search

getsolus / packages

Solus Package Monorepo & Issue Tracker
64 stars 85 forks source link

Lynis Security Auditing Tool (T5153) #303

Open celticmagic opened 1 year ago

celticmagic commented 1 year ago
Jeff Schwanebeck (#jschwanebeck), 2017-11-29 21:32:31 UTC

- Name: Lynis - homepage: - https://cisofy.com/lynis/ - This should be included in the Solus prepositories because it allows users to harden their system, and check to make sure there are no CVEs, and use best practices to keep their system secure - Open source: - yes, GPLv3 license - Versioned [tarball](https://github.com/CISOfy/lynis/archive/2.5.7.tar.gz) - 2 distro: - [Fedora](https://apps.fedoraproject.org/packages/lynis) - [Ubuntu](https://packages.ubuntu.com/artful/lynis) - age: - last release: 2017-10-29 - [Github Repo](https://github.com/CISOfy/lynis/releases)
celticmagic commented 1 year ago
Martin (#baimafeima), 2017-12-13 20:51:47 UTC

I suppose it'll make sense to have this already installed either by default or to install it right after installing the OS to be able to benefit from it?
celticmagic commented 1 year ago
Beatrice T. Meyers (#DataDrake), 2017-12-16 21:36:54 UTC

#baimafeima most likely a mix of us using it to audit things and for others to audit their configuration changes. Since it is CLI only, there's no real need to have it installed by default. I'll be working on this since we are starting to evaluate it at work for other reasons.
celticmagic commented 1 year ago
Jeff Schwanebeck (#jschwanebeck), 2017-12-23 21:56:39 UTC

Thanks DataDrake.
celticmagic commented 1 year ago
Joshua Strobl (#JoshStrobl), 2018-10-20 16:57:12 UTC

Closing task. #DataDrake feel free to re-open when you have a package for it :P
celticmagic commented 1 year ago
Joshua Strobl (#JoshStrobl), 2018-10-20 16:58:52 UTC

Re-opening after short discussion with Bryan :P
celticmagic commented 1 year ago
Adrian Turjak (#Adrian-Turjak), 2020-03-09 01:25:59 UTC

Any potential update on this? The company I'm working at is using Lynis and while I can install it myself, having it as a system package would make Solus a more viable user OS for less technical people who don't want to be running Ubuntu.
celticmagic commented 1 year ago
Beatrice T. Meyers (#DataDrake), 2020-03-09 01:47:00 UTC

#Adrian-Turjak I'm not letting this in the repo until I've had a chance to work with upstream to fix how it interacts with Solus. Right now it doesn't correctly report the status of many things. If you need it for scanning remote systems, it's just Bash and can easily be run from an unpacked archive.
celticmagic commented 1 year ago
Adrian Turjak (#Adrian-Turjak), 2020-03-10 01:05:49 UTC

#DataDrake Can you clarify which things it doesn't handle well on Solus? As we are intending to run it on our machines for local audit to export to our security team.
celticmagic commented 1 year ago
nazar (#nazar), 2022-01-16 09:05:15 UTC

#Adrian-Turjak from what I know lynis interacts with apt-get but not with eopkg, it is lacking in this regard and may confuse users. Upstream has to support eopkg for this package to be candidate for inclusion.
celticmagic commented 1 year ago
TraceyC (@TraceyC77), 2023-08-13 22:21:03 UTC

We will need to re-evaluate if the previous statements are accurate, and if this is now ready to be included or not.