: libpcsclite1:armhf (version: 1.8.20-1)
2402018-11-14 09:24:25 Found package: libperl5.24:armhf (version: 5.24.1-3+deb9u4)
2412018-11-14 09:24:25 Found package: libpipeline1:armhf (version: 1.4.1-2)
2422018-11-14 09:24:25 Found package: libpkcs11-helper1:armhf (version: 1.21-1)
2432018-11-14 09:24:25 Found package: libpopt0:armhf (version: 1.16-10+b2)
2442018-11-14 09:24:25 Found package: libprocps6:armhf (version: 2:3.3.12-3+deb9u1)
2452018-11-14 09:24:25 Found package: libpsl5:armhf (version: 0.17.0-3)
2462018-11-14 09:24:25 Found package: libpython-stdlib:armhf (version: 2.7.13-2)
2472018-11-14 09:24:25 Found package: libpython2.7-minimal:armhf (version: 2.7.13-2+deb9u2)
2482018-11-14 09:24:25 Found package: libpython2.7-stdlib:armhf (version: 2.7.13-2+deb9u2)
2492018-11-14 09:24:25 Found package: libpython3-stdlib:armhf (version: 3.5.3-1)
2502018-11-14 09:24:25 Found package: libpython3.5-minimal:armhf (version: 3.5.3-1)
2512018-11-14 09:24:25 Found package: libpython3.5-stdlib:armhf (version: 3.5.3-1)
2522018-11-14 09:24:25 Found package: libreadline7:armhf (version: 7.0-3)
2532018-11-14 09:24:25 Found package: librtmp1:armhf (version: 2.4+20151223.gitfa8646d.1-1+b1)
2542018-11-14 09:24:25 Found package: libsasl2-2:armhf (version: 2.1.27~101-g0780600+dfsg-3)
2552018-11-14 09:24:25 Found package: libsasl2-modules-db:armhf (version: 2.1.27~101-g0780600+dfsg-3)
2562018-11-14 09:24:25 Found package: libseccomp2:armhf (version: 2.3.1-2.1)
2572018-11-14 09:24:25 Found package: libselinux1:armhf (version: 2.6-3+b3)
2582018-11-14 09:24:25 Found package: libsemanage-common (version: 2.6-2)
2592018-11-14 09:24:25 Found package: libsemanage1:armhf (version: 2.6-2)
2602018-11-14 09:24:25 Found package: libsepol1:armhf (version: 2.6-2)
2612018-11-14 09:24:25 Found package: libslang2:armhf (version: 2.3.1-5)
2622018-11-14 09:24:25 Found package: libsmartcols1:armhf (version: 2.29.2-1+deb9u1)
2632018-11-14 09:24:25 Found package: libsqlite3-0:armhf (version: 3.16.2-5+deb9u1)
2642018-11-14 09:24:25 Found package: libss2:armhf (version: 1.43.4-2)
2652018-11-14 09:24:25 Found package: libssh2-1:armhf (version: 1.7.0-1)
2662018-11-14 09:24:25 Found package: libssl-dev:armhf (version: 1.1.0f-3+deb9u2)
2672018-11-14 09:24:25 Found package: libssl-doc (version: 1.1.0f-3+deb9u2)
2682018-11-14 09:24:25 Found package: libssl1.0.2:armhf (version: 1.0.2l-2+deb9u3)
2692018-11-14 09:24:25 Found package: libssl1.1:armhf (version: 1.1.0f-3+deb9u2)
2702018-11-14 09:24:25 Found package: libstdc++-6-dev:armhf (version: 6.3.0-18+deb9u1)
2712018-11-14 09:24:25 Found package: libstdc++6:armhf (version: 6.3.0-18+deb9u1)
2722018-11-14 09:24:25 Found package: libsystemd0:armhf (version: 232-25+deb9u4)
2732018-11-14 09:24:25 Found package: libtasn1-6:armhf (version: 4.10-1.1+deb9u1)
2742018-11-14 09:24:25 Found package: libtext-charwidth-perl (version: 0.04-7+b6)
2752018-11-14 09:24:25 Found package: libtext-iconv-perl (version: 1.7-5+b4)
2762018-11-14 09:24:25 Found package: libtext-wrapi18n-perl (version: 0.06-7.1)
2772018-11-14 09:24:25 Found package: libtinfo5:armhf (version: 6.0+20161126-1+deb9u2)
2782018-11-14 09:24:25 Found package: libubsan0:armhf (version: 6.3.0-18+deb9u1)
2792018-11-14 09:24:25 Found package: libudev-dev:armhf (version: 232-25+deb9u4)
2802018-11-14 09:24:25 Found package: libudev1:armhf (version: 232-25+deb9u4)
2812018-11-14 09:24:25 Found package: libunistring0:armhf (version: 0.9.6+really0.9.3-0.1)
2822018-11-14 09:24:25 Found package: libusb-0.1-4:armhf (version: 2:0.1.12-30)
2832018-11-14 09:24:25 Found package: libusb-1.0-0:armhf (version: 2:1.0.21-1)
2842018-11-14 09:24:25 Found package: libustr-1.0-1:armhf (version: 1.0.4-6)
2852018-11-14 09:24:25 Found package: libuuid1:armhf (version: 2.29.2-1+deb9u1)
2862018-11-14 09:24:25 Found package: libuv1:armhf (version: 1.9.1-3)
2872018-11-14 09:24:25 Found package: libwebsockets8:armhf (version: 2.0.3-2)
2882018-11-14 09:24:25 Found package: libwrap0:armhf (version: 7.6.q-26)
2892018-11-14 09:24:25 Found package: libxapian30:armhf (version: 1.4.3-2+deb9u1)
2902018-11-14 09:24:25 Found package: libxml2:armhf (version: 2.9.4+dfsg1-2.2+deb9u2)
2912018-11-14 09:24:25 Found package: libxslt1.1:armhf (version: 1.1.29-2.1)
2922018-11-14 09:24:25 Found package: libxtables12:armhf (version: 1.6.0+snapshot20161117-6)
2932018-11-14 09:24:25 Found package: linux-libc-dev:armhf (version: 4.9.110-1)
2942018-11-14 09:24:25 Found package: login (version: 1:4.4-4.1)
2952018-11-14 09:24:25 Found package: logrotate (version: 3.11.0-0.1)
2962018-11-14 09:24:25 Found package: lsb-base (version: 9.20161125)
2972018-11-14 09:24:25 Found package: lsb-release (version: 9.20161125)
2982018-11-14 09:24:25 Found package: make (version: 4.1-9.1)
2992018-11-14 09:24:25 Found package: mawk (version: 1.3.3-17+b3)
3002018-11-14 09:24:25 Found package: mc (version: 3:4.8.18-1)
3012018-11-14 09:24:25 Found package: mc-data (version: 3:4.8.18-1)
3022018-11-14 09:24:25 Found package: mime-support (version: 3.60)
3032018-11-14 09:24:25 Found package: mosquitto (version: 1.4.10-3+deb9u1)
3042018-11-14 09:24:25 Found package: mosquitto-clients (version: 1.4.10-3+deb9u1)
3052018-11-14 09:24:26 Found package: mount (version: 2.29.2-1+deb9u1)
3062018-11-14 09:24:26 Found package: multiarch-support (version: 2.24-11+deb9u3)
3072018-11-14 09:24:26 Found package: nano (version: 2.7.4-1)
3082018-11-14 09:24:26 Found package: ncurses-base (version: 6.0+20161126-1+deb9u2)
3092018-11-14 09:24:26 Found package: ncurses-bin (version: 6.0+20161126-1+deb9u2)
3102018-11-14 09:24:26 Found package: net-tools (version: 1.60+git20161116.90da8a0-1)
3112018-11-14 09:24:26 Found package: netbase (version: 5.4)
3122018-11-14 09:24:26 Found package: ntp (version: 1:4.2.8p10+dfsg-3+deb9u2)
3132018-11-14 09:24:26 Found package: ntpdate (version: 1:4.2.8p10+dfsg-3+deb9u2)
3142018-11-14 09:24:26 Found package: open-zwave (version: 1.4-1)
3152018-11-14 09:24:26 Found package: openssh-client (version: 1:7.4p1-10+deb9u3)
3162018-11-14 09:24:26 Found package: openssh-server (version: 1:7.4p1-10+deb9u3)
3172018-11-14 09:24:26 Found package: openssh-sftp-server (version: 1:7.4p1-10+deb9u3)
3182018-11-14 09:24:26 Found package: openssl (version: 1.1.0f-3+deb9u2)
3192018-11-14 09:24:26 Found package: openvpn (version: 2.4.0-6+deb9u2)
3202018-11-14 09:24:26 Found package: passwd (version: 1:4.4-4.1)
3212018-11-14 09:24:26 Found package: patch (version: 2.7.5-1+deb9u1)
3222018-11-14 09:24:26 Found package: perl (version: 5.24.1-3+deb9u4)
3232018-11-14 09:24:26 Found package: perl-base (version: 5.24.1-3+deb9u4)
3242018-11-14 09:24:26 Found package: perl-modules-5.24 (version: 5.24.1-3+deb9u4)
3252018-11-14 09:24:26 Found package: pinentry-curses (version: 1.0.0-2)
3262018-11-14 09:24:26 Found package: pkg-config (version: 0.29-4+b1)
3272018-11-14 09:24:26 Found package: poco (version: 1.9.0)
3282018-11-14 09:24:26 Found package: procps (version: 2:3.3.12-3+deb9u1)
3292018-11-14 09:24:26 Found package: python (version: 2.7.13-2)
3302018-11-14 09:24:26 Found package: python-minimal (version: 2.7.13-2)
3312018-11-14 09:24:26 Found package: python2.7 (version: 2.7.13-2+deb9u2)
3322018-11-14 09:24:26 Found package: python2.7-minimal (version: 2.7.13-2+deb9u2)
3332018-11-14 09:24:26 Found package: python3 (version: 3.5.3-1)
3342018-11-14 09:24:26 Found package: python3-minimal (version: 3.5.3-1)
3352018-11-14 09:24:26 Found package: python3.5 (version: 3.5.3-1)
3362018-11-14 09:24:26 Found package: python3.5-minimal (version: 3.5.3-1)
3372018-11-14 09:24:26 Found package: readline-common (version: 7.0-3)
3382018-11-14 09:24:26 Found package: resolvconf (version: 1.79)
3392018-11-14 09:24:26 Found package: rsync (version: 3.1.2-1+deb9u1)
3402018-11-14 09:24:26 Found package: rsyslog (version: 8.24.0-1)
3412018-11-14 09:24:26 Found package: sed (version: 4.4-1)
3422018-11-14 09:24:26 Found package: sensible-utils (version: 0.0.9+deb9u1)
3432018-11-14 09:24:26 Found package: systemd (version: 232-25+deb9u4)
3442018-11-14 09:24:26 Found package: systemd-sysv (version: 232-25+deb9u4)
3452018-11-14 09:24:26 Found package: sysvinit-utils (version: 2.88dsf-59.9)
3462018-11-14 09:24:26 Found package: tar (version: 1.29b-1.1)
3472018-11-14 09:24:26 Found package: tasksel (version: 3.39)
3482018-11-14 09:24:26 Found package: tasksel-data (version: 3.39)
3492018-11-14 09:24:26 Found package: tzdata (version: 2018e-0+deb9u1)
3502018-11-14 09:24:26 Found package: ucf (version: 3.0036)
3512018-11-14 09:24:26 Found package: udev (version: 232-25+deb9u4)
3522018-11-14 09:24:26 Found package: unzip (version: 6.0-21)
3532018-11-14 09:24:26 Found package: usb-modeswitch (version: 2.5.0+repack0-1)
3542018-11-14 09:24:26 Found package: usb-modeswitch-data (version: 20170120-1)
3552018-11-14 09:24:26 Found package: usbutils (version: 1:007-4+b1)
3562018-11-14 09:24:26 Found package: util-linux (version: 2.29.2-1+deb9u1)
3572018-11-14 09:24:26 Found package: vim (version: 2:8.0.0197-4+deb9u1)
3582018-11-14 09:24:26 Found package: vim-common (version: 2:8.0.0197-4+deb9u1)
3592018-11-14 09:24:26 Found package: vim-runtime (version: 2:8.0.0197-4+deb9u1)
3602018-11-14 09:24:26 Found package: vim-tiny (version: 2:8.0.0197-4+deb9u1)
3612018-11-14 09:24:26 Found package: wget (version: 1.18-5+deb9u2)
3622018-11-14 09:24:26 Found package: whiptail (version: 0.52.19-1+b1)
3632018-11-14 09:24:26 Found package: wireless-tools (version: 30~pre9-12+b1)
3642018-11-14 09:24:26 Found package: wpasupplicant (version: 2:2.4-1+deb9u1)
3652018-11-14 09:24:26 Found package: xxd (version: 2:8.0.0197-4+deb9u1)
3662018-11-14 09:24:26 Found package: xz-utils (version: 5.2.2-1.2+b1)
3672018-11-14 09:24:26 Found package: zlib1g-dev:armhf (version: 1:1.2.8.dfsg-5)
3682018-11-14 09:24:26 Found package: zlib1g:armhf (version: 1:1.2.8.dfsg-5)
3692018-11-14 09:24:26 ===---------------------------------------------------------------===
3702018-11-14 09:24:26 Performing test ID PKGS-7346 (Search unpurged packages on system)
3712018-11-14 09:24:26 Test: Querying dpkg -l to get unpurged packages
3722018-11-14 09:24:26 Result: no packages found with left overs
3732018-11-14 09:24:26 ===---------------------------------------------------------------===
3742018-11-14 09:24:26 Skipped test PKGS-7348 (Check for old distfiles)
3752018-11-14 09:24:26 Reason to skip: Incorrect guest OS (FreeBSD only)
3762018-11-14 09:24:26 ===---------------------------------------------------------------===
3772018-11-14 09:24:26 Skipped test PKGS-7350 (Checking for installed packages with DNF utility)
3782018-11-14 09:24:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
3792018-11-14 09:24:26 ===---------------------------------------------------------------===
3802018-11-14 09:24:26 Skipped test PKGS-7352 (Checking for security updates with DNF utility)
3812018-11-14 09:24:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
3822018-11-14 09:24:26 ===---------------------------------------------------------------===
3832018-11-14 09:24:26 Skipped test PKGS-7354 (Checking package database integrity)
3842018-11-14 09:24:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
3852018-11-14 09:24:26 ===---------------------------------------------------------------===
3862018-11-14 09:24:26 Skipped test PKGS-7366 (Checking for debsecan utility)
3872018-11-14 09:24:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
3882018-11-14 09:24:26 ===---------------------------------------------------------------===
3892018-11-14 09:24:26 Performing test ID PKGS-7370 (Checking for debsums utility)
3902018-11-14 09:24:26 Result: debsums utility is not installed.
