2022-02-27 22:53:09 Starting Lynis 3.0.1 with PID 30935, build date 2020-06-26 2022-02-27 22:53:09 ==== 2022-02-27 22:53:09 ### 2007-2020, CISOfy - https://cisofy.com/lynis/ ### 2022-02-27 22:53:09 Checking permissions of /root/lynis/include/profiles 2022-02-27 22:53:09 File permissions are OK 2022-02-27 22:53:09 Reading profile/configuration /root/lynis/default.prf 2022-02-27 22:53:10 Action: created temporary file /tmp/lynis.QhU1Q4wj6j 2022-02-27 22:53:10 Language set via profile to '' 2022-02-27 22:53:10 Plugin 'authentication' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'compliance' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'configuration' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'control-panels' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'crypto' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'dns' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'docker' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'file-integrity' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'file-systems' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'firewalls' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'forensics' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'hardware' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'intrusion-detection' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'intrusion-prevention' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'kernel' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'malware' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'memory' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'nginx' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'pam' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'processes' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'security-modules' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'software' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'system-integrity' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'systemd' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:10 Plugin 'users' enabled according profile (/root/lynis/default.prf) 2022-02-27 22:53:11 Set option to default value: NTPD_ROLE --> client 2022-02-27 22:53:11 ==== 2022-02-27 22:53:11 EOL check: 0 2022-02-27 22:53:11 Program version: 3.0.1 2022-02-27 22:53:11 Operating system: Linux 2022-02-27 22:53:11 Operating system name: CentOS Linux 2022-02-27 22:53:11 Operating system version: 7 2022-02-27 22:53:11 Kernel version: 3.10.0 2022-02-27 22:53:11 Kernel version (full): 3.10.0-1160.53.1.el7.x86_64 2022-02-27 22:53:11 Hardware platform: x86_64 2022-02-27 22:53:11 ----------------------------------------------------- 2022-02-27 22:53:11 Hostname: euchring1 2022-02-27 22:53:11 Auditor: [Not Specified] 2022-02-27 22:53:11 Profiles: /root/lynis/default.prf 2022-02-27 22:53:11 Work directory: /root/lynis 2022-02-27 22:53:11 Include directory: /root/lynis/include 2022-02-27 22:53:11 Plugin directory: ./plugins 2022-02-27 22:53:11 ----------------------------------------------------- 2022-02-27 22:53:11 Log file: /var/log/lynis.log 2022-02-27 22:53:11 Report file: /var/log/lynis-report.dat 2022-02-27 22:53:11 Report version: 1.0 2022-02-27 22:53:11 ----------------------------------------------------- 2022-02-27 22:53:11 Test category: all 2022-02-27 22:53:11 Test group: all 2022-02-27 22:53:11 BusyBox used: 0 2022-02-27 22:53:11 ==== 2022-02-27 22:53:11 Test: Checking for program update... 2022-02-27 22:53:11 Result: dig, drill or host not installed, update check skipped 2022-02-27 22:53:11 Current installed version : 301 2022-02-27 22:53:11 Latest stable version : 0000000000 2022-02-27 22:53:12 Update check skipped due to constraints (e.g. missing dig binary) 2022-02-27 22:53:12 Suggestion: This release is more than 4 months old. Check the website or GitHub to see if there is an update available. [test:LYNIS] [details:-] [solution:-] 2022-02-27 22:53:12 ==== 2022-02-27 22:53:12 Checking permissions of /root/lynis/include/binaries 2022-02-27 22:53:12 File permissions are OK 2022-02-27 22:53:12 ==== 2022-02-27 22:53:12 Action: Performing tests from category: System Tools 2022-02-27 22:53:12 Start scanning for available audit binaries and tools... 2022-02-27 22:53:12 ==== 2022-02-27 22:53:12 Performing test ID CORE-1000 (Check all system binaries) 2022-02-27 22:53:12 Status: Starting binary scan... 2022-02-27 22:53:12 Test: Checking binaries in directory /usr/bin 2022-02-27 22:53:12 Directory /usr/bin exists. Starting directory scanning... 2022-02-27 22:53:12 Found known binary: awk (string tool) - /usr/bin/awk 2022-02-27 22:53:12 Found known binary: base64 (encoding tool) - /usr/bin/base64 2022-02-27 22:53:12 Found known binary: bootctl (systemd-boot manager utility) - /usr/bin/bootctl 2022-02-27 22:53:12 Found known binary: cat (generic file handling) - /usr/bin/cat 2022-02-27 22:53:12 Found known binary: comm (file compare) - /usr/bin/comm 2022-02-27 22:53:12 Found known binary: curl (browser, download utility) - /usr/bin/curl 2022-02-27 22:53:12 Found known binary: cut (text stream editor) - /usr/bin/cut 2022-02-27 22:53:12 Found known binary: dnsdomainname (DNS domain) - /usr/bin/dnsdomainname 2022-02-27 22:53:12 Found known binary: domainname (NIS domain) - /usr/bin/domainname 2022-02-27 22:53:12 Found known binary: egrep (text search) - /usr/bin/egrep 2022-02-27 22:53:12 Found known binary: file (file type detection) - /usr/bin/file 2022-02-27 22:53:12 Found known binary: find (search tool) - /usr/bin/find 2022-02-27 22:53:12 Found known binary: getent (query tool for name service switch libraries) - /usr/bin/getent 2022-02-27 22:53:12 Found known binary: grep (text search) - /usr/bin/grep 2022-02-27 22:53:12 Found known binary: gzip (compressing utility) - /usr/bin/gzip 2022-02-27 22:53:12 Found known binary: head (text filter) - /usr/bin/head 2022-02-27 22:53:12 Found known binary: journalctl (systemd journal) - /usr/bin/journalctl 2022-02-27 22:53:12 Found known binary: ls (file listing) - /usr/bin/ls 2022-02-27 22:53:12 Found known binary: lsattr (file attributes) - /usr/bin/lsattr 2022-02-27 22:53:12 Found known binary: lsblk (block devices) - /usr/bin/lsblk 2022-02-27 22:53:12 Found known binary: md5sum (hash tool) - /usr/bin/md5sum 2022-02-27 22:53:12 Found known binary: mount (disk utility) - /usr/bin/mount 2022-02-27 22:53:12 Found known binary: netstat (network statistics) - /usr/bin/netstat 2022-02-27 22:53:12 Found /usr/bin/openssl (version 1.0.2k-fips) 2022-02-27 22:53:12 Found known binary: pgrep (search in process list) - /usr/bin/pgrep 2022-02-27 22:53:12 Found known binary: ps (process listing) - /usr/bin/ps 2022-02-27 22:53:12 Found known binary: python (programming language interpreter) - /usr/bin/python (version 2.7.5) 2022-02-27 22:53:12 Found known binary: python2 (programming language interpreter) - /usr/bin/python2 (version 2.7.5) 2022-02-27 22:53:12 Found known binary: readlink (follows symlinks) - /usr/bin/readlink 2022-02-27 22:53:12 Found known binary: rpm (package manager) - /usr/bin/rpm 2022-02-27 22:53:12 Found known binary: sed (text stream editor) - /usr/bin/sed 2022-02-27 22:53:12 Found known binary: sha1/sha1sum/shasum (crypto hashing) - /usr/bin/sha1sum 2022-02-27 22:53:12 Found known binary: sha256/sha256sum (crypto hashing) - /usr/bin/sha256sum 2022-02-27 22:53:12 Found known binary: sort (sort data streams) - /usr/bin/sort 2022-02-27 22:53:12 Found known binary: ssh-keyscan (scanner for SSH keys) - /usr/bin/ssh-keyscan 2022-02-27 22:53:12 Found known binary: stat (file information) - /usr/bin/stat 2022-02-27 22:53:12 Found known binary: strings (text strings search) - /usr/bin/strings 2022-02-27 22:53:12 Found known binary: systemctl (client to systemd) - /usr/bin/systemctl 2022-02-27 22:53:12 Found known binary: systemd-analyze (systemd service analysis tool) - /usr/bin/systemd-analyze 2022-02-27 22:53:12 Found known binary: tail (text filter) - /usr/bin/tail 2022-02-27 22:53:12 Found known binary: timedatectl (timedate client) - /usr/bin/timedatectl 2022-02-27 22:53:12 Found known binary: tr (text transformation) - /usr/bin/tr 2022-02-27 22:53:12 Found known binary: uname (operating system details) - /usr/bin/uname 2022-02-27 22:53:12 Found known binary: uniq (text manipulation utility) - /usr/bin/uniq 2022-02-27 22:53:12 Found known binary: usbguard (USB security tool) - /usr/bin/usbguard 2022-02-27 22:53:12 Found known binary: wc (word count) - /usr/bin/wc 2022-02-27 22:53:12 Found /usr/bin/wget (version 1.14) 2022-02-27 22:53:12 Found known binary: xargs (command output redirection) - /usr/bin/xargs 2022-02-27 22:53:12 Found known binary: yum (package manager) - /usr/bin/yum 2022-02-27 22:53:12 Found known binary: zgrep (text search for compressed files) - /usr/bin/zgrep 2022-02-27 22:53:12 Test: Checking binaries in directory /usr/sbin 2022-02-27 22:53:12 Directory /usr/sbin exists. Starting directory scanning... 2022-02-27 22:53:12 Found known binary: auditctl (control utility for audit daemon) - /usr/sbin/auditctl 2022-02-27 22:53:12 Found known binary: auditd (audit framework) - /usr/sbin/auditd 2022-02-27 22:53:12 Found known binary: blkid (information about block devices) - /usr/sbin/blkid 2022-02-27 22:53:12 Found known binary: chkconfig (administration tool) - /usr/sbin/chkconfig 2022-02-27 22:53:12 Found known binary: dmidecode (hardware collector tool) - /usr/sbin/dmidecode 2022-02-27 22:53:12 Found known binary: getcap (kernel capabilities) - /usr/sbin/getcap 2022-02-27 22:53:12 Found known binary: grpck (consistency checker) - /usr/sbin/grpck 2022-02-27 22:53:12 Found known binary: grub2-install (installer for boot loader) - /usr/sbin/grub2-install 2022-02-27 22:53:12 Found known binary: ipconfig (IP configuration) - /usr/sbin/ifconfig 2022-02-27 22:53:12 Found known binary: ip (IP configuration) - /usr/sbin/ip 2022-02-27 22:53:12 Found known binary: iptables (firewall) - /usr/sbin/iptables 2022-02-27 22:53:12 Found known binary: iptables-save (firewall) - /usr/sbin/iptables-save 2022-02-27 22:53:12 Found known binary: logrotate (log rotation tool) - /usr/sbin/logrotate 2022-02-27 22:53:12 Found known binary: lsmod (kernel modules) - /usr/sbin/lsmod 2022-02-27 22:53:12 Found known binary: lvdisplay (LVM tool) - /usr/sbin/lvdisplay 2022-02-27 22:53:12 Found known binary: modprobe (kernel modules) - /usr/sbin/modprobe 2022-02-27 22:53:12 Found known binary ntpq (time daemon client) - /usr/sbin/ntpq 2022-02-27 22:53:12 Found known binary: postconf (postfix configuration) - /usr/sbin/postconf 2022-02-27 22:53:12 Found known binary: postfix (postfix binary) - /usr/sbin/postfix 2022-02-27 22:53:12 Found known binary: rpcinfo (RPC information) - /usr/sbin/rpcinfo 2022-02-27 22:53:12 Found known binary: runlevel (system utility) - /usr/sbin/runlevel 2022-02-27 22:53:12 Found known binary: service (system services) - /usr/sbin/service 2022-02-27 22:53:12 Found known binary: sestatus (SELinux status tool) - /usr/sbin/sestatus 2022-02-27 22:53:12 Found known binary: showmount (NFS mounts) - /usr/sbin/showmount 2022-02-27 22:53:12 Found known binary: ss (show sockets) - /usr/sbin/ss 2022-02-27 22:53:12 Found /usr/sbin/sshd (version 7.4) 2022-02-27 22:53:12 Found known binary: swapon (swap device tool) - /usr/sbin/swapon 2022-02-27 22:53:12 Found known binary: sysctl (kernel parameters) - /usr/sbin/sysctl 2022-02-27 22:53:12 Found known binary: tune2fs (file system tool) - /usr/sbin/tune2fs 2022-02-27 22:53:12 Found known binary: vgdisplay (LVM tool) - /usr/sbin/vgdisplay 2022-02-27 22:53:12 Test: Checking binaries in directory /bin 2022-02-27 22:53:12 Result: directory exists, but is actually a symlink 2022-02-27 22:53:12 Action: checking symlink for file /bin 2022-02-27 22:53:12 Note: Using real readlink binary to determine symlink on /bin 2022-02-27 22:53:12 Result: readlink shows /usr/bin as output 2022-02-27 22:53:12 Result: symlink found, pointing to directory /usr/bin 2022-02-27 22:53:12 Result: found the path behind this symlink (/bin --> /usr/bin) 2022-02-27 22:53:12 Result: Skipping this directory as it was already scanned 2022-02-27 22:53:12 Result: Directory /usr/bin skipped 2022-02-27 22:53:12 Test: Checking binaries in directory /sbin 2022-02-27 22:53:12 Result: directory exists, but is actually a symlink 2022-02-27 22:53:12 Action: checking symlink for file /sbin 2022-02-27 22:53:12 Note: Using real readlink binary to determine symlink on /sbin 2022-02-27 22:53:12 Result: readlink shows /usr/sbin as output 2022-02-27 22:53:12 Result: symlink found, pointing to directory /usr/sbin 2022-02-27 22:53:12 Result: found the path behind this symlink (/sbin --> /usr/sbin) 2022-02-27 22:53:12 Result: Skipping this directory as it was already scanned 2022-02-27 22:53:12 Result: Directory /usr/sbin skipped 2022-02-27 22:53:12 Discovered directories: /usr/bin,/usr/sbin 2022-02-27 22:53:12 Result: found 1191 binaries including 21 set-uid and 6 set-gid 2022-02-27 22:53:12 Result: set-uid binaries: /usr/bin/chage /usr/bin/chfn /usr/bin/chsh /usr/bin/crontab /usr/bin/gpasswd /usr/bin/mount /usr/bin/newgrp /usr/bin/passwd /usr/bin/pkexec /usr/bin/sg /usr/bin/su /usr/bin/sudo /usr/bin/sudoedit /usr/bin/umount /usr/sbin/mount.nfs /usr/sbin/mount.nfs4 /usr/sbin/pam_timestamp_check /usr/sbin/umount.nfs /usr/sbin/umount.nfs4 /usr/sbin/unix_chkpwd /usr/sbin/usernetctl 2022-02-27 22:53:12 Result: set-gid binaries: /usr/bin/ssh-agent /usr/bin/wall /usr/bin/write /usr/sbin/netreport /usr/sbin/postdrop /usr/sbin/postqueue 2022-02-27 22:53:12 ==== 2022-02-27 22:53:12 Informational: package manager is used 2022-02-27 22:53:12 Test: Determine if this system is a virtual machine 2022-02-27 22:53:12 Result: facter utility not found 2022-02-27 22:53:12 Test: trying to guess virtualization technology with systemd-detect-virt 2022-02-27 22:53:13 Result: found kvm 2022-02-27 22:53:13 Result: skipped lscpu test, as we already found machine type 2022-02-27 22:53:13 Result: skipped dmidecode test, as we already found machine type 2022-02-27 22:53:13 Result: skipped processes test, as we already found platform 2022-02-27 22:53:13 Result: skipped Amazon EC2 test, as we already found platform 2022-02-27 22:53:13 Result: skipped sysctl test, as we already found platform 2022-02-27 22:53:13 Result: skipped lshw test, as we already found machine type 2022-02-27 22:53:13 Result: found virtual machine (type: kvm, KVM) 2022-02-27 22:53:13 Result: Lynis is not running in container 2022-02-27 22:53:13 Result: system is using systemd 2022-02-27 22:53:13 ==== 2022-02-27 22:53:13 Action: Performing plugin tests 2022-02-27 22:53:13 Searching plugins... 2022-02-27 22:53:13 Found plugin file: ./plugins/plugin_pam_phase1 2022-02-27 22:53:13 Action: checking plugin status in profile: /root/lynis/default.prf 2022-02-27 22:53:13 Result: plugin enabled in profile (/root/lynis/default.prf) 2022-02-27 22:53:13 Result: plugin pam is enabled 2022-02-27 22:53:13 Checking permissions of ./plugins/plugin_pam_phase1 2022-02-27 22:53:13 File permissions are OK 2022-02-27 22:53:13 Including plugin file: ./plugins/plugin_pam_phase1 (version: 1.0.5) 2022-02-27 22:53:13 ==== 2022-02-27 22:53:13 Performing test ID PLGN-0008 (Check PAM configuration (pwquality.conf)) 2022-02-27 22:53:13 Value is now: 8 2022-02-27 22:53:13 Returning value: 8 2022-02-27 22:53:13 ==== 2022-02-27 22:53:13 Performing test ID PLGN-0010 (Check PAM configuration) 2022-02-27 22:53:13 Result: /etc/pam.d exists 2022-02-27 22:53:13 Now checking PAM file /etc/pam.d/config-util 2022-02-27 22:53:13 Result: using module pam_rootok.so (sufficient) without options configured 2022-02-27 22:53:13 Result: using module pam_timestamp.so (sufficient) without options configured 2022-02-27 22:53:13 Result: using module pam_permit.so (required) without options configured 2022-02-27 22:53:13 Result: using module pam_permit.so (required) without options configured 2022-02-27 22:53:13 Result: using module pam_xauth.so (optional) without options configured 2022-02-27 22:53:13 Result: using module pam_timestamp.so (optional) without options configured 2022-02-27 22:53:13 Now checking PAM file /etc/pam.d/other 2022-02-27 22:53:13 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:13 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:13 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:13 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:13 Now checking PAM file /etc/pam.d/chfn 2022-02-27 22:53:13 Result: using module pam_rootok.so (sufficient) without options configured 2022-02-27 22:53:13 Now checking PAM file /etc/pam.d/chsh 2022-02-27 22:53:14 Result: using module pam_rootok.so (sufficient) without options configured 2022-02-27 22:53:14 Now checking PAM file /etc/pam.d/login 2022-02-27 22:53:14 Result: Found brackets in line, indicating multiple options for control flags: user_unknown=ignore success=ok ignore=ignore default=bad 2022-02-27 22:53:14 Result: brackets used, ignoring control flags 2022-02-27 22:53:14 Result: using module pam_securetty.so (other) without options configured 2022-02-27 22:53:14 Unknown control flag found (substack) 2022-02-27 22:53:14 Result: using module system-auth (substack) without options configured 2022-02-27 22:53:14 Result: found pluggable authentication module system-auth, which is unknown 2022-02-27 22:53:14 Result: using module pam_nologin.so (required) without options configured 2022-02-27 22:53:14 Result: using module pam_selinux.so (required) with options close 2022-02-27 22:53:14 Result: using module pam_loginuid.so (required) without options configured 2022-02-27 22:53:14 Result: using module pam_console.so (optional) without options configured 2022-02-27 22:53:14 Result: found pluggable authentication module pam_console.so, which is unknown 2022-02-27 22:53:14 Result: using module pam_selinux.so (required) with options open 2022-02-27 22:53:14 Result: using module pam_namespace.so (required) without options configured 2022-02-27 22:53:14 Result: using module pam_keyinit.so (optional) with options force revoke 2022-02-27 22:53:14 Result: using module pam_ck_connector.so (optional) without options configured 2022-02-27 22:53:14 Result: found pluggable authentication module