search

CISOfy / lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
https://cisofy.com/lynis/
GNU General Public License v3.0
13.11k stars 1.47k forks source link

PKGS-7388 Does not take care about mirror #1453

Open Marthym opened 9 months ago

Marthym commented 9 months ago

Describe the bug Lynis doesn't find a security repository, because it doesn't check for mirror informations(see https://manpages.debian.org/sources.list and https://manpages.debian.org/bookworm/apt/apt-transport-mirror.1.en.html ) under Debian.

Version

Expected behavior No warning for PKGS-7388 for 

Types: deb deb-src
URIs: mirror+file:///etc/apt/mirrors/debian-security.list
Suites: bookworm-security
Components: main

Output

  -[ Lynis 3.0.9 Results ]-                                                                                                                  

  Warnings (2):                                                       
  ----------------------------                                        
  ! Can't find any security repository in /etc/apt/sources.list or sources.list.d directory [PKGS-7388]                                      
      https://cisofy.com/lynis/controls/PKGS-7388/

Additional context

mboelen commented 4 months ago

Thanks for reporting.

What do you have in your /etc/apt/mirrors/debian-security.list file listed?

Looks like this test needs additional testing when local files are used.