3912018-11-14 09:24:26 Hardening: assigned partial number of hardening points (0 of 2). Currently having 96 points (out of 136)
3922018-11-14 09:24:26 Suggestion: Install debsums utility for the verification of packages with known good database. [test:PKGS-7370] [details:-] [solution:-]
3932018-11-14 09:24:26 ===---------------------------------------------------------------===
3942018-11-14 09:24:26 Skipped test PKGS-7378 (Query portmaster for port upgrades)
3952018-11-14 09:24:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
3962018-11-14 09:24:26 ===---------------------------------------------------------------===
3972018-11-14 09:24:26 Skipped test PKGS-7380 (Check for vulnerable NetBSD packages)
3982018-11-14 09:24:26 Reason to skip: Incorrect guest OS (NetBSD only)
3992018-11-14 09:24:26 ===---------------------------------------------------------------===
4002018-11-14 09:24:26 Skipped test PKGS-7381 (Check for vulnerable FreeBSD packages with pkg)
4012018-11-14 09:24:26 Reason to skip: pkg tool not available
4022018-11-14 09:24:26 ===---------------------------------------------------------------===
4032018-11-14 09:24:26 Skipped test PKGS-7382 (Check for vulnerable FreeBSD packages with portaudit)
4042018-11-14 09:24:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
4052018-11-14 09:24:26 ===---------------------------------------------------------------===
4062018-11-14 09:24:26 Skipped test PKGS-7383 (Check for YUM package update management)
4072018-11-14 09:24:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
4082018-11-14 09:24:26 ===---------------------------------------------------------------===
4092018-11-14 09:24:27 Skipped test PKGS-7384 (Check for YUM utils package)
4102018-11-14 09:24:27 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
4112018-11-14 09:24:27 ===---------------------------------------------------------------===
4122018-11-14 09:24:27 Skipped test PKGS-7386 (Check for YUM security package)
4132018-11-14 09:24:27 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
4142018-11-14 09:24:27 ===---------------------------------------------------------------===
4152018-11-14 09:24:27 Skipped test PKGS-7387 (Check for GPG signing in YUM security package)
4162018-11-14 09:24:27 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
4172018-11-14 09:24:27 ===---------------------------------------------------------------===
4182018-11-14 09:24:27 Performing test ID PKGS-7388 (Check security repository in Debian/ubuntu apt sources.list file)
4192018-11-14 09:24:27 Searching for security.debian.org/security.ubuntu.com or security repositories in /etc/apt/sources.list file
4202018-11-14 09:24:27 Searching for security.debian.org/security.ubuntu.com or security repositories in /etc/apt/sources.list.d directory
4212018-11-14 09:24:27 Warning: Can't find any security repository in /etc/apt/sources.list or sources.list.d directory [test:PKGS-7388] [details:-] [solution:-]
4222018-11-14 09:24:27 Hardening: assigned partial number of hardening points (0 of 3). Currently having 96 points (out of 139)
4232018-11-14 09:24:27 ===---------------------------------------------------------------===
4242018-11-14 09:24:27 Skipped test PKGS-7390 (Check Ubuntu database consistency)
4252018-11-14 09:24:27 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
4262018-11-14 09:24:27 ===---------------------------------------------------------------===
4272018-11-14 09:24:27 Performing test ID PKGS-7392 (Check for Debian/Ubuntu security updates)
4282018-11-14 09:24:27 Action: updating package repository with apt-get
4292018-11-14 09:24:48 Result: apt-get finished
4302018-11-14 09:24:48 Test: Checking if /usr/lib/update-notifier/apt-check exists
4312018-11-14 09:24:48 Result: apt-check (update-notifier-common) not found
4322018-11-14 09:24:53 Result: test not fully executed (missing apt-check output)
4332018-11-14 09:24:53 ===---------------------------------------------------------------===
4342018-11-14 09:24:53 Skipped test PKGS-7393 (Check for Gentoo vulnerable packages)
4352018-11-14 09:24:53 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
4362018-11-14 09:24:53 ===---------------------------------------------------------------===
4372018-11-14 09:24:53 Skipped test PKGS-7394 (Check for Ubuntu updates)
4382018-11-14 09:24:53 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
4392018-11-14 09:24:53 ===---------------------------------------------------------------===
4402018-11-14 09:24:53 Performing test ID PKGS-7398 (Check for package audit tool)
4412018-11-14 09:24:53 Test: checking for package audit tool
4422018-11-14 09:24:53 Result: found package audit tool: apt-get
4432018-11-14 09:24:53 ===---------------------------------------------------------------===
4442018-11-14 09:24:53 Performing test ID PKGS-7410 (Count installed kernel packages)
4452018-11-14 09:24:53 Checking permissions of /root/lynis/include/tests_networking
4462018-11-14 09:24:53 File permissions are OK
4472018-11-14 09:24:53 ===---------------------------------------------------------------===
4482018-11-14 09:24:53 Action: Performing tests from category: Networking
4492018-11-14 09:24:53 ===---------------------------------------------------------------===
4502018-11-14 09:24:53 Performing test ID NETW-2600 (Checking IPv6 configuration)
4512018-11-14 09:24:56 Result: IPV6 mode is auto
4522018-11-14 09:24:56 Result: IPv6 only configuration: NO
4532018-11-14 09:24:56 ===---------------------------------------------------------------===
4542018-11-14 09:24:56 Performing test ID NETW-2704 (Basic nameserver configuration tests)
4552018-11-14 09:24:56 Test: Checking /etc/resolv.conf file
4562018-11-14 09:24:56 Result: Found /etc/resolv.conf file
4572018-11-14 09:24:56 Test: Querying nameservers
4582018-11-14 09:24:56 Found nameserver: 192.168.1.123
4592018-11-14 09:24:56 Result: Nameserver test for 192.168.1.123 skipped, 'dig' not installed
4602018-11-14 09:24:56 Found nameserver: 10.10.80.1
4612018-11-14 09:24:56 Result: Nameserver test for 10.10.80.1 skipped, 'dig' not installed
4622018-11-14 09:24:56 ===---------------------------------------------------------------===
4632018-11-14 09:24:56 Performing test ID NETW-2705 (Check availability two nameservers)
4642018-11-14 09:24:56 Result: dig not installed, test can't be fully performed
4652018-11-14 09:24:56 ===---------------------------------------------------------------===
4662018-11-14 09:24:56 Performing test ID NETW-3001 (Find default gateway (route))
4672018-11-14 09:24:56 Test: Searching default gateway(s)
4682018-11-14 09:24:56 Result: Found default gateway 192.168.254.1
4692018-11-14 09:24:57 ===---------------------------------------------------------------===
4702018-11-14 09:24:57 Performing test ID NETW-3004 (Search for available network interfaces)
4712018-11-14 09:24:57 Found network interface: lo
4722018-11-14 09:24:57 Found network interface: eth0
4732018-11-14 09:24:57 Found network interface: wlan0
4742018-11-14 09:24:57 ===---------------------------------------------------------------===
4752018-11-14 09:24:57 Performing test ID NETW-3006 (Get network MAC addresses)
4762018-11-14 09:24:57 Found MAC address: 02:01:50:9e:30:03
4772018-11-14 09:24:57 Found MAC address: 10:d0:7a:79:88:4b
4782018-11-14 09:24:57 ===---------------------------------------------------------------===
4792018-11-14 09:24:57 Performing test ID NETW-3008 (Get network IP addresses)
4802018-11-14 09:24:57 Found IPv4 address: 192.168.254.254
4812018-11-14 09:24:57 Found IPv4 address: 127.0.0.1
4822018-11-14 09:24:57 Found IPv6 address: fe80::1:50ff:fe9e:3003
4832018-11-14 09:24:57 Found IPv6 address: ::1
4842018-11-14 09:24:57 ===---------------------------------------------------------------===
4852018-11-14 09:24:57 Performing test ID NETW-3012 (Check listening ports)
4862018-11-14 09:24:57 Test: Retrieving sockstat information to find listening ports
4872018-11-14 09:24:57 Found listening info: 0.0.0.0:68|udp|dhclient|
4882018-11-14 09:24:57 Found listening info: 0.0.0.0:68|udp|dhclient|
4892018-11-14 09:24:57 Found listening info: 192.168.254.15:123|udp|ntpd|
4902018-11-14 09:24:57 Found listening info: 192.168.254.254:123|udp|ntpd|
4912018-11-14 09:24:57 Found listening info: 127.0.0.1:123|udp|ntpd|
4922018-11-14 09:24:57 Found listening info: 0.0.0.0:123|udp|ntpd|
4932018-11-14 09:24:57 Found listening info: 0.0.0.0:55300|udp|iqrf_startup|
4942018-11-14 09:24:57 Found listening info: fe80::1:50ff:fe9e:3:123|udp6|ntpd|
4952018-11-14 09:24:57 Found listening info: ::1:123|udp6|ntpd|
4962018-11-14 09:24:57 Found listening info: :::123|udp6|ntpd|
4972018-11-14 09:24:57 Found listening info: 0.0.0.0:80|tcp|python2|
4982018-11-14 09:24:57 Found listening info: 127.0.0.1:6000|tcp|beeeon-gateway|
4992018-11-14 09:24:57 Found listening info: 0.0.0.0:22|tcp|sshd|
5002018-11-14 09:24:57 Found listening info: 0.0.0.0:1883|tcp|mosquitto|
5012018-11-14 09:24:57 Found listening info: :::22|tcp6|sshd|
5022018-11-14 09:24:57 Found listening info: :::1883|tcp6|mosquitto|
5032018-11-14 09:24:57 ===---------------------------------------------------------------===
5042018-11-14 09:24:57 Skipped test NETW-3014 (Checking promiscuous interfaces (BSD))
5052018-11-14 09:24:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
5062018-11-14 09:24:57 ===---------------------------------------------------------------===
5072018-11-14 09:24:57 Performing test ID NETW-3015 (Checking promiscuous interfaces (Linux))
5082018-11-14 09:24:57 Test: Checking promiscuous interfaces (Linux)
5092018-11-14 09:24:57 Result: No promiscuous interfaces found
5102018-11-14 09:24:57 ===---------------------------------------------------------------===
5112018-11-14 09:24:57 Performing test ID NETW-3028 (Checking connections in WAIT state)
5122018-11-14 09:24:57 Test: Using netstat for check for connections in WAIT state
5132018-11-14 09:24:57 Result: currently 54 connections are in a waiting state (max configured: 5000).
5142018-11-14 09:24:57 Result: 54 connections are in WAIT state
5152018-11-14 09:24:57 ===---------------------------------------------------------------===
5162018-11-14 09:24:57 Performing test ID NETW-3030 (Checking DHCP client status)
5172018-11-14 09:24:57 IsRunning: process 'dhclient' found (607 752 )
5182018-11-14 09:24:57 ===---------------------------------------------------------------===
5192018-11-14 09:24:57 Performing test ID NETW-3032 (Checking for ARP monitoring software)
5202018-11-14 09:24:57 IsRunning: process 'arpwatch' not found
5212018-11-14 09:24:57 IsRunning: process 'arpon' not found
5222018-11-14 09:24:57 Suggestion: Consider running ARP monitoring software (arpwatch,arpon) [test:NETW-3032] [details:-] [solution:-]
5232018-11-14 09:24:57 Checking permissions of /root/lynis/include/tests_printers_spools
5242018-11-14 09:24:57 File permissions are OK
5252018-11-14 09:24:57 ===---------------------------------------------------------------===
5262018-11-14 09:24:57 Action: Performing tests from category: Printers and Spools
5272018-11-14 09:24:57 ===---------------------------------------------------------------===
5282018-11-14 09:24:57 Skipped test PRNT-2302 (Check for printcap consistency)
5292018-11-14 09:24:57 Reason to skip: Incorrect guest OS (FreeBSD only)
5302018-11-14 09:24:57 ===---------------------------------------------------------------===
5312018-11-14 09:24:57 Performing test ID PRNT-2304 (Check cupsd status)
5322018-11-14 09:24:57 Test: Checking cupsd status
5332018-11-14 09:24:57 IsRunning: process 'cupsd' not found
5342018-11-14 09:24:57 Result: cups daemon not running, cups daemon tests skipped
5352018-11-14 09:24:57 ===---------------------------------------------------------------===
5362018-11-14 09:24:57 Skipped test PRNT-2306 (Check CUPSd configuration file)
5372018-11-14 09:24:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
5382018-11-14 09:24:57 ===---------------------------------------------------------------===
5392018-11-14 09:24:57 Skipped test PRNT-2307 (Check CUPSd configuration file permissions)
5402018-11-14 09:24:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
5412018-11-14 09:24:57 ===---------------------------------------------------------------===
5422018-11-14 09:24:57 Skipped test PRNT-2308 (Check CUPSd network configuration)
5432018-11-14 09:24:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
5442018-11-14 09:24:57 ===---------------------------------------------------------------===
5452018-11-14 09:24:57 Performing test ID PRNT-2314 (Check lpd status)
5462018-11-14 09:24:57 Test: Checking lpd status
5472018-11-14 09:24:57 IsRunning: process 'lpd' not found
5482018-11-14 09:24:57 Result: lp daemon not running
5492018-11-14 09:24:57 Hardening: assigned maximum number of hardening points for this item (4). Currently having 100 points (out of 143)
5502018-11-14 09:24:57 ===---------------------------------------------------------------===
5512018-11-14 09:24:57 Skipped test PRNT-2316 (Checking /etc/qconfig file)
5522018-11-14 09:24:57 Reason to skip: Incorrect guest OS (AIX only)
5532018-11-14 09:24:57 ===---------------------------------------------------------------===
5542018-11-14 09:24:57 Skipped test PRNT-2418 (Checking qdaemon printer spooler status)
5552018-11-14 09:24:57 Reason to skip: Incorrect guest OS (AIX only)
5562018-11-14 09:24:57 ===---------------------------------------------------------------===
5572018-11-14 09:24:57 Skipped test PRNT-2420 (Checking old print jobs)
5582018-11-14 09:24:57 Reason to skip: Incorrect guest OS (AIX only)
5592018-11-14 09:24:57 Checking permissions of /root/lynis/include/tests_mail_messaging
5602018-11-14 09:24:57 File permissions are OK
5612018-11-14 09:24:57 ===---------------------------------------------------------------===
5622018-11-14 09:24:57 Action: Performing tests from category: Software: e-mail and messaging
5632018-11-14 09:24:57 ===---------------------------------------------------------------===
5642018-11-14 09:24:57 Performing test ID MAIL-8802 (Check Exim status)
5652018-11-14 09:24:57 Test: check Exim status
5662018-11-14 09:24:57 IsRunning: process 'exim4' not found
5672018-11-14 09:24:57 IsRunning: process 'exim' not found
5682018-11-14 09:24:57 Result: no running Exim processes found
5692018-11-14 09:24:57 ===---------------------------------------------------------------===
5702018-11-14 09:24:57 Skipped test MAIL-8803 (Exim configuration options)
5712018-11-14 09:24:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
5722018-11-14 09:24:57 ===---------------------------------------------------------------===
5732018-11-14 09:24:57 Performing test ID MAIL-8814 (Check postfix process status)
5742018-11-14 09:24:57 Test: check Postfix status
5752018-11-14 09:24:57 Result: no running Postfix processes found
5762018-11-14 09:24:57 ===---------------------------------------------------------------===
5772018-11-14 09:24:57 Skipped test MAIL-8816 (Check Postfix configuration)
5782018-11-14 09:24:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
5792018-11-14 09:24:57 ===---------------------------------------------------------------===
5802018-11-14 09:24:58 Skipped test MAIL-8817 (Check Postfix configuration errors)
5812018-11-14 09:24:58 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
5822018-11-14 09:24:58 ===---------------------------------------------------------------===
5832018-11-14 09:24:58 Skipped test MAIL-8818 (Check Postfix configuration: banner)
5842018-11-14 09:24:58 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
5852018-11-14 09:24:58 ===---------------------------------------------------------------===
5862018-11-14 09:24:58 Performing test ID MAIL-8820 (Postfix configuration scan)
5872018-11-14 09:24:58 ===---------------------------------------------------------------===
5882018-11-14 09:24:58 Performing test ID MAIL-8838 (Check dovecot process)
5892018-11-14 09:24:58 Test: check dovecot status
5902018-11-14 09:24:58 IsRunning: process 'dovecot' not found
5912018-11-14 09:24:58 Result: dovecot not found
5922018-11-14 09:24:58 ===---------------------------------------------------------------===
5932018-11-14 09:24:58 Performing test ID MAIL-8860 (Check Qmail status)
5942018-11-14 09:24:58 Test: check Qmail status
5952018-11-14 09:24:58 IsRunning: process 'qmail-smtpd' not found
5962018-11-14 09:24:58 Result: no running Qmail processes found
5972018-11-14 09:24:58 ===---------------------------------------------------------------===
5982018-11-14 09:24:58 Performing test ID MAIL-8880 (Check Sendmail status)
5992018-11-14 09:24:58 Test: check sendmail status
6002018-11-14 09:24:58 IsRunning: process 'sendmail' not found
6012018-11-14 09:24:58 Result: no running Sendmail processes found
6022018-11-14 09:24:58 ===---------------------------------------------------------------===
6032018-11-14 09:24:58 Skipped test MAIL-8920 (Check OpenSMTPD status)
6042018-11-14 09:24:58 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6052018-11-14 09:24:58 Checking permissions of /root/lynis/include/tests_firewalls
6062018-11-14 09:24:58 File permissions are OK
6072018-11-14 09:24:58 ===---------------------------------------------------------------===
6082018-11-14 09:24:58 Action: Performing tests from category: Software: firewalls
6092018-11-14 09:24:58 ===---------------------------------------------------------------===
6102018-11-14 09:24:58 Performing test ID FIRE-4502 (Check iptables kernel module)
6112018-11-14 09:24:58 ===---------------------------------------------------------------===
6122018-11-14 09:24:58 Performing test ID FIRE-4508 (Check used policies of iptables chains)
6132018-11-14 09:24:58 Test: gathering information from table filter
6142018-11-14 09:24:58 Result: iptables    --  policy is .
6152018-11-14 09:24:58 Result:
6162018-11-14 09:24:58 Result: iptables  filter  -- INPUTACCEPTFORWARDACCEPTOUTPUTACCEPT policy is .
6172018-11-14 09:24:58 Result:
6182018-11-14 09:24:58 ===---------------------------------------------------------------===
6192018-11-14 09:24:58 Performing test ID FIRE-4512 (Check iptables for empty ruleset)
6202018-11-14 09:24:58 Result: iptables ruleset seems to be empty (found 0 rules)
6212018-11-14 09:24:58 Warning: iptables module(s) loaded, but no rules active [test:FIRE-4512] [details:-] [solution:-]
6222018-11-14 09:24:58 ===---------------------------------------------------------------===
6232018-11-14 09:24:58 Performing test ID FIRE-4513 (Check iptables for unused rules)
6242018-11-14 09:24:58 Result: There are no unused rules present
6252018-11-14 09:24:58 ===---------------------------------------------------------------===
6262018-11-14 09:24:58 Skipped test FIRE-4518 (Check pf firewall components)
6272018-11-14 09:24:58 Reason to skip: No /dev/pf device
6282018-11-14 09:24:58 ===---------------------------------------------------------------===
6292018-11-14 09:24:58 Skipped test FIRE-4520 (Check pf configuration consistency)
6302018-11-14 09:24:58 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6312018-11-14 09:24:58 ===---------------------------------------------------------------===
6322018-11-14 09:24:58 Performing test ID FIRE-4524 (Check for CSF presence)
6332018-11-14 09:24:58 Test: check /etc/csf/csf.conf
6342018-11-14 09:24:58 Result: /etc/csf/csf.conf does NOT exist
6352018-11-14 09:24:58 ===---------------------------------------------------------------===
6362018-11-14 09:24:58 Skipped test FIRE-4526 (Check ipf status)
6372018-11-14 09:24:58 Reason to skip: Incorrect guest OS (Solaris only)
6382018-11-14 09:24:58 ===---------------------------------------------------------------===
6392018-11-14 09:24:58 Skipped test FIRE-4530 (Check IPFW status)
6402018-11-14 09:24:58 Reason to skip: Incorrect guest OS (FreeBSD only)
6412018-11-14 09:24:58 ===---------------------------------------------------------------===
6422018-11-14 09:24:58 Skipped test FIRE-4532 (Check macOS application firewall)
6432018-11-14 09:24:58 Reason to skip: Incorrect guest OS (macOS only)
6442018-11-14 09:24:58 ===---------------------------------------------------------------===
6452018-11-14 09:24:58 Skipped test FIRE-4534 (Check for presence of Little Snitch on macOS)
6462018-11-14 09:24:58 Reason to skip: Incorrect guest OS (macOS only)
6472018-11-14 09:24:58 ===---------------------------------------------------------------===
6482018-11-14 09:24:58 Skipped test FIRE-4536 (Check nftables status)
6492018-11-14 09:24:58 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6502018-11-14 09:24:58 ===---------------------------------------------------------------===
6512018-11-14 09:24:58 Skipped test FIRE-4538 (Check nftables basic configuration)
6522018-11-14 09:24:58 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6532018-11-14 09:24:58 ===---------------------------------------------------------------===
6542018-11-14 09:24:58 Skipped test FIRE-4540 (Check for empty nftables configuration)
6552018-11-14 09:24:58 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6562018-11-14 09:24:58 ===---------------------------------------------------------------===
6572018-11-14 09:24:58 Performing test ID FIRE-4586 (Check firewall logging)
6582018-11-14 09:24:58 ===---------------------------------------------------------------===
6592018-11-14 09:24:58 Performing test ID FIRE-4590 (Check firewall status)
6602018-11-14 09:24:58 Result: host based firewall or packet filter is active
6612018-11-14 09:24:58 Hardening: assigned maximum number of hardening points for this item (5). Currently having 105 points (out of 148)
6622018-11-14 09:24:58 ===---------------------------------------------------------------===
6632018-11-14 09:24:58 Performing test ID FIRE-4594 (Check for APF presence)
6642018-11-14 09:24:58 Test: check /etc/apf/conf.apf
6652018-11-14 09:24:58 Result: /etc/apf/conf.apf does NOT exist
6662018-11-14 09:24:58 Checking permissions of /root/lynis/include/tests_webservers
6672018-11-14 09:24:58 File permissions are OK
6682018-11-14 09:24:58 ===---------------------------------------------------------------===
6692018-11-14 09:24:58 Action: Performing tests from category: Software: webserver
6702018-11-14 09:24:58 Action: created temporary file /tmp/lynis.R3qdyMoJEh
6712018-11-14 09:24:58 Action: created temporary file /tmp/lynis.q1IOXEtknZ
6722018-11-14 09:24:58 ===---------------------------------------------------------------===
6732018-11-14 09:24:58 Performing test ID HTTP-6622 (Checking Apache presence)
6742018-11-14 09:24:58 ===---------------------------------------------------------------===
6752018-11-14 09:24:58 Skipped test HTTP-6624 (Testing main Apache configuration file)
6762018-11-14 09:24:58 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6772018-11-14 09:24:58 ===---------------------------------------------------------------===
6782018-11-14 09:24:58 Skipped test HTTP-6626 (Testing other Apache configuration file)
6792018-11-14 09:24:58 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6802018-11-14 09:24:58 ===---------------------------------------------------------------===
6812018-11-14 09:24:59 Skipped test HTTP-6632 (Determining all available Apache modules)
6822018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6832018-11-14 09:24:59 ===---------------------------------------------------------------===
6842018-11-14 09:24:59 Skipped test HTTP-6640 (Determining existence of specific Apache modules)
6852018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6862018-11-14 09:24:59 ===---------------------------------------------------------------===
6872018-11-14 09:24:59 Skipped test HTTP-6641 (Determining existence of specific Apache modules)
6882018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6892018-11-14 09:24:59 ===---------------------------------------------------------------===
6902018-11-14 09:24:59 Skipped test HTTP-6643 (Determining existence of specific Apache modules)
6912018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
6922018-11-14 09:24:59 ===---------------------------------------------------------------===
6932018-11-14 09:24:59 Performing test ID HTTP-6702 (Check nginx process)
6942018-11-14 09:24:59 Test: searching running nginx process
6952018-11-14 09:24:59 IsRunning: process 'nginx' not found
6962018-11-14 09:24:59 Result: no running nginx process found
6972018-11-14 09:24:59 ===---------------------------------------------------------------===
6982018-11-14 09:24:59 Skipped test HTTP-6704 (Check nginx configuration file)
6992018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
7002018-11-14 09:24:59 ===---------------------------------------------------------------===
7012018-11-14 09:24:59 Skipped test HTTP-6706 (Check for additional nginx configuration files)
7022018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
7032018-11-14 09:24:59 ===---------------------------------------------------------------===
7042018-11-14 09:24:59 Skipped test HTTP-6708 (Check discovered nginx configuration settings)
7052018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
7062018-11-14 09:24:59 ===---------------------------------------------------------------===
7072018-11-14 09:24:59 Skipped test HTTP-6710 (Check nginx SSL configuration settings)
7082018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
7092018-11-14 09:24:59 ===---------------------------------------------------------------===
7102018-11-14 09:24:59 Skipped test HTTP-6712 (Check nginx access logging)
7112018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
7122018-11-14 09:24:59 ===---------------------------------------------------------------===
7132018-11-14 09:24:59 Skipped test HTTP-6714 (Check for missing error logs in nginx)
7142018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
7152018-11-14 09:24:59 ===---------------------------------------------------------------===
7162018-11-14 09:24:59 Skipped test HTTP-6716 (Check for debug mode on error log in nginx)
7172018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
7182018-11-14 09:24:59 ===---------------------------------------------------------------===
7192018-11-14 09:24:59 Skipped test HTTP-6720 (Check Nginx log files)
7202018-11-14 09:24:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
7212018-11-14 09:24:59 Checking permissions of /root/lynis/include/tests_ssh
7222018-11-14 09:24:59 File permissions are OK
7232018-11-14 09:24:59 ===---------------------------------------------------------------===
7242018-11-14 09:24:59 Action: Performing tests from category: SSH Support
7252018-11-14 09:24:59 ===---------------------------------------------------------------===
7262018-11-14 09:24:59 Performing test ID SSH-7402 (Check for running SSH daemon)
7272018-11-14 09:24:59 Test: Searching for a SSH daemon
7282018-11-14 09:24:59 IsRunning: process 'sshd' found (471 665 )
7292018-11-14 09:24:59 Action: created temporary file /tmp/lynis.jmOhTC5heQ
7302018-11-14 09:24:59 ===---------------------------------------------------------------===
7312018-11-14 09:24:59 Performing test ID SSH-7404 (Check SSH daemon file location)
7322018-11-14 09:24:59 Test: searching for sshd_config file
7332018-11-14 09:24:59 Result: /etc/ssh/sshd_config exists
7342018-11-14 09:24:59 Test: check if we can access /etc/ssh/sshd_config (escaped: /etc/ssh/sshd_config)
7352018-11-14 09:24:59 Result: file is owned by our current user ID (0), checking if it is readable
7362018-11-14 09:24:59 Result: file /etc/ssh/sshd_config is readable (or directory accessible).