pam_ck_connector.so, which is unknown 2022-02-27 22:53:14 Now checking PAM file /etc/pam.d/remote 2022-02-27 22:53:14 Result: using module pam_securetty.so (required) without options configured 2022-02-27 22:53:14 Unknown control flag found (substack) 2022-02-27 22:53:14 Result: using module password-auth (substack) without options configured 2022-02-27 22:53:14 Result: found pluggable authentication module password-auth, which is unknown 2022-02-27 22:53:15 Result: using module pam_nologin.so (required) without options configured 2022-02-27 22:53:15 Result: using module pam_selinux.so (required) with options close 2022-02-27 22:53:15 Result: using module pam_loginuid.so (required) without options configured 2022-02-27 22:53:15 Result: using module pam_selinux.so (required) with options open 2022-02-27 22:53:15 Result: using module pam_namespace.so (required) without options configured 2022-02-27 22:53:15 Result: using module pam_keyinit.so (optional) with options force revoke 2022-02-27 22:53:15 Now checking PAM file /etc/pam.d/runuser 2022-02-27 22:53:15 Result: using module pam_rootok.so (sufficient) without options configured 2022-02-27 22:53:15 Result: using module pam_keyinit.so (optional) with options revoke 2022-02-27 22:53:15 Result: using module pam_limits.so (required) without options configured 2022-02-27 22:53:15 Result: using module pam_unix.so (required) without options configured 2022-02-27 22:53:15 Result: found pam_unix.so module (generic) 2022-02-27 22:53:15 Now checking PAM file /etc/pam.d/runuser-l 2022-02-27 22:53:15 Result: using module pam_keyinit.so (optional) with options force revoke 2022-02-27 22:53:15 Result: using module pam_systemd.so (optional) without options configured 2022-02-27 22:53:15 Now checking PAM file /etc/pam.d/su 2022-02-27 22:53:15 Result: using module pam_rootok.so (sufficient) without options configured 2022-02-27 22:53:15 Unknown control flag found (substack) 2022-02-27 22:53:15 Result: using module system-auth (substack) without options configured 2022-02-27 22:53:15 Result: found pluggable authentication module system-auth, which is unknown 2022-02-27 22:53:16 Result: using module pam_succeed_if.so (sufficient) with options uid = 0 use_uid quiet 2022-02-27 22:53:16 Result: using module pam_xauth.so (optional) without options configured 2022-02-27 22:53:16 Now checking PAM file /etc/pam.d/su-l 2022-02-27 22:53:16 Result: using module pam_keyinit.so (optional) with options force revoke 2022-02-27 22:53:16 Now checking PAM file /etc/pam.d/systemd-user 2022-02-27 22:53:16 Now checking PAM file /etc/pam.d/polkit-1 2022-02-27 22:53:16 Now checking PAM file /etc/pam.d/crond 2022-02-27 22:53:16 Result: using module pam_access.so (required) without options configured 2022-02-27 22:53:16 Result: using module pam_loginuid.so (required) without options configured 2022-02-27 22:53:17 Now checking PAM file /etc/pam.d/sshd 2022-02-27 22:53:17 Result: using module pam_sepermit.so (required) without options configured 2022-02-27 22:53:17 Result: found pluggable authentication module pam_sepermit.so, which is unknown 2022-02-27 22:53:17 Unknown control flag found (substack) 2022-02-27 22:53:17 Result: using module password-auth (substack) without options configured 2022-02-27 22:53:17 Result: found pluggable authentication module password-auth, which is unknown 2022-02-27 22:53:17 Result: using module pam_reauthorize.so (optional) with options prepare 2022-02-27 22:53:17 Result: found pluggable authentication module pam_reauthorize.so, which is unknown 2022-02-27 22:53:17 Result: using module pam_nologin.so (required) without options configured 2022-02-27 22:53:17 Result: using module pam_selinux.so (required) with options close 2022-02-27 22:53:17 Result: using module pam_loginuid.so (required) without options configured 2022-02-27 22:53:17 Result: using module pam_selinux.so (required) with options open env_params 2022-02-27 22:53:17 Result: using module pam_namespace.so (required) without options configured 2022-02-27 22:53:17 Result: using module pam_keyinit.so (optional) with options force revoke 2022-02-27 22:53:17 Result: using module pam_reauthorize.so (optional) with options prepare 2022-02-27 22:53:17 Result: found pluggable authentication module pam_reauthorize.so, which is unknown 2022-02-27 22:53:17 Now checking PAM file /etc/pam.d/smtp.postfix 2022-02-27 22:53:17 Now checking PAM file /etc/pam.d/vlock 2022-02-27 22:53:17 Result: using module pam_permit.so (required) without options configured 2022-02-27 22:53:17 Now checking PAM file /etc/pam.d/passwd 2022-02-27 22:53:18 Unknown control flag found (substack) 2022-02-27 22:53:18 Result: using module system-auth (substack) without options configured 2022-02-27 22:53:18 Result: found pluggable authentication module system-auth, which is unknown 2022-02-27 22:53:18 Result: using module pam_gnome_keyring.so (optional) with options use_authtok 2022-02-27 22:53:18 Result: found pluggable authentication module pam_gnome_keyring.so, which is unknown 2022-02-27 22:53:18 Unknown control flag found (substack) 2022-02-27 22:53:18 Result: using module postlogin (substack) without options configured 2022-02-27 22:53:18 Result: found pluggable authentication module postlogin, which is unknown 2022-02-27 22:53:18 Now checking PAM file /etc/pam.d/sudo 2022-02-27 22:53:18 Result: using module pam_keyinit.so (optional) with options revoke 2022-02-27 22:53:18 Now checking PAM file /etc/pam.d/sudo-i 2022-02-27 22:53:18 Result: using module pam_keyinit.so (optional) with options force revoke 2022-02-27 22:53:18 Now checking PAM file /etc/pam.d/system-auth-ac 2022-02-27 22:53:18 Result: using module pam_env.so (required) without options configured 2022-02-27 22:53:18 Result: using module pam_faildelay.so (required) with options delay=2000000 2022-02-27 22:53:18 Result: using module pam_faillock.so (required) with options preauth silent deny=5 unlock_time=900 even_deny_root root_unlock_time=900 2022-02-27 22:53:18 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:18 Result: using module pam_unix.so (sufficient) with options nullok try_first_pass 2022-02-27 22:53:18 Result: found pam_unix.so module (generic) 2022-02-27 22:53:18 Result: using module pam_succeed_if.so (requisite) with options uid >= 1000 quiet_success 2022-02-27 22:53:18 Result: using module pam_faillock.so (required) with options authfail deny=5 unlock_time=900 even_deny_root root_unlock_time=900 2022-02-27 22:53:18 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:18 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:19 Result: using module pam_faillock.so (required) without options configured 2022-02-27 22:53:19 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:19 Result: using module pam_unix.so (required) without options configured 2022-02-27 22:53:19 Result: found pam_unix.so module (generic) 2022-02-27 22:53:19 Result: using module pam_localuser.so (sufficient) without options configured 2022-02-27 22:53:19 Result: using module pam_succeed_if.so (sufficient) with options uid < 1000 quiet 2022-02-27 22:53:19 Result: using module pam_permit.so (required) without options configured 2022-02-27 22:53:19 Result: using module pam_pwquality.so (requisite) with options try_first_pass enforce_for_root local_users_only retry=3 authtok_type= retry=3 authtok_type= 2022-02-27 22:53:19 Result: found module pam_pwquality.so for password strength testing 2022-02-27 22:53:19 Result: unknown option found: try_first_pass with value 2022-02-27 22:53:19 Result: unknown option found: enforce_for_root with value 2022-02-27 22:53:19 Result: unknown option found: local_users_only with value 2022-02-27 22:53:19 Result: Max password Retry configured 2022-02-27 22:53:19 Value is now: 3 2022-02-27 22:53:19 Returning value: 3 2022-02-27 22:53:19 Result: unknown option found: authtok_type with value 2022-02-27 22:53:19 Result: Max password Retry configured 2022-02-27 22:53:19 Value is now: 3 2022-02-27 22:53:19 Returning value: 3 2022-02-27 22:53:19 Result: unknown option found: authtok_type with value 2022-02-27 22:53:19 Result: using module pam_unix.so (sufficient) with options sha512 rounds=10000 shadow nullok try_first_pass use_authtok 2022-02-27 22:53:19 Result: found pam_unix.so module (generic) 2022-02-27 22:53:19 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:19 Result: using module pam_keyinit.so (optional) with options revoke 2022-02-27 22:53:19 Result: using module pam_limits.so (required) without options configured 2022-02-27 22:53:19 Result: using module pam_systemd.so (optional) without options configured 2022-02-27 22:53:19 Result: Found brackets in line, indicating multiple options for control flags: success=1 default=ignore 2022-02-27 22:53:19 Result: brackets used, ignoring control flags 2022-02-27 22:53:19 Result: using module pam_succeed_if.so (other) with options service in crond quiet use_uid 2022-02-27 22:53:19 Result: using module pam_unix.so (required) without options configured 2022-02-27 22:53:19 Result: found pam_unix.so module (generic) 2022-02-27 22:53:19 Now checking PAM file /etc/pam.d/postlogin-ac 2022-02-27 22:53:19 Result: Found brackets in line, indicating multiple options for control flags: success=1 default=ignore 2022-02-27 22:53:19 Result: brackets used, ignoring control flags 2022-02-27 22:53:19 Result: using module pam_succeed_if.so (other) with options service !~ gdm* service !~ su* quiet 2022-02-27 22:53:19 Result: Found brackets in line, indicating multiple options for control flags: default=1 2022-02-27 22:53:19 Result: brackets used, ignoring control flags 2022-02-27 22:53:19 Result: using module pam_lastlog.so (other) with options nowtmp showfailed 2022-02-27 22:53:19 Result: using module pam_lastlog.so (optional) with options silent noupdate showfailed 2022-02-27 22:53:19 Now checking PAM file /etc/pam.d/password-auth-ac 2022-02-27 22:53:20 Result: using module pam_env.so (required) without options configured 2022-02-27 22:53:20 Result: using module pam_faildelay.so (required) with options delay=2000000 2022-02-27 22:53:20 Result: using module pam_faillock.so (required) with options preauth silent deny=5 unlock_time=900 even_deny_root root_unlock_time=900 2022-02-27 22:53:20 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:20 Result: using module pam_unix.so (sufficient) with options nullok try_first_pass 2022-02-27 22:53:20 Result: found pam_unix.so module (generic) 2022-02-27 22:53:20 Result: using module pam_succeed_if.so (requisite) with options uid >= 1000 quiet_success 2022-02-27 22:53:20 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:20 Result: using module pam_faillock.so (required) without options configured 2022-02-27 22:53:20 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:20 Result: using module pam_unix.so (required) without options configured 2022-02-27 22:53:20 Result: found pam_unix.so module (generic) 2022-02-27 22:53:20 Result: using module pam_localuser.so (sufficient) without options configured 2022-02-27 22:53:20 Result: using module pam_succeed_if.so (sufficient) with options uid < 1000 quiet 2022-02-27 22:53:20 Result: using module pam_permit.so (required) without options configured 2022-02-27 22:53:20 Result: using module pam_pwquality.so (requisite) with options try_first_pass enforce_for_root local_users_only retry=3 authtok_type= retry=3 authtok_type= 2022-02-27 22:53:20 Result: found module pam_pwquality.so for password strength testing 2022-02-27 22:53:20 Result: unknown option found: try_first_pass with value 2022-02-27 22:53:20 Result: unknown option found: enforce_for_root with value 2022-02-27 22:53:20 Result: unknown option found: local_users_only with value 2022-02-27 22:53:20 Result: Max password Retry configured 2022-02-27 22:53:20 Value is now: 3 2022-02-27 22:53:20 Returning value: 3 2022-02-27 22:53:20 Result: unknown option found: authtok_type with value 2022-02-27 22:53:20 Result: Max password Retry configured 2022-02-27 22:53:20 Value is now: 3 2022-02-27 22:53:20 Returning value: 3 2022-02-27 22:53:20 Result: unknown option found: authtok_type with value 2022-02-27 22:53:20 Result: using module pam_unix.so (sufficient) with options sha512 rounds=10000 shadow nullok try_first_pass use_authtok 2022-02-27 22:53:20 Result: found pam_unix.so module (generic) 2022-02-27 22:53:20 Result: using module pam_faillock.so (required) with options authfail deny=5 unlock_time=900 even_deny_root root_unlock_time=900 2022-02-27 22:53:20 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:20 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:20 Result: using module pam_keyinit.so (optional) with options revoke 2022-02-27 22:53:20 Result: using module pam_limits.so (required) without options configured 2022-02-27 22:53:21 Result: using module pam_systemd.so (optional) without options configured 2022-02-27 22:53:21 Result: Found brackets in line, indicating multiple options for control flags: success=1 default=ignore 2022-02-27 22:53:21 Result: brackets used, ignoring control flags 2022-02-27 22:53:21 Result: using module pam_succeed_if.so (other) with options service in crond quiet use_uid 2022-02-27 22:53:21 Result: using module pam_unix.so (required) without options configured 2022-02-27 22:53:21 Result: found pam_unix.so module (generic) 2022-02-27 22:53:21 Now checking PAM file /etc/pam.d/fingerprint-auth-ac 2022-02-27 22:53:21 Result: using module pam_env.so (required) without options configured 2022-02-27 22:53:21 Result: using module pam_faillock.so (required) with options preauth silent deny=5 unlock_time=900 even_deny_root root_unlock_time=900 2022-02-27 22:53:21 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:21 Result: using module pam_fprintd.so (sufficient) without options configured 2022-02-27 22:53:21 Result: found pluggable authentication module pam_fprintd.so, which is unknown 2022-02-27 22:53:21 Result: using module pam_faillock.so (required) with options authfail deny=5 unlock_time=900 even_deny_root root_unlock_time=900 2022-02-27 22:53:21 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:21 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:21 Result: using module pam_faillock.so (required) without options configured 2022-02-27 22:53:21 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:21 Result: using module pam_unix.so (required) without options configured 2022-02-27 22:53:21 Result: found pam_unix.so module (generic) 2022-02-27 22:53:21 Result: using module pam_localuser.so (sufficient) without options configured 2022-02-27 22:53:21 Result: using module pam_succeed_if.so (sufficient) with options uid < 1000 quiet 2022-02-27 22:53:21 Result: using module pam_permit.so (required) without options configured 2022-02-27 22:53:21 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:21 Result: using module pam_keyinit.so (optional) with options revoke 2022-02-27 22:53:21 Result: using module pam_limits.so (required) without options configured 2022-02-27 22:53:21 Result: using module pam_systemd.so (optional) without options configured 2022-02-27 22:53:21 Result: Found brackets in line, indicating multiple options for control flags: success=1 default=ignore 2022-02-27 22:53:21 Result: brackets used, ignoring control flags 2022-02-27 22:53:21 Result: using module pam_succeed_if.so (other) with options service in crond quiet use_uid 2022-02-27 22:53:21 Result: using module pam_unix.so (required) without options configured 2022-02-27 22:53:21 Result: found pam_unix.so module (generic) 2022-02-27 22:53:21 Now checking PAM file /etc/pam.d/smartcard-auth-ac 2022-02-27 22:53:21 Result: using module pam_env.so (required) without options configured 2022-02-27 22:53:22 Result: using module pam_faillock.so (required) with options preauth silent deny=5 unlock_time=900 even_deny_root root_unlock_time=900 2022-02-27 22:53:22 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:22 Result: Found brackets in line, indicating multiple options for control flags: success=done ignore=ignore default=die 2022-02-27 22:53:22 Result: brackets used, ignoring control flags 2022-02-27 22:53:22 Result: using module pam_pkcs11.so (other) with options nodebug wait_for_card 2022-02-27 22:53:22 Result: found pluggable authentication module pam_pkcs11.so, which is unknown 2022-02-27 22:53:22 Result: using module pam_faillock.so (required) with options authfail deny=5 unlock_time=900 even_deny_root root_unlock_time=900 2022-02-27 22:53:22 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:22 Result: using module pam_deny.so (required) without options configured 2022-02-27 22:53:22 Result: using module pam_faillock.so (required) without options configured 2022-02-27 22:53:22 Result: found pluggable authentication module pam_faillock.so, which is unknown 2022-02-27 22:53:22 Result: using module pam_unix.so (required) without options configured 2022-02-27 22:53:22 Result: found pam_unix.so module (generic) 2022-02-27 22:53:22 Result: using module pam_localuser.so (sufficient) without options configured 2022-02-27 22:53:22 Result: using module pam_succeed_if.so (sufficient) with options uid < 1000 quiet 2022-02-27 22:53:22 Result: using module pam_permit.so (required) without options configured 2022-02-27 22:53:22 Result: using module pam_pkcs11.so (required) without options configured 2022-02-27 22:53:22 Result: found pluggable authentication module pam_pkcs11.so, which is unknown 2022-02-27 22:53:22 Result: using module pam_keyinit.so (optional) with options revoke 2022-02-27 22:53:22 Result: using module pam_limits.so (required) without options configured 2022-02-27 22:53:22 Result: using module pam_systemd.so (optional) without options configured 2022-02-27 22:53:22 Result: Found brackets in line, indicating multiple options for control flags: success=1 default=ignore 2022-02-27 22:53:22 Result: brackets used, ignoring control flags 2022-02-27 22:53:22 Result: using module pam_succeed_if.so (other) with options service in crond quiet use_uid 2022-02-27 22:53:22 Result: using module pam_unix.so (required) without options configured 2022-02-27 22:53:22 Result: found pam_unix.so module (generic) 2022-02-27 22:53:22 [PAM] PAM 2F authentication enabled: 0 2022-02-27 22:53:22 [PAM] PAM 