FIRE-4508 - Adding more tables in ip4tables

CISOfy / lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

https://cisofy.com/lynis/

GNU General Public License v3.0

13.5k stars 1.49k forks source link

FIRE-4508 - Adding more tables in ip4tables #1554

Closed nser77 closed 1 month ago

nser77 commented 1 month ago

Hello, an adversary may use other than the filter table to manipulate the netfilter subsystem.

This PR adds nat mangle raw security tables in FIRE-4508 control.

Please provide feedbacks!

Regards,

teoberi commented 1 month ago

Your additions to tables are OK but the test is non-functional!

nser77 commented 1 month ago

CC @mboelen

mboelen commented 1 month ago

Thanks, merged!