7372018-11-14 09:24:59 Result: using last found configuration file: /etc/ssh/sshd_config
7382018-11-14 09:24:59 ===---------------------------------------------------------------===
7392018-11-14 09:24:59 Performing test ID SSH-7406 (Determine OpenSSH version)
7402018-11-14 09:24:59 Result: discovered OpenSSH version is 7.4
7412018-11-14 09:24:59 Result: OpenSSH major version: 7
7422018-11-14 09:24:59 Result: OpenSSH minor version: 4
7432018-11-14 09:24:59 ===---------------------------------------------------------------===
7442018-11-14 09:24:59 Performing test ID SSH-7408 (Check SSH specific defined options)
7452018-11-14 09:24:59 Test: Checking specific defined options in /tmp/lynis.jmOhTC5heQ
7462018-11-14 09:24:59 Result: added additional options for OpenSSH < 7.5
7472018-11-14 09:24:59 Test: Checking AllowTcpForwarding in /tmp/lynis.jmOhTC5heQ
7482018-11-14 09:24:59 Result: Option AllowTcpForwarding found
7492018-11-14 09:24:59 Result: Option AllowTcpForwarding value is YES
7502018-11-14 09:24:59 Result: SSH option AllowTcpForwarding is in a weak configuration state and should be fixed
7512018-11-14 09:24:59 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:AllowTcpForwarding (YES --> NO)] [solution:-]
7522018-11-14 09:24:59 Hardening: assigned partial number of hardening points (0 of 3). Currently having 105 points (out of 151)
7532018-11-14 09:24:59 Test: Checking ClientAliveCountMax in /tmp/lynis.jmOhTC5heQ
7542018-11-14 09:24:59 Result: Option ClientAliveCountMax found
7552018-11-14 09:24:59 Result: Option ClientAliveCountMax value is 3
7562018-11-14 09:24:59 Result: SSH option ClientAliveCountMax is configured reasonably
7572018-11-14 09:24:59 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:ClientAliveCountMax (3 --> 2)] [solution:-]
7582018-11-14 09:24:59 Hardening: assigned partial number of hardening points (1 of 3). Currently having 106 points (out of 154)
7592018-11-14 09:24:59 Test: Checking ClientAliveInterval in /tmp/lynis.jmOhTC5heQ
7602018-11-14 09:24:59 Result: Option ClientAliveInterval found
7612018-11-14 09:24:59 Result: Option ClientAliveInterval value is 0
7622018-11-14 09:24:59 Result: SSH option ClientAliveInterval is configured very well
7632018-11-14 09:24:59 Hardening: assigned maximum number of hardening points for this item (3). Currently having 109 points (out of 157)
7642018-11-14 09:24:59 Test: Checking Compression in /tmp/lynis.jmOhTC5heQ
7652018-11-14 09:24:59 Result: Option Compression found
7662018-11-14 09:24:59 Result: Option Compression value is YES
7672018-11-14 09:24:59 Result: SSH option Compression is in a weak configuration state and should be fixed
7682018-11-14 09:24:59 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:Compression (YES --> NO)] [solution:-]
7692018-11-14 09:24:59 Hardening: assigned partial number of hardening points (0 of 3). Currently having 109 points (out of 160)
7702018-11-14 09:24:59 Test: Checking FingerprintHash in /tmp/lynis.jmOhTC5heQ
7712018-11-14 09:24:59 Result: Option FingerprintHash found
7722018-11-14 09:24:59 Result: Option FingerprintHash value is SHA256
7732018-11-14 09:24:59 Result: SSH option FingerprintHash is configured very well
7742018-11-14 09:24:59 Hardening: assigned maximum number of hardening points for this item (3). Currently having 112 points (out of 163)
7752018-11-14 09:24:59 Test: Checking GatewayPorts in /tmp/lynis.jmOhTC5heQ
7762018-11-14 09:24:59 Result: Option GatewayPorts found
7772018-11-14 09:24:59 Result: Option GatewayPorts value is NO
7782018-11-14 09:24:59 Result: SSH option GatewayPorts is configured very well
7792018-11-14 09:24:59 Hardening: assigned maximum number of hardening points for this item (3). Currently having 115 points (out of 166)
7802018-11-14 09:24:59 Test: Checking IgnoreRhosts in /tmp/lynis.jmOhTC5heQ
7812018-11-14 09:24:59 Result: Option IgnoreRhosts found
7822018-11-14 09:24:59 Result: Option IgnoreRhosts value is YES
7832018-11-14 09:24:59 Result: SSH option IgnoreRhosts is configured very well
7842018-11-14 09:24:59 Hardening: assigned maximum number of hardening points for this item (3). Currently having 118 points (out of 169)
7852018-11-14 09:24:59 Test: Checking LoginGraceTime in /tmp/lynis.jmOhTC5heQ
7862018-11-14 09:24:59 Result: Option LoginGraceTime found
7872018-11-14 09:24:59 Result: Option LoginGraceTime value is 120
7882018-11-14 09:25:00 Result: SSH option LoginGraceTime is configured very well
7892018-11-14 09:25:00 Hardening: assigned maximum number of hardening points for this item (3). Currently having 121 points (out of 172)
7902018-11-14 09:25:00 Test: Checking LogLevel in /tmp/lynis.jmOhTC5heQ
7912018-11-14 09:25:00 Result: Option LogLevel found
7922018-11-14 09:25:00 Result: Option LogLevel value is INFO
7932018-11-14 09:25:00 Result: SSH option LogLevel is configured reasonably
7942018-11-14 09:25:00 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:LogLevel (INFO --> VERBOSE)] [solution:-]
7952018-11-14 09:25:00 Hardening: assigned partial number of hardening points (1 of 3). Currently having 122 points (out of 175)
7962018-11-14 09:25:00 Test: Checking MaxAuthTries in /tmp/lynis.jmOhTC5heQ
7972018-11-14 09:25:00 Result: Option MaxAuthTries found
7982018-11-14 09:25:00 Result: Option MaxAuthTries value is 6
7992018-11-14 09:25:00 Result: SSH option MaxAuthTries is in a weak configuration state and should be fixed
8002018-11-14 09:25:00 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:MaxAuthTries (6 --> 2)] [solution:-]
8012018-11-14 09:25:00 Hardening: assigned partial number of hardening points (0 of 3). Currently having 122 points (out of 178)
8022018-11-14 09:25:00 Test: Checking MaxSessions in /tmp/lynis.jmOhTC5heQ
8032018-11-14 09:25:00 Result: Option MaxSessions found
8042018-11-14 09:25:00 Result: Option MaxSessions value is 10
8052018-11-14 09:25:00 Result: SSH option MaxSessions is in a weak configuration state and should be fixed
8062018-11-14 09:25:00 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:MaxSessions (10 --> 2)] [solution:-]
8072018-11-14 09:25:00 Hardening: assigned partial number of hardening points (0 of 3). Currently having 122 points (out of 181)
8082018-11-14 09:25:00 Test: Checking PermitRootLogin in /tmp/lynis.jmOhTC5heQ
8092018-11-14 09:25:00 Result: Option PermitRootLogin found
8102018-11-14 09:25:00 Result: Option PermitRootLogin value is YES
8112018-11-14 09:25:00 Result: SSH option PermitRootLogin is in a weak configuration state and should be fixed
8122018-11-14 09:25:00 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:PermitRootLogin (YES --> (NO|PROHIBIT-PASSWORD|WITHOUT-PASSWORD))] [solution:-]
8132018-11-14 09:25:00 Hardening: assigned partial number of hardening points (0 of 3). Currently having 122 points (out of 184)
8142018-11-14 09:25:00 Test: Checking PermitUserEnvironment in /tmp/lynis.jmOhTC5heQ
8152018-11-14 09:25:00 Result: Option PermitUserEnvironment found
8162018-11-14 09:25:00 Result: Option PermitUserEnvironment value is NO
8172018-11-14 09:25:00 Result: SSH option PermitUserEnvironment is configured very well
8182018-11-14 09:25:00 Hardening: assigned maximum number of hardening points for this item (3). Currently having 125 points (out of 187)
8192018-11-14 09:25:00 Test: Checking PermitTunnel in /tmp/lynis.jmOhTC5heQ
8202018-11-14 09:25:00 Result: Option PermitTunnel found
8212018-11-14 09:25:00 Result: Option PermitTunnel value is NO
8222018-11-14 09:25:00 Result: SSH option PermitTunnel is configured very well
8232018-11-14 09:25:00 Hardening: assigned maximum number of hardening points for this item (3). Currently having 128 points (out of 190)
8242018-11-14 09:25:00 Test: Checking Port in /tmp/lynis.jmOhTC5heQ
8252018-11-14 09:25:00 Result: Option Port found
8262018-11-14 09:25:00 Result: Option Port value is 22
8272018-11-14 09:25:00 Result: SSH option Port is in a weak configuration state and should be fixed
8282018-11-14 09:25:00 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:Port (22 --> )] [solution:-]
8292018-11-14 09:25:00 Hardening: assigned partial number of hardening points (0 of 3). Currently having 128 points (out of 193)
8302018-11-14 09:25:00 Test: Checking PrintLastLog in /tmp/lynis.jmOhTC5heQ
8312018-11-14 09:25:00 Result: Option PrintLastLog found
8322018-11-14 09:25:00 Result: Option PrintLastLog value is YES
8332018-11-14 09:25:00 Result: SSH option PrintLastLog is configured very well
8342018-11-14 09:25:00 Hardening: assigned maximum number of hardening points for this item (3). Currently having 131 points (out of 196)
8352018-11-14 09:25:00 Test: Checking StrictModes in /tmp/lynis.jmOhTC5heQ
8362018-11-14 09:25:00 Result: Option StrictModes found
8372018-11-14 09:25:00 Result: Option StrictModes value is YES
8382018-11-14 09:25:00 Result: SSH option StrictModes is configured very well
8392018-11-14 09:25:00 Hardening: assigned maximum number of hardening points for this item (3). Currently having 134 points (out of 199)
8402018-11-14 09:25:00 Test: Checking TCPKeepAlive in /tmp/lynis.jmOhTC5heQ
8412018-11-14 09:25:00 Result: Option TCPKeepAlive found
8422018-11-14 09:25:00 Result: Option TCPKeepAlive value is YES
8432018-11-14 09:25:00 Result: SSH option TCPKeepAlive is in a weak configuration state and should be fixed
8442018-11-14 09:25:00 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:TCPKeepAlive (YES --> NO)] [solution:-]
8452018-11-14 09:25:00 Hardening: assigned partial number of hardening points (0 of 3). Currently having 134 points (out of 202)
8462018-11-14 09:25:00 Test: Checking UseDNS in /tmp/lynis.jmOhTC5heQ
8472018-11-14 09:25:00 Result: Option UseDNS found
8482018-11-14 09:25:00 Result: Option UseDNS value is NO
8492018-11-14 09:25:00 Result: SSH option UseDNS is configured very well
8502018-11-14 09:25:00 Hardening: assigned maximum number of hardening points for this item (3). Currently having 137 points (out of 205)
8512018-11-14 09:25:00 Test: Checking VerifyReverseMapping in /tmp/lynis.jmOhTC5heQ
8522018-11-14 09:25:00 Result: Option VerifyReverseMapping not found in output
8532018-11-14 09:25:00 Test: Checking X11Forwarding in /tmp/lynis.jmOhTC5heQ
8542018-11-14 09:25:00 Result: Option X11Forwarding found
8552018-11-14 09:25:00 Result: Option X11Forwarding value is YES
8562018-11-14 09:25:00 Result: SSH option X11Forwarding is in a weak configuration state and should be fixed
8572018-11-14 09:25:00 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:X11Forwarding (YES --> NO)] [solution:-]
8582018-11-14 09:25:00 Hardening: assigned partial number of hardening points (0 of 3). Currently having 137 points (out of 208)
8592018-11-14 09:25:00 Test: Checking AllowAgentForwarding in /tmp/lynis.jmOhTC5heQ
8602018-11-14 09:25:00 Result: Option AllowAgentForwarding found
8612018-11-14 09:25:00 Result: Option AllowAgentForwarding value is YES
8622018-11-14 09:25:00 Result: SSH option AllowAgentForwarding is in a weak configuration state and should be fixed
8632018-11-14 09:25:00 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:AllowAgentForwarding (YES --> NO)] [solution:-]
8642018-11-14 09:25:00 Hardening: assigned partial number of hardening points (0 of 3). Currently having 137 points (out of 211)
8652018-11-14 09:25:00 Test: Checking UsePrivilegeSeparation in /tmp/lynis.jmOhTC5heQ
8662018-11-14 09:25:00 Result: Option UsePrivilegeSeparation found
8672018-11-14 09:25:00 Result: Option UsePrivilegeSeparation value is SANDBOX
8682018-11-14 09:25:00 Result: SSH option UsePrivilegeSeparation is configured very well
8692018-11-14 09:25:00 Hardening: assigned maximum number of hardening points for this item (3). Currently having 140 points (out of 214)
8702018-11-14 09:25:00 ===---------------------------------------------------------------===
8712018-11-14 09:25:00 Performing test ID SSH-7440 (Check SSH option: AllowUsers and AllowGroups)
8722018-11-14 09:25:00 Result: AllowUsers is not set
8732018-11-14 09:25:00 Result: AllowGroups is not set
8742018-11-14 09:25:00 Result: SSH has no specific user or group limitation. Most likely all valid users can SSH to this machine.
8752018-11-14 09:25:00 Hardening: assigned partial number of hardening points (0 of 1). Currently having 140 points (out of 215)
8762018-11-14 09:25:00 Checking permissions of /root/lynis/include/tests_snmp
8772018-11-14 09:25:00 File permissions are OK
8782018-11-14 09:25:00 ===---------------------------------------------------------------===
8792018-11-14 09:25:00 Action: Performing tests from category: SNMP Support
8802018-11-14 09:25:00 ===---------------------------------------------------------------===
8812018-11-14 09:25:00 Performing test ID SNMP-3302 (Check for running SNMP daemon)
8822018-11-14 09:25:00 Test: Searching for a SNMP daemon
8832018-11-14 09:25:00 IsRunning: process 'snmpd' not found
8842018-11-14 09:25:00 Result: No running SNMP daemon found
8852018-11-14 09:25:00 ===---------------------------------------------------------------===
8862018-11-14 09:25:00 Skipped test SNMP-3304 (Check SNMP daemon file location)
8872018-11-14 09:25:00 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
8882018-11-14 09:25:01 ===---------------------------------------------------------------===
8892018-11-14 09:25:01 Skipped test SNMP-3306 (Check SNMP communities)
8902018-11-14 09:25:01 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
8912018-11-14 09:25:01 Checking permissions of /root/lynis/include/tests_databases
8922018-11-14 09:25:01 File permissions are OK
8932018-11-14 09:25:01 ===---------------------------------------------------------------===
8942018-11-14 09:25:01 Action: Performing tests from category: Databases
8952018-11-14 09:25:01 ===---------------------------------------------------------------===
8962018-11-14 09:25:01 Performing test ID DBS-1804 (Checking active MySQL process)
8972018-11-14 09:25:01 Result: MySQL process not active
8982018-11-14 09:25:01 ===---------------------------------------------------------------===
8992018-11-14 09:25:01 Skipped test DBS-1816 (Checking MySQL root password)
9002018-11-14 09:25:01 Reason to skip: MySQL not installed, or not running
9012018-11-14 09:25:01 Test skipped, MySQL daemon not running or no MySQL client available
9022018-11-14 09:25:01 ===---------------------------------------------------------------===
9032018-11-14 09:25:01 Performing test ID DBS-1818 (Check status of MongoDB server)
9042018-11-14 09:25:01 IsRunning: process 'mongod' not found
9052018-11-14 09:25:01 ===---------------------------------------------------------------===
9062018-11-14 09:25:01 Performing test ID DBS-1820 (Check for authorization in MongoDB)
9072018-11-14 09:25:01 ===---------------------------------------------------------------===
9082018-11-14 09:25:01 Performing test ID DBS-1826 (Checking active PostgreSQL processes)
9092018-11-14 09:25:01 IsRunning: process 'postgres:' not found
9102018-11-14 09:25:01 Result: PostgreSQL process not active
9112018-11-14 09:25:01 ===---------------------------------------------------------------===
9122018-11-14 09:25:01 Performing test ID DBS-1840 (Checking active Oracle processes)
9132018-11-14 09:25:01 Result: Oracle process(es) not active
9142018-11-14 09:25:01 ===---------------------------------------------------------------===
9152018-11-14 09:25:01 Performing test ID DBS-1860 (Checking active DB2 instances)
9162018-11-14 09:25:01 IsRunning: process 'db2sysc' not found
9172018-11-14 09:25:01 Result: No DB2 instances are running
9182018-11-14 09:25:01 ===---------------------------------------------------------------===
9192018-11-14 09:25:01 Performing test ID DBS-1880 (Check for active Redis server)
9202018-11-14 09:25:01 IsRunning: process 'redis-server' not found
9212018-11-14 09:25:01 Result: No Redis processes are running
9222018-11-14 09:25:01 ===---------------------------------------------------------------===
9232018-11-14 09:25:01 Skipped test DBS-1882 (Redis configuration file)
9242018-11-14 09:25:01 Reason to skip: Redis not running
9252018-11-14 09:25:01 ===---------------------------------------------------------------===
9262018-11-14 09:25:01 Skipped test DBS-1884 (Redis: requirepass option configured)
9272018-11-14 09:25:01 Reason to skip: Redis not running, or no configuration file found
9282018-11-14 09:25:01 ===---------------------------------------------------------------===
9292018-11-14 09:25:01 Skipped test DBS-1886 (Redis: rename-command CONFIG used)
9302018-11-14 09:25:01 Reason to skip: Redis not running, or no configuration found
9312018-11-14 09:25:01 ===---------------------------------------------------------------===
9322018-11-14 09:25:01 Skipped test DBS-1888 (Redis: bind on localhost)
9332018-11-14 09:25:01 Reason to skip: Redis not running, or no configuration found
9342018-11-14 09:25:01 Checking permissions of /root/lynis/include/tests_ldap
9352018-11-14 09:25:01 File permissions are OK
9362018-11-14 09:25:01 ===---------------------------------------------------------------===
9372018-11-14 09:25:01 Action: Performing tests from category: LDAP Services
9382018-11-14 09:25:01 ===---------------------------------------------------------------===
9392018-11-14 09:25:01 Performing test ID LDAP-2219 (Check running OpenLDAP instance)
9402018-11-14 09:25:01 IsRunning: process 'slapd' not found
9412018-11-14 09:25:01 Result: No running slapd process found.