2F authentication required: 0 2022-02-27 22:53:22 [PAM] Authentication unlock time: not configured 2022-02-27 22:53:22 [PAM] Password brute force protection: 0 2022-02-27 22:53:22 [PAM] Minimum password length: 8 2022-02-27 22:53:22 [PAM] Password strength testing enabled: 1 2022-02-27 22:53:22 [PAM] Minimum password class setting of 3 out of 4 is ignored since at least 1 class are forced 2022-02-27 22:53:22 [PAM] Maximum credit for Digital characters: 0 2022-02-27 22:53:22 [PAM] Maximum credit for Lowercase characters: 0 2022-02-27 22:53:22 [PAM] Maximum credit for Other characters: 0 2022-02-27 22:53:22 [PAM] Maximum credit for Uppercase characters: 0 2022-02-27 22:53:22 [PAM] Password maximum retry: 3 2022-02-27 22:53:22 [PAM] Password history with pam_pwhistory IS NOT enabled 2022-02-27 22:53:22 [PAM] Password history with pam_unix IS NOT enabled 2022-02-27 22:53:22 ==== 2022-02-27 22:53:22 Result: pam plugin (phase 1) finished 2022-02-27 22:53:22 -- 2022-02-27 22:53:22 Found plugin file: ./plugins/plugin_systemd_phase1 2022-02-27 22:53:22 Action: checking plugin status in profile: /root/lynis/default.prf 2022-02-27 22:53:22 Result: plugin enabled in profile (/root/lynis/default.prf) 2022-02-27 22:53:22 Result: plugin systemd is enabled 2022-02-27 22:53:22 Checking permissions of ./plugins/plugin_systemd_phase1 2022-02-27 22:53:22 File permissions are OK 2022-02-27 22:53:22 Including plugin file: ./plugins/plugin_systemd_phase1 (version: 1.0.4) 2022-02-27 22:53:22 ==== 2022-02-27 22:53:22 Performing test ID PLGN-3800 (Gather systemctl exit code) 2022-02-27 22:53:22 ==== 2022-02-27 22:53:22 Performing test ID PLGN-3802 (Query systemd version and options) 2022-02-27 22:53:22 Result: found systemd version 219 2022-02-27 22:53:22 Result: found builtin components list 2022-02-27 22:53:22 ==== 2022-02-27 22:53:22 Performing test ID PLGN-3804 (Gather systemd unit files and their status) 2022-02-27 22:53:22 Result: found systemd unit files via systemctl list-unit-files 2022-02-27 22:53:23 Output: proc-sys-fs-binfmt_misc.automount|static| 2022-02-27 22:53:23 Output: dev-hugepages.mount|static| 2022-02-27 22:53:23 Output: dev-mqueue.mount|static| 2022-02-27 22:53:23 Output: proc-fs-nfsd.mount|static| 2022-02-27 22:53:23 Output: proc-sys-fs-binfmt_misc.mount|static| 2022-02-27 22:53:23 Output: sys-fs-fuse-connections.mount|static| 2022-02-27 22:53:23 Output: sys-kernel-config.mount|static| 2022-02-27 22:53:23 Output: sys-kernel-debug.mount|static| 2022-02-27 22:53:23 Output: tmp.mount|disabled| 2022-02-27 22:53:23 Output: var-lib-nfs-rpc_pipefs.mount|static| 2022-02-27 22:53:23 Output: brandbot.path|disabled| 2022-02-27 22:53:23 Output: systemd-ask-password-console.path|static| 2022-02-27 22:53:23 Output: systemd-ask-password-plymouth.path|static| 2022-02-27 22:53:23 Output: systemd-ask-password-wall.path|static| 2022-02-27 22:53:23 Output: session-1092.scope|static| 2022-02-27 22:53:23 Output: session-1104.scope|static| 2022-02-27 22:53:23 Output: session-1106.scope|static| 2022-02-27 22:53:23 Output: arp-ethers.service|disabled| 2022-02-27 22:53:23 Output: auditd.service|enabled| 2022-02-27 22:53:23 Output: auth-rpcgss-module.service|static| 2022-02-27 22:53:23 Output: autofs.service|disabled| 2022-02-27 22:53:23 Output: autovt@.service|enabled| 2022-02-27 22:53:23 Output: blk-availability.service|disabled| 2022-02-27 22:53:23 Output: brandbot.service|static| 2022-02-27 22:53:23 Output: console-getty.service|disabled| 2022-02-27 22:53:23 Output: console-shell.service|disabled| 2022-02-27 22:53:23 Output: container-getty@.service|static| 2022-02-27 22:53:23 Output: cpupower.service|disabled| 2022-02-27 22:53:23 Output: crond.service|enabled| 2022-02-27 22:53:23 Output: dbus-org.freedesktop.hostname1.service|static| 2022-02-27 22:53:23 Output: dbus-org.freedesktop.import1.service|static| 2022-02-27 22:53:23 Output: dbus-org.freedesktop.locale1.service|static| 2022-02-27 22:53:23 Output: dbus-org.freedesktop.login1.service|static| 2022-02-27 22:53:23 Output: dbus-org.freedesktop.machine1.service|static| 2022-02-27 22:53:23 Output: dbus-org.freedesktop.timedate1.service|static| 2022-02-27 22:53:23 Output: dbus.service|static| 2022-02-27 22:53:23 Output: debug-shell.service|disabled| 2022-02-27 22:53:23 Output: dm-event.service|static| 2022-02-27 22:53:23 Output: dracut-cmdline.service|static| 2022-02-27 22:53:23 Output: dracut-initqueue.service|static| 2022-02-27 22:53:23 Output: dracut-mount.service|static| 2022-02-27 22:53:23 Output: dracut-pre-mount.service|static| 2022-02-27 22:53:23 Output: dracut-pre-pivot.service|static| 2022-02-27 22:53:23 Output: dracut-pre-trigger.service|static| 2022-02-27 22:53:23 Output: dracut-pre-udev.service|static| 2022-02-27 22:53:23 Output: dracut-shutdown.service|static| 2022-02-27 22:53:23 Output: ebtables.service|disabled| 2022-02-27 22:53:23 Output: emergency.service|static| 2022-02-27 22:53:23 Output: falcon-sensor.service|enabled| 2022-02-27 22:53:23 Output: firewalld.service|disabled| 2022-02-27 22:53:23 Output: fstrim.service|static| 2022-02-27 22:53:23 Output: getty@.service|enabled| 2022-02-27 22:53:23 Output: gssproxy.service|disabled| 2022-02-27 22:53:23 Output: halt-local.service|static| 2022-02-27 22:53:23 Output: initrd-cleanup.service|static| 2022-02-27 22:53:23 Output: initrd-parse-etc.service|static| 2022-02-27 22:53:23 Output: initrd-switch-root.service|static| 2022-02-27 22:53:23 Output: initrd-udevadm-cleanup-db.service|static| 2022-02-27 22:53:23 Output: iprdump.service|disabled| 2022-02-27 22:53:23 Output: iprinit.service|disabled| 2022-02-27 22:53:23 Output: iprupdate.service|disabled| 2022-02-27 22:53:23 Output: irqbalance.service|enabled| 2022-02-27 22:53:23 Output: kdump.service|disabled| 2022-02-27 22:53:23 Output: kmod-static-nodes.service|static| 2022-02-27 22:53:23 Output: lvm2-lvmetad.service|static| 2022-02-27 22:53:23 Output: lvm2-lvmpolld.service|static| 2022-02-27 22:53:23 Output: lvm2-monitor.service|enabled| 2022-02-27 22:53:23 Output: lvm2-pvscan@.service|static| 2022-02-27 22:53:23 Output: messagebus.service|static| 2022-02-27 22:53:23 Output: microcode.service|enabled| 2022-02-27 22:53:23 Output: NetworkManager-dispatcher.service|disabled| 2022-02-27 22:53:23 Output: NetworkManager-wait-online.service|disabled| 2022-02-27 22:53:23 Output: NetworkManager.service|disabled| 2022-02-27 22:53:23 Output: nfs-blkmap.service|disabled| 2022-02-27 22:53:23 Output: nfs-config.service|static| 2022-02-27 22:53:23 Output: nfs-idmap.service|static| 2022-02-27 22:53:23 Output: nfs-idmapd.service|static| 2022-02-27 22:53:23 Output: nfs-lock.service|static| 2022-02-27 22:53:23 Output: nfs-mountd.service|static| 2022-02-27 22:53:23 Output: nfs-rquotad.service|disabled| 2022-02-27 22:53:23 Output: nfs-secure.service|static| 2022-02-27 22:53:23 Output: nfs-server.service|disabled| 2022-02-27 22:53:23 Output: nfs-utils.service|static| 2022-02-27 22:53:23 Output: nfs.service|disabled| 2022-02-27 22:53:23 Output: nfslock.service|static| 2022-02-27 22:53:23 Output: ntpd.service|enabled| 2022-02-27 22:53:23 Output: ntpdate.service|disabled| 2022-02-27 22:53:23 Output: plymouth-halt.service|disabled| 2022-02-27 22:53:23 Output: plymouth-kexec.service|disabled| 2022-02-27 22:53:23 Output: plymouth-poweroff.service|disabled| 2022-02-27 22:53:23 Output: plymouth-quit-wait.service|disabled| 2022-02-27 22:53:23 Output: plymouth-quit.service|disabled| 2022-02-27 22:53:23 Output: plymouth-read-write.service|disabled| 2022-02-27 22:53:23 Output: plymouth-reboot.service|disabled| 2022-02-27 22:53:23 Output: plymouth-start.service|disabled| 2022-02-27 22:53:23 Output: plymouth-switch-root.service|static| 2022-02-27 22:53:23 Output: polkit.service|static| 2022-02-27 22:53:23 Output: postfix.service|enabled| 2022-02-27 22:53:23 Output: quotaon.service|static| 2022-02-27 22:53:23 Output: rc-local.service|static| 2022-02-27 22:53:23 Output: rdisc.service|disabled| 2022-02-27 22:53:23 Output: rescue.service|static| 2022-02-27 22:53:23 Output: rhel-autorelabel-mark.service|enabled| 2022-02-27 22:53:23 Output: rhel-autorelabel.service|enabled| 2022-02-27 22:53:23 Output: rhel-configure.service|enabled| 2022-02-27 22:53:23 Output: rhel-dmesg.service|enabled| 2022-02-27 22:53:23 Output: rhel-domainname.service|enabled| 2022-02-27 22:53:23 Output: rhel-import-state.service|enabled| 2022-02-27 22:53:23 Output: rhel-loadmodules.service|enabled| 2022-02-27 22:53:23 Output: rhel-readonly.service|enabled| 2022-02-27 22:53:23 Output: rpc-gssd.service|static| 2022-02-27 22:53:23 Output: rpc-rquotad.service|disabled| 2022-02-27 22:53:23 Output: rpc-statd-notify.service|static| 2022-02-27 22:53:23 Output: rpc-statd.service|static| 2022-02-27 22:53:23 Output: rpcbind.service|enabled| 2022-02-27 22:53:23 Output: rpcgssd.service|static| 2022-02-27 22:53:23 Output: rpcidmapd.service|static| 2022-02-27 22:53:23 Output: rsyslog.service|enabled| 2022-02-27 22:53:23 Output: selinux-policy-migrate-local-changes@.service|static| 2022-02-27 22:53:23 Output: serial-getty@.service|disabled| 2022-02-27 22:53:23 Output: sshd-keygen.service|static| 2022-02-27 22:53:23 Output: sshd.service|enabled| 2022-02-27 22:53:23 Output: sshd@.service|static| 2022-02-27 22:53:23 Output: sysstat.service|enabled| 2022-02-27 22:53:23 Output: systemd-ask-password-console.service|static| 2022-02-27 22:53:23 Output: systemd-ask-password-plymouth.service|static| 2022-02-27 22:53:23 Output: systemd-ask-password-wall.service|static| 2022-02-27 22:53:23 Output: systemd-backlight@.service|static| 2022-02-27 22:53:23 Output: systemd-binfmt.service|static| 2022-02-27 22:53:23 Output: systemd-bootchart.service|disabled| 2022-02-27 22:53:23 Output: systemd-firstboot.service|static| 2022-02-27 22:53:23 Output: systemd-fsck-root.service|static| 2022-02-27 22:53:23 Output: systemd-fsck@.service|static| 2022-02-27 22:53:23 Output: systemd-halt.service|static| 2022-02-27 22:53:23 Output: systemd-hibernate-resume@.service|static| 2022-02-27 22:53:23 Output: systemd-hibernate.service|static| 2022-02-27 22:53:23 Output: systemd-hostnamed.service|static| 2022-02-27 22:53:23 Output: systemd-hwdb-update.service|static| 2022-02-27 22:53:23 Output: systemd-hybrid-sleep.service|static| 2022-02-27 22:53:23 Output: systemd-importd.service|static| 2022-02-27 22:53:23 Output: systemd-initctl.service|static| 2022-02-27 22:53:23 Output: systemd-journal-catalog-update.service|static| 2022-02-27 22:53:23 Output: systemd-journal-flush.service|static| 2022-02-27 22:53:23 Output: systemd-journald.service|static| 2022-02-27 22:53:23 Output: systemd-kexec.service|static| 2022-02-27 22:53:23 Output: systemd-localed.service|static| 2022-02-27 22:53:23 Output: systemd-logind.service|static| 2022-02-27 22:53:23 Output: systemd-machine-id-commit.service|static| 2022-02-27 22:53:23 Output: systemd-machined.service|static| 2022-02-27 22:53:23 Output: systemd-modules-load.service|static| 2022-02-27 22:53:23 Output: systemd-nspawn@.service|disabled| 2022-02-27 22:53:23 Output: systemd-poweroff.service|static| 2022-02-27 22:53:23 Output: systemd-quotacheck.service|static| 2022-02-27 22:53:23 Output: systemd-random-seed.service|static| 2022-02-27 22:53:23 Output: systemd-readahead-collect.service|enabled| 2022-02-27 22:53:23 Output: systemd-readahead-done.service|indirect| 2022-02-27 22:53:23 Output: systemd-readahead-drop.service|enabled| 2022-02-27 22:53:23 Output: systemd-readahead-replay.service|enabled| 2022-02-27 22:53:23 Output: systemd-reboot.service|static| 2022-02-27 22:53:23 Output: systemd-remount-fs.service|static| 2022-02-27 22:53:23 Output: systemd-rfkill@.service|static| 2022-02-27 22:53:23 Output: systemd-shutdownd.service|static| 2022-02-27 22:53:23 Output: systemd-suspend.service|static| 2022-02-27 22:53:23 Output: systemd-sysctl.service|static| 2022-02-27 22:53:23 Output: systemd-timedated.service|static| 2022-02-27 22:53:23 Output: systemd-tmpfiles-clean.service|static| 2022-02-27 22:53:23 Output: systemd-tmpfiles-setup-dev.service|static| 2022-02-27 22:53:23 Output: systemd-tmpfiles-setup.service|static| 2022-02-27 22:53:23 Output: systemd-udev-settle.service|static| 2022-02-27 22:53:23 Output: systemd-udev-trigger.service|static| 2022-02-27 22:53:23 Output: systemd-udevd.service|static| 2022-02-27 22:53:23 Output: systemd-update-done.service|static| 2022-02-27 22:53:23 Output: systemd-update-utmp-runlevel.service|static| 2022-02-27 22:53:23 Output: systemd-update-utmp.service|static| 2022-02-27 22:53:23 Output: systemd-user-sessions.service|static| 2022-02-27 22:53:23 Output: systemd-vconsole-setup.service|static| 2022-02-27 22:53:23 Output: teamd@.service|static| 2022-02-27 22:53:23 Output: tuned.service|enabled| 2022-02-27 22:53:23 Output: usbguard.service|disabled| 2022-02-27 22:53:23 Output: wpa_supplicant.service|disabled| 2022-02-27 22:53:23 Output: -.slice|static| 2022-02-27 22:53:23 Output: machine.slice|static| 2022-02-27 22:53:23 Output: system.slice|static| 2022-02-27 22:53:23 Output: user-0.slice|static| 2022-02-27 22:53:23 Output: user.slice|static| 2022-02-27 22:53:23 Output: dbus.socket|static| 2022-02-27 22:53:23 Output: dm-event.socket|enabled| 2022-02-27 22:53:23 Output: lvm2-lvmetad.socket|enabled| 2022-02-27 22:53:23 Output: lvm2-lvmpolld.socket|enabled| 2022-02-27 22:53:23 Output: rpcbind.socket|enabled| 2022-02-27 22:53:23 Output: sshd.socket|disabled| 2022-02-27 22:53:23 Output: syslog.socket|static| 2022-02-27 22:53:23 Output: systemd-initctl.socket|static| 2022-02-27 22:53:23 Output: systemd-journald.socket|static| 2022-02-27 22:53:23 Output: systemd-shutdownd.socket|static| 2022-02-27 22:53:23 Output: systemd-udevd-control.socket|static| 2022-02-27 22:53:23 Output: systemd-udevd-kernel.socket|static| 2022-02-27 22:53:23 Output: basic.target|static| 2022-02-27 22:53:23 Output: bluetooth.target|static| 2022-02-27 22:53:23 Output: cryptsetup-pre.target|static| 2022-02-27 22:53:23 Output: cryptsetup.target|static| 2022-02-27 22:53:23 Output: ctrl-alt-del.target|disabled| 2022-02-27 22:53:23 Output: default.target|enabled| 2022-02-27 22:53:23 Output: emergency.target|static| 2022-02-27 22:53:23 Output: final.target|static| 2022-02-27 22:53:23 Output: getty-pre.target|static| 2022-02-27 22:53:23 Output: getty.target|static| 2022-02-27 22:53:23 Output: graphical.target|static| 2022-02-27 22:53:23 Output: halt.target|disabled| 2022-02-27 22:53:23 Output: hibernate.target|static| 2022-02-27 22:53:23 Output: hybrid-sleep.target|static| 2022-02-27 22:53:23 Output: initrd-fs.target|static| 2022-02-27 22:53:23 Output: initrd-root-fs.target|static| 2022-02-27 22:53:23 Output: initrd-switch-root.target|static| 2022-02-27 22:53:23 Output: initrd.target|static| 2022-02-27 22:53:23 Output: iprutils.target|disabled| 2022-02-27 22:53:23 Output: kexec.target|disabled| 2022-02-27 22:53:23 Output: local-fs-pre.target|static| 2022-02-27 22:53:23 Output: local-fs.target|static| 2022-02-27 22:53:23 Output: machines.target|disabled| 2022-02-27 22:53:23 Output: multi-user.target|enabled| 2022-02-27 22:53:23 Output: network-online.target|static| 2022-02-27 22:53:23 Output: network-pre.target|static| 2022-02-27 22:53:23 Output: network.target|static| 2022-02-27 22:53:23 Output: nfs-client.target|enabled| 2022-02-27 22:53:23 Output: nss-lookup.target|static| 2022-02-27 22:53:23 Output: nss-user-lookup.target|static| 2022-02-27 22:53:23 Output: paths.target|static| 2022-02-27 22:53:23 Output: poweroff.target|disabled| 2022-02-27 22:53:23 Output: printer.target|static| 2022-02-27 22:53:23 Output: reboot.target|disabled| 2022-02-27 22:53:23 Output: remote-cryptsetup.target|disabled| 2022-02-27 22:53:23 Output: remote-fs-pre.target|static| 2022-02-27 22:53:23 Output: remote-fs.target|enabled| 2022-02-27 22:53:23 Output: rescue.target|disabled| 2022-02-27 22:53:23 Output: rpc_pipefs.target|static| 2022-02-27 22:53:23 Output: rpcbind.target|static| 2022-02-27 22:53:23 Output: runlevel0.target|disabled| 2022-02-27 22:53:23 Output: runlevel1.target|disabled| 2022-02-27 22:53:23 Output: runlevel2.target|enabled| 2022-02-27 22:53:23 Output: runlevel3.target|enabled| 2022-02-27 22:53:23 Output: runlevel4.target|enabled| 2022-02-27 22:53:23 Output: runlevel5.target|static| 2022-02-27 22:53:23 Output: runlevel6.target|disabled| 2022-02-27 22:53:23 Output: shutdown.target|static| 2022-02-27 22:53:23 Output: sigpwr.target|static| 2022-02-27 22:53:23 Output: sleep.target|static| 2022-02-27 22:53:23 Output: slices.target|static| 2022-02-27 22:53:23 Output: smartcard.target|static| 2022-02-27 22:53:23 Output: sockets.target|static| 2022-02-27 22:53:23 Output: sound.target|static| 2022-02-27 22:53:23 Output: suspend.target|static| 2022-02-27 22:53:23 Output: swap.target|static| 2022-02-27 22:53:23 Output: sysinit.target|static| 2022-02-27 22:53:23 Output: system-update.target|static| 2022-02-27 22:53:23 Output: time-sync.target|static| 2022-02-27 22:53:23 Output: timers.target|static| 2022-02-27 22:53:23 Output: umount.target|static| 2022-02-27 22:53:23 Output: fstrim.timer|disabled| 2022-02-27 22:53:23 Output: systemd-readahead-done.timer|indirect| 2022-02-27 22:53:23 Output: systemd-tmpfiles-clean.timer|static| 2022-02-27 22:53:23 ==== 2022-02-27 22:53:23 Performing test ID PLGN-3806 (Gather failed systemd units) 2022-02-27 22:53:23 ==== 2022-02-27 22:53:23 Performing test ID PLGN-3808 (Gather systemd machine ID) 2022-02-27 22:53:23 Result: found machine ID: fcce862aaab447c797e8c23943996fd8 2022-02-27 22:53:23 ==== 2022-02-27 22:53:23 Performing test ID PLGN-3810 (Query main systemd binaries) 2022-02-27 22:53:23 Result: found systemd binaries in /usr/lib/systemd 2022-02-27 22:53:23 ==== 2022-02-27 22:53:24 Performing test ID PLGN-3812 (Query journal for boot related information) 2022-02-27 22:53:24 Output: number of boots listed in journal is 1 2022-02-27 22:53:24 Output: oldest boot date in journal is 2022-02-21 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Performing test ID PLGN-3814 (Verify journal integrity) 2022-02-27 22:53:24 Result: systemd journal has no errors 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Performing test ID PLGN-3816 (Query journal for boot related information) 2022-02-27 22:53:24 Result: journals are 16.0M in size 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Performing test ID PLGN-3818 (Query journal meta data) 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Performing test ID PLGN-3820 (Check for journal FSS configuration) 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Performing test ID PLGN-3830 (Query systemd status) 2022-02-27 22:53:24 Result: found systemd status = degraded 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Performing test ID PLGN-3832 (Query systemd status for processes which can not be found) 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Performing test ID PLGN-3834 (Collect service units which can not be found in systemd) 2022-02-27 22:53:24 Result: found one or more services with faulty state 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) display-manager.