search

CISOfy / lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.
https://cisofy.com/lynis/
GNU General Public License v3.0
13.43k stars 1.49k forks source link

NETW Check for Uncommon Network Protocols #702

Closed Capashenn closed 5 years ago

Capashenn commented 5 years ago

Is your feature request related to a problem? Please describe. Linux include support for several network protocols which are not commonly used. Although security vulnerabilities in kernel networking code are not frequently discovered, the consequences can be dramatic. Ensuring uncommon network protocols are disabled reduces the system's risk to attacks targeted at its implementation of those protocols.

Describe the solution you'd like Check for 

install dccp /bin/true
install sctp /bin/true
install rds /bin/true
install tipc /bin/true

in /etc/modprobe.conf and /etc/modprobe.d/* files

Required changes Add a new test NETW-XXXX

mboelen commented 5 years ago

Thanks for the suggestion. Implemented NETW-3200 with commit https://github.com/CISOfy/lynis/commit/d2deb63ebb416b957ba973a014ea6588103f3cfc