9422018-11-14 09:25:01 ===---------------------------------------------------------------===
9432018-11-14 09:25:01 Skipped test LDAP-2224 (Check presence slapd.conf)
9442018-11-14 09:25:01 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
9452018-11-14 09:25:01 Checking permissions of /root/lynis/include/tests_php
9462018-11-14 09:25:01 File permissions are OK
9472018-11-14 09:25:01 ===---------------------------------------------------------------===
9482018-11-14 09:25:01 Action: Performing tests from category: PHP
9492018-11-14 09:25:01 ===---------------------------------------------------------------===
9502018-11-14 09:25:01 Performing test ID PHP-2211 (Check php.ini presence)
9512018-11-14 09:25:01 Test: Checking for presence php.ini
9522018-11-14 09:25:01 Test: checking presence /etc/php.ini
9532018-11-14 09:25:01 Result: file /etc/php.ini not found
9542018-11-14 09:25:01 Test: checking presence /etc/php.ini.default
9552018-11-14 09:25:01 Result: file /etc/php.ini.default not found
9562018-11-14 09:25:01 Test: checking presence /etc/php/php.ini
9572018-11-14 09:25:01 Result: file /etc/php/php.ini not found
9582018-11-14 09:25:01 Test: checking presence /etc/php5.5/php.ini
9592018-11-14 09:25:01 Result: file /etc/php5.5/php.ini not found
9602018-11-14 09:25:01 Test: checking presence /etc/php5.6/php.ini
9612018-11-14 09:25:01 Result: file /etc/php5.6/php.ini not found
9622018-11-14 09:25:01 Test: checking presence /etc/php7.0/php.ini
9632018-11-14 09:25:01 Result: file /etc/php7.0/php.ini not found
9642018-11-14 09:25:01 Test: checking presence /etc/php7.1/php.ini
9652018-11-14 09:25:01 Result: file /etc/php7.1/php.ini not found
9662018-11-14 09:25:01 Test: checking presence /etc/php7.2/php.ini
9672018-11-14 09:25:01 Result: file /etc/php7.2/php.ini not found
9682018-11-14 09:25:01 Test: checking presence /etc/php/cgi-php5/php.ini
9692018-11-14 09:25:01 Result: file /etc/php/cgi-php5/php.ini not found
9702018-11-14 09:25:01 Test: checking presence /etc/php/cli-php5/php.ini
9712018-11-14 09:25:01 Result: file /etc/php/cli-php5/php.ini not found
9722018-11-14 09:25:01 Test: checking presence /etc/php/apache2-php5/php.ini
9732018-11-14 09:25:01 Result: file /etc/php/apache2-php5/php.ini not found
9742018-11-14 09:25:01 Test: checking presence /etc/php/apache2-php5.5/php.ini
9752018-11-14 09:25:01 Result: file /etc/php/apache2-php5.5/php.ini not found
9762018-11-14 09:25:01 Test: checking presence /etc/php/apache2-php5.6/php.ini
9772018-11-14 09:25:01 Result: file /etc/php/apache2-php5.6/php.ini not found
9782018-11-14 09:25:01 Test: checking presence /etc/php/apache2-php7.0/php.ini
9792018-11-14 09:25:01 Result: file /etc/php/apache2-php7.0/php.ini not found
9802018-11-14 09:25:01 Test: checking presence /etc/php/apache2-php7.1/php.ini
9812018-11-14 09:25:01 Result: file /etc/php/apache2-php7.1/php.ini not found
9822018-11-14 09:25:01 Test: checking presence /etc/php/cgi-php7.1/php.ini
9832018-11-14 09:25:01 Result: file /etc/php/cgi-php7.1/php.ini not found
9842018-11-14 09:25:01 Test: checking presence /etc/php/apache2-php7.1/php.ini
9852018-11-14 09:25:01 Result: file /etc/php/apache2-php7.1/php.ini not found
9862018-11-14 09:25:01 Test: checking presence /etc/php/cgi-php5.5/php.ini
9872018-11-14 09:25:01 Result: file /etc/php/cgi-php5.5/php.ini not found
9882018-11-14 09:25:01 Test: checking presence /etc/php/cgi-php5.6/php.ini
9892018-11-14 09:25:01 Result: file /etc/php/cgi-php5.6/php.ini not found
9902018-11-14 09:25:01 Test: checking presence /etc/php/cgi-php7.0/php.ini
9912018-11-14 09:25:01 Result: file /etc/php/cgi-php7.0/php.ini not found
9922018-11-14 09:25:01 Test: checking presence /etc/php/cli-php7.1/php.ini
9932018-11-14 09:25:01 Result: file /etc/php/cli-php7.1/php.ini not found
9942018-11-14 09:25:01 Test: checking presence /etc/php/cli-php5.5/php.ini
9952018-11-14 09:25:01 Result: file /etc/php/cli-php5.5/php.ini not found
9962018-11-14 09:25:01 Test: checking presence /etc/php/cli-php5.6/php.ini
9972018-11-14 09:25:01 Result: file /etc/php/cli-php5.6/php.ini not found
9982018-11-14 09:25:01 Test: checking presence /etc/php/cli-php7.0/php.ini
9992018-11-14 09:25:01 Result: file /etc/php/cli-php7.0/php.ini not found
10002018-11-14 09:25:01 Test: checking presence /etc/php/embed-php7.1/php.ini
10012018-11-14 09:25:01 Result: file /etc/php/embed-php7.1/php.ini not found
10022018-11-14 09:25:01 Test: checking presence /etc/php/embed-php5.5/php.ini
10032018-11-14 09:25:01 Result: file /etc/php/embed-php5.5/php.ini not found
10042018-11-14 09:25:01 Test: checking presence /etc/php/embed-php5.6/php.ini
10052018-11-14 09:25:01 Result: file /etc/php/embed-php5.6/php.ini not found
10062018-11-14 09:25:01 Test: checking presence /etc/php/embed-php7.0/php.ini
10072018-11-14 09:25:01 Result: file /etc/php/embed-php7.0/php.ini not found
10082018-11-14 09:25:01 Test: checking presence /etc/php/fpm-php7.1/php.ini
10092018-11-14 09:25:01 Result: file /etc/php/fpm-php7.1/php.ini not found
10102018-11-14 09:25:01 Test: checking presence /etc/php/fpm-php5.5/php.ini
10112018-11-14 09:25:01 Result: file /etc/php/fpm-php5.5/php.ini not found
10122018-11-14 09:25:01 Test: checking presence /etc/php/fpm-php5.6/php.ini
10132018-11-14 09:25:01 Result: file /etc/php/fpm-php5.6/php.ini not found
10142018-11-14 09:25:01 Test: checking presence /etc/php/fpm-php7.0/php.ini
10152018-11-14 09:25:01 Result: file /etc/php/fpm-php7.0/php.ini not found
10162018-11-14 09:25:01 Test: checking presence /etc/php5/cgi/php.ini
10172018-11-14 09:25:01 Result: file /etc/php5/cgi/php.ini not found
10182018-11-14 09:25:01 Test: checking presence /etc/php5/cli/php.ini
10192018-11-14 09:25:01 Result: file /etc/php5/cli/php.ini not found
10202018-11-14 09:25:01 Test: checking presence /etc/php5/cli-php5.4/php.ini
10212018-11-14 09:25:01 Result: file /etc/php5/cli-php5.4/php.ini not found
10222018-11-14 09:25:01 Test: checking presence /etc/php5/cli-php5.5/php.ini
10232018-11-14 09:25:01 Result: file /etc/php5/cli-php5.5/php.ini not found
10242018-11-14 09:25:01 Test: checking presence /etc/php5/cli-php5.6/php.ini
10252018-11-14 09:25:01 Result: file /etc/php5/cli-php5.6/php.ini not found
10262018-11-14 09:25:01 Test: checking presence /etc/php5/apache2/php.ini
10272018-11-14 09:25:01 Result: file /etc/php5/apache2/php.ini not found
10282018-11-14 09:25:01 Test: checking presence /etc/php5/fpm/php.ini
10292018-11-14 09:25:01 Result: file /etc/php5/fpm/php.ini not found
10302018-11-14 09:25:01 Test: checking presence /private/etc/php.ini
10312018-11-14 09:25:01 Result: file /private/etc/php.ini not found
10322018-11-14 09:25:01 Test: checking presence /etc/php/7.2/cli/php.ini
10332018-11-14 09:25:01 Result: file /etc/php/7.2/cli/php.ini not found
10342018-11-14 09:25:01 Test: checking presence /etc/php/7.2/fpm/php.ini
10352018-11-14 09:25:01 Result: file /etc/php/7.2/fpm/php.ini not found
10362018-11-14 09:25:01 Test: checking presence /etc/php/7.1/cli/php.ini
10372018-11-14 09:25:01 Result: file /etc/php/7.1/cli/php.ini not found
10382018-11-14 09:25:01 Test: checking presence /etc/php/7.1/fpm/php.ini
10392018-11-14 09:25:01 Result: file /etc/php/7.1/fpm/php.ini not found
10402018-11-14 09:25:01 Test: checking presence /etc/php/7.0/cli/php.ini
10412018-11-14 09:25:01 Result: file /etc/php/7.0/cli/php.ini not found
10422018-11-14 09:25:01 Test: checking presence /etc/php/7.0/fpm/php.ini
10432018-11-14 09:25:01 Result: file /etc/php/7.0/fpm/php.ini not found
10442018-11-14 09:25:01 Test: checking presence /var/www/conf/php.ini
10452018-11-14 09:25:01 Result: file /var/www/conf/php.ini not found
10462018-11-14 09:25:01 Test: checking presence /usr/local/etc/php.ini
10472018-11-14 09:25:01 Result: file /usr/local/etc/php.ini not found
10482018-11-14 09:25:01 Test: checking presence /usr/local/lib/php.ini
10492018-11-14 09:25:01 Result: file /usr/local/lib/php.ini not found
10502018-11-14 09:25:01 Test: checking presence /usr/local/etc/php5/cgi/php.ini
10512018-11-14 09:25:01 Result: file /usr/local/etc/php5/cgi/php.ini not found
10522018-11-14 09:25:01 Test: checking presence /usr/local/php54/lib/php.ini
10532018-11-14 09:25:01 Result: file /usr/local/php54/lib/php.ini not found
10542018-11-14 09:25:01 Test: checking presence /usr/local/php56/lib/php.ini
10552018-11-14 09:25:01 Result: file /usr/local/php56/lib/php.ini not found
10562018-11-14 09:25:01 Test: checking presence /usr/local/php70/lib/php.ini
10572018-11-14 09:25:01 Result: file /usr/local/php70/lib/php.ini not found
10582018-11-14 09:25:01 Test: checking presence /usr/local/php71/lib/php.ini
10592018-11-14 09:25:01 Result: file /usr/local/php71/lib/php.ini not found
10602018-11-14 09:25:02 Test: checking presence /usr/local/zend/etc/php.ini
10612018-11-14 09:25:02 Result: file /usr/local/zend/etc/php.ini not found
10622018-11-14 09:25:02 Test: checking presence /usr/pkg/etc/php.ini
10632018-11-14 09:25:02 Result: file /usr/pkg/etc/php.ini not found
10642018-11-14 09:25:02 Test: checking presence /opt/cpanel/ea-php54/root/etc/php.ini
10652018-11-14 09:25:02 Result: file /opt/cpanel/ea-php54/root/etc/php.ini not found
10662018-11-14 09:25:02 Test: checking presence /opt/cpanel/ea-php55/root/etc/php.ini
10672018-11-14 09:25:02 Result: file /opt/cpanel/ea-php55/root/etc/php.ini not found
10682018-11-14 09:25:02 Test: checking presence /opt/cpanel/ea-php56/root/etc/php.ini
10692018-11-14 09:25:02 Result: file /opt/cpanel/ea-php56/root/etc/php.ini not found
10702018-11-14 09:25:02 Test: checking presence /opt/cpanel/ea-php70/root/etc/php.ini
10712018-11-14 09:25:02 Result: file /opt/cpanel/ea-php70/root/etc/php.ini not found
10722018-11-14 09:25:02 Test: checking presence /opt/cpanel/ea-php71/root/etc/php.ini
10732018-11-14 09:25:02 Result: file /opt/cpanel/ea-php71/root/etc/php.ini not found
10742018-11-14 09:25:02 Test: checking presence /opt/alt/php44/etc/php.ini
10752018-11-14 09:25:02 Result: file /opt/alt/php44/etc/php.ini not found
10762018-11-14 09:25:02 Test: checking presence /opt/alt/php51/etc/php.ini
10772018-11-14 09:25:02 Result: file /opt/alt/php51/etc/php.ini not found
10782018-11-14 09:25:02 Test: checking presence /opt/alt/php52/etc/php.ini
10792018-11-14 09:25:02 Result: file /opt/alt/php52/etc/php.ini not found
10802018-11-14 09:25:02 Test: checking presence /opt/alt/php53/etc/php.ini
10812018-11-14 09:25:02 Result: file /opt/alt/php53/etc/php.ini not found
10822018-11-14 09:25:02 Test: checking presence /opt/alt/php54/etc/php.ini
10832018-11-14 09:25:02 Result: file /opt/alt/php54/etc/php.ini not found
10842018-11-14 09:25:02 Test: checking presence /opt/alt/php55/etc/php.ini
10852018-11-14 09:25:02 Result: file /opt/alt/php55/etc/php.ini not found
10862018-11-14 09:25:02 Test: checking presence /opt/alt/php56/etc/php.ini
10872018-11-14 09:25:02 Result: file /opt/alt/php56/etc/php.ini not found
10882018-11-14 09:25:02 Test: checking presence /opt/alt/php70/etc/php.ini
10892018-11-14 09:25:02 Result: file /opt/alt/php70/etc/php.ini not found
10902018-11-14 09:25:02 Test: checking presence /opt/alt/php71/etc/php.ini
10912018-11-14 09:25:02 Result: file /opt/alt/php71/etc/php.ini not found
10922018-11-14 09:25:02 Test: checking presence /etc/opt/remi/php56/php.ini
10932018-11-14 09:25:02 Result: file /etc/opt/remi/php56/php.ini not found
10942018-11-14 09:25:02 Test: checking presence /etc/opt/remi/php70/php.ini
10952018-11-14 09:25:02 Result: file /etc/opt/remi/php70/php.ini not found
10962018-11-14 09:25:02 Test: checking presence /etc/opt/remi/php71/php.ini
10972018-11-14 09:25:02 Result: file /etc/opt/remi/php71/php.ini not found
10982018-11-14 09:25:02 Test: checking presence /etc/opt/remi/php72/php.ini
10992018-11-14 09:25:02 Result: file /etc/opt/remi/php72/php.ini not found
11002018-11-14 09:25:02 Result: no files found for /etc/php5/conf.d
11012018-11-14 09:25:02 Result: no files found for /etc/php/7.0/cli/conf.d
11022018-11-14 09:25:02 Result: no files found for /etc/php/7.1/cli/conf.d
11032018-11-14 09:25:02 Result: no files found for /etc/php/7.2/cli/conf.d
11042018-11-14 09:25:02 Result: no files found for /etc/php/7.0/fpm/conf.d
11052018-11-14 09:25:02 Result: no files found for /etc/php/7.1/fpm/conf.d
11062018-11-14 09:25:02 Result: no files found for /etc/php/7.2/fpm/conf.d
11072018-11-14 09:25:02 Result: no files found for /etc/php.d
11082018-11-14 09:25:02 Result: no files found for /opt/cpanel/ea-php54/root/etc/php.d
11092018-11-14 09:25:02 Result: no files found for /opt/cpanel/ea-php55/root/etc/php.d
11102018-11-14 09:25:02 Result: no files found for /opt/cpanel/ea-php56/root/etc/php.d
11112018-11-14 09:25:02 Result: no files found for /opt/cpanel/ea-php70/root/etc/php.d
11122018-11-14 09:25:02 Result: no files found for /opt/cpanel/ea-php71/root/etc/php.d
11132018-11-14 09:25:02 Result: no files found for /opt/alt/php44/etc/php.d.all
11142018-11-14 09:25:02 Result: no files found for /opt/alt/php51/etc/php.d.all
11152018-11-14 09:25:02 Result: no files found for /opt/alt/php52/etc/php.d.all
11162018-11-14 09:25:02 Result: no files found for /opt/alt/php53/etc/php.d.all
11172018-11-14 09:25:02 Result: no files found for /opt/alt/php54/etc/php.d.all
11182018-11-14 09:25:02 Result: no files found for /opt/alt/php55/etc/php.d.all
11192018-11-14 09:25:02 Result: no files found for /opt/alt/php56/etc/php.d.all
11202018-11-14 09:25:02 Result: no files found for /opt/alt/php70/etc/php.d.all
11212018-11-14 09:25:02 Result: no files found for /opt/alt/php71/etc/php.d.all
11222018-11-14 09:25:02 Result: no php.ini file found
11232018-11-14 09:25:02 ===---------------------------------------------------------------===
11242018-11-14 09:25:02 Skipped test PHP-2320 (Check PHP disabled functions)
11252018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11262018-11-14 09:25:02 ===---------------------------------------------------------------===
11272018-11-14 09:25:02 Skipped test PHP-2368 (Check PHP register_globals option)
11282018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11292018-11-14 09:25:02 ===---------------------------------------------------------------===
11302018-11-14 09:25:02 Skipped test PHP-2372 (Check PHP expose_php option)
11312018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11322018-11-14 09:25:02 ===---------------------------------------------------------------===
11332018-11-14 09:25:02 Skipped test PHP-2374 (Check PHP enable_dl option)
11342018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11352018-11-14 09:25:02 ===---------------------------------------------------------------===
11362018-11-14 09:25:02 Skipped test PHP-2376 (Check PHP allow_url_fopen option)
11372018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11382018-11-14 09:25:02 ===---------------------------------------------------------------===
11392018-11-14 09:25:02 Skipped test PHP-2378 (Check PHP allow_url_include option)
11402018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11412018-11-14 09:25:02 Checking permissions of /root/lynis/include/tests_squid
11422018-11-14 09:25:02 File permissions are OK
11432018-11-14 09:25:02 ===---------------------------------------------------------------===
11442018-11-14 09:25:02 Action: Performing tests from category: Squid Support
11452018-11-14 09:25:02 ===---------------------------------------------------------------===
11462018-11-14 09:25:02 Performing test ID SQD-3602 (Check for running Squid daemon)
11472018-11-14 09:25:02 Test: Searching for a Squid daemon
11482018-11-14 09:25:02 Result: No running Squid daemon found
11492018-11-14 09:25:02 ===---------------------------------------------------------------===
11502018-11-14 09:25:02 Skipped test SQD-3604 (Check Squid daemon file location)
11512018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11522018-11-14 09:25:02 ===---------------------------------------------------------------===
11532018-11-14 09:25:02 Skipped test SQD-3606 (Check Squid version)
11542018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11552018-11-14 09:25:02 ===---------------------------------------------------------------===
11562018-11-14 09:25:02 Skipped test SQD-3610 (Check Squid version)
11572018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11582018-11-14 09:25:02 ===---------------------------------------------------------------===
11592018-11-14 09:25:02 Skipped test SQD-3613 (Check Squid file permissions)
11602018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11612018-11-14 09:25:02 ===---------------------------------------------------------------===
11622018-11-14 09:25:02 Skipped test SQD-3614 (Check Squid authentication methods)
11632018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11642018-11-14 09:25:02 ===---------------------------------------------------------------===
11652018-11-14 09:25:02 Skipped test SQD-3616 (Check external Squid authentication)
11662018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11672018-11-14 09:25:02 ===---------------------------------------------------------------===
11682018-11-14 09:25:02 Skipped test SQD-3620 (Check Squid access control lists)
11692018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11702018-11-14 09:25:02 ===---------------------------------------------------------------===
11712018-11-14 09:25:02 Skipped test SQD-3624 (Check Squid safe ports)
11722018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11732018-11-14 09:25:02 ===---------------------------------------------------------------===
11742018-11-14 09:25:02 Skipped test SQD-3630 (Check Squid reply_body_max_size option)