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) exim.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) ip6tables.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) ipset.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) iptables.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) lvm2-activation.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) nfs-secure-server.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) sendmail.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) sntp.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) syslog.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) systemd-sysusers.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) ypbind.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) yppasswdd.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) ypserv.service 2022-02-27 22:53:24 Result: service seems to be faulty (not-found) ypxfrd.service 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Performing test ID PLGN-3856 (Check if systemd-coredump is used) 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Performing test ID PLGN-3860 (Query coredumps from journals since Yesterday) 2022-02-27 22:53:24 Result: found no coredumps 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Result: systemd plugin (phase 1) finished 2022-02-27 22:53:24 -- 2022-02-27 22:53:24 Result: Found 2 plugins of which 2 are enabled 2022-02-27 22:53:24 Result: Plugins phase 1 finished 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Info: using hardware address 00:00:0a:0b:15:a0 to create ID 2022-02-27 22:53:24 Result: Found HostID: cd4afd9acd6b70823388ecd1bee554fcdee69f2d 2022-02-27 22:53:24 Info: creating a HostID (version 2) 2022-02-27 22:53:24 Result: found file ssh_host_ed25519_key.pub in /etc/ssh, using that to create host identifier 2022-02-27 22:53:24 Using SSH public key to create the second host identifier 2022-02-27 22:53:24 Hash (hostname): 862d9a5653c9ecf7c599547a4dbf2424e001f57da07a87523d92ebc55fc5e50a 2022-02-27 22:53:24 Hash (ssh or machineid): 6a7666f2399ef1d133de76783b56dde254a46261d7afaa05a6476255a1ebd5e7 2022-02-27 22:53:24 Info: found valid HostID cd4afd9acd6b70823388ecd1bee554fcdee69f2d 2022-02-27 22:53:24 Info: no machine ID found 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Info: perform tests from all categories 2022-02-27 22:53:24 Security check: file is normal 2022-02-27 22:53:24 Checking permissions of /root/lynis/include/tests_boot_services 2022-02-27 22:53:24 File permissions are OK 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Action: Performing tests from category: Boot and services 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Skipped test BOOT-5102 (Check for AIX boot device) 2022-02-27 22:53:24 Reason to skip: Incorrect guest OS (AIX only) 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Performing test ID BOOT-5104 (Determine service manager) 2022-02-27 22:53:24 Result: cmdline found = /usr/lib/systemd/systemd --switched-root --system --deserialize 22 2022-02-27 22:53:24 Result: file on disk = /usr/lib/systemd/systemd 2022-02-27 22:53:24 Found: systemd 2022-02-27 22:53:24 Result: service manager found = systemd 2022-02-27 22:53:24 ==== 2022-02-27 22:53:24 Skipped test BOOT-5106 (Check EFI boot file on Mac OS X/macOS) 2022-02-27 22:53:24 Reason to skip: Incorrect guest OS (macOS only) 2022-02-27 22:53:24 ==== 2022-02-27 22:53:25 Performing test ID BOOT-5108 (Check Syslinux as bootloader) 2022-02-27 22:53:25 Test: checking if file /boot/syslinux/syslinux.cfg exists 2022-02-27 22:53:25 Result: file /boot/syslinux/syslinux.cfg NOT found 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Performing test ID BOOT-5109 (Check rEFInd as bootloader) 2022-02-27 22:53:25 Test: checking if file /boot/refind_linux.conf exists 2022-02-27 22:53:25 Result: file /boot/refind_linux.conf NOT found 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Performing test ID BOOT-5116 (Check if system is booted in UEFI mode) 2022-02-27 22:53:25 Test: checking if UEFI is used 2022-02-27 22:53:25 Result: UEFI not used, can't find /sys/firmware/efi directory 2022-02-27 22:53:25 Test: determine if Secure Boot is used 2022-02-27 22:53:25 Result: system not booted with Secure Boot (no SecureBoot file found) 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Skipped test BOOT-5117 (Check for systemd-boot bootloader presence) 2022-02-27 22:53:25 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Performing test ID BOOT-5121 (Check for GRUB boot loader presence) 2022-02-27 22:53:25 Test: Checking for presence GRUB conf file (/boot/grub/grub.conf or /boot/grub/menu.lst) 2022-02-27 22:53:25 Result: found GRUB2 configuration file (/boot/grub2/grub.cfg) 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Performing test ID BOOT-5122 (Check for GRUB boot password) 2022-02-27 22:53:25 Found file /boot/grub2/grub.cfg, proceeding with tests. 2022-02-27 22:53:25 Test: check if we can access /boot/grub2/grub.cfg (escaped: /boot/grub2/grub.cfg) 2022-02-27 22:53:25 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:25 Result: file /boot/grub2/grub.cfg is readable (or directory accessible). 2022-02-27 22:53:25 Result: File '/boot/grub/custom.cfg' does not exist 2022-02-27 22:53:25 Found file /etc/grub.d/00_header, proceeding with tests. 2022-02-27 22:53:25 Test: check if we can access /etc/grub.d/00_header (escaped: /etc/grub.d/00_header) 2022-02-27 22:53:25 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:25 Result: file /etc/grub.d/00_header is readable (or directory accessible). 2022-02-27 22:53:25 Result: did not find hashed password line in this file 2022-02-27 22:53:25 Found file /etc/grub.d/01_users, proceeding with tests. 2022-02-27 22:53:25 Test: check if we can access /etc/grub.d/01_users (escaped: /etc/grub.d/01_users) 2022-02-27 22:53:25 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:25 Result: file /etc/grub.d/01_users is readable (or directory accessible). 2022-02-27 22:53:25 Found file /etc/grub.d/10_linux, proceeding with tests. 2022-02-27 22:53:25 Test: check if we can access /etc/grub.d/10_linux (escaped: /etc/grub.d/10_linux) 2022-02-27 22:53:25 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:25 Result: file /etc/grub.d/10_linux is readable (or directory accessible). 2022-02-27 22:53:25 Result: did not find hashed password line in this file 2022-02-27 22:53:25 Found file /etc/grub.d/20_linux_xen, proceeding with tests. 2022-02-27 22:53:25 Test: check if we can access /etc/grub.d/20_linux_xen (escaped: /etc/grub.d/20_linux_xen) 2022-02-27 22:53:25 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:25 Result: file /etc/grub.d/20_linux_xen is readable (or directory accessible). 2022-02-27 22:53:25 Result: did not find hashed password line in this file 2022-02-27 22:53:25 Found file /etc/grub.d/20_ppc_terminfo, proceeding with tests. 2022-02-27 22:53:25 Test: check if we can access /etc/grub.d/20_ppc_terminfo (escaped: /etc/grub.d/20_ppc_terminfo) 2022-02-27 22:53:25 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:25 Result: file /etc/grub.d/20_ppc_terminfo is readable (or directory accessible). 2022-02-27 22:53:25 Result: did not find hashed password line in this file 2022-02-27 22:53:25 Found file /etc/grub.d/30_os-prober, proceeding with tests. 2022-02-27 22:53:25 Test: check if we can access /etc/grub.d/30_os-prober (escaped: /etc/grub.d/30_os-prober) 2022-02-27 22:53:25 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:25 Result: file /etc/grub.d/30_os-prober is readable (or directory accessible). 2022-02-27 22:53:25 Result: did not find hashed password line in this file 2022-02-27 22:53:25 Found file /etc/grub.d/40_custom, proceeding with tests. 2022-02-27 22:53:25 Test: check if we can access /etc/grub.d/40_custom (escaped: /etc/grub.d/40_custom) 2022-02-27 22:53:25 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:25 Result: file /etc/grub.d/40_custom is readable (or directory accessible). 2022-02-27 22:53:25 Result: did not find hashed password line in this file 2022-02-27 22:53:25 Found file /etc/grub.d/41_custom, proceeding with tests. 2022-02-27 22:53:25 Test: check if we can access /etc/grub.d/41_custom (escaped: /etc/grub.d/41_custom) 2022-02-27 22:53:25 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:25 Result: file /etc/grub.d/41_custom is readable (or directory accessible). 2022-02-27 22:53:25 Result: did not find hashed password line in this file 2022-02-27 22:53:25 Found file /etc/grub.d/00_tuned, proceeding with tests. 2022-02-27 22:53:25 Test: check if we can access /etc/grub.d/00_tuned (escaped: /etc/grub.d/00_tuned) 2022-02-27 22:53:25 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:25 Result: file /etc/grub.d/00_tuned is readable (or directory accessible). 2022-02-27 22:53:25 Result: did not find hashed password line in this file 2022-02-27 22:53:25 Result: GRUB has password protection. 2022-02-27 22:53:25 Hardening: assigned maximum number of hardening points for this item (4). Currently having 4 points (out of 4) 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Skipped test BOOT-5124 (Check for FreeBSD boot loader presence) 2022-02-27 22:53:25 Reason to skip: Incorrect guest OS (FreeBSD only) 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Skipped test BOOT-5261 (Check for DragonFly boot loader presence) 2022-02-27 22:53:25 Reason to skip: Incorrect guest OS (DragonFly only) 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Skipped test BOOT-5126 (Check for NetBSD boot loader presence) 2022-02-27 22:53:25 Reason to skip: Incorrect guest OS (NetBSD only) 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Performing test ID BOOT-5139 (Check for LILO boot loader presence) 2022-02-27 22:53:25 Test: checking for presence LILO configuration file 2022-02-27 22:53:25 Result: LILO configuration file not found 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Performing test ID BOOT-5142 (Check SPARC Improved boot loader (SILO)) 2022-02-27 22:53:25 Result: no SILO configuration file found. 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Performing test ID BOOT-5155 (Check for YABOOT boot loader configuration file) 2022-02-27 22:53:25 Test: Check for /etc/yaboot.conf 2022-02-27 22:53:25 Result: no YABOOT configuration file found. 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Skipped test BOOT-5159 (Check for OpenBSD boot loader presence) 2022-02-27 22:53:25 Reason to skip: Incorrect guest OS (OpenBSD only) 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Skipped test BOOT-5165 (Check for FreeBSD boot services) 2022-02-27 22:53:25 Reason to skip: Incorrect guest OS (FreeBSD only) 2022-02-27 22:53:25 ==== 2022-02-27 22:53:25 Performing test ID BOOT-5177 (Check for Linux boot and running services) 2022-02-27 22:53:25 Test: checking presence systemctl binary 2022-02-27 22:53:25 Result: systemctl binary found, trying that to discover information 2022-02-27 22:53:26 Searching for running services (systemctl services only) 2022-02-27 22:53:26 Found running service: auditd 2022-02-27 22:53:26 Found running service: crond 2022-02-27 22:53:26 Found running service: dbus 2022-02-27 22:53:26 Found running service: falcon-sensor 2022-02-27 22:53:26 Found running service: firewalld 2022-02-27 22:53:26 Found running service: getty@tty1 2022-02-27 22:53:26 Found running service: gssproxy 2022-02-27 22:53:26 Found running service: irqbalance 2022-02-27 22:53:26 Found running service: lvm2-lvmetad 2022-02-27 22:53:26 Found running service: network 2022-02-27 22:53:26 Found running service: ntpd 2022-02-27 22:53:26 Found running service: polkit 2022-02-27 22:53:26 Found running service: rpcbind 2022-02-27 22:53:26 Found running service: rsyslog 2022-02-27 22:53:26 Found running service: sshd 2022-02-27 22:53:26 Found running service: systemd-journald 2022-02-27 22:53:26 Found running service: systemd-logind 2022-02-27 22:53:26 Found running service: systemd-udevd 2022-02-27 22:53:26 Found running service: tuned 2022-02-27 22:53:26 Hint: Run systemctl --full --type=service to see all services 2022-02-27 22:53:26 Result: Found 19 running services 2022-02-27 22:53:26 Searching for enabled services (systemctl services only) 2022-02-27 22:53:26 Found enabled service at boot: auditd 2022-02-27 22:53:26 Found enabled service at boot: autovt@ 2022-02-27 22:53:26 Found enabled service at boot: crond 2022-02-27 22:53:26 Found enabled service at boot: falcon-sensor 2022-02-27 22:53:26 Found enabled service at boot: getty@ 2022-02-27 22:53:26 Found enabled service at boot: irqbalance 2022-02-27 22:53:26 Found enabled service at boot: lvm2-monitor 2022-02-27 22:53:26 Found enabled service at boot: microcode 2022-02-27 22:53:26 Found enabled service at boot: ntpd 2022-02-27 22:53:26 Found enabled service at boot: postfix 2022-02-27 22:53:26 Found enabled service at boot: rhel-autorelabel-mark 2022-02-27 22:53:26 Found enabled service at boot: rhel-autorelabel 2022-02-27 22:53:26 Found enabled service at boot: rhel-configure 2022-02-27 22:53:26 Found enabled service at boot: rhel-dmesg 2022-02-27 22:53:26 Found enabled service at boot: rhel-domainname 2022-02-27 22:53:26 Found enabled service at boot: rhel-import-state 2022-02-27 22:53:26 Found enabled service at boot: rhel-loadmodules 2022-02-27 22:53:26 Found enabled service at boot: rhel-readonly 2022-02-27 22:53:26 Found enabled service at boot: rpcbind 2022-02-27 22:53:26 Found enabled service at boot: rsyslog 2022-02-27 22:53:26 Found enabled service at boot: sshd 2022-02-27 22:53:26 Found enabled service at boot: sysstat 2022-02-27 22:53:26 Found enabled service at boot: systemd-readahead-collect 2022-02-27 22:53:26 Found enabled service at boot: systemd-readahead-drop 2022-02-27 22:53:26 Found enabled service at boot: systemd-readahead-replay 2022-02-27 22:53:26 Found enabled service at boot: tuned 2022-02-27 22:53:26 Hint: Run systemctl list-unit-files --type=service to see all services 2022-02-27 22:53:26 Result: Found 26 enabled services 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Skipped test BOOT-5180 (Check for Linux boot services (Debian style)) 2022-02-27 22:53:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Performing test ID BOOT-5184 (Check permissions for boot files/scripts) 2022-02-27 22:53:26 Result: checking /etc/init.d scripts for writable bit 2022-02-27 22:53:26 Test: checking if directory /etc/init.d exists 2022-02-27 22:53:26 Result: directory /etc/init.d found 2022-02-27 22:53:26 Test: checking for available files in directory 2022-02-27 22:53:26 Result: found no files in directory. 2022-02-27 22:53:26 Test: checking if directory /etc/rc.d exists 2022-02-27 22:53:26 Result: directory /etc/rc.d found 2022-02-27 22:53:26 Test: checking for available files in directory 2022-02-27 22:53:26 Result: found files in directory, checking permissions now 2022-02-27 22:53:26 Test: checking permissions of file /etc/rc.d/init.d/README 2022-02-27 22:53:26 Result: good, file /etc/rc.d/init.d/README not world writable 2022-02-27 22:53:26 Test: checking permissions of file /etc/rc.d/init.d/functions 2022-02-27 22:53:26 Result: good, file /etc/rc.d/init.d/functions not world writable 2022-02-27 22:53:26 Test: checking permissions of file /etc/rc.d/init.d/netconsole 2022-02-27 22:53:26 Result: good, file /etc/rc.d/init.d/netconsole not world writable 2022-02-27 22:53:26 Test: checking permissions of file /etc/rc.d/init.d/network 2022-02-27 22:53:26 Result: good, file /etc/rc.d/init.d/network not world writable 2022-02-27 22:53:26 Test: checking permissions of file /etc/rc.d/rc.local 2022-02-27 22:53:26 Result: good, file /etc/rc.d/rc.local not world writable 2022-02-27 22:53:26 Test: checking if directory /etc/rcS.d exists 2022-02-27 22:53:26 Result: directory /etc/rcS.d not found. Skipping.. 