11752018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11762018-11-14 09:25:02 ===---------------------------------------------------------------===
11772018-11-14 09:25:02 Skipped test SQD-3680 (Check Squid version suppression)
11782018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11792018-11-14 09:25:02 Checking permissions of /root/lynis/include/tests_logging
11802018-11-14 09:25:02 File permissions are OK
11812018-11-14 09:25:02 ===---------------------------------------------------------------===
11822018-11-14 09:25:02 Action: Performing tests from category: Logging and files
11832018-11-14 09:25:02 ===---------------------------------------------------------------===
11842018-11-14 09:25:02 Performing test ID LOGG-2130 (Check for running syslog daemon)
11852018-11-14 09:25:02 Test: Searching for a logging daemon
11862018-11-14 09:25:02 Result: Found a logging daemon
11872018-11-14 09:25:02 Hardening: assigned maximum number of hardening points for this item (3). Currently having 143 points (out of 218)
11882018-11-14 09:25:02 ===---------------------------------------------------------------===
11892018-11-14 09:25:02 Performing test ID LOGG-2132 (Check for running syslog-ng daemon)
11902018-11-14 09:25:02 Test: Searching for syslog-ng daemon in process list
11912018-11-14 09:25:02 IsRunning: process 'syslog-ng' not found
11922018-11-14 09:25:02 Result: Syslog-ng NOT found in process list
11932018-11-14 09:25:02 ===---------------------------------------------------------------===
11942018-11-14 09:25:02 Skipped test LOGG-2134 (Checking Syslog-NG configuration file consistency)
11952018-11-14 09:25:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
11962018-11-14 09:25:02 ===---------------------------------------------------------------===
11972018-11-14 09:25:02 Performing test ID LOGG-2136 (Check for running systemd journal daemon)
11982018-11-14 09:25:02 Test: Searching for systemd journal daemon in process list
11992018-11-14 09:25:02 IsRunning: process 'systemd-journal' found (269 )
12002018-11-14 09:25:02 ===---------------------------------------------------------------===
12012018-11-14 09:25:02 Performing test ID LOGG-2210 (Check for running metalog daemon)
12022018-11-14 09:25:02 Test: Searching for metalog daemon in process list
12032018-11-14 09:25:03 IsRunning: process 'metalog' not found
12042018-11-14 09:25:03 Result: metalog NOT found in process list
12052018-11-14 09:25:03 ===---------------------------------------------------------------===
12062018-11-14 09:25:03 Performing test ID LOGG-2230 (Check for running RSyslog daemon)
12072018-11-14 09:25:03 Test: Searching for RSyslog daemon in process list
12082018-11-14 09:25:03 IsRunning: process 'rsyslogd' found (416 )
12092018-11-14 09:25:03 Result: Found rsyslogd in process list
12102018-11-14 09:25:03 ===---------------------------------------------------------------===
12112018-11-14 09:25:03 Performing test ID LOGG-2240 (Check for running RFC 3195 compliant daemon)
12122018-11-14 09:25:03 Test: Searching for RFC 3195 daemon (alias syslog reliable) in process list
12132018-11-14 09:25:03 IsRunning: process 'rfc3195d' not found
12142018-11-14 09:25:03 Result: rfc3195d NOT found in process list
12152018-11-14 09:25:03 ===---------------------------------------------------------------===
12162018-11-14 09:25:03 Performing test ID LOGG-2138 (Checking kernel logger daemon on Linux)
12172018-11-14 09:25:03 Test: Searching kernel logger daemon (klogd)
12182018-11-14 09:25:03 Result: test skipped, because other facility is being used to log kernel messages
12192018-11-14 09:25:03 ===---------------------------------------------------------------===
12202018-11-14 09:25:03 Performing test ID LOGG-2142 (Checking minilog daemon)
12212018-11-14 09:25:03 Result: Checking for unkilled minilogd instances
12222018-11-14 09:25:03 IsRunning: process 'minilogd' not found
12232018-11-14 09:25:03 Result: No minilogd is running
12242018-11-14 09:25:03 ===---------------------------------------------------------------===
12252018-11-14 09:25:03 Performing test ID LOGG-2146 (Checking logrotate.conf and logrotate.d)
12262018-11-14 09:25:03 Test: Checking for /etc/logrotate.conf
12272018-11-14 09:25:03 Result: /etc/logrotate.conf found (file)
12282018-11-14 09:25:03 Test: Checking for /etc/logrotate.d (directory)
12292018-11-14 09:25:03 Result: /etc/logrotate.d found
12302018-11-14 09:25:03 Result: logrotate configuration found
12312018-11-14 09:25:03 ===---------------------------------------------------------------===
12322018-11-14 09:25:03 Performing test ID LOGG-2148 (Checking logrotated files)
12332018-11-14 09:25:03 Test: Checking which files are rotated with logrotate and if they exist
12342018-11-14 09:25:03 Result: found one or more files which are rotated via logrotate
12352018-11-14 09:25:03 Output: File:/var/log/alternatives.log:does_not_exist
12362018-11-14 09:25:03 Output: File:/var/log/apt/history.log:does_not_exist
12372018-11-14 09:25:03 Output: File:/var/log/apt/term.log:does_not_exist
12382018-11-14 09:25:03 Output: File:/var/log/auth.log:does_not_exist
12392018-11-14 09:25:03 Output: File:/var/log/cron.log:does_not_exist
12402018-11-14 09:25:03 Output: File:/var/log/daemon.log:does_not_exist
12412018-11-14 09:25:03 Output: File:/var/log/debug:does_not_exist
12422018-11-14 09:25:03 Output: File:/var/log/dpkg.log:does_not_exist
12432018-11-14 09:25:03 Output: File:/var/log/kern.log:does_not_exist
12442018-11-14 09:25:03 Output: File:/var/log/lpr.log:does_not_exist
12452018-11-14 09:25:03 Output: File:/var/log/mail.err:does_not_exist
12462018-11-14 09:25:03 Output: File:/var/log/mail.info:does_not_exist
12472018-11-14 09:25:03 Output: File:/var/log/mail.log:does_not_exist
12482018-11-14 09:25:03 Output: File:/var/log/mail.warn:does_not_exist
12492018-11-14 09:25:03 Output: File:/var/log/messages:does_not_exist
12502018-11-14 09:25:03 Output: File:/var/log/syslog:does_not_exist
12512018-11-14 09:25:03 Output: File:/var/log/user.log:does_not_exist
12522018-11-14 09:25:03 Output: File:/var/log/alternatives.log:exists
12532018-11-14 09:25:03 Output: File:/var/log/apt/history.log:exists
12542018-11-14 09:25:03 Output: File:/var/log/apt/term.log:exists
12552018-11-14 09:25:03 Output: File:/var/log/auth.log:exists
12562018-11-14 09:25:03 Output: File:/var/log/btmp:exists
12572018-11-14 09:25:03 Output: File:/var/log/cron.log:exists
12582018-11-14 09:25:03 Output: File:/var/log/daemon.log:exists
12592018-11-14 09:25:03 Output: File:/var/log/debug:exists
12602018-11-14 09:25:03 Output: File:/var/log/dpkg.log:exists
12612018-11-14 09:25:03 Output: File:/var/log/kern.log:exists
12622018-11-14 09:25:03 Output: File:/var/log/lpr.log:exists
12632018-11-14 09:25:03 Output: File:/var/log/mail.err:exists
12642018-11-14 09:25:03 Output: File:/var/log/mail.info:exists
12652018-11-14 09:25:03 Output: File:/var/log/mail.log:exists
12662018-11-14 09:25:03 Output: File:/var/log/mail.warn:exists
12672018-11-14 09:25:03 Output: File:/var/log/messages:exists
12682018-11-14 09:25:03 Output: File:/var/log/mosquitto/mosquitto.log:exists
12692018-11-14 09:25:03 Output: File:/var/log/syslog:exists
12702018-11-14 09:25:03 Output: File:/var/log/user.log:exists
12712018-11-14 09:25:03 Output: File:/var/log/wtmp:exists
12722018-11-14 09:25:03 ===---------------------------------------------------------------===
12732018-11-14 09:25:03 Performing test ID LOGG-2150 (Checking directories in logrotate configuration)
12742018-11-14 09:25:03 Test: Checking which directories can be found in logrotate configuration
12752018-11-14 09:25:03 Result: found one or more directories (via logrotate configuration)
12762018-11-14 09:25:03 Directory found: /var/log
12772018-11-14 09:25:03 Directory found: /var/log/apt
12782018-11-14 09:25:03 Result: Directory could not be found: /var/log/mosquitto
12792018-11-14 09:25:03 ===---------------------------------------------------------------===
12802018-11-14 09:25:03 Skipped test LOGG-2152 (Checking loghost)
12812018-11-14 09:25:03 Reason to skip: Incorrect guest OS (Solaris only)
12822018-11-14 09:25:03 ===---------------------------------------------------------------===
12832018-11-14 09:25:03 Performing test ID LOGG-2154 (Checking syslog configuration file)
12842018-11-14 09:25:03 Result: test skipped, file /etc/syslog.conf not found
12852018-11-14 09:25:03 ===---------------------------------------------------------------===
12862018-11-14 09:25:03 Skipped test LOGG-2160 (Checking /etc/newsyslog.conf)
12872018-11-14 09:25:03 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
12882018-11-14 09:25:03 ===---------------------------------------------------------------===
12892018-11-14 09:25:03 Skipped test LOGG-2162 (Checking directories in /etc/newsyslog.conf)
12902018-11-14 09:25:03 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
12912018-11-14 09:25:03 ===---------------------------------------------------------------===
12922018-11-14 09:25:03 Skipped test LOGG-2164 (Checking files specified /etc/newsyslog.conf)
12932018-11-14 09:25:03 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
12942018-11-14 09:25:03 ===---------------------------------------------------------------===
12952018-11-14 09:25:03 Performing test ID LOGG-2170 (Checking log paths)
12962018-11-14 09:25:03 Test: Searching log paths
12972018-11-14 09:25:03 Result: directory /var/log exists
12982018-11-14 09:25:03 Result: directory /var/adm can't be found
12992018-11-14 09:25:03 ===---------------------------------------------------------------===
13002018-11-14 09:25:03 Performing test ID LOGG-2180 (Checking open log files)
13012018-11-14 09:25:03 Test: checking open log files with lsof
13022018-11-14 09:25:03 Result: lsof not installed, skipping test
13032018-11-14 09:25:03 ===---------------------------------------------------------------===
13042018-11-14 09:25:03 Skipped test LOGG-2190 (Checking for deleted files in use)
13052018-11-14 09:25:03 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
13062018-11-14 09:25:03 ===---------------------------------------------------------------===
13072018-11-14 09:25:03 Skipped test LOGG-2192 (Checking for open log files that are empty)
13082018-11-14 09:25:03 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
13092018-11-14 09:25:03 Checking permissions of /root/lynis/include/tests_insecure_services
13102018-11-14 09:25:03 File permissions are OK
13112018-11-14 09:25:03 ===---------------------------------------------------------------===
13122018-11-14 09:25:03 Action: Performing tests from category: Insecure services
13132018-11-14 09:25:03 ===---------------------------------------------------------------===
13142018-11-14 09:25:03 Performing test ID INSE-8002 (Check for enabled inet daemon)
13152018-11-14 09:25:03 Test: Searching for active inet daemon
13162018-11-14 09:25:03 IsRunning: process 'inetd' not found
13172018-11-14 09:25:03 Result: inetd is NOT running
13182018-11-14 09:25:03 ===---------------------------------------------------------------===
13192018-11-14 09:25:03 Skipped test INSE-8004 (Check for enabled inet daemon)
13202018-11-14 09:25:03 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
13212018-11-14 09:25:03 ===---------------------------------------------------------------===
13222018-11-14 09:25:03 Skipped test INSE-8006 (Check configuration of inetd when disabled)
13232018-11-14 09:25:03 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
13242018-11-14 09:25:03 ===---------------------------------------------------------------===
13252018-11-14 09:25:03 Skipped test INSE-8016 (Check for telnet via inetd)
13262018-11-14 09:25:03 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
13272018-11-14 09:25:03 ===---------------------------------------------------------------===
13282018-11-14 09:25:03 Skipped test INSE-8050 (Check for insecure services on macOS)
13292018-11-14 09:25:03 Reason to skip: Incorrect guest OS (macOS only)
13302018-11-14 09:25:03 Checking permissions of /root/lynis/include/tests_banners
13312018-11-14 09:25:03 File permissions are OK
13322018-11-14 09:25:03 ===---------------------------------------------------------------===
13332018-11-14 09:25:03 Action: Performing tests from category: Banners and identification
13342018-11-14 09:25:03 ===---------------------------------------------------------------===
13352018-11-14 09:25:03 Skipped test BANN-7113 (Check COPYRIGHT banner file)
13362018-11-14 09:25:03 Reason to skip: Incorrect guest OS (FreeBSD only)
13372018-11-14 09:25:03 ===---------------------------------------------------------------===
13382018-11-14 09:25:03 Performing test ID BANN-7124 (Check issue banner file)
13392018-11-14 09:25:03 Test: Checking file /etc/issue
13402018-11-14 09:25:03 ===---------------------------------------------------------------===
13412018-11-14 09:25:03 Performing test ID BANN-7126 (Check issue banner file contents)
13422018-11-14 09:25:03 Test: Checking file /etc/issue contents for legal key words
13432018-11-14 09:25:04 Result: Found only 0 key words (5 or more suggested), to warn unauthorized users and could be increased
13442018-11-14 09:25:04 Suggestion: Add a legal banner to /etc/issue, to warn unauthorized users [test:BANN-7126] [details:-] [solution:-]
13452018-11-14 09:25:04 Hardening: assigned partial number of hardening points (0 of 1). Currently having 143 points (out of 219)
13462018-11-14 09:25:04 ===---------------------------------------------------------------===
13472018-11-14 09:25:04 Performing test ID BANN-7128 (Check issue.net banner file)
13482018-11-14 09:25:04 Test: Checking file /etc/issue.net
13492018-11-14 09:25:04 Result: file /etc/issue.net exists
13502018-11-14 09:25:04 ===---------------------------------------------------------------===
13512018-11-14 09:25:04 Performing test ID BANN-7130 (Check issue.net banner file contents)
13522018-11-14 09:25:04 Test: Checking file /etc/issue.net contents for legal key words
13532018-11-14 09:25:04 Result: Found only 0 key words, to warn unauthorized users and could be increased
13542018-11-14 09:25:04 Suggestion: Add legal banner to /etc/issue.net, to warn unauthorized users [test:BANN-7130] [details:-] [solution:-]
13552018-11-14 09:25:04 Hardening: assigned partial number of hardening points (0 of 1). Currently having 143 points (out of 220)
13562018-11-14 09:25:04 Checking permissions of /root/lynis/include/tests_scheduling
13572018-11-14 09:25:04 File permissions are OK
13582018-11-14 09:25:04 ===---------------------------------------------------------------===
13592018-11-14 09:25:04 Action: Performing tests from category: Scheduled tasks
13602018-11-14 09:25:04 ===---------------------------------------------------------------===
13612018-11-14 09:25:04 Performing test ID SCHD-7702 (Check status of cron daemon)
13622018-11-14 09:25:04 Result: cron daemon running
13632018-11-14 09:25:04 ===---------------------------------------------------------------===
13642018-11-14 09:25:04 Performing test ID SCHD-7704 (Check crontab/cronjobs)
13652018-11-14 09:25:04 Found cronjob (/etc/crontab): 17,*,*,*,*,root,cd,/,&&,run-parts,--report,/etc/cron.hourly
13662018-11-14 09:25:04 Found cronjob (/etc/crontab): 25,6,*,*,*,root,test,-x,/usr/sbin/anacron,||,(,cd,/,&&,run-parts,--report,/etc/cron.daily,)
13672018-11-14 09:25:04 Found cronjob (/etc/crontab): 47,6,*,*,7,root,test,-x,/usr/sbin/anacron,||,(,cd,/,&&,run-parts,--report,/etc/cron.weekly,)
13682018-11-14 09:25:04 Found cronjob (/etc/crontab): 52,6,1,*,*,root,test,-x,/usr/sbin/anacron,||,(,cd,/,&&,run-parts,--report,/etc/cron.monthly,)
13692018-11-14 09:25:04 Test: checking directory /etc/cron.d
13702018-11-14 09:25:04 Test: check if we can access /etc/cron.d (escaped: /etc/cron.d)
13712018-11-14 09:25:04 Result: file is owned by our current user ID (0), checking if it is readable
13722018-11-14 09:25:04 Result: file /etc/cron.d is readable (or directory accessible).
13732018-11-14 09:25:04 Result: found directory /etc/cron.d
13742018-11-14 09:25:04 Test: searching files in /etc/cron.d
13752018-11-14 09:25:04 Result: found one or more files in /etc/cron.d. Analyzing files..
13762018-11-14 09:25:04 Result: Found cronjob (/etc/cron.d/gwman_restart): 0,*/6,*,*,*,root,systemctl,restart,gwman-client
13772018-11-14 09:25:04 Result: Found cronjob (/etc/cron.d/bluetoothd_restart): 59,5,*,*,*,root,systemctl,restart,bluetooth.service,>,/dev/null,2>&1
13782018-11-14 09:25:04 Result: Found cronjob (/etc/cron.d/co2_period_change): 0,22,*,*,*,root,sed,-i,'s/refreshTime,.*/refreshTime,=,1200,s/g',/etc/beeeon/gateway/config.d/custom.ini,&&,systemctl,restart,beeeon-gateway,>,/dev/null,2>&1
13792018-11-14 09:25:04 Result: Found cronjob (/etc/cron.d/co2_period_change): 0,6,*,*,*,root,sed,-i,'s/refreshTime,.*/refreshTime,=,600,s/g',/etc/beeeon/gateway/config.d/custom.ini,&&,systemctl,restart,beeeon-gateway,>,/dev/null,2>&1
13802018-11-14 09:25:04 Result: Found cronjob (/etc/cron.d/dpa_co2_calibration): 0,2,*,*,MON,root,/usr/bin/mosquitto_pub,-t,"Iqrf/DpaRequest",-f,/opt/dpa_co2_calibration.req,>,/dev/null,2>&1
13812018-11-14 09:25:04 Result: done with analyzing files in /etc/cron.d
13822018-11-14 09:25:04 Test: checking directory /etc/cron.hourly
13832018-11-14 09:25:04 Result: found directory /etc/cron.hourly
13842018-11-14 09:25:04 Test: check if we can access /etc/cron.hourly (escaped: /etc/cron.hourly)
13852018-11-14 09:25:04 Result: file is owned by our current user ID (0), checking if it is readable
13862018-11-14 09:25:04 Result: file /etc/cron.hourly is readable (or directory accessible).
13872018-11-14 09:25:04 Test: searching files in /etc/cron.hourly
13882018-11-14 09:25:04 Result: no files found in /etc/cron.hourly
13892018-11-14 09:25:04 Test: checking directory /etc/cron.daily
13902018-11-14 09:25:04 Result: found directory /etc/cron.daily
13912018-11-14 09:25:04 Test: check if we can access /etc/cron.daily (escaped: /etc/cron.daily)
13922018-11-14 09:25:04 Result: file is owned by our current user ID (0), checking if it is readable
13932018-11-14 09:25:04 Result: file /etc/cron.daily is readable (or directory accessible).
13942018-11-14 09:25:04 Test: searching files in /etc/cron.daily
13952018-11-14 09:25:04 Result: found one or more files in /etc/cron.daily. Analyzing files..
13962018-11-14 09:25:04 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/dpkg
13972018-11-14 09:25:04 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/logrotate
13982018-11-14 09:25:04 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/passwd
13992018-11-14 09:25:04 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/bsdmainutils
14002018-11-14 09:25:04 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/ntp
14012018-11-14 09:25:04 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/apt-compat
14022018-11-14 09:25:04 Result: done with analyzing files in /etc/cron.daily
14032018-11-14 09:25:04 Test: checking directory /etc/cron.weekly
14042018-11-14 09:25:04 Result: found directory /etc/cron.weekly
14052018-11-14 09:25:04 Test: check if we can access /etc/cron.weekly (escaped: /etc/cron.weekly)
14062018-11-14 09:25:04 Result: file is owned by our current user ID (0), checking if it is readable
14072018-11-14 09:25:04 Result: file /etc/cron.weekly is readable (or directory accessible).
14082018-11-14 09:25:04 Test: searching files in /etc/cron.weekly
14092018-11-14 09:25:04 Result: no files found in /etc/cron.weekly
14102018-11-14 09:25:04 Test: checking directory /etc/cron.monthly
14112018-11-14 09:25:04 Result: found directory /etc/cron.monthly
14122018-11-14 09:25:04 Test: check if we can access /etc/cron.monthly (escaped: /etc/cron.monthly)
14132018-11-14 09:25:04 Result: file is owned by our current user ID (0), checking if it is readable
14142018-11-14 09:25:04 Result: file /etc/cron.monthly is readable (or directory accessible).
14152018-11-14 09:25:04 Test: searching files in /etc/cron.monthly
14162018-11-14 09:25:04 Result: no files found in /etc/cron.monthly
14172018-11-14 09:25:04 ===---------------------------------------------------------------===
14182018-11-14 09:25:04 Performing test ID SCHD-7718 (Check at users)
14192018-11-14 09:25:04 Test: Checking atd status
14202018-11-14 09:25:04 Result: at daemon not active
14212018-11-14 09:25:04 ===---------------------------------------------------------------===
14222018-11-14 09:25:04 Skipped test SCHD-7720 (Check at users)
14232018-11-14 09:25:04 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
14242018-11-14 09:25:04 ===---------------------------------------------------------------===
14252018-11-14 09:25:04 Skipped test SCHD-7724 (Check at jobs)
14262018-11-14 09:25:04 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
14272018-11-14 09:25:04 Checking permissions of /root/lynis/include/tests_accounting
14282018-11-14 09:25:05 File permissions are OK
14292018-11-14 09:25:05 ===---------------------------------------------------------------===
14302018-11-14 09:25:05 Action: Performing tests from category: Accounting
14312018-11-14 09:25:05 ===---------------------------------------------------------------===
14322018-11-14 09:25:05 Skipped test ACCT-2754 (Check for available FreeBSD accounting information)
14332018-11-14 09:25:05 Reason to skip: Incorrect guest OS (FreeBSD only)
14342018-11-14 09:25:05 ===---------------------------------------------------------------===
14352018-11-14 09:25:05 Skipped test ACCT-2760 (Check for available OpenBSD accounting information)
14362018-11-14 09:25:05 Reason to skip: Incorrect guest OS (OpenBSD only)
14372018-11-14 09:25:05 ===---------------------------------------------------------------===
14382018-11-14 09:25:05 Performing test ID ACCT-9622 (Check for available Linux accounting information)
14392018-11-14 09:25:05 Test: Check accounting information
14402018-11-14 09:25:05 Result: No accounting information available (/var/account/pacct, /var/log/account/pact nor /var/log/pact exist)
14412018-11-14 09:25:05 Remark: Possibly there is another location where the accounting data is stored
14422018-11-14 09:25:05 Suggestion: Enable process accounting [test:ACCT-9622] [details:-] [solution:-]
14432018-11-14 09:25:05 Hardening: assigned partial number of hardening points (2 of 3). Currently having 145 points (out of 223)
14442018-11-14 09:25:05 ===---------------------------------------------------------------===
14452018-11-14 09:25:05 Performing test ID ACCT-9626 (Check for sysstat accounting data)
14462018-11-14 09:25:05 Test: check /etc/default/sysstat presence
14472018-11-14 09:25:05 Result: sysstat not found via /etc/default/sysstat or /etc/cron.d/sysstat
14482018-11-14 09:25:05 Suggestion: Enable sysstat to collect accounting (no results) [test:ACCT-9626] [details:-] [solution:-]
14492018-11-14 09:25:05 ===---------------------------------------------------------------===
14502018-11-14 09:25:05 Performing test ID ACCT-9628 (Check for auditd)
14512018-11-14 09:25:05 Test: Check auditd status
14522018-11-14 09:25:05 IsRunning: process 'auditd' not found
14532018-11-14 09:25:05 Result: auditd not active
14542018-11-14 09:25:05 Suggestion: Enable auditd to collect audit information [test:ACCT-9628] [details:-] [solution:-]
14552018-11-14 09:25:05 Hardening: assigned partial number of hardening points (0 of 1). Currently having 145 points (out of 224)
14562018-11-14 09:25:05 ===---------------------------------------------------------------===
14572018-11-14 09:25:05 Skipped test ACCT-9630 (Check for auditd rules)
14582018-11-14 09:25:05 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
14592018-11-14 09:25:05 ===---------------------------------------------------------------===
14602018-11-14 09:25:05 Skipped test ACCT-9632 (Check for auditd configuration file)
14612018-11-14 09:25:05 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
14622018-11-14 09:25:05 ===---------------------------------------------------------------===
14632018-11-14 09:25:05 Skipped test ACCT-9634 (Check for auditd log file)
14642018-11-14 09:25:05 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
14652018-11-14 09:25:05 ===---------------------------------------------------------------===
14662018-11-14 09:25:05 Performing test ID ACCT-9636 (Check for Snoopy wrapper and logger)
14672018-11-14 09:25:05 ===---------------------------------------------------------------===
14682018-11-14 09:25:05 Skipped test ACCT-9650 (Check Solaris audit daemon)
14692018-11-14 09:25:05 Reason to skip: Incorrect guest OS (Solaris only)
14702018-11-14 09:25:05 ===---------------------------------------------------------------===
14712018-11-14 09:25:05 Skipped test ACCT-9652 (Check auditd SMF status)
14722018-11-14 09:25:05 Reason to skip: Incorrect guest OS (Solaris only)
14732018-11-14 09:25:05 ===---------------------------------------------------------------===
14742018-11-14 09:25:05 Skipped test ACCT-9654 (Check BSM auditing in /etc/system)
14752018-11-14 09:25:05 Reason to skip: Incorrect guest OS (Solaris only)
14762018-11-14 09:25:05 ===---------------------------------------------------------------===
14772018-11-14 09:25:05 Skipped test ACCT-9656 (Check BSM auditing in module list)
14782018-11-14 09:25:05 Reason to skip: Incorrect guest OS (Solaris only)
14792018-11-14 09:25:05 ===---------------------------------------------------------------===
14802018-11-14 09:25:05 Skipped test ACCT-9660 (Check location of audit events)
14812018-11-14 09:25:05 Reason to skip: Incorrect guest OS (Solaris only)
14822018-11-14 09:25:05 ===---------------------------------------------------------------===
14832018-11-14 09:25:05 Skipped test ACCT-9662 (Check Solaris auditing stats)
14842018-11-14 09:25:05 Reason to skip: Incorrect guest OS (Solaris only)
14852018-11-14 09:25:05 Checking permissions of /root/lynis/include/tests_time
14862018-11-14 09:25:05 File permissions are OK
14872018-11-14 09:25:05 ===---------------------------------------------------------------===
14882018-11-14 09:25:05 Action: Performing tests from category: Time and Synchronization
14892018-11-14 09:25:05 ===---------------------------------------------------------------===
14902018-11-14 09:25:05 Performing test ID TIME-3104 (Check for running NTP daemon or client)
14912018-11-14 09:25:05 Test: Searching for a running NTP daemon or available client
14922018-11-14 09:25:05 Result: no chrony configuration found
14932018-11-14 09:25:05 IsRunning: process 'dntpd' not found
14942018-11-14 09:25:05 Result: found running NTP daemon in process list
14952018-11-14 09:25:05 IsRunning: process 'timed' not found
14962018-11-14 09:25:05 Result: time sychronization not performed according timedatectl command
14972018-11-14 09:25:05 Result: crontab file /etc/anacrontab not found
14982018-11-14 09:25:05 Test: checking for ntpdate or rdate in crontab file /etc/crontab
14992018-11-14 09:25:05 Result: no ntpdate or rdate reference found in crontab file /etc/crontab
15002018-11-14 09:25:05 Test: check if we can access /etc/cron.d (escaped: /etc/cron.d)
15012018-11-14 09:25:05 Result: file is owned by our current user ID (0), checking if it is readable
15022018-11-14 09:25:05 Result: file /etc/cron.d is readable (or directory accessible).
15032018-11-14 09:25:05 Test: checking for ntpdate or rdate in /etc/cron.d/bluetoothd_restart
15042018-11-14 09:25:05 Test: checking for ntpdate or rdate in /etc/cron.d/co2_period_change
15052018-11-14 09:25:05 Test: checking for ntpdate or rdate in /etc/cron.d/dpa_co2_calibration
15062018-11-14 09:25:05 Test: checking for ntpdate or rdate in /etc/cron.d/gwman_restart
15072018-11-14 09:25:05 Test: check if we can access /etc/cron.hourly (escaped: /etc/cron.hourly)
15082018-11-14 09:25:05 Result: file is owned by our current user ID (0), checking if it is readable
15092018-11-14 09:25:05 Result: file /etc/cron.hourly is readable (or directory accessible).
15102018-11-14 09:25:05 Result: /etc/cron.hourly is empty, skipping search in directory
15112018-11-14 09:25:05 Test: check if we can access /etc/cron.daily (escaped: /etc/cron.daily)
15122018-11-14 09:25:05 Result: file is owned by our current user ID (0), checking if it is readable
15132018-11-14 09:25:05 Result: file /etc/cron.daily is readable (or directory accessible).
15142018-11-14 09:25:05 Test: checking for ntpdate or rdate in /etc/cron.daily/apt-compat
15152018-11-14 09:25:05 Test: checking for ntpdate or rdate in /etc/cron.daily/bsdmainutils
15162018-11-14 09:25:05 Test: checking for ntpdate or rdate in /etc/cron.daily/dpkg
15172018-11-14 09:25:05 Test: checking for ntpdate or rdate in /etc/cron.daily/logrotate
15182018-11-14 09:25:05 Test: checking for ntpdate or rdate in /etc/cron.daily/ntp
15192018-11-14 09:25:05 Test: checking for ntpdate or rdate in /etc/cron.daily/passwd
15202018-11-14 09:25:05 Test: check if we can access /etc/cron.weekly (escaped: /etc/cron.weekly)
15212018-11-14 09:25:05 Result: file is owned by our current user ID (0), checking if it is readable
15222018-11-14 09:25:05 Result: file /etc/cron.weekly is readable (or directory accessible).
15232018-11-14 09:25:05 Result: /etc/cron.weekly is empty, skipping search in directory
15242018-11-14 09:25:05 Test: check if we can access /etc/cron.monthly (escaped: /etc/cron.monthly)
15252018-11-14 09:25:05 Result: file is owned by our current user ID (0), checking if it is readable
15262018-11-14 09:25:05 Result: file /etc/cron.monthly is readable (or directory accessible).
15272018-11-14 09:25:05 Result: /etc/cron.monthly is empty, skipping search in directory
15282018-11-14 09:25:05 Result: no ntpdate or rdate found in cron directories
15292018-11-14 09:25:05 Test: checking for file /etc/network/if-up.d/ntpdate
15302018-11-14 09:25:05 Result: found ntpdate action when network interface comes up
15312018-11-14 09:25:05 Result: Found a time syncing daemon/client.
15322018-11-14 09:25:05 Hardening: assigned maximum number of hardening points for this item (3). Currently having 148 points (out of 227)
15332018-11-14 09:25:05 ===---------------------------------------------------------------===
15342018-11-14 09:25:06 Skipped test TIME-3106 (Check systemd NTP time synchronization status)
15352018-11-14 09:25:06 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
15362018-11-14 09:25:06 ===---------------------------------------------------------------===
15372018-11-14 09:25:06 Performing test ID TIME-3112 (Check active NTP associations ID's)
15382018-11-14 09:25:06 Test: Checking for NTP association ID's from ntpq peers list
15392018-11-14 09:25:06 Result: Found one or more association ID's
15402018-11-14 09:25:06 ===---------------------------------------------------------------===
15412018-11-14 09:25:06 Performing test ID TIME-3116 (Check peers with stratum value of 16)
15422018-11-14 09:25:06 Test: Checking stratum 16 sources from ntpq peers list
15432018-11-14 09:25:06 Result: All peers are lower than stratum 16
15442018-11-14 09:25:06 ===---------------------------------------------------------------===
15452018-11-14 09:25:06 Performing test ID TIME-3120 (Check unreliable NTP peers)
15462018-11-14 09:25:06 Test: Checking unreliable ntp peers
15472018-11-14 09:25:06 Result: Found one or more unreliable peers (marked with a minus or dash sign)
15482018-11-14 09:25:06 Unreliable peer: #5.1.56.123
15492018-11-14 09:25:06 Unreliable peer: #89.221.210.188
15502018-11-14 09:25:06 Unreliable peer: #81.2.254.32
15512018-11-14 09:25:06 Unreliable peer: #81.0.208.219
15522018-11-14 09:25:06 Unreliable peer: #78.108.102.237
15532018-11-14 09:25:06 Unreliable peer: 80.79.25.111
15542018-11-14 09:25:06 Unreliable peer: 89.221.214.130
15552018-11-14 09:25:06 Suggestion: Check ntpq peers output for unreliable ntp peers and correct/replace them [test:TIME-3120] [details:-] [solution:-]
15562018-11-14 09:25:06 ===---------------------------------------------------------------===
15572018-11-14 09:25:06 Performing test ID TIME-3124 (Check selected time source)
15582018-11-14 09:25:06 Test: Checking selected time source
15592018-11-14 09:25:07 Result: Found selected time source (value: 81.2.248.189)
15602018-11-14 09:25:07 ===---------------------------------------------------------------===
15612018-11-14 09:25:07 Performing test ID TIME-3128 (Check preferred time source)
15622018-11-14 09:25:07 Test: Checking preferred time source
15632018-11-14 09:25:07 Result: Found one or more candidates to synchronize time with.
15642018-11-14 09:25:07 Candidate found: 37.187.104.44
15652018-11-14 09:25:07 Candidate found: 212.96.160.147
15662018-11-14 09:25:07 Candidate found: 89.221.212.46
15672018-11-14 09:25:07 Candidate found: 83.167.252.118
15682018-11-14 09:25:07 Candidate found: 185.189.115.149
15692018-11-14 09:25:07 Candidate found: 147.251.48.140
15702018-11-14 09:25:07 Candidate found: 31.31.74.35
15712018-11-14 09:25:07 ===---------------------------------------------------------------===
15722018-11-14 09:25:07 Performing test ID TIME-3132 (Check NTP falsetickers)
15732018-11-14 09:25:07 Test: Checking preferred time source
15742018-11-14 09:25:07 Result: No falsetickers found (items preceding with an 'x')
15752018-11-14 09:25:07 ===---------------------------------------------------------------===
15762018-11-14 09:25:07 Performing test ID TIME-3136 (Check NTP protocol version)
15772018-11-14 09:25:07 Test: Checking NTP protocol version (ntpq -c ntpversion)
15782018-11-14 09:25:07 Result: Found NTP version 2
15792018-11-14 09:25:07 ===---------------------------------------------------------------===
15802018-11-14 09:25:07 Performing test ID TIME-3148 (Check TZ variable)
15812018-11-14 09:25:07 Test: testing for TZ variable
15822018-11-14 09:25:07 Result: found TZ variable with value notset
15832018-11-14 09:25:07 ===---------------------------------------------------------------===
15842018-11-14 09:25:07 Skipped test TIME-3160 (Check empty NTP step-tickers)
15852018-11-14 09:25:07 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
15862018-11-14 09:25:07 ===---------------------------------------------------------------===
15872018-11-14 09:25:07 Performing test ID TIME-3170 (Check configuration files)
15882018-11-14 09:25:07 Result: found /etc/ntp.conf
15892018-11-14 09:25:07 Checking permissions of /root/lynis/include/tests_crypto
15902018-11-14 09:25:07 File permissions are OK
15912018-11-14 09:25:07 ===---------------------------------------------------------------===
15922018-11-14 09:25:07 Action: Performing tests from category: Cryptography
15932018-11-14 09:25:07 ===---------------------------------------------------------------===
15942018-11-14 09:25:07 Performing test ID CRYP-7902 (Check expire date of SSL certificates)
15952018-11-14 09:25:07 Paths to scan: /etc/apache2 /etc/dovecot /etc/httpd /etc/letsencrypt /etc/pki /etc/postfix /etc/ssl /opt/psa/var/certificates /srv/www /usr/local/psa/var/certificates /usr/local/share/ca-certificates /var/www
15962018-11-14 09:25:07 Result: SSL path /etc/apache2 does not exist
15972018-11-14 09:25:07 Result: SSL path /etc/dovecot does not exist
15982018-11-14 09:25:07 Result: SSL path /etc/httpd does not exist
15992018-11-14 09:25:07 Result: SSL path /etc/letsencrypt does not exist
16002018-11-14 09:25:07 Result: SSL path /etc/pki does not exist
16012018-11-14 09:25:07 Result: SSL path /etc/postfix does not exist
16022018-11-14 09:25:07 Test: check if we can access /etc/ssl (escaped: /etc/ssl)
16032018-11-14 09:25:07 Result: file is owned by our current user ID (0), checking if it is readable
16042018-11-14 09:25:07 Result: file /etc/ssl is readable (or directory accessible).
16052018-11-14 09:25:07 Result: found directory /etc/ssl
16062018-11-14 09:25:07 Test: check if we can access /etc/ssl/certs/ca-certificates.crt (escaped: /etc/ssl/certs/ca-certificates.crt)
16072018-11-14 09:25:07 Result: file is owned by our current user ID (0), checking if it is readable
16082018-11-14 09:25:07 Result: file /etc/ssl/certs/ca-certificates.crt is readable (or directory accessible).