2022-02-27 22:53:26 Test: Checking /etc/rc0.d scripts for writable bit 2022-02-27 22:53:26 Test: Checking /etc/rc1.d scripts for writable bit 2022-02-27 22:53:26 Test: Checking /etc/rc2.d scripts for writable bit 2022-02-27 22:53:26 Test: Checking /etc/rc3.d scripts for writable bit 2022-02-27 22:53:26 Test: Checking /etc/rc4.d scripts for writable bit 2022-02-27 22:53:26 Test: Checking /etc/rc5.d scripts for writable bit 2022-02-27 22:53:26 Test: Checking /etc/rc6.d scripts for writable bit 2022-02-27 22:53:26 Action: checking symlink for file /etc/rc.local 2022-02-27 22:53:26 Note: Using real readlink binary to determine symlink on /etc/rc.local 2022-02-27 22:53:26 Result: readlink shows /etc/rc.d/rc.local as output 2022-02-27 22:53:26 Result: symlink found, pointing to file /etc/rc.d/rc.local 2022-02-27 22:53:26 Result: found the path behind this symlink (/etc/rc.d/rc.local --> /etc/rc.local) 2022-02-27 22:53:26 Test: Checking /etc/rc.d/rc.local file for writable bit 2022-02-27 22:53:26 Result: good, file /etc/rc.d/rc.local not world writable 2022-02-27 22:53:26 Hardening: assigned maximum number of hardening points for this item (3). Currently having 7 points (out of 7) 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Performing test ID BOOT-5202 (Check uptime of system) 2022-02-27 22:53:26 Uptime (in seconds): 523736 2022-02-27 22:53:26 Uptime (in days): 6 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Performing test ID BOOT-5260 (Check single user mode for systemd) 2022-02-27 22:53:26 Test: Searching /usr/lib/systemd/system/rescue.service 2022-02-27 22:53:26 Result: file /usr/lib/systemd/system/rescue.service 2022-02-27 22:53:26 Test: checking presence sulogin for single user mode 2022-02-27 22:53:26 Result: found sulogin, so single user is protected 2022-02-27 22:53:26 Hardening: assigned maximum number of hardening points for this item (3). Currently having 10 points (out of 10) 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Skipped test BOOT-5262 (Check for OpenBSD boot daemons) 2022-02-27 22:53:26 Reason to skip: Incorrect guest OS (OpenBSD only) 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Skipped test BOOT-5263 (Check permissions for boot files/scripts) 2022-02-27 22:53:26 Reason to skip: Incorrect guest OS (OpenBSD only) 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Skipped test BOOT-5264 (Run systemd-analyze security) 2022-02-27 22:53:26 Reason to skip: systemd-analyze too old (v219), need at least v240 2022-02-27 22:53:26 Security check: file is normal 2022-02-27 22:53:26 Checking permissions of /root/lynis/include/tests_kernel 2022-02-27 22:53:26 File permissions are OK 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Action: Performing tests from category: Kernel 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Performing test ID KRNL-5622 (Determine Linux default run level) 2022-02-27 22:53:26 Test: Checking for systemd default.target 2022-02-27 22:53:26 Result: symlink found 2022-02-27 22:53:26 Result: No match found on runlevel, defaulting to runlevel 3 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Performing test ID KRNL-5677 (Check CPU options and support) 2022-02-27 22:53:26 Test: Checking /proc/cpuinfo 2022-02-27 22:53:26 Result: found /proc/cpuinfo 2022-02-27 22:53:26 Test: Checking CPU options (XD/NX/PAE) 2022-02-27 22:53:26 PAE: Yes 2022-02-27 22:53:26 NX: Yes 2022-02-27 22:53:26 Result: PAE or No eXecute option(s) both found 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Performing test ID KRNL-5695 (Determine Linux kernel version and release number) 2022-02-27 22:53:26 Result: found kernel release 3.10.0-1160.53.1.el7.x86_64 2022-02-27 22:53:26 Result: found kernel version #1 SMP Fri Jan 14 13:59:45 UTC 2022 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Performing test ID KRNL-5723 (Determining if Linux kernel is monolithic) 2022-02-27 22:53:26 Test: checking if kernel is monolithic or modular 2022-02-27 22:53:26 Result: Found modular kernel 2022-02-27 22:53:26 ==== 2022-02-27 22:53:26 Performing test ID KRNL-5726 (Checking Linux loaded kernel modules) 2022-02-27 22:53:26 Loaded modules according lsmod: 2022-02-27 22:53:26 Loaded module: ablk_helper 2022-02-27 22:53:27 Loaded module: aesni_intel 2022-02-27 22:53:27 Loaded module: ata_generic 2022-02-27 22:53:27 Loaded module: ata_piix 2022-02-27 22:53:27 Loaded module: binfmt_misc 2022-02-27 22:53:27 Loaded module: bridge 2022-02-27 22:53:27 Loaded module: cirrus 2022-02-27 22:53:27 Loaded module: crc32_pclmul 2022-02-27 22:53:27 Loaded module: crc32c_intel 2022-02-27 22:53:27 Loaded module: crct10dif_common 2022-02-27 22:53:27 Loaded module: crct10dif_pclmul 2022-02-27 22:53:27 Loaded module: cryptd 2022-02-27 22:53:27 Loaded module: dm_log 2022-02-27 22:53:27 Loaded module: dm_mirror 2022-02-27 22:53:27 Loaded module: dm_mod 2022-02-27 22:53:27 Loaded module: dm_region_hash 2022-02-27 22:53:27 Loaded module: drm 2022-02-27 22:53:27 Loaded module: drm_kms_helper 2022-02-27 22:53:27 Loaded module: drm_panel_orientation_quirks 2022-02-27 22:53:27 Loaded module: ebtable_broute 2022-02-27 22:53:27 Loaded module: ebtable_filter 2022-02-27 22:53:27 Loaded module: ebtable_nat 2022-02-27 22:53:27 Loaded module: ebtables 2022-02-27 22:53:27 Loaded module: failover 2022-02-27 22:53:27 Loaded module: falcon_kal 2022-02-27 22:53:27 Loaded module: falcon_lsm_pinned_13005 2022-02-27 22:53:27 Loaded module: falcon_lsm_pinned_13108 2022-02-27 22:53:27 Loaded module: falcon_lsm_pinned_13109 2022-02-27 22:53:27 Loaded module: falcon_lsm_serviceable 2022-02-27 22:53:27 Loaded module: falcon_nf_netcontain 2022-02-27 22:53:27 Loaded module: fb_sys_fops 2022-02-27 22:53:27 Loaded module: floppy 2022-02-27 22:53:27 Loaded module: gf128mul 2022-02-27 22:53:27 Loaded module: ghash_clmulni_intel 2022-02-27 22:53:27 Loaded module: glue_helper 2022-02-27 22:53:27 Loaded module: i2c_piix4 2022-02-27 22:53:27 Loaded module: inet_diag 2022-02-27 22:53:27 Loaded module: iosf_mbi 2022-02-27 22:53:27 Loaded module: ip6_tables 2022-02-27 22:53:27 Loaded module: ip6t_REJECT 2022-02-27 22:53:27 Loaded module: ip6t_rpfilter 2022-02-27 22:53:27 Loaded module: ip6table_filter 2022-02-27 22:53:27 Loaded module: ip6table_mangle 2022-02-27 22:53:27 Loaded module: ip6table_nat 2022-02-27 22:53:27 Loaded module: ip6table_raw 2022-02-27 22:53:27 Loaded module: ip6table_security 2022-02-27 22:53:27 Loaded module: ip_set 2022-02-27 22:53:27 Loaded module: ip_tables 2022-02-27 22:53:27 Loaded module: ipt_REJECT 2022-02-27 22:53:27 Loaded module: iptable_filter 2022-02-27 22:53:27 Loaded module: iptable_mangle 2022-02-27 22:53:27 Loaded module: iptable_nat 2022-02-27 22:53:27 Loaded module: iptable_raw 2022-02-27 22:53:27 Loaded module: iptable_security 2022-02-27 22:53:27 Loaded module: irqbypass 2022-02-27 22:53:27 Loaded module: joydev 2022-02-27 22:53:27 Loaded module: kvm 2022-02-27 22:53:27 Loaded module: kvm_intel 2022-02-27 22:53:27 Loaded module: libata 2022-02-27 22:53:27 Loaded module: libcrc32c 2022-02-27 22:53:27 Loaded module: libnvdimm 2022-02-27 22:53:27 Loaded module: llc 2022-02-27 22:53:27 Loaded module: lrw 2022-02-27 22:53:27 Loaded module: net_failover 2022-02-27 22:53:27 Loaded module: nf_conntrack 2022-02-27 22:53:27 Loaded module: nf_conntrack_ipv4 2022-02-27 22:53:27 Loaded module: nf_conntrack_ipv6 2022-02-27 22:53:27 Loaded module: nf_defrag_ipv4 2022-02-27 22:53:27 Loaded module: nf_defrag_ipv6 2022-02-27 22:53:27 Loaded module: nf_nat 2022-02-27 22:53:27 Loaded module: nf_nat_ipv4 2022-02-27 22:53:27 Loaded module: nf_nat_ipv6 2022-02-27 22:53:27 Loaded module: nf_reject_ipv4 2022-02-27 22:53:27 Loaded module: nf_reject_ipv6 2022-02-27 22:53:27 Loaded module: nfit 2022-02-27 22:53:27 Loaded module: parport 2022-02-27 22:53:27 Loaded module: parport_pc 2022-02-27 22:53:27 Loaded module: pata_acpi 2022-02-27 22:53:27 Loaded module: pcspkr 2022-02-27 22:53:27 Loaded module: ppdev 2022-02-27 22:53:27 Loaded module: serio_raw 2022-02-27 22:53:27 Loaded module: snd 2022-02-27 22:53:27 Loaded module: snd_hda_codec 2022-02-27 22:53:27 Loaded module: snd_hda_codec_generic 2022-02-27 22:53:27 Loaded module: snd_hda_core 2022-02-27 22:53:27 Loaded module: snd_hda_intel 2022-02-27 22:53:27 Loaded module: snd_hwdep 2022-02-27 22:53:27 Loaded module: snd_pcm 2022-02-27 22:53:27 Loaded module: snd_seq 2022-02-27 22:53:27 Loaded module: snd_seq_device 2022-02-27 22:53:27 Loaded module: snd_timer 2022-02-27 22:53:27 Loaded module: soundcore 2022-02-27 22:53:27 Loaded module: stp 2022-02-27 22:53:27 Loaded module: sunrpc 2022-02-27 22:53:27 Loaded module: syscopyarea 2022-02-27 22:53:27 Loaded module: sysfillrect 2022-02-27 22:53:27 Loaded module: sysimgblt 2022-02-27 22:53:27 Loaded module: tcp_diag 2022-02-27 22:53:27 Loaded module: ttm 2022-02-27 22:53:27 Loaded module: udp_diag 2022-02-27 22:53:27 Loaded module: virtio 2022-02-27 22:53:27 Loaded module: virtio_balloon 2022-02-27 22:53:27 Loaded module: virtio_blk 2022-02-27 22:53:27 Loaded module: virtio_net 2022-02-27 22:53:27 Loaded module: virtio_pci 2022-02-27 22:53:27 Loaded module: virtio_ring 2022-02-27 22:53:27 Loaded module: xfs 2022-02-27 22:53:27 Loaded module: xt_conntrack 2022-02-27 22:53:27 ==== 2022-02-27 22:53:27 Performing test ID KRNL-5728 (Checking Linux kernel config) 2022-02-27 22:53:27 Result: found config (/boot/config-3.10.0-1160.53.1.el7.x86_64) 2022-02-27 22:53:27 ==== 2022-02-27 22:53:27 Performing test ID KRNL-5730 (Checking disk I/O kernel scheduler) 2022-02-27 22:53:27 Test: Checking the default I/O kernel scheduler 2022-02-27 22:53:27 Result: found IO scheduler 'deadline' 2022-02-27 22:53:27 ==== 2022-02-27 22:53:27 Skipped test KRNL-5745 (Checking FreeBSD loaded kernel modules) 2022-02-27 22:53:27 Reason to skip: Incorrect guest OS (FreeBSD only) 2022-02-27 22:53:27 ==== 2022-02-27 22:53:27 Skipped test KRNL-5831 (Checking DragonFly loaded kernel modules) 2022-02-27 22:53:27 Reason to skip: Incorrect guest OS (DragonFly only) 2022-02-27 22:53:27 ==== 2022-02-27 22:53:27 Skipped test KRNL-5770 (Checking active kernel modules) 2022-02-27 22:53:27 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:27 ==== 2022-02-27 22:53:27 Skipped test KRNL-5788 (Checking availability new Linux kernel) 2022-02-27 22:53:27 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:27 ==== 2022-02-27 22:53:27 Performing test ID KRNL-5820 (Checking core dumps configuration) 2022-02-27 22:53:27 Test: Checking presence of systemd 2022-02-27 22:53:27 Result: systemd is present on this system 2022-02-27 22:53:27 Test: Checking if core dumps are disabled in /etc/systemd/coredump.conf and /etc/systemd/coredump.conf.d/*.conf 2022-02-27 22:53:27 Result: core dumps are not disabled in systemd configuration. Didn't find settings 'ProcessSizeMax=0' and 'Storage=none' 2022-02-27 22:53:27 Hardening: assigned partial number of hardening points (0 of 1). Currently having 10 points (out of 11) 2022-02-27 22:53:27 Test: Checking presence /etc/profile 2022-02-27 22:53:27 Test: Checking if 'ulimit -c 0' exists in /etc/profile or /etc/profile.d/*.sh 2022-02-27 22:53:27 Result: core dumps are not disabled in /etc/profile or /etc/profile.d/*.sh config files. Didn't find setting 'ulimit -c 0' 2022-02-27 22:53:27 Hardening: assigned partial number of hardening points (0 of 1). Currently having 10 points (out of 12) 2022-02-27 22:53:27 Test: Checking presence /etc/security/limits.conf 2022-02-27 22:53:27 Result: file /etc/security/limits.conf exists 2022-02-27 22:53:27 Test: Checking if core dumps are disabled in /etc/security/limits.conf and /etc/security/limits.d/* 2022-02-27 22:53:27 Result: core dumps are not explicitly disabled 2022-02-27 22:53:27 Suggestion: If not required, consider explicit disabling of core dump in /etc/security/limits.conf file [test:KRNL-5820] [details:-] [solution:-] 2022-02-27 22:53:27 Hardening: assigned partial number of hardening points (1 of 3). Currently having 11 points (out of 15) 2022-02-27 22:53:27 Test: Checking sysctl value of fs.suid_dumpable 2022-02-27 22:53:27 Result: value 0 found 2022-02-27 22:53:27 Result: found default option (0), no execute only program or program with changed privilege levels can dump 2022-02-27 22:53:27 Hardening: assigned maximum number of hardening points for this item (1). Currently having 12 points (out of 16) 2022-02-27 22:53:27 ==== 2022-02-27 22:53:27 Performing test ID KRNL-5830 (Checking if system is running on the latest installed kernel) 2022-02-27 22:53:27 Test: Checking presence /var/run/reboot-required.pkgs 2022-02-27 22:53:27 Result: file /var/run/reboot-required.pkgs not found 2022-02-27 22:53:27 Result: /boot exists, performing more tests from here 2022-02-27 22:53:27 Result: found /boot/vmlinuz-3.10.0-1160.53.1.el7.x86_64 2022-02-27 22:53:27 Result: version derived from file name is '3.10.0-1160.53.1.el7.x86_64' 2022-02-27 22:53:27 Result: found version 3.10.0-1160.53.1.el7.x86_64 2022-02-27 22:53:27 Result: active kernel version 3.10.0-1160.53.1.el7.x86_64 2022-02-27 22:53:27 Result: no reboot needed, active kernel is the same version as the one on disk 2022-02-27 22:53:27 Result: /var/cache/apt/archives/ does not exist 2022-02-27 22:53:27 Hardening: assigned maximum number of hardening points for this item (5). Currently having 17 points (out of 21) 2022-02-27 22:53:27 Security check: file is normal 2022-02-27 22:53:27 Checking permissions of /root/lynis/include/tests_memory_processes 2022-02-27 22:53:28 File permissions are OK 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Action: Performing tests from category: Memory and Processes 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID PROC-3602 (Checking /proc/meminfo for memory details) 2022-02-27 22:53:28 Result: found /proc/meminfo 2022-02-27 22:53:28 Result: Found 8008624 kB memory 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Skipped test PROC-3604 (Query prtconf for memory details) 2022-02-27 22:53:28 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID PROC-3612 (Check dead or zombie processes) 2022-02-27 22:53:28 Result: no zombie processes found 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID PROC-3614 (Check heavy IO waiting based processes) 2022-02-27 22:53:28 Result: No processes were waiting for IO requests to be handled first 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID PROC-3802 (Check presence of prelink tooling) 2022-02-27 22:53:28 Result: prelink package is NOT installed 2022-02-27 22:53:28 Hardening: assigned maximum number of hardening points for this item (3). Currently having 20 points (out of 24) 2022-02-27 22:53:28 Security check: file is normal 2022-02-27 22:53:28 Checking permissions of /root/lynis/include/tests_authentication 2022-02-27 22:53:28 File permissions are OK 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Action: Performing tests from category: Users, Groups and Authentication 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9204 (Check users with an UID of zero) 2022-02-27 22:53:28 Test: Searching accounts with UID 0 2022-02-27 22:53:28 Result: No accounts found with UID 0 other than root. 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9208 (Check non-unique accounts in passwd file) 2022-02-27 22:53:28 Test: Checking for non-unique accounts 2022-02-27 22:53:28 Result: all accounts found in /etc/passwd are unique 2022-02-27 22:53:28 Remarks: Non unique UIDs can be a risk for the system or part of a configuration mistake 2022-02-27 22:53:28 Prerequisite test: /usr/sbin/chkgrp 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Skipped test AUTH-9212 (Test group file) 2022-02-27 22:53:28 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9216 (Check group and shadow group files) 2022-02-27 22:53:28 Test: Checking for grpck binary output 2022-02-27 22:53:28 Result: grpck binary didn't find any errors in the group files 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Skipped test AUTH-9218 (Check login shells for passwordless accounts) 2022-02-27 22:53:28 Reason to skip: Incorrect guest OS (DragonFly FreeBSD NetBSD OpenBSD only) 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9222 (Check unique groups (IDs)) 2022-02-27 22:53:28 Test: Checking for non unique group ID's in /etc/group 2022-02-27 22:53:28 Result: All group ID's are unique 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9226 (Check unique group names) 2022-02-27 22:53:28 Test: Checking for non unique group names in /etc/group 2022-02-27 22:53:28 Result: All group names are unique 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9228 (Check password file consistency with pwck) 2022-02-27 22:53:28 Test: Checking password file consistency (pwck) 2022-02-27 22:53:28 Result: pwck check didn't find any problems 2022-02-27 22:53:28 Hardening: assigned maximum number of hardening points for this item (2). Currently having 22 points (out of 26) 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9229 (Check password hashing methods) 2022-02-27 22:53:28 Test: Checking password hashing methods 2022-02-27 22:53:28 Result: no poor password hashing methods found 2022-02-27 22:53:28 Hardening: assigned maximum number of hardening points for this item (2). Currently having 24 points (out of 28) 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9230 (Check group password hashing rounds) 2022-02-27 22:53:28 Test: Checking SHA_CRYPT_MIN_ROUNDS option in /etc/login.defs 2022-02-27 22:53:28 Result: number of encryption algorithm rounds is 6000 2022-02-27 22:53:28 Hardening: assigned maximum number of hardening points for this item (2). Currently having 26 points (out of 30) 2022-02-27 22:53:28 Test: Checking SHA_CRYPT_MAX_ROUNDS option in /etc/login.defs 2022-02-27 22:53:28 Result: number of encryption algorithm rounds is 20000 2022-02-27 22:53:28 Hardening: assigned maximum number of hardening points for this item (2). Currently having 28 points (out of 32) 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9234 (Query user accounts) 2022-02-27 22:53:28 Test: Read system users (including root user) from password database (e.g. /etc/passwd) 2022-02-27 22:53:28 Result: found minimal user id specified: 1000 2022-02-27 22:53:28 Linux real users output (ID = 0, or 1000+, but not 65534): 2022-02-27 22:53:28 Real user: root,0 2022-02-27 22:53:28 Real user: hhwang,1000 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9240 (Query NIS+ authentication support) 2022-02-27 22:53:28 Result: NIS+ authentication not enabled 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9242 (Query NIS authentication support) 2022-02-27 22:53:28 Result: NIS authentication not enabled 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9250 (Checking sudoers file) 2022-02-27 22:53:28 Test: checking presence /etc/sudoers 2022-02-27 22:53:28 Result: found file (/etc/sudoers) 2022-02-27 22:53:28 Test: checking presence /usr/local/etc/sudoers 2022-02-27 22:53:28 Result: file /usr/local/etc/sudoers not found 2022-02-27 22:53:28 Test: checking presence /usr/pkg/etc/sudoers 2022-02-27 22:53:28 Result: file /usr/pkg/etc/sudoers not found 2022-02-27 22:53:28 Result: sudoers file found (/etc/sudoers) 2022-02-27 22:53:28 ==== 2022-02-27 22:53:28 Performing test ID AUTH-9252 (Check ownership and permissions for sudo configuration files) 2022-02-27 22:53:28 Test: checking drop-in directory (/etc/sudoers.d) 2022-02-27 22:53:28 Result: Found directory permissions: rwxr-x--- and owner UID GID: 00 2022-02-27 22:53:28 Result: directory /etc/sudoers.d permissions OK 2022-02-27 22:53:28 Result: directory /etc/sudoers.d ownership OK 2022-02-27 22:53:28 Test: checking file (/etc/sudoers) 2022-02-27 22:53:28 Result: Found file permissions: r--r----- and owner UID GID: 00 2022-02-27 22:53:28 Result: file /etc/sudoers permissions OK 2022-02-27 22:53:28 Result: file /etc/sudoers ownership OK 2022-02-27 22:53:28 ==== 