16092018-11-14 09:25:08 Result: file '/etc/ssl/certs/ca-certificates.crt' does most likely not belong to a package
16102018-11-14 09:25:08 Test: test if file is a certificate
16112018-11-14 09:25:08 Result: file is a certificate
16122018-11-14 09:25:08 Test: checking certificate details
16132018-11-14 09:25:08 Result: certificate /etc/ssl/certs/ca-certificates.crt seems to be correct and still valid
16142018-11-14 09:25:08 Result: found 1 certificates in /etc/ssl
16152018-11-14 09:25:08 Result: SSL path /opt/psa/var/certificates does not exist
16162018-11-14 09:25:08 Result: SSL path /srv/www does not exist
16172018-11-14 09:25:08 Result: SSL path /usr/local/psa/var/certificates does not exist
16182018-11-14 09:25:08 Test: check if we can access /usr/local/share/ca-certificates (escaped: /usr/local/share/ca-certificates)
16192018-11-14 09:25:08 Result: file is owned by our current user ID (0), checking if it is readable
16202018-11-14 09:25:08 Result: file /usr/local/share/ca-certificates is readable (or directory accessible).
16212018-11-14 09:25:08 Result: found directory /usr/local/share/ca-certificates
16222018-11-14 09:25:08 Result: found 0 certificates in /usr/local/share/ca-certificates
16232018-11-14 09:25:08 Result: SSL path /var/www does not exist
16242018-11-14 09:25:08 Result: found a total of 1 certificates
16252018-11-14 09:25:08 Checking permissions of /root/lynis/include/tests_virtualization
16262018-11-14 09:25:08 File permissions are OK
16272018-11-14 09:25:08 ===---------------------------------------------------------------===
16282018-11-14 09:25:08 Action: Performing tests from category: Virtualization
16292018-11-14 09:25:08 Checking permissions of /root/lynis/include/tests_containers
16302018-11-14 09:25:08 File permissions are OK
16312018-11-14 09:25:08 ===---------------------------------------------------------------===
16322018-11-14 09:25:08 Action: Performing tests from category: Containers
16332018-11-14 09:25:08 ===---------------------------------------------------------------===
16342018-11-14 09:25:08 Skipped test CONT-8004 (Query running Solaris zones)
16352018-11-14 09:25:08 Reason to skip: Incorrect guest OS (Solaris only)
16362018-11-14 09:25:08 ===---------------------------------------------------------------===
16372018-11-14 09:25:08 Performing test ID CONT-8102 (Checking Docker status and information)
16382018-11-14 09:25:08 IsRunning: process 'dockerd' not found
16392018-11-14 09:25:08 ===---------------------------------------------------------------===
16402018-11-14 09:25:08 Skipped test CONT-8104 (Checking Docker info for any warnings)
16412018-11-14 09:25:08 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
16422018-11-14 09:25:08 ===---------------------------------------------------------------===
16432018-11-14 09:25:08 Skipped test CONT-8106 (Gather basic stats from Docker)
16442018-11-14 09:25:08 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
16452018-11-14 09:25:08 ===---------------------------------------------------------------===
16462018-11-14 09:25:08 Skipped test CONT-8107 (Check number of Docker containers)
16472018-11-14 09:25:08 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
16482018-11-14 09:25:08 ===---------------------------------------------------------------===
16492018-11-14 09:25:08 Skipped test CONT-8108 (Check file permissions for Docker files)
16502018-11-14 09:25:08 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
16512018-11-14 09:25:08 Checking permissions of /root/lynis/include/tests_mac_frameworks
16522018-11-14 09:25:08 File permissions are OK
16532018-11-14 09:25:08 ===---------------------------------------------------------------===
16542018-11-14 09:25:08 Action: Performing tests from category: Security frameworks
16552018-11-14 09:25:08 ===---------------------------------------------------------------===
16562018-11-14 09:25:08 Performing test ID MACF-6204 (Check AppArmor presence)
16572018-11-14 09:25:08 Result: aa-status binary not found, AppArmor not installed
16582018-11-14 09:25:08 ===---------------------------------------------------------------===
16592018-11-14 09:25:08 Skipped test MACF-6208 (Check if AppArmor is enabled)
16602018-11-14 09:25:08 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
16612018-11-14 09:25:08 ===---------------------------------------------------------------===
16622018-11-14 09:25:08 Performing test ID MACF-6232 (Check SELINUX presence)
16632018-11-14 09:25:08 Test: checking if we have sestatus binary
16642018-11-14 09:25:08 Result: sestatus binary NOT found
16652018-11-14 09:25:08 ===---------------------------------------------------------------===
16662018-11-14 09:25:08 Skipped test MACF-6234 (Check SELINUX status)
16672018-11-14 09:25:08 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
16682018-11-14 09:25:08 ===---------------------------------------------------------------===
16692018-11-14 09:25:08 Performing test ID MACF-6240 (Check TOMOYO Linux presence)
16702018-11-14 09:25:08 Test: checking if we have tomoyo-init binary
16712018-11-14 09:25:08 Result: tomoyo-init binary not found
16722018-11-14 09:25:08 ===---------------------------------------------------------------===
16732018-11-14 09:25:08 Skipped test MACF-6242 (Check TOMOYO Linux status)
16742018-11-14 09:25:08 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
16752018-11-14 09:25:08 ===---------------------------------------------------------------===
16762018-11-14 09:25:08 Performing test ID RBAC-6272 (Check grsecurity presence)
16772018-11-14 09:25:08 ===---------------------------------------------------------------===
16782018-11-14 09:25:08 Performing test ID MACF-6290 (Check for implemented MAC framework)
16792018-11-14 09:25:08 Hardening: assigned partial number of hardening points (2 of 3). Currently having 150 points (out of 230)
16802018-11-14 09:25:08 Result: found no implemented MAC framework
16812018-11-14 09:25:08 Checking permissions of /root/lynis/include/tests_file_integrity
16822018-11-14 09:25:08 File permissions are OK
16832018-11-14 09:25:08 ===---------------------------------------------------------------===
16842018-11-14 09:25:08 Action: Performing tests from category: Software: file integrity
16852018-11-14 09:25:08 ===---------------------------------------------------------------===
16862018-11-14 09:25:08 Performing test ID FINT-4310 (AFICK availability)
16872018-11-14 09:25:08 Test: Checking AFICK binary
16882018-11-14 09:25:08 Result: AFICK is not installed
16892018-11-14 09:25:08 ===---------------------------------------------------------------===
16902018-11-14 09:25:08 Performing test ID FINT-4314 (AIDE availability)
16912018-11-14 09:25:08 Test: Checking AIDE binary
16922018-11-14 09:25:08 Result: AIDE is not installed
16932018-11-14 09:25:08 ===---------------------------------------------------------------===
16942018-11-14 09:25:08 Skipped test FINT-4315 (Check AIDE configuration file)
16952018-11-14 09:25:08 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
16962018-11-14 09:25:08 ===---------------------------------------------------------------===
16972018-11-14 09:25:08 Performing test ID FINT-4318 (Osiris availability)
16982018-11-14 09:25:08 Test: Checking Osiris binary
16992018-11-14 09:25:08 Result: Osiris is not installed
17002018-11-14 09:25:08 ===---------------------------------------------------------------===
17012018-11-14 09:25:08 Performing test ID FINT-4322 (Samhain availability)
17022018-11-14 09:25:08 Test: Checking Samhain binary
17032018-11-14 09:25:08 Result: Samhain is not installed
17042018-11-14 09:25:08 ===---------------------------------------------------------------===
17052018-11-14 09:25:08 Performing test ID FINT-4326 (Tripwire availability)
17062018-11-14 09:25:08 Test: Checking Tripwire binary
17072018-11-14 09:25:08 Result: Tripwire is not installed
17082018-11-14 09:25:08 ===---------------------------------------------------------------===
17092018-11-14 09:25:08 Performing test ID FINT-4328 (OSSEC syscheck daemon running)
17102018-11-14 09:25:09 Test: Checking if OSSEC syscheck daemon is running
17112018-11-14 09:25:09 IsRunning: process 'ossec-syscheckd' not found
17122018-11-14 09:25:09 Result: syscheck (OSSEC) not installed
17132018-11-14 09:25:09 ===---------------------------------------------------------------===
17142018-11-14 09:25:09 Performing test ID FINT-4330 (mtree availability)
17152018-11-14 09:25:09 Test: Checking mtree binary
17162018-11-14 09:25:09 Result: mtree is not installed
17172018-11-14 09:25:09 ===---------------------------------------------------------------===
17182018-11-14 09:25:09 Skipped test FINT-4334 (Check lfd daemon status)
17192018-11-14 09:25:09 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
17202018-11-14 09:25:09 ===---------------------------------------------------------------===
17212018-11-14 09:25:09 Skipped test FINT-4336 (Check lfd configuration status)
17222018-11-14 09:25:09 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
17232018-11-14 09:25:09 ===---------------------------------------------------------------===
17242018-11-14 09:25:09 Performing test ID FINT-4338 (osqueryd syscheck daemon running)
17252018-11-14 09:25:09 Test: Checking if osqueryd syscheck daemon is running
17262018-11-14 09:25:09 IsRunning: process 'osqueryd' not found
17272018-11-14 09:25:09 Result: syscheck (osquery) not installed
17282018-11-14 09:25:09 ===---------------------------------------------------------------===
17292018-11-14 09:25:09 Skipped test FINT-4402 (AIDE configuration: Checksums (SHA256 or SHA512))
17302018-11-14 09:25:09 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
17312018-11-14 09:25:09 ===---------------------------------------------------------------===
17322018-11-14 09:25:09 Performing test ID FINT-4350 (File integrity software installed)
17332018-11-14 09:25:09 Test: Check if at least on file integrity tool is available/installed
17342018-11-14 09:25:09 Result: No file integrity tools found
17352018-11-14 09:25:09 Suggestion: Install a file integrity tool to monitor changes to critical and sensitive files [test:FINT-4350] [details:-] [solution:-]
17362018-11-14 09:25:09 Hardening: assigned partial number of hardening points (0 of 5). Currently having 150 points (out of 235)
17372018-11-14 09:25:09 Checking permissions of /root/lynis/include/tests_tooling
17382018-11-14 09:25:09 File permissions are OK
17392018-11-14 09:25:09 ===---------------------------------------------------------------===
17402018-11-14 09:25:09 Action: Performing tests from category: Software: System tooling
17412018-11-14 09:25:09 ===---------------------------------------------------------------===
17422018-11-14 09:25:09 Performing test ID TOOL-5002 (Checking for automation tools)
17432018-11-14 09:25:09 Test: checking if directory ~/.ansible exists
17442018-11-14 09:25:09 Result: directory ~/.ansible NOT found
17452018-11-14 09:25:09 Test: checking if directory /etc/ansible exists
17462018-11-14 09:25:09 Result: directory /etc/ansible NOT found
17472018-11-14 09:25:09 Test: checking if directory /root/.ansible exists
17482018-11-14 09:25:09 Result: directory /root/.ansible NOT found
17492018-11-14 09:25:09 Test: checking if directory /tmp/.ansible exists
17502018-11-14 09:25:09 Result: directory /tmp/.ansible NOT found
17512018-11-14 09:25:09 Test: checking if file /var/log/ansible.log exists
17522018-11-14 09:25:09 Result: file /var/log/ansible.log NOT found
17532018-11-14 09:25:09 Test: checking if file ~/.ansible-retry exists
17542018-11-14 09:25:09 Result: file ~/.ansible-retry NOT found
17552018-11-14 09:25:09 IsRunning: process 'puppet master' not found
17562018-11-14 09:25:09 IsRunning: process 'salt-master' not found
17572018-11-14 09:25:09 Suggestion: Determine if automation tools are present for system management [test:TOOL-5002] [details:-] [solution:-]
17582018-11-14 09:25:09 ===---------------------------------------------------------------===
17592018-11-14 09:25:09 Performing test ID TOOL-5102 (Check for presence of Fail2ban)
17602018-11-14 09:25:09 Result: Fail2ban not present (fail2ban-server not found)
17612018-11-14 09:25:09 Checking Fail2ban configuration file
17622018-11-14 09:25:09 ===---------------------------------------------------------------===
17632018-11-14 09:25:09 Skipped test TOOL-5104 (Enabled tests in Fail2ban)
17642018-11-14 09:25:09 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
17652018-11-14 09:25:09 ===---------------------------------------------------------------===
17662018-11-14 09:25:09 Performing test ID TOOL-5120 (Check for presence of Snort)
17672018-11-14 09:25:09 IsRunning: process 'snort' not found
17682018-11-14 09:25:09 Result: Snort not present (Snort not running)
17692018-11-14 09:25:09 ===---------------------------------------------------------------===
17702018-11-14 09:25:09 Performing test ID TOOL-5122 (Check Snort configuration file)
17712018-11-14 09:25:09 ===---------------------------------------------------------------===
17722018-11-14 09:25:09 Performing test ID TOOL-5126 (Check for active OSSEC analysis daemon)
17732018-11-14 09:25:09 IsRunning: process 'ossec-analysisd' not found
17742018-11-14 09:25:09 Result: OSSEC analysis daemon not active
17752018-11-14 09:25:09 ===---------------------------------------------------------------===
17762018-11-14 09:25:09 Performing test ID TOOL-5190 (Check presence of IDS/IPS tool)
17772018-11-14 09:25:09 Hardening: assigned partial number of hardening points (0 of 2). Currently having 150 points (out of 237)
17782018-11-14 09:25:09 Checking permissions of /root/lynis/include/tests_malware
17792018-11-14 09:25:09 File permissions are OK
17802018-11-14 09:25:09 ===---------------------------------------------------------------===
17812018-11-14 09:25:09 Action: Performing tests from category: Software: Malware
17822018-11-14 09:25:09 ===---------------------------------------------------------------===
17832018-11-14 09:25:09 Performing test ID MALW-3275 (Check for chkrootkit)
17842018-11-14 09:25:09 Test: checking presence chkrootkit
17852018-11-14 09:25:09 Result: chkrootkit not found
17862018-11-14 09:25:09 ===---------------------------------------------------------------===
17872018-11-14 09:25:09 Performing test ID MALW-3276 (Check for Rootkit Hunter)
17882018-11-14 09:25:09 Test: checking presence Rootkit Hunter
17892018-11-14 09:25:09 Result: Rootkit Hunter not found
17902018-11-14 09:25:09 ===---------------------------------------------------------------===
17912018-11-14 09:25:09 Performing test ID MALW-3278 (Check for LMD)
17922018-11-14 09:25:09 Test: checking presence LMD
17932018-11-14 09:25:09 Result: LMD not found
17942018-11-14 09:25:09 ===---------------------------------------------------------------===
17952018-11-14 09:25:09 Performing test ID MALW-3280 (Check if anti-virus tool is installed)
17962018-11-14 09:25:09 Test: checking process esets_daemon
17972018-11-14 09:25:09 IsRunning: process 'esets_daemon' not found
17982018-11-14 09:25:09 Test: checking process epagd
17992018-11-14 09:25:09 IsRunning: process 'epagd' not found
18002018-11-14 09:25:09 Test: checking process com.avast.daemon
18012018-11-14 09:25:09 IsRunning: process 'com.avast.daemon' not found
18022018-11-14 09:25:09 Test: checking process Avira daemon
18032018-11-14 09:25:09 IsRunning: process 'avqmd' not found
18042018-11-14 09:25:09 Test: checking process CylanceSvc
18052018-11-14 09:25:09 IsRunning: process 'CylanceSvc' not found
18062018-11-14 09:25:09 Test: checking process cma or cmdagent (McAfee)
18072018-11-14 09:25:09 IsRunning: process 'cmdagent' not found
18082018-11-14 09:25:09 Test: checking process savscand
18092018-11-14 09:25:09 IsRunning: process 'savscand' not found
18102018-11-14 09:25:09 Test: checking process SophosScanD
18112018-11-14 09:25:09 IsRunning: process 'SophosScanD' not found
18122018-11-14 09:25:09 Test: checking process rtvscand
18132018-11-14 09:25:09 IsRunning: process 'rtvscand' not found
18142018-11-14 09:25:09 Test: checking process Symantec management client service
18152018-11-14 09:25:09 IsRunning: process 'smcd' not found
18162018-11-14 09:25:09 Test: checking process Symantec Endpoint Protection configuration service
18172018-11-14 09:25:10 IsRunning: process 'symcfgd' not found
18182018-11-14 09:25:10 Test: checking process TmccMac to test for Trend Micro anti-virus (macOS)
18192018-11-14 09:25:10 IsRunning: process 'TmccMac' not found
18202018-11-14 09:25:10 Result: no commercial anti-virus tools found
18212018-11-14 09:25:10 Hardening: assigned partial number of hardening points (0 of 3). Currently having 150 points (out of 240)
18222018-11-14 09:25:10 ===---------------------------------------------------------------===
18232018-11-14 09:25:10 Performing test ID MALW-3282 (Check for clamscan)
18242018-11-14 09:25:10 Test: checking presence clamscan
18252018-11-14 09:25:10 Result: clamscan couldn't be found
18262018-11-14 09:25:10 ===---------------------------------------------------------------===
18272018-11-14 09:25:10 Performing test ID MALW-3284 (Check for clamd)
18282018-11-14 09:25:10 Test: checking running ClamAV daemon (clamd)
18292018-11-14 09:25:10 IsRunning: process 'clamd' not found
18302018-11-14 09:25:10 Result: clamd not running
18312018-11-14 09:25:10 ===---------------------------------------------------------------===
18322018-11-14 09:25:10 Skipped test MALW-3286 (Check for freshclam)
18332018-11-14 09:25:10 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
18342018-11-14 09:25:10 ===---------------------------------------------------------------===
18352018-11-14 09:25:10 Skipped test MALW-3288 (Check for ClamXav)
18362018-11-14 09:25:10 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
18372018-11-14 09:25:10 Checking permissions of /root/lynis/include/tests_file_permissions
18382018-11-14 09:25:10 File permissions are OK
18392018-11-14 09:25:10 ===---------------------------------------------------------------===
18402018-11-14 09:25:10 Action: Performing tests from category: File Permissions
18412018-11-14 09:25:10 ===---------------------------------------------------------------===
18422018-11-14 09:25:10 Performing test ID FILE-7524 (Perform file permissions check)
18432018-11-14 09:25:10 Test: Checking file permissions
18442018-11-14 09:25:10 Using profile /root/lynis/default.prf for baseline.
18452018-11-14 09:25:10 Checking /etc/lilo.conf
18462018-11-14 09:25:10   Expected permissions:
18472018-11-14 09:25:10   Actual permissions:
18482018-11-14 09:25:10   Result: FILE_NOT_FOUND
18492018-11-14 09:25:10 Checking /root/.ssh
18502018-11-14 09:25:10   Expected permissions: rwx------
18512018-11-14 09:25:10   Actual permissions: rwx------
18522018-11-14 09:25:10   Result: OK
18532018-11-14 09:25:10 Checking permissions of /root/lynis/include/tests_homedirs
18542018-11-14 09:25:10 File permissions are OK
18552018-11-14 09:25:10 ===---------------------------------------------------------------===
18562018-11-14 09:25:10 Action: Performing tests from category: Home directories
18572018-11-14 09:25:10 ===---------------------------------------------------------------===
18582018-11-14 09:25:10 Performing test ID HOME-9302 (Create list with home directories)
18592018-11-14 09:25:10 Test: query /etc/passwd to obtain home directories
18602018-11-14 09:25:10 Result: found home directory: /bin (directory exists)
18612018-11-14 09:25:10 Result: found home directory: /dev (directory exists)
18622018-11-14 09:25:10 Result: found home directory: /home/ntp (directory does not exist)
18632018-11-14 09:25:10 Result: found home directory: /nonexistent (directory does not exist)
18642018-11-14 09:25:10 Result: found home directory: /root (directory exists)
18652018-11-14 09:25:10 Result: found home directory: /run/sshd (directory exists)
18662018-11-14 09:25:10 Result: found home directory: /run/systemd (directory exists)
18672018-11-14 09:25:10 Result: found home directory: /run/systemd/netif (directory exists)
18682018-11-14 09:25:10 Result: found home directory: /run/systemd/resolve (directory does not exist)
18692018-11-14 09:25:10 Result: found home directory: /usr/games (directory exists)
18702018-11-14 09:25:10 Result: found home directory: /usr/sbin (directory exists)
18712018-11-14 09:25:10 Result: found home directory: /var/backups (directory exists)
18722018-11-14 09:25:10 Result: found home directory: /var/cache/man (directory does not exist)
18732018-11-14 09:25:10 Result: found home directory: /var/lib/gnats (directory does not exist)
18742018-11-14 09:25:10 Result: found home directory: /var/lib/misc (directory exists)
18752018-11-14 09:25:10 Result: found home directory: /var/lib/mosquitto (directory exists)
18762018-11-14 09:25:10 Result: found home directory: /var/list (directory does not exist)
18772018-11-14 09:25:10 Result: found home directory: /var/mail (directory exists)
18782018-11-14 09:25:10 Result: found home directory: /var/run/dbus (directory exists)
18792018-11-14 09:25:10 Result: found home directory: /var/run/ircd (directory does not exist)
18802018-11-14 09:25:10 Result: found home directory: /var/spool/lpd (directory does not exist)
18812018-11-14 09:25:10 Result: found home directory: /var/spool/news (directory does not exist)
18822018-11-14 09:25:10 Result: found home directory: /var/spool/uucp (directory does not exist)
18832018-11-14 09:25:10 Result: found home directory: /var/www (directory does not exist)
18842018-11-14 09:25:10 ===---------------------------------------------------------------===
18852018-11-14 09:25:10 Performing test ID HOME-9310 (Checking for suspicious shell history files)
18862018-11-14 09:25:10 Result: Ok, history files are type 'file'.