2022-02-27 22:53:29 Skipped test AUTH-9254 (Solaris passwordless accounts) 2022-02-27 22:53:29 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:29 ==== 2022-02-27 22:53:29 Performing test ID AUTH-9262 (Checking presence password strength testing tools (PAM)) 2022-02-27 22:53:29 Searching PAM password testing modules (cracklib, passwdqc, pwquality) 2022-02-27 22:53:29 Result: found pam_cracklib.so (crack library PAM) in /lib64/security 2022-02-27 22:53:29 Result: found pam_pwquality.so (password quality control PAM) in /lib64/security 2022-02-27 22:53:29 Result: pam_cracklib.so found 2022-02-27 22:53:29 Result: pam_passwdqc.so NOT found (passwd quality control PAM) 2022-02-27 22:53:29 Result: pam_pwquality.so found 2022-02-27 22:53:29 Result: found at least one PAM module for password strength testing 2022-02-27 22:53:29 Hardening: assigned maximum number of hardening points for this item (3). Currently having 31 points (out of 35) 2022-02-27 22:53:29 ==== 2022-02-27 22:53:29 Performing test ID AUTH-9264 (Checking presence pam.conf) 2022-02-27 22:53:29 Test: Checking file /etc/pam.conf 2022-02-27 22:53:29 Result: file /etc/pam.conf could not be found 2022-02-27 22:53:29 ==== 2022-02-27 22:53:29 Performing test ID AUTH-9266 (Checking presence pam.d files) 2022-02-27 22:53:29 Test: Checking directory /etc/pam.d 2022-02-27 22:53:29 Result: directory /etc/pam.d exists 2022-02-27 22:53:29 Test: searching PAM configuration files 2022-02-27 22:53:29 Found file: /etc/pam.d/chfn 2022-02-27 22:53:29 Found file: /etc/pam.d/chsh 2022-02-27 22:53:29 Found file: /etc/pam.d/config-util 2022-02-27 22:53:29 Found file: /etc/pam.d/crond 2022-02-27 22:53:29 Found file: /etc/pam.d/fingerprint-auth-ac 2022-02-27 22:53:29 Found file: /etc/pam.d/login 2022-02-27 22:53:29 Found file: /etc/pam.d/other 2022-02-27 22:53:29 Found file: /etc/pam.d/passwd 2022-02-27 22:53:29 Found file: /etc/pam.d/password-auth-ac 2022-02-27 22:53:29 Found file: /etc/pam.d/polkit-1 2022-02-27 22:53:29 Found file: /etc/pam.d/postlogin-ac 2022-02-27 22:53:29 Found file: /etc/pam.d/remote 2022-02-27 22:53:29 Found file: /etc/pam.d/runuser 2022-02-27 22:53:29 Found file: /etc/pam.d/runuser-l 2022-02-27 22:53:29 Found file: /etc/pam.d/smartcard-auth-ac 2022-02-27 22:53:29 Found file: /etc/pam.d/smtp.postfix 2022-02-27 22:53:29 Found file: /etc/pam.d/sshd 2022-02-27 22:53:29 Found file: /etc/pam.d/su 2022-02-27 22:53:29 Found file: /etc/pam.d/su-l 2022-02-27 22:53:29 Found file: /etc/pam.d/sudo 2022-02-27 22:53:29 Found file: /etc/pam.d/sudo-i 2022-02-27 22:53:29 Found file: /etc/pam.d/system-auth-ac 2022-02-27 22:53:29 Found file: /etc/pam.d/systemd-user 2022-02-27 22:53:29 Found file: /etc/pam.d/vlock 2022-02-27 22:53:29 ==== 2022-02-27 22:53:29 Performing test ID AUTH-9268 (Checking presence pam.d files) 2022-02-27 22:53:29 Test: Searching pam modules 2022-02-27 22:53:29 Test: Checking /lib/arm-linux-gnueabihf/security 2022-02-27 22:53:29 Result: directory /lib/arm-linux-gnueabihf/security could not be found or is a symlink to another directory 2022-02-27 22:53:29 Test: Checking /lib/i386-linux-gnu/security 2022-02-27 22:53:29 Result: directory /lib/i386-linux-gnu/security could not be found or is a symlink to another directory 2022-02-27 22:53:29 Test: Checking /lib/security 2022-02-27 22:53:29 Result: directory /lib/security could not be found or is a symlink to another directory 2022-02-27 22:53:29 Test: Checking /lib/x86_64-linux-gnu/security 2022-02-27 22:53:29 Result: directory /lib/x86_64-linux-gnu/security could not be found or is a symlink to another directory 2022-02-27 22:53:29 Test: Checking /lib64/security 2022-02-27 22:53:29 Result: directory /lib64/security exists 2022-02-27 22:53:29 Found file: /lib64/security/pam_access.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_cap.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_chroot.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_console.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_cracklib.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_debug.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_deny.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_echo.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_env.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_exec.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_faildelay.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_faillock.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_filter.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_ftp.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_group.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_issue.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_keyinit.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_lastlog.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_limits.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_listfile.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_localuser.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_loginuid.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_mail.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_mkhomedir.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_motd.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_namespace.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_nologin.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_permit.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_postgresok.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_pwhistory.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_pwquality.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_rhosts.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_rootok.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_securetty.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_selinux.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_sepermit.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_shells.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_stress.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_succeed_if.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_systemd.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_tally2.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_time.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_timestamp.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_tty_audit.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_umask.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_unix.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_userdb.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_warn.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_wheel.so 2022-02-27 22:53:29 Found file: /lib64/security/pam_xauth.so 2022-02-27 22:53:29 Test: Checking /usr/lib 2022-02-27 22:53:29 Result: directory /usr/lib exists 2022-02-27 22:53:29 Test: Checking /usr/lib/security 2022-02-27 22:53:29 Result: directory /usr/lib/security could not be found or is a symlink to another directory 2022-02-27 22:53:29 ==== 2022-02-27 22:53:29 Performing test ID AUTH-9278 (Determine LDAP support in PAM files) 2022-02-27 22:53:29 Test: checking presence /etc/pam.d/common-auth 2022-02-27 22:53:29 Result: file /etc/pam.d/common-auth not found, skipping test 2022-02-27 22:53:29 Test: checking presence /etc/pam.d/system-auth 2022-02-27 22:53:29 Result: file /etc/pam.d/system-auth exists 2022-02-27 22:53:29 Test: checking presence LDAP module 2022-02-27 22:53:29 Result: LDAP module not found 2022-02-27 22:53:29 ==== 2022-02-27 22:53:29 Performing test ID AUTH-9282 (Checking password protected account without expire date) 2022-02-27 22:53:29 Test: Checking Linux version and password expire date status 2022-02-27 22:53:29 Result: found one or more accounts without expire date set 2022-02-27 22:53:29 Account without expire date: root 2022-02-27 22:53:29 Suggestion: When possible set expire dates for all password protected accounts [test:AUTH-9282] [details:-] [solution:-] 2022-02-27 22:53:29 ==== 2022-02-27 22:53:29 Performing test ID AUTH-9283 (Checking accounts without password) 2022-02-27 22:53:29 Test: Checking passwordless accounts 2022-02-27 22:53:29 Result: all accounts seem to have a password 2022-02-27 22:53:29 ==== 2022-02-27 22:53:30 Performing test ID AUTH-9286 (Checking user password aging) 2022-02-27 22:53:30 Test: Checking PASS_MIN_DAYS option in /etc/login.defs 2022-02-27 22:53:30 Result: password needs to be at least 3 days old 2022-02-27 22:53:30 Hardening: assigned maximum number of hardening points for this item (3). Currently having 34 points (out of 38) 2022-02-27 22:53:30 Test: Checking PASS_MAX_DAYS option in /etc/login.defs 2022-02-27 22:53:30 Result: max password age is 90 days 2022-02-27 22:53:30 Hardening: assigned maximum number of hardening points for this item (3). Currently having 37 points (out of 41) 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Performing test ID AUTH-9288 (Checking for expired passwords) 2022-02-27 22:53:30 Test: check if we can access /etc/shadow (escaped: /etc/shadow) 2022-02-27 22:53:30 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:30 Result: file /etc/shadow is readable (or directory accessible). 2022-02-27 22:53:30 Data: Days since epoch is 19051 2022-02-27 22:53:30 Test: collecting accounts which have an expired password (last day changed + maximum change time) 2022-02-27 22:53:30 Result: good, no passwords have been expired 2022-02-27 22:53:30 Hardening: assigned maximum number of hardening points for this item (10). Currently having 47 points (out of 51) 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Skipped test AUTH-9304 (Check single user login configuration) 2022-02-27 22:53:30 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Skipped test AUTH-9306 (Check single boot authentication) 2022-02-27 22:53:30 Reason to skip: Incorrect guest OS (HP-UX only) 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Performing test ID AUTH-9308 (Check single user login configuration) 2022-02-27 22:53:30 Test: going to check several systemd targets now 2022-02-27 22:53:30 Test: checking if target console-shell.service is available (/lib/systemd/system/console-shell.service) 2022-02-27 22:53:30 Result: found target console-shell.service 2022-02-27 22:53:30 Result: sulogin was found, which is a good measure to protect single user mode 2022-02-27 22:53:30 Test: checking if target emergency.service is available (/lib/systemd/system/emergency.service) 2022-02-27 22:53:30 Result: found target emergency.service 2022-02-27 22:53:30 Result: sulogin was found, which is a good measure to protect single user mode 2022-02-27 22:53:30 Test: checking if target rescue.service is available (/lib/systemd/system/rescue.service) 2022-02-27 22:53:30 Result: found target rescue.service 2022-02-27 22:53:30 Result: sulogin was found, which is a good measure to protect single user mode 2022-02-27 22:53:30 Result: option set, password is needed at single user mode boot 2022-02-27 22:53:30 Hardening: assigned maximum number of hardening points for this item (2). Currently having 49 points (out of 53) 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Performing test ID AUTH-9328 (Default umask values) 2022-02-27 22:53:30 Test: Checking /etc/profile.d directory 2022-02-27 22:53:30 Result: found /etc/profile.d, with one or more files in it 2022-02-27 22:53:30 Test: Checking /etc/profile 2022-02-27 22:53:30 Result: file /etc/profile exists 2022-02-27 22:53:30 Test: Checking umask value in /etc/profile 2022-02-27 22:53:30 Result: found multiple umask values configured in /etc/profile 2022-02-27 22:53:30 Result: Found umask 027, which is fine 2022-02-27 22:53:30 Hardening: assigned maximum number of hardening points for this item (2). Currently having 51 points (out of 55) 2022-02-27 22:53:30 Result: Found umask 027, which is fine 2022-02-27 22:53:30 Hardening: assigned maximum number of hardening points for this item (2). Currently having 53 points (out of 57) 2022-02-27 22:53:30 Hardening: assigned maximum number of hardening points for this item (2). Currently having 55 points (out of 59) 2022-02-27 22:53:30 Test: Checking umask entries in /etc/passwd (pam_umask) 2022-02-27 22:53:30 Result: file /etc/passwd exists 2022-02-27 22:53:30 Test: Checking umask value in /etc/passwd 2022-02-27 22:53:30 Manual: one or more manual actions are required for further testing of this control/plugin 2022-02-27 22:53:30 Test: Checking /etc/login.defs 2022-02-27 22:53:30 Result: file /etc/login.defs exists 2022-02-27 22:53:30 Test: Checking umask value in /etc/login.defs 2022-02-27 22:53:30 Result: umask is 077, which is fine 2022-02-27 22:53:30 Hardening: assigned maximum number of hardening points for this item (2). Currently having 57 points (out of 61) 2022-02-27 22:53:30 Test: Checking /etc/init.d/functions 2022-02-27 22:53:30 Result: file /etc/init.d/functions exists 2022-02-27 22:53:30 Test: Checking umask value in /etc/init.d/functions 2022-02-27 22:53:30 Result: umask is 027, which is fine 2022-02-27 22:53:30 Hardening: assigned maximum number of hardening points for this item (2). Currently having 59 points (out of 63) 2022-02-27 22:53:30 Test: Checking /etc/init.d/rc 2022-02-27 22:53:30 Result: file /etc/init.d/rc does not exist 2022-02-27 22:53:30 Test: Checking /etc/init.d/rcS 2022-02-27 22:53:30 Result: file /etc/init.d/rcS does not exist 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Skipped test AUTH-9340 (Solaris account locking) 2022-02-27 22:53:30 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Performing test ID AUTH-9402 (Query LDAP authentication support) 2022-02-27 22:53:30 Result: LDAP authentication not enabled 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Skipped test AUTH-9406 (Query LDAP servers in client configuration) 2022-02-27 22:53:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Performing test ID AUTH-9408 (Logging of failed login attempts) 2022-02-27 22:53:30 Test: Checking FAILLOG_ENAB option in /etc/login.defs 2022-02-27 22:53:30 Result: FAILLOG_ENAB is set to 'yes' 2022-02-27 22:53:30 Outcome: failed login attempts are logged in /var/log/faillog 2022-02-27 22:53:30 Hardening: assigned maximum number of hardening points for this item (3). Currently having 62 points (out of 66) 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Skipped test AUTH-9409 (Checking /etc/doas.conf file) 2022-02-27 22:53:30 Reason to skip: Incorrect guest OS (OpenBSD only) 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Skipped test AUTH-9410 (Check /etc/doas.conf file permissions) 2022-02-27 22:53:30 Reason to skip: Incorrect guest OS (OpenBSD only) 2022-02-27 22:53:30 Security check: file is normal 2022-02-27 22:53:30 Checking permissions of /root/lynis/include/tests_shells 2022-02-27 22:53:30 File permissions are OK 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Action: Performing tests from category: Shells 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Skipped test SHLL-6202 (Check console TTYs) 2022-02-27 22:53:30 Reason to skip: Incorrect guest OS (FreeBSD only) 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Performing test ID SHLL-6211 (Available and valid shells) 2022-02-27 22:53:30 Test: Searching for /etc/shells 2022-02-27 22:53:30 Result: Found /etc/shells file 2022-02-27 22:53:30 Test: Reading available shells from /etc/shells 2022-02-27 22:53:30 Found installed shell: /bin/sh 2022-02-27 22:53:30 Found installed shell: /bin/bash 2022-02-27 22:53:30 Found installed shell: /usr/bin/sh 2022-02-27 22:53:30 Found installed shell: /usr/bin/bash 2022-02-27 22:53:30 Found installed shell: /bin/ksh 2022-02-27 22:53:30 Found installed shell: /bin/rksh 2022-02-27 22:53:30 ==== 2022-02-27 22:53:30 Performing test ID SHLL-6220 (Idle session killing tools or settings) 2022-02-27 22:53:30 Test: Search for session timeout tools or settings in shell 2022-02-27 22:53:30 Performing pgrep scan without uid 2022-02-27 22:53:30 IsRunning: process 'timeoutd' not found 2022-02-27 22:53:30 Performing pgrep scan without uid 2022-02-27 22:53:30 IsRunning: process 'autolog' not found 2022-02-27 22:53:30 Result: could not find TMOUT setting in /etc/profile 2022-02-27 22:53:30 Result: could not find export, readonly or typeset -r in /etc/profile 2022-02-27 22:53:31 Result: could not find TMOUT setting in /etc/profile.d/*.sh 2022-02-27 22:53:31 Result: could not find export, readonly or typeset -r in /etc/profile 2022-02-27 22:53:31 Hardening: assigned partial number of hardening points (1 of 3). Currently having 63 points (out of 69) 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID SHLL-6230 (Perform umask check for shell configurations) 2022-02-27 22:53:31 Result: file /etc/bashrc exists 2022-02-27 22:53:31 Result: found umask 002 in /etc/bashrc 2022-02-27 22:53:31 Result: umask 002 can be hardened 2022-02-27 22:53:31 Result: found umask 022 in /etc/bashrc 2022-02-27 22:53:31 Result: umask 022 can be hardened 2022-02-27 22:53:31 Hardening: assigned partial number of hardening points (1 of 3). Currently having 64 points (out of 72) 2022-02-27 22:53:31 Result: file /etc/bash.bashrc not found 2022-02-27 22:53:31 Result: file /etc/bash.bashrc.local not found 2022-02-27 22:53:31 Result: file /etc/csh.cshrc exists 2022-02-27 22:53:31 Result: found umask 002 in /etc/csh.cshrc 2022-02-27 22:53:31 Result: umask 002 can be hardened 2022-02-27 22:53:31 Result: found umask 022 in /etc/csh.cshrc 2022-02-27 22:53:31 Result: umask 022 can be hardened 2022-02-27 22:53:31 Hardening: assigned partial number of hardening points (1 of 3). Currently having 65 points (out of 75) 2022-02-27 22:53:31 Result: file /etc/profile exists 2022-02-27 22:53:31 Result: found umask 027 in /etc/profile 2022-02-27 22:53:31 Result: umask 027 is considered a properly hardened value 2022-02-27 22:53:31 Result: found umask 027 in /etc/profile 2022-02-27 22:53:31 Result: umask 027 is considered a properly hardened value 2022-02-27 22:53:31 Hardening: assigned maximum number of hardening points for this item (3). Currently having 68 points (out of 78) 2022-02-27 22:53:31 Security check: file is normal 2022-02-27 22:53:31 Checking permissions of /root/lynis/include/tests_filesystems 