18872018-11-14 09:25:10 Remarks: History files are normally of the type 'file'. Symbolic links and other types can be riskful.
18882018-11-14 09:25:10 ===---------------------------------------------------------------===
18892018-11-14 09:25:10 Performing test ID HOME-9350 (Collecting information from home directories)
18902018-11-14 09:25:10 Result: IGNORE_HOME_DIRS empty, no paths excluded
18912018-11-14 09:25:10 Checking permissions of /root/lynis/include/tests_kernel_hardening
18922018-11-14 09:25:10 File permissions are OK
18932018-11-14 09:25:10 ===---------------------------------------------------------------===
18942018-11-14 09:25:10 Action: Performing tests from category: Kernel Hardening
18952018-11-14 09:25:10 ===---------------------------------------------------------------===
18962018-11-14 09:25:10 Performing test ID KRNL-6000 (Check sysctl key pairs in scan profile)
18972018-11-14 09:25:11 Result: sysctl key fs.protected_hardlinks has a different value than expected in scan profile. Expected=1, Real=0
18982018-11-14 09:25:11 Hardening: assigned partial number of hardening points (0 of 1). Currently having 150 points (out of 241)
18992018-11-14 09:25:11 Result: sysctl key fs.protected_symlinks has a different value than expected in scan profile. Expected=1, Real=0
19002018-11-14 09:25:11 Hardening: assigned partial number of hardening points (0 of 1). Currently having 150 points (out of 242)
19012018-11-14 09:25:11 Result: sysctl key fs.suid_dumpable contains equal expected and current value (0)
19022018-11-14 09:25:11 Hardening: assigned maximum number of hardening points for this item (1). Currently having 151 points (out of 243)
19032018-11-14 09:25:11 Result: key hw.kbd.keymap_restrict_change does not exist on this machine
19042018-11-14 09:25:11 Result: key kern.sugid_coredump does not exist on this machine
19052018-11-14 09:25:11 Result: key kernel.core_setuid_ok does not exist on this machine
19062018-11-14 09:25:11 Result: sysctl key kernel.core_uses_pid has a different value than expected in scan profile. Expected=1, Real=0
19072018-11-14 09:25:11 Hardening: assigned partial number of hardening points (0 of 1). Currently having 151 points (out of 244)
19082018-11-14 09:25:11 Result: sysctl key kernel.ctrl-alt-del contains equal expected and current value (0)
19092018-11-14 09:25:11 Hardening: assigned maximum number of hardening points for this item (1). Currently having 152 points (out of 245)
19102018-11-14 09:25:11 Result: sysctl key kernel.dmesg_restrict has a different value than expected in scan profile. Expected=1, Real=0
19112018-11-14 09:25:11 Hardening: assigned partial number of hardening points (0 of 1). Currently having 152 points (out of 246)
19122018-11-14 09:25:11 Result: key kernel.exec-shield-randomize does not exist on this machine
19132018-11-14 09:25:11 Result: key kernel.exec-shield does not exist on this machine
19142018-11-14 09:25:11 Result: sysctl key kernel.kptr_restrict has a different value than expected in scan profile. Expected=2, Real=0
19152018-11-14 09:25:11 Hardening: assigned partial number of hardening points (0 of 1). Currently having 152 points (out of 247)
19162018-11-14 09:25:11 Result: key kernel.maps_protect does not exist on this machine
19172018-11-14 09:25:11 Result: sysctl key kernel.randomize_va_space contains equal expected and current value (2)
19182018-11-14 09:25:11 Hardening: assigned maximum number of hardening points for this item (1). Currently having 153 points (out of 248)
19192018-11-14 09:25:11 Result: key kernel.suid_dumpable does not exist on this machine
19202018-11-14 09:25:11 Result: sysctl key kernel.sysrq has a different value than expected in scan profile. Expected=0, Real=1
19212018-11-14 09:25:11 Hardening: assigned partial number of hardening points (0 of 1). Currently having 153 points (out of 249)
19222018-11-14 09:25:11 Result: key kernel.use-nx does not exist on this machine
19232018-11-14 09:25:12 Result: key kernel.yama.ptrace_scope does not exist on this machine
19242018-11-14 09:25:12 Result: key net.inet.icmp.bmcastecho does not exist on this machine
19252018-11-14 09:25:12 Result: key net.inet.icmp.drop_redirect does not exist on this machine
19262018-11-14 09:25:12 Result: key net.inet.icmp.rediraccept does not exist on this machine
19272018-11-14 09:25:12 Result: key net.inet.icmp.timestamp does not exist on this machine
19282018-11-14 09:25:12 Result: key net.inet.ip.accept_sourceroute does not exist on this machine
19292018-11-14 09:25:12 Result: key net.inet.ip.check_interface does not exist on this machine
19302018-11-14 09:25:12 Result: key net.inet.ip.forwarding does not exist on this machine
19312018-11-14 09:25:12 Result: key net.inet.ip.linklocal.in.allowbadttl does not exist on this machine
19322018-11-14 09:25:12 Result: key net.inet.ip.process_options does not exist on this machine
19332018-11-14 09:25:12 Result: key net.inet.ip.random_id does not exist on this machine
19342018-11-14 09:25:12 Result: key net.inet.ip.redirect does not exist on this machine
19352018-11-14 09:25:12 Result: key net.inet.ip.sourceroute does not exist on this machine
19362018-11-14 09:25:12 Result: key net.inet.ip6.redirect does not exist on this machine
19372018-11-14 09:25:12 Result: key net.inet.tcp.always_keepalive does not exist on this machine
19382018-11-14 09:25:12 Result: key net.inet.tcp.blackhole does not exist on this machine
19392018-11-14 09:25:12 Result: key net.inet.tcp.drop_synfin does not exist on this machine
19402018-11-14 09:25:12 Result: key net.inet.tcp.icmp_may_rst does not exist on this machine
19412018-11-14 09:25:12 Result: key net.inet.tcp.nolocaltimewait does not exist on this machine
19422018-11-14 09:25:12 Result: key net.inet.tcp.path_mtu_discovery does not exist on this machine
19432018-11-14 09:25:12 Result: key net.inet.udp.blackhole does not exist on this machine
19442018-11-14 09:25:12 Result: key net.inet6.icmp6.rediraccept does not exist on this machine
19452018-11-14 09:25:12 Result: key net.inet6.ip6.forwarding does not exist on this machine
19462018-11-14 09:25:12 Result: key net.inet6.ip6.fw.enable does not exist on this machine
19472018-11-14 09:25:12 Result: key net.inet6.ip6.redirect does not exist on this machine
19482018-11-14 09:25:12 Result: sysctl key net.ipv4.conf.all.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
19492018-11-14 09:25:12 Hardening: assigned partial number of hardening points (0 of 1). Currently having 153 points (out of 250)
19502018-11-14 09:25:12 Result: sysctl key net.ipv4.conf.all.accept_source_route contains equal expected and current value (0)
19512018-11-14 09:25:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 154 points (out of 251)
19522018-11-14 09:25:12 Result: sysctl key net.ipv4.conf.all.bootp_relay contains equal expected and current value (0)
19532018-11-14 09:25:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 155 points (out of 252)
19542018-11-14 09:25:12 Result: sysctl key net.ipv4.conf.all.forwarding contains equal expected and current value (0)
19552018-11-14 09:25:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 156 points (out of 253)
19562018-11-14 09:25:12 Result: sysctl key net.ipv4.conf.all.log_martians has a different value than expected in scan profile. Expected=1, Real=0
19572018-11-14 09:25:12 Hardening: assigned partial number of hardening points (0 of 1). Currently having 156 points (out of 254)
19582018-11-14 09:25:12 Result: sysctl key net.ipv4.conf.all.mc_forwarding contains equal expected and current value (0)
19592018-11-14 09:25:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 157 points (out of 255)
19602018-11-14 09:25:12 Result: sysctl key net.ipv4.conf.all.proxy_arp contains equal expected and current value (0)
19612018-11-14 09:25:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 158 points (out of 256)
19622018-11-14 09:25:13 Result: sysctl key net.ipv4.conf.all.rp_filter has a different value than expected in scan profile. Expected=1, Real=0
19632018-11-14 09:25:13 Hardening: assigned partial number of hardening points (0 of 1). Currently having 158 points (out of 257)
19642018-11-14 09:25:13 Result: sysctl key net.ipv4.conf.all.send_redirects has a different value than expected in scan profile. Expected=0, Real=1
19652018-11-14 09:25:13 Hardening: assigned partial number of hardening points (0 of 1). Currently having 158 points (out of 258)
19662018-11-14 09:25:13 Result: sysctl key net.ipv4.conf.default.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
19672018-11-14 09:25:13 Hardening: assigned partial number of hardening points (0 of 1). Currently having 158 points (out of 259)
19682018-11-14 09:25:13 Result: sysctl key net.ipv4.conf.default.accept_source_route has a different value than expected in scan profile. Expected=0, Real=1
19692018-11-14 09:25:13 Hardening: assigned partial number of hardening points (0 of 1). Currently having 158 points (out of 260)
19702018-11-14 09:25:13 Result: sysctl key net.ipv4.conf.default.log_martians has a different value than expected in scan profile. Expected=1, Real=0
19712018-11-14 09:25:13 Hardening: assigned partial number of hardening points (0 of 1). Currently having 158 points (out of 261)
19722018-11-14 09:25:13 Result: sysctl key net.ipv4.icmp_echo_ignore_broadcasts contains equal expected and current value (1)
19732018-11-14 09:25:13 Hardening: assigned maximum number of hardening points for this item (1). Currently having 159 points (out of 262)
19742018-11-14 09:25:13 Result: sysctl key net.ipv4.icmp_ignore_bogus_error_responses contains equal expected and current value (1)
19752018-11-14 09:25:13 Hardening: assigned maximum number of hardening points for this item (1). Currently having 160 points (out of 263)
19762018-11-14 09:25:13 Result: sysctl key net.ipv4.tcp_syncookies contains equal expected and current value (1)
19772018-11-14 09:25:13 Hardening: assigned maximum number of hardening points for this item (1). Currently having 161 points (out of 264)
19782018-11-14 09:25:13 Result: sysctl key net.ipv4.tcp_timestamps contains equal expected and current value (0 1)
19792018-11-14 09:25:13 Hardening: assigned maximum number of hardening points for this item (1). Currently having 162 points (out of 265)
19802018-11-14 09:25:13 Result: sysctl key net.ipv6.conf.all.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
19812018-11-14 09:25:13 Hardening: assigned partial number of hardening points (0 of 1). Currently having 162 points (out of 266)
19822018-11-14 09:25:13 Result: sysctl key net.ipv6.conf.all.accept_source_route contains equal expected and current value (0)
19832018-11-14 09:25:13 Hardening: assigned maximum number of hardening points for this item (1). Currently having 163 points (out of 267)
19842018-11-14 09:25:13 Result: key net.ipv6.conf.all.send_redirects does not exist on this machine
19852018-11-14 09:25:13 Result: sysctl key net.ipv6.conf.default.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
19862018-11-14 09:25:13 Hardening: assigned partial number of hardening points (0 of 1). Currently having 163 points (out of 268)
19872018-11-14 09:25:13 Result: sysctl key net.ipv6.conf.default.accept_source_route contains equal expected and current value (0)
19882018-11-14 09:25:13 Hardening: assigned maximum number of hardening points for this item (1). Currently having 164 points (out of 269)
19892018-11-14 09:25:13 Result: key security.bsd.hardlink_check_gid does not exist on this machine
19902018-11-14 09:25:13 Result: key security.bsd.hardlink_check_uid does not exist on this machine
19912018-11-14 09:25:13 Result: key security.bsd.see_other_gids does not exist on this machine
19922018-11-14 09:25:13 Result: key security.bsd.see_other_uids does not exist on this machine
19932018-11-14 09:25:13 Result: key security.bsd.stack_guard_page does not exist on this machine
19942018-11-14 09:25:13 Result: key security.bsd.unprivileged_proc_debug does not exist on this machine
19952018-11-14 09:25:13 Result: key security.bsd.unprivileged_read_msgbuf does not exist on this machine
19962018-11-14 09:25:13 Result: found 15 keys that can use tuning, according scan profile
19972018-11-14 09:25:13 Suggestion: One or more sysctl values differ from the scan profile and could be tweaked [test:KRNL-6000] [details:] [solution:Change sysctl value or disable test (skip-test=KRNL-6000:<sysctl-key>)]
19982018-11-14 09:25:13 Checking permissions of /root/lynis/include/tests_hardening
19992018-11-14 09:25:13 File permissions are OK
20002018-11-14 09:25:13 ===---------------------------------------------------------------===
20012018-11-14 09:25:13 Action: Performing tests from category: Hardening
20022018-11-14 09:25:13 ===---------------------------------------------------------------===
20032018-11-14 09:25:13 Performing test ID HRDN-7220 (Check if one or more compilers are installed)
20042018-11-14 09:25:13 Test: Check if one or more compilers can be found on the system
20052018-11-14 09:25:13 Result: found installed compiler. See top of logfile which compilers have been found or use /bin/grep to filter on 'compiler'
20062018-11-14 09:25:13 Hardening: assigned partial number of hardening points (1 of 3). Currently having 165 points (out of 272)
20072018-11-14 09:25:13 ===---------------------------------------------------------------===
20082018-11-14 09:25:13 Performing test ID HRDN-7222 (Check compiler permissions)
20092018-11-14 09:25:13 Test: Check if one or more compilers can be found on the system
20102018-11-14 09:25:13 Test: Check file permissions for /usr/bin/as
20112018-11-14 09:25:13 Action: checking symlink for file /usr/bin/as
20122018-11-14 09:25:13 Note: Using real readlink binary to determine symlink on /usr/bin/as
20132018-11-14 09:25:13 Result: readlink shows /usr/bin/arm-linux-gnueabihf-as as output
20142018-11-14 09:25:13 Result: symlink found, pointing to file /usr/bin/arm-linux-gnueabihf-as
20152018-11-14 09:25:13 Binary: found /usr/bin/arm-linux-gnueabihf-as (world executable)
20162018-11-14 09:25:13 Hardening: assigned partial number of hardening points (2 of 3). Currently having 167 points (out of 275)
20172018-11-14 09:25:13 Test: Check file permissions for /usr/bin/gcc
20182018-11-14 09:25:13 Action: checking symlink for file /usr/bin/gcc
20192018-11-14 09:25:13 Note: Using real readlink binary to determine symlink on /usr/bin/gcc
20202018-11-14 09:25:13 Result: readlink shows /usr/bin/arm-linux-gnueabihf-gcc-6 as output
20212018-11-14 09:25:13 Result: symlink found, pointing to file /usr/bin/arm-linux-gnueabihf-gcc-6
20222018-11-14 09:25:13 Binary: found /usr/bin/arm-linux-gnueabihf-gcc-6 (world executable)
20232018-11-14 09:25:13 Hardening: assigned partial number of hardening points (2 of 3). Currently having 169 points (out of 278)
20242018-11-14 09:25:13 Result: at least one compiler could be better hardened by restricting executable access to root or group only
20252018-11-14 09:25:13 Suggestion: Harden compilers like restricting access to root user only [test:HRDN-7222] [details:-] [solution:-]
20262018-11-14 09:25:13 ===---------------------------------------------------------------===
20272018-11-14 09:25:13 Performing test ID HRDN-7230 (Check for malware scanner)
20282018-11-14 09:25:13 Test: Check if a malware scanner is installed
20292018-11-14 09:25:13 Result: no malware scanner found
20302018-11-14 09:25:13 Suggestion: Harden the system by installing at least one malware scanner, to perform periodic file system scans [test:HRDN-7230] [details:-] [solution:Install a tool like rkhunter, chkrootkit, OSSEC]
20312018-11-14 09:25:13 Hardening: assigned partial number of hardening points (1 of 3). Currently having 170 points (out of 281)
20322018-11-14 09:25:13 Result: no malware scanner found
20332018-11-14 09:25:13 ===---------------------------------------------------------------===
20342018-11-14 09:25:13 Action: Performing tests from category: Custom Tests
20352018-11-14 09:25:13 Test: Checking for tests_custom file
20362018-11-14 09:25:13 ===---------------------------------------------------------------===
20372018-11-14 09:25:13 Action: Performing plugin tests
20382018-11-14 09:25:14 Result: Found 2 plugins of which 2 are enabled
20392018-11-14 09:25:14 Result: Plugins phase 2 finished
20402018-11-14 09:25:14 Checking permissions of /root/lynis/include/report
20412018-11-14 09:25:14 File permissions are OK
20422018-11-14 09:25:14 Hardening index : [60] [############        ]
20432018-11-14 09:25:14 Hardening strength: System has been hardened, but could use additional hardening
20442018-11-14 09:25:14 ===---------------------------------------------------------------===
20452018-11-14 09:25:16 ================================================================================
20462018-11-14 09:25:16 Tests performed:     224
20472018-11-14 09:25:16 Total tests:         403
20482018-11-14 09:25:16 Active plugins:      2
20492018-11-14 09:25:16 Total plugins:       2
20502018-11-14 09:25:16 ================================================================================
20512018-11-14 09:25:16 Lynis 2.7.1
20522018-11-14 09:25:16 2007-2018, CISOfy - https://cisofy.com/lynis/
20532018-11-14 09:25:16 Enterprise support available (compliance, plugins, interface and tools)
20542018-11-14 09:25:16 Program ended successfully
20552018-11-14 09:25:16 ================================================================================
20562018-11-14 09:25:16 PID file removed (/var/run/lynis.pid)
20572018-11-14 09:25:16 Temporary files:  /tmp/lynis.c6tFMmOBxQ /tmp/lynis.R3qdyMoJEh /tmp/lynis.q1IOXEtknZ /tmp/lynis.jmOhTC5heQ
20582018-11-14 09:25:16 Action: removing temporary file /tmp/lynis.c6tFMmOBxQ
20592018-11-14 09:25:16 Info: temporary file /tmp/lynis.R3qdyMoJEh was already removed
20602018-11-14 09:25:16 Info: temporary file /tmp/lynis.q1IOXEtknZ was already removed
20612018-11-14 09:25:16 Action: removing temporary file /tmp/lynis.jmOhTC5heQ
20622018-11-14 09:25:16 Lynis ended successfully.