2022-02-27 22:53:31 File permissions are OK 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Action: Performing tests from category: File systems 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6310 (Checking /tmp, /home and /var directory) 2022-02-27 22:53:31 Test: Checking if /home is mounted separately or mounted on / file system 2022-02-27 22:53:31 Result: directory /home exists 2022-02-27 22:53:31 Result: /home not found in mount list. Directory most likely stored on / file system 2022-02-27 22:53:31 Suggestion: To decrease the impact of a full /home file system, place /home on a separate partition [test:FILE-6310] [details:-] [solution:-] 2022-02-27 22:53:31 Hardening: assigned partial number of hardening points (9 of 10). Currently having 77 points (out of 88) 2022-02-27 22:53:31 Test: Checking if /tmp is mounted separately or mounted on / file system 2022-02-27 22:53:31 Result: directory /tmp exists 2022-02-27 22:53:31 Result: /tmp not found in mount list. Directory most likely stored on / file system 2022-02-27 22:53:31 Suggestion: To decrease the impact of a full /tmp file system, place /tmp on a separate partition [test:FILE-6310] [details:-] [solution:-] 2022-02-27 22:53:31 Hardening: assigned partial number of hardening points (9 of 10). Currently having 86 points (out of 98) 2022-02-27 22:53:31 Test: Checking if /var is mounted separately or mounted on / file system 2022-02-27 22:53:31 Result: directory /var exists 2022-02-27 22:53:31 Result: /var not found in mount list. Directory most likely stored on / file system 2022-02-27 22:53:31 Suggestion: To decrease the impact of a full /var file system, place /var on a separate partition [test:FILE-6310] [details:-] [solution:-] 2022-02-27 22:53:31 Hardening: assigned partial number of hardening points (9 of 10). Currently having 95 points (out of 108) 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6311 (Checking LVM volume groups) 2022-02-27 22:53:31 Test: Checking for LVM volume groups 2022-02-27 22:53:31 Result: found one or more volume groups 2022-02-27 22:53:31 Found LVM volume group: centos 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6312 (Checking LVM volumes) 2022-02-27 22:53:31 Test: Checking for LVM volumes 2022-02-27 22:53:31 Result: found one or more volumes 2022-02-27 22:53:31 Found LVM volume: root 2022-02-27 22:53:31 Found LVM volume: swap 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6323 (Checking EXT file systems) 2022-02-27 22:53:31 Test: Checking for Linux EXT file systems 2022-02-27 22:53:31 Result: no EXT file systems found 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6324 (Checking XFS file systems) 2022-02-27 22:53:31 Test: Checking for Linux XFS file systems 2022-02-27 22:53:31 Result: found one or more XFS file systems 2022-02-27 22:53:31 File system: / (type: xfs) 2022-02-27 22:53:31 File system: /boot (type: xfs) 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6329 (Checking FFS/UFS file systems) 2022-02-27 22:53:31 Test: Query /etc/fstab for available FFS/UFS mount points 2022-02-27 22:53:31 Result: unable to find any single mount point (FFS/UFS) 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Skipped test FILE-6330 (Checking ZFS file systems) 2022-02-27 22:53:31 Reason to skip: Incorrect guest OS (FreeBSD only) 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Skipped test FILE-6439 (Checking HAMMER PFS mounts) 2022-02-27 22:53:31 Reason to skip: Incorrect guest OS (DragonFly only) 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6332 (Checking swap partitions) 2022-02-27 22:53:31 Test: query swap partitions from /etc/fstab file 2022-02-27 22:53:31 Swap partition found: /dev/mapper/centos-swap 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6336 (Checking swap mount options) 2022-02-27 22:53:31 Test: check swap partitions with incorrect mount options 2022-02-27 22:53:31 Result: all swap partitions have correct options (sw or swap) 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6344 (Checking proc mount options) 2022-02-27 22:53:31 Test: check proc mount with incorrect mount options 2022-02-27 22:53:31 Hardening: assigned partial number of hardening points (0 of 3). Currently having 95 points (out of 111) 2022-02-27 22:53:31 Result: /proc filesystem is not mounted with option hidepid=1 or hidepid=2 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6354 (Searching for old files in /tmp) 2022-02-27 22:53:31 Test: Searching for old files in /tmp 2022-02-27 22:53:31 Result: no files found in /tmp which are older than 3 months 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6362 (Checking /tmp sticky bit) 2022-02-27 22:53:31 Result: sticky bit found on /tmp directory 2022-02-27 22:53:31 Hardening: assigned maximum number of hardening points for this item (3). Currently having 98 points (out of 114) 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6363 (Checking /var/tmp sticky bit) 2022-02-27 22:53:31 Result: sticky bit found on /var/tmp directory 2022-02-27 22:53:31 Hardening: assigned maximum number of hardening points for this item (3). Currently having 101 points (out of 117) 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6368 (Checking ACL support on root file system) 2022-02-27 22:53:31 Test: Checking acl option on ext[2-4] root file system 2022-02-27 22:53:31 Result: mount point probably mounted with defaults 2022-02-27 22:53:31 Test: Checking device which holds root file system 2022-02-27 22:53:31 Result: No file system found with root file system 2022-02-27 22:53:31 Test: Checking acl option on xfs root file system 2022-02-27 22:53:31 Result: ACL option enabled on root file system 2022-02-27 22:53:31 Hardening: assigned maximum number of hardening points for this item (3). Currently having 104 points (out of 120) 2022-02-27 22:53:31 ==== 2022-02-27 22:53:31 Performing test ID FILE-6372 (Checking / mount options) 2022-02-27 22:53:32 Result: mount system / is configured with options: defaults 2022-02-27 22:53:32 ==== 2022-02-27 22:53:32 Performing test ID FILE-6374 (Linux mount options) 2022-02-27 22:53:32 File system: /boot 2022-02-27 22:53:32 Expected flags: nodev noexec nosuid 2022-02-27 22:53:32 Found flags: defaults 2022-02-27 22:53:32 Result: Could not find mount option nodev on file system /boot 2022-02-27 22:53:32 Result: Could not find mount option noexec on file system /boot 2022-02-27 22:53:32 Result: Could not find mount option nosuid on file system /boot 2022-02-27 22:53:32 Result: marked /boot options as default (not hardened) 2022-02-27 22:53:32 Hardening: assigned partial number of hardening points (3 of 5). Currently having 107 points (out of 125) 2022-02-27 22:53:32 File system: /dev 2022-02-27 22:53:32 Expected flags: noexec nosuid 2022-02-27 22:53:32 Found flags: (rw nosuid size=3992228k nr_inodes=998057 mode=755) 2022-02-27 22:53:32 Result: Could not find mount option noexec on file system /dev 2022-02-27 22:53:32 Result: GOOD, found mount option nosuid on file system /dev 2022-02-27 22:53:32 Result: marked /dev as partially hardened 2022-02-27 22:53:32 Hardening: assigned partial number of hardening points (4 of 5). Currently having 111 points (out of 130) 2022-02-27 22:53:32 File system: /dev/shm 2022-02-27 22:53:32 Expected flags: nosuid nodev noexec 2022-02-27 22:53:32 Found flags: (rw nosuid nodev) 2022-02-27 22:53:32 Result: GOOD, found mount option nosuid on file system /dev/shm 2022-02-27 22:53:32 Result: GOOD, found mount option nodev on file system /dev/shm 2022-02-27 22:53:32 Result: Could not find mount option noexec on file system /dev/shm 2022-02-27 22:53:32 Result: marked /dev/shm as partially hardened 2022-02-27 22:53:32 Hardening: assigned partial number of hardening points (4 of 5). Currently having 115 points (out of 135) 2022-02-27 22:53:32 Result: file system /home not found in /etc/fstab 2022-02-27 22:53:32 File system: /run 2022-02-27 22:53:32 Expected flags: nodev nosuid 2022-02-27 22:53:32 Found flags: (rw nosuid nodev mode=755) 2022-02-27 22:53:32 Result: GOOD, found mount option nodev on file system /run 2022-02-27 22:53:32 Result: GOOD, found mount option nosuid on file system /run 2022-02-27 22:53:32 Result: marked /run as fully hardened 2022-02-27 22:53:32 Hardening: assigned maximum number of hardening points for this item (5). Currently having 120 points (out of 140) 2022-02-27 22:53:32 Result: file system /tmp not found in /etc/fstab 2022-02-27 22:53:32 Result: file system /var not found in /etc/fstab 2022-02-27 22:53:32 Result: file system /var/log not found in /etc/fstab 2022-02-27 22:53:32 Result: file system /var/log/audit not found in /etc/fstab 2022-02-27 22:53:32 Result: file system /var/tmp not found in /etc/fstab 2022-02-27 22:53:32 Result: Total without nodev:11 noexec:13 nosuid:9 ro or noexec (W^X): 13, of total 30 2022-02-27 22:53:32 ==== 2022-02-27 22:53:32 Performing test ID FILE-6376 (Determine if /var/tmp is bound to /tmp) 2022-02-27 22:53:32 Result: no mount point /var/tmp or expected options found 2022-02-27 22:53:32 ==== 2022-02-27 22:53:32 Performing test ID FILE-6394 (Determine level of swappiness.) 2022-02-27 22:53:32 Test: checking level of vm.swappiness: 30 2022-02-27 22:53:32 Result: vm.swappiness=30 meaning that swapping is less frequent than default. This is only recommended for servers. 2022-02-27 22:53:32 ==== 2022-02-27 22:53:32 Skipped test FILE-6410 (Checking Locate database) 2022-02-27 22:53:32 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:32 ==== 2022-02-27 22:53:32 Performing test ID FILE-6430 (Disable mounting of some filesystems) 2022-02-27 22:53:32 Result: found cramfs support in the kernel (output = insmod /lib/modules/3.10.0-1160.53.1.el7.x86_64/kernel/fs/cramfs/cramfs.ko.xz ) 2022-02-27 22:53:32 Test: Checking if cramfs is active 2022-02-27 22:53:32 Result: module cramfs is currently not loaded in the kernel. 2022-02-27 22:53:32 Hardening: assigned partial number of hardening points (2 of 3). Currently having 122 points (out of 143) 2022-02-27 22:53:32 Hardening: assigned maximum number of hardening points for this item (3). Currently having 125 points (out of 146) 2022-02-27 22:53:32 Hardening: assigned maximum number of hardening points for this item (3). Currently having 128 points (out of 149) 2022-02-27 22:53:32 Hardening: assigned maximum number of hardening points for this item (3). Currently having 131 points (out of 152) 2022-02-27 22:53:32 Hardening: assigned maximum number of hardening points for this item (3). Currently having 134 points (out of 155) 2022-02-27 22:53:32 Result: found squashfs support in the kernel (output = insmod /lib/modules/3.10.0-1160.53.1.el7.x86_64/kernel/fs/squashfs/squashfs.ko.xz ) 2022-02-27 22:53:32 Test: Checking if squashfs is active 2022-02-27 22:53:32 Result: module squashfs is currently not loaded in the kernel. 2022-02-27 22:53:32 Hardening: assigned partial number of hardening points (2 of 3). Currently having 136 points (out of 158) 2022-02-27 22:53:32 Result: found udf support in the kernel (output = insmod /lib/modules/3.10.0-1160.53.1.el7.x86_64/kernel/fs/udf/udf.ko.xz ) 2022-02-27 22:53:32 Test: Checking if udf is active 2022-02-27 22:53:32 Result: module udf is currently not loaded in the kernel. 2022-02-27 22:53:32 Hardening: assigned partial number of hardening points (2 of 3). Currently having 138 points (out of 161) 2022-02-27 22:53:32 Suggestion: Consider disabling unused kernel modules [test:FILE-6430] [details:/etc/modprobe.d/blacklist.conf] [solution:Add 'install MODULENAME /bin/true' (without quotes)] 2022-02-27 22:53:32 Security check: file is normal 2022-02-27 22:53:32 Checking permissions of /root/lynis/include/tests_usb 2022-02-27 22:53:32 File permissions are OK 2022-02-27 22:53:32 ==== 2022-02-27 22:53:32 Action: Performing tests from category: USB Devices 2022-02-27 22:53:32 ==== 2022-02-27 22:53:33 Performing test ID USB-1000 (Check if USB storage is disabled) 2022-02-27 22:53:33 Test: Checking USB storage driver in directory /etc/modprobe.d and configuration file /etc/modprobe.conf 2022-02-27 22:53:33 Result: usb-storage driver is not explicitly disabled 2022-02-27 22:53:33 Hardening: assigned partial number of hardening points (2 of 3). Currently having 140 points (out of 164) 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID USB-2000 (Check USB authorizations) 2022-02-27 22:53:33 Test: checking presence of USB devices path (/sys/bus/usb/devices) 2022-02-27 22:53:33 Test: Checking USB devices authorization to connect to the system 2022-02-27 22:53:33 Result: None USB devices are authorized by default (or temporary) to connect to the system 2022-02-27 22:53:33 Hardening: assigned maximum number of hardening points for this item (3). Currently having 143 points (out of 167) 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID USB-3000 (Check for presence of USBGuard) 2022-02-27 22:53:33 Result: USBGuard is installed (/usr/bin/usbguard) 2022-02-27 22:53:33 Hardening: assigned maximum number of hardening points for this item (1). Currently having 144 points (out of 168) 2022-02-27 22:53:33 Checking USBGuard configuration file 2022-02-27 22:53:33 Result: USBGuard configuration found (/etc/usbguard/usbguard-daemon.conf) 2022-02-27 22:53:33 Hardening: assigned maximum number of hardening points for this item (1). Currently having 145 points (out of 169) 2022-02-27 22:53:33 Checking USBGuard restore controller device state (RestoreControllerDeviceState) 2022-02-27 22:53:33 Result: RestoreControllerDeviceState = false 2022-02-27 22:53:33 Hardening: assigned maximum number of hardening points for this item (1). Currently having 146 points (out of 170) 2022-02-27 22:53:33 Checking USBGuard rule for controllers connected before daemon starts (PresentControllerPolicy) 2022-02-27 22:53:33 Result: PresentControllerPolicy = reject 2022-02-27 22:53:33 Hardening: assigned maximum number of hardening points for this item (1). Currently having 147 points (out of 171) 2022-02-27 22:53:33 Checking USBGuard rule for devices connected before daemon starts (PresentDevicePolicy) 2022-02-27 22:53:33 Result: PresentDevicePolicy = apply-policy 2022-02-27 22:53:33 Hardening: assigned maximum number of hardening points for this item (1). Currently having 148 points (out of 172) 2022-02-27 22:53:33 Checking USBGuard rule for devices inserted after daemon starts (InsertedDevicePolicy) 2022-02-27 22:53:33 Result: InsertedDevicePolicy = apply-policy 2022-02-27 22:53:33 Hardening: assigned maximum number of hardening points for this item (1). Currently having 149 points (out of 173) 2022-02-27 22:53:33 Checking USBGuard rule for devices not in RuleFile (ImplicitPolicyTarget) 2022-02-27 22:53:33 Result: ImplicitPolicyTarget = block 2022-02-27 22:53:33 Hardening: assigned maximum number of hardening points for this item (1). Currently having 150 points (out of 174) 2022-02-27 22:53:33 Checking RuleFile 2022-02-27 22:53:33 Result: RuleFile found (/etc/usbguard/rules.conf) 2022-02-27 22:53:33 Hardening: assigned maximum number of hardening points for this item (1). Currently having 151 points (out of 175) 2022-02-27 22:53:33 Security check: file is normal 2022-02-27 22:53:33 Checking permissions of /root/lynis/include/tests_storage 2022-02-27 22:53:33 File permissions are OK 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Action: Performing tests from category: Storage 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID STRG-1846 (Check if firewire storage is disabled) 2022-02-27 22:53:33 Test: Checking firewire storage driver in directory /etc/modprobe.d and configuration file /etc/modprobe.conf 2022-02-27 22:53:33 Result: firewire ohci driver is not explicitly disabled 2022-02-27 22:53:33 Suggestion: Disable drivers like firewire storage when not used, to prevent unauthorized storage or data theft [test:STRG-1846] [details:-] [solution:-] 2022-02-27 22:53:33 Hardening: assigned partial number of hardening points (2 of 3). Currently having 153 points (out of 178) 2022-02-27 22:53:33 Security check: file is normal 2022-02-27 22:53:33 Checking permissions of /root/lynis/include/tests_storage_nfs 2022-02-27 22:53:33 File permissions are OK 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Action: Performing tests from category: NFS 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID STRG-1902 (Check rpcinfo registered programs) 2022-02-27 22:53:33 Test: Checking rpcinfo registered programs 2022-02-27 22:53:33 rpcinfo: ,program,vers,proto,port,service 2022-02-27 22:53:33 rpcinfo: ,100000,4,tcp,111,portmapper 2022-02-27 22:53:33 rpcinfo: ,100000,3,tcp,111,portmapper 2022-02-27 22:53:33 rpcinfo: ,100000,2,tcp,111,portmapper 2022-02-27 22:53:33 rpcinfo: ,100000,4,udp,111,portmapper 2022-02-27 22:53:33 rpcinfo: ,100000,3,udp,111,portmapper 2022-02-27 22:53:33 rpcinfo: ,100000,2,udp,111,portmapper 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID STRG-1904 (Check nfs rpc) 2022-02-27 22:53:33 Test: Checking NFS registered versions 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID STRG-1906 (Check nfs rpc) 2022-02-27 22:53:33 Test: Checking NFS registered protocols 2022-02-27 22:53:33 Output: no NFS protocols found 2022-02-27 22:53:33 Test: Checking NFS registered ports 2022-02-27 22:53:33 Output: no NFS port number found 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID STRG-1920 (Checking NFS daemon) 2022-02-27 22:53:33 Test: Checking running NFS daemon 2022-02-27 22:53:33 Output: NFS daemon is not running 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Skipped test STRG-1926 (Checking NFS exports) 2022-02-27 22:53:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Skipped test STRG-1928 (Checking empty /etc/exports) 2022-02-27 22:53:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Skipped test STRG-1930 (Check client access to nfs share) 2022-02-27 22:53:33 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:33 Security check: file is normal 2022-02-27 22:53:33 Checking permissions of /root/lynis/include/tests_nameservices 2022-02-27 22:53:33 File permissions are OK 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Action: Performing tests from category: Name services 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID NAME-4016 (Check /etc/resolv.conf default domain) 2022-02-27 22:53:33 Test: check /etc/resolv.conf for default domain 2022-02-27 22:53:33 Result: /etc/resolv.conf found 2022-02-27 22:53:33 Result: no default domain found 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID NAME-4018 (Check /etc/resolv.conf search domains) 2022-02-27 22:53:33 Test: check /etc/resolv.conf for search domains 2022-02-27 22:53:33 Result: /etc/resolv.conf found 2022-02-27 22:53:33 Found search domain: fyre.ibm.com. 2022-02-27 22:53:33 Result: Found 1 search domains 2022-02-27 22:53:33 Result: found 1 line(s) with a search statement (expecting less than 2 lines) 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID NAME-4020 (Check non default options) 2022-02-27 22:53:33 Test: check /etc/resolv.conf for non default options 2022-02-27 22:53:33 Result: /etc/resolv.conf found 2022-02-27 22:53:33 Result: no specific other options configured in /etc/resolv.conf 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Skipped test NAME-4024 (Solaris uname -n output) 2022-02-27 22:53:33 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Skipped test NAME-4026 (Check /etc/nodename) 2022-02-27 22:53:33 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID NAME-4028 (Check domain name) 2022-02-27 22:53:33 Test: Checking if dnsdomainname command is available 2022-02-27 22:53:33 Result: dnsdomainname command returned a value 2022-02-27 22:53:33 Found domain name: fyre.ibm.com 2022-02-27 22:53:33 Result: found domain name 2022-02-27 22:53:33 ==== 2022-02-27 22:53:33 Performing test ID NAME-4032 (Check nscd status) 2022-02-27 22:53:34 Test: checking nscd status 2022-02-27 22:53:34 Performing pgrep scan without uid 2022-02-27 22:53:34 IsRunning: process 'nscd' not found 2022-02-27 22:53:34 Result: nscd is not running 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Performing test ID NAME-4034 (Check Unbound status) 2022-02-27 22:53:34 Test: checking Unbound (unbound) status 2022-02-27 22:53:34 Performing pgrep scan without uid 2022-02-27 22:53:34 IsRunning: process 'unbound' not found 2022-02-27 22:53:34 Result: Unbound daemon is not running 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test NAME-4036 (Check Unbound configuration file) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Performing test ID NAME-4202 (Check BIND status) 2022-02-27 22:53:34 Test: Checking for running BIND instance 2022-02-27 22:53:34 Performing pgrep scan without uid 2022-02-27 22:53:34 IsRunning: process 'named' not found 2022-02-27 22:53:34 Result: BIND not running 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test NAME-4204 (Search BIND configuration file) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test NAME-4206 (Check BIND configuration consistency) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test NAME-4210 (Check DNS banner) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Performing test ID NAME-4230 (Check PowerDNS status) 2022-02-27 22:53:34 Test: Checking for running PowerDNS instance 2022-02-27 22:53:34 Performing pgrep scan without uid 2022-02-27 22:53:34 IsRunning: process 'pdns_server' not found 2022-02-27 22:53:34 Result: PowerDNS not running 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test NAME-4232 (Search PowerDNS configuration file) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test NAME-4236 (Check PowerDNS backends) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test NAME-4238 (Check PowerDNS authoritative status) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Performing test ID NAME-4304 (Check NIS ypbind status) 2022-02-27 22:53:34 Test: Checking status of ypbind daemon 2022-02-27 22:53:34 Performing pgrep scan without uid 2022-02-27 22:53:34 IsRunning: process 'ypbind' not found 2022-02-27 22:53:34 Result: ypbind is not active 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test NAME-4306 (Check NIS domain) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Performing test ID NAME-4402 (Check duplicate line in /etc/hosts) 2022-02-27 22:53:34 Test: check duplicate line in /etc/hosts 2022-02-27 22:53:34 Result: OK, no duplicate lines found 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Performing test ID NAME-4404 (Check /etc/hosts contains an entry for this server name) 2022-02-27 22:53:34 Test: Check /etc/hosts contains an entry for this server name 2022-02-27 22:53:34 Result: Found entry for euchring1 in /etc/hosts 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Performing test ID NAME-4406 (Check server hostname mapping) 2022-02-27 22:53:34 Test: Check server hostname not locally mapped in /etc/hosts 2022-02-27 22:53:34 Result: this server hostname is not mapped to a local address 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Performing test ID NAME-4408 (Check localhost entry) 2022-02-27 22:53:34 Test: Check server hostname not locally mapped in /etc/hosts 2022-02-27 22:53:34 Result: localhost mapped to ::1 2022-02-27 22:53:34 Security check: file is normal 2022-02-27 22:53:34 Checking permissions of /root/lynis/include/tests_dns 2022-02-27 22:53:34 File permissions are OK 2022-02-27 22:53:34 Security check: file is normal 2022-02-27 22:53:34 Checking permissions of /root/lynis/include/tests_ports_packages 2022-02-27 22:53:34 File permissions are OK 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Action: Performing tests from category: Ports and packages 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test PKGS-7301 (Query FreeBSD pkg) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test PKGS-7302 (Query FreeBSD/NetBSD pkg_info) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test PKGS-7303 (Query brew package manager) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 Result: brew can NOT be found on this system 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test PKGS-7304 (Querying Gentoo packages) 2022-02-27 22:53:34 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:34 Result: emerge can NOT be found on this system 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Skipped test PKGS-7306 (Querying Solaris packages) 2022-02-27 22:53:34 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:34 Result: pkginfo can NOT be found on this system 2022-02-27 22:53:34 ==== 2022-02-27 22:53:34 Performing test ID PKGS-7308 (Checking package list with RPM) 2022-02-27 22:53:34 Result: Found rpm binary (/usr/bin/rpm) 2022-02-27 22:53:34 Test: Querying 'rpm -qa' to get package list 2022-02-27 22:53:34 Output: 2022-02-27 22:53:34 -------- 2022-02-27 22:53:35 Found package: NetworkManager,1.18.8-2.el7_9.x86_64 2022-02-27 22:53:35 Found package: NetworkManager-libnm,1.18.8-2.el7_9.x86_64 2022-02-27 22:53:35 Found package: NetworkManager-team,1.18.8-2.el7_9.x86_64 2022-02-27 22:53:35 Found package: NetworkManager-tui,1.18.8-2.el7_9.x86_64 2022-02-27 22:53:35 Found package: NetworkManager-wifi,1.18.8-2.el7_9.x86_64 2022-02-27 22:53:35 Found package: acl,2.2.51-15.el7.x86_64 2022-02-27 22:53:35 Found package: aic94xx-firmware,30-6.el7.noarch 2022-02-27 22:53:35 Found package: alsa-firmware,1.0.28-2.el7.noarch 2022-02-27 22:53:35 Found package: alsa-lib,1.1.8-1.el7.x86_64 2022-02-27 22:53:35 Found package: alsa-tools-firmware,1.1.0-1.el7.x86_64 2022-02-27 22:53:35 Found package: audit,2.8.5-4.el7.x86_64 2022-02-27 22:53:35 Found package: audit-libs,2.8.5-4.el7.x86_64 2022-02-27 22:53:35 Found package: authconfig,6.2.8-30.el7.x86_64 2022-02-27 22:53:35 Found package: autofs,5.0.7-116.el7_9.x86_64 2022-02-27 22:53:35 Found package: autogen-libopts,5.18-5.el7.x86_64 2022-02-27 22:53:36 Found package: basesystem,10.0-7.el7.centos.noarch 2022-02-27 22:53:36 Found package: bash,4.2.46-35.el7_9.x86_64 2022-02-27 22:53:36 Found package: bc,1.06.95-13.el7.x86_64 2022-02-27 22:53:36 Found package: bind-export-libs,9.11.4-26.P2.el7_9.8.x86_64 2022-02-27 22:53:36 Found package: binutils,2.27-44.base.el7_9.1.x86_64 2022-02-27 22:53:36 Found package: biosdevname,0.7.3-2.el7.x86_64 2022-02-27 22:53:36 Found package: btrfs-progs,4.9.1-1.el7.x86_64 2022-02-27 22:53:36 Found package: bzip2-libs,1.0.6-13.el7.x86_64 2022-02-27 22:53:36 Found package: ca-certificates,2021.2.50-72.el7_9.noarch 2022-02-27 22:53:36 Found package: centos-logos,70.0.6-3.el7.centos.noarch 2022-02-27 22:53:36 Found package: centos-release,7-9.2009.1.el7.centos.x86_64 2022-02-27 22:53:36 Found package: chkconfig,1.7.6-1.el7.x86_64 2022-02-27 22:53:36 Found package: coreutils,8.22-24.el7_9.2.x86_64 2022-02-27 22:53:36 Found package: cpio,2.11-28.el7.x86_64 2022-02-27 22:53:36 Found package: cracklib,2.9.0-11.el7.x86_64 2022-02-27 22:53:36 Found package: cracklib-dicts,2.9.0-11.el7.x86_64 2022-02-27 22:53:36 Found package: cronie,1.4.11-24.el7_9.x86_64 2022-02-27 22:53:36 Found package: cronie-anacron,1.4.11-24.el7_9.x86_64 2022-02-27 22:53:36 Found package: crontabs,1.11-6.20121102git.el7.noarch 2022-02-27 22:53:36 Found package: cryptsetup-libs,2.0.3-6.el7.x86_64 2022-02-27 22:53:36 Found package: curl,7.29.0-59.el7_9.1.x86_64 2022-02-27 22:53:36 Found package: cyrus-sasl-lib,2.1.26-23.el7.x86_64 2022-02-27 22:53:36 Found package: dbus,1.10.24-15.el7.x86_64 2022-02-27 22:53:36 Found package: dbus-glib,0.100-7.el7.x86_64 2022-02-27 22:53:36 Found package: dbus-libs,1.10.24-15.el7.x86_64 2022-02-27 22:53:36 Found package: dbus-python,1.1.1-9.el7.x86_64 2022-02-27 22:53:36 Found package: device-mapper,1.02.170-6.el7_9.5.x86_64 2022-02-27 22:53:36 Found package: device-mapper-event,1.02.170-6.el7_9.5.x86_64 2022-02-27 22:53:36 Found package: device-mapper-event-libs,1.02.170-6.el7_9.5.x86_64 2022-02-27 22:53:36 Found package: device-mapper-libs,1.02.170-6.el7_9.5.x86_64 2022-02-27 22:53:36 Found package: device-mapper-persistent-data,0.8.5-3.el7_9.2.x86_64 2022-02-27 22:53:36 Found package: dhclient,4.2.5-83.el7.centos.1.x86_64 2022-02-27 22:53:36 Found package: dhcp-common,4.2.5-83.el7.centos.1.x86_64 2022-02-27 22:53:36 Found package: dhcp-libs,4.2.5-83.el7.centos.1.x86_64 2022-02-27 22:53:36 Found package: diffutils,3.3-5.el7.x86_64 2022-02-27 22:53:36 Found package: dmidecode,3.2-5.el7_9.1.x86_64 2022-02-27 22:53:36 Found package: dracut,033-572.el7.x86_64 2022-02-27 22:53:36 Found package: dracut-config-rescue,033-572.el7.x86_64 2022-02-27 22:53:36 Found package: dracut-network,033-572.el7.x86_64 2022-02-27 22:53:36 Found package: e2fsprogs,1.42.9-19.el7.x86_64 2022-02-27 22:53:36 Found package: e2fsprogs-libs,1.42.9-19.el7.x86_64 2022-02-27 22:53:36 Found package: ebtables,2.0.10-16.el7.x86_64 2022-02-27 22:53:36 Found package: elfutils-default-yama-scope,0.176-5.el7.noarch 2022-02-27 22:53:36 Found package: elfutils-libelf,0.176-5.el7.x86_64 2022-02-27 22:53:36 Found package: elfutils-libs,0.176-5.el7.x86_64 2022-02-27 22:53:36 Found package: ethtool,4.8-10.el7.x86_64 2022-02-27 22:53:36 Found package: expat,2.1.0-12.el7.x86_64 2022-02-27 22:53:36 Found package: falcon-sensor,6.33.0-13005.el7.x86_64 2022-02-27 22:53:36 Found package: file,5.11-37.el7.x86_64 2022-02-27 22:53:36 Found package: file-libs,5.11-37.el7.x86_64 2022-02-27 22:53:36 Found package: filesystem,3.2-25.el7.x86_64 2022-02-27 22:53:36 Found package: findutils,4.5.11-6.el7.x86_64 2022-02-27 22:53:36 Found package: fipscheck,1.4.1-6.el7.x86_64 2022-02-27 22:53:36 Found package: fipscheck-lib,1.4.1-6.el7.x86_64 2022-02-27 22:53:36 Found package: firewalld,0.6.3-13.el7_9.noarch 2022-02-27 22:53:36 Found package: firewalld-filesystem,0.6.3-13.el7_9.noarch 2022-02-27 22:53:36 Found package: freetype,2.8-14.el7_9.1.x86_64 2022-02-27 22:53:36 Found package: fxload,2002_04_11-16.el7.x86_64 2022-02-27 22:53:36 Found package: gawk,4.0.2-4.el7_3.1.x86_64 2022-02-27 22:53:36 Found package: gdbm,1.10-8.el7.x86_64 2022-02-27 22:53:36 Found package: gettext,0.19.8.1-3.el7.x86_64 2022-02-27 22:53:36 Found package: gettext-libs,0.19.8.1-3.el7.x86_64 2022-02-27 22:53:36 Found package: glib2,2.56.1-9.el7_9.x86_64 2022-02-27 22:53:36 Found package: glibc,2.17-325.el7_9.x86_64 2022-02-27 22:53:36 Found package: glibc-common,2.17-325.el7_9.x86_64 2022-02-27 22:53:36 Found package: gmp,6.0.0-15.el7.x86_64 2022-02-27 22:53:36 Found package: gnupg2,2.0.22-5.el7_5.x86_64 2022-02-27 22:53:36 Found package: gobject-introspection,1.56.1-1.el7.x86_64 2022-02-27 22:53:36 Found package: gpg-pubkey,f4a80eb5-53a7ff4b.(none) 2022-02-27 22:53:36 Found package: gpgme,1.3.2-5.el7.x86_64 2022-02-27 22:53:36 Found package: grep,2.20-3.el7.x86_64 2022-02-27 22:53:36 Found package: groff-base,1.22.2-8.el7.x86_64 2022-02-27 22:53:36 Found package: grub2,2.02-0.87.el7.centos.7.x86_64 2022-02-27 22:53:36 Found package: grub2-common,2.02-0.87.el7.centos.7.noarch 2022-02-27 22:53:36 Found package: grub2-pc,2.02-0.87.el7.centos.7.x86_64 2022-02-27 22:53:36 Found package: grub2-pc-modules,2.02-0.87.el7.centos.7.noarch 2022-02-27 22:53:36 Found package: grub2-tools,2.02-0.87.el7.centos.7.x86_64 2022-02-27 22:53:36 Found package: grub2-tools-extra,2.02-0.87.el7.centos.7.x86_64 2022-02-27 22:53:36 Found package: grub2-tools-minimal,2.02-0.87.el7.centos.7.x86_64 2022-02-27 22:53:36 Found package: grubby,8.28-26.el7.x86_64 2022-02-27 22:53:36 Found package: gssproxy,0.7.0-30.el7_9.x86_64 2022-02-27 22:53:36 Found package: gzip,1.5-10.el7.x86_64 2022-02-27 22:53:37 Found package: hardlink,1.0-19.el7.x86_64 2022-02-27 22:53:37 Found package: hesiod,3.2.1-3.el7.x86_64 2022-02-27 22:53:37 Found package: hostname,3.13-3.el7_7.1.x86_64 2022-02-27 22:53:37 Found package: hwdata,0.252-9.7.el7.x86_64 2022-02-27 22:53:37 Found package: info,5.1-5.el7.x86_64 2022-02-27 22:53:37 Found package: initscripts,9.49.53-1.el7_9.1.x86_64 2022-02-27 22:53:37 Found package: iproute,4.11.0-30.el7.x86_64 2022-02-27 22:53:37 Found package: iprutils,2.4.17.1-3.el7_7.x86_64 2022-02-27 22:53:37 Found package: ipset,7.1-1.el7.x86_64 2022-02-27 22:53:37 Found package: ipset-libs,7.1-1.el7.x86_64 2022-02-27 22:53:37 Found package: iptables,1.4.21-35.el7.x86_64 2022-02-27 22:53:37 Found package: iputils,20160308-10.el7.x86_64 2022-02-27 22:53:37 Found package: irqbalance,1.0.7-12.el7.x86_64 2022-02-27 22:53:37 Found package: ivtv-firmware,20080701-26.el7.noarch 2022-02-27 22:53:37 Found package: iwl100-firmware,39.31.5.1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl1000-firmware,39.31.5.1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl105-firmware,18.168.6.1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl135-firmware,18.168.6.1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl2000-firmware,18.168.6.1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl2030-firmware,18.168.6.1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl3160-firmware,25.30.13.0-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl3945-firmware,15.32.2.9-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl4965-firmware,228.61.2.24-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl5000-firmware,8.83.5.1_1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl5150-firmware,8.24.2.2-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl6000-firmware,9.221.4.1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl6000g2a-firmware,18.168.6.1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl6000g2b-firmware,18.168.6.1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl6050-firmware,41.28.5.1-80.el7_9.noarch 2022-02-27 22:53:37 Found package: iwl7260-firmware,25.30.13.0-80.el7_9.noarch 2022-02-27 22:53:37 Found package: jansson,2.10-1.el7.x86_64 2022-02-27 22:53:37 Found package: json-c,0.11-4.el7_0.x86_64 2022-02-27 22:53:37 Found package: kbd,1.15.5-16.el7_9.x86_64 2022-02-27 22:53:37 Found package: kbd-legacy,1.15.5-16.el7_9.noarch 2022-02-27 22:53:37 Found package: kbd-misc,1.15.5-16.el7_9.noarch 2022-02-27 22:53:37 Found package: kernel,3.10.0-1160.15.2.el7.x86_64 2022-02-27 22:53:37 Found package: kernel,3.10.0-1160.25.1.el7.x86_64 2022-02-27 22:53:37 Found package: kernel,3.10.0-1160.36.2.el7.x86_64 2022-02-27 22:53:37 Found package: kernel,3.10.0-1160.45.1.el7.x86_64 2022-02-27 22:53:37 Found package: kernel,3.10.0-1160.53.1.el7.x86_64 2022-02-27 22:53:37 Found package: kernel-tools,3.10.0-1160.53.1.el7.x86_64 2022-02-27 22:53:37 Found package: kernel-tools-libs,3.10.0-1160.53.1.el7.x86_64 2022-02-27 22:53:37 Found package: kexec-tools,2.0.15-51.el7_9.3.x86_64 2022-02-27 22:53:37 Found package: keyutils,1.5.8-3.el7.x86_64 2022-02-27 22:53:37 Found package: keyutils-libs,1.5.8-3.el7.x86_64 2022-02-27 22:53:37 Found package: kmod,20-28.el7.x86_64 2022-02-27 22:53:37 Found package: kmod-libs,20-28.el7.x86_64 2022-02-27 22:53:37 Found package: kpartx,0.4.9-135.el7_9.x86_64 2022-02-27 22:53:37 Found package: krb5-libs,1.15.1-51.el7_9.x86_64 2022-02-27 22:53:37 Found package: ksh,20120801-143.el7_9.x86_64 2022-02-27 22:53:37 Found package: less,458-9.el7.x86_64 2022-02-27 22:53:37 Found package: libacl,2.2.51-15.el7.x86_64 2022-02-27 22:53:37 Found package: libaio,0.3.109-13.el7.x86_64 2022-02-27 22:53:37 Found package: libassuan,2.1.0-3.el7.x86_64 2022-02-27 22:53:37 Found package: libattr,2.4.46-13.el7.x86_64 2022-02-27 22:53:37 Found package: libbasicobjects,0.1.1-32.el7.x86_64 2022-02-27 22:53:37 Found package: libblkid,2.23.2-65.el7_9.1.x86_64 2022-02-27 22:53:37 Found package: libcap,2.22-11.el7.x86_64 2022-02-27 22:53:37 Found package: libcap-ng,0.7.5-4.el7.x86_64 2022-02-27 22:53:37 Found package: libcollection,0.7.0-32.el7.x86_64 2022-02-27 22:53:37 Found package: libcom_err,1.42.9-19.el7.x86_64 2022-02-27 22:53:37 Found package: libcroco,0.6.12-6.el7_9.x86_64 2022-02-27 22:53:37 Found package: libcurl,7.29.0-59.el7_9.1.x86_64 2022-02-27 22:53:37 Found package: libdaemon,0.14-7.el7.x86_64 2022-02-27 22:53:37 Found package: libdb,5.3.21-25.el7.x86_64 2022-02-27 22:53:37 Found package: libdb-utils,5.3.21-25.el7.x86_64 2022-02-27 22:53:37 Found package: libdrm,2.4.97-2.el7.x86_64 2022-02-27 22:53:37 Found package: libedit,3.0-12.20121213cvs.el7.x86_64 2022-02-27 22:53:37 Found package: libestr,0.1.9-2.el7.x86_64 2022-02-27 22:53:37 Found package: libevent,2.0.21-4.el7.x86_64 2022-02-27 22:53:37 Found package: libfastjson,0.99.4-3.el7.x86_64 2022-02-27 22:53:37 Found package: libffi,3.0.13-19.el7.x86_64 2022-02-27 22:53:37 Found package: libgcc,4.8.5-44.el7.x86_64 2022-02-27 22:53:37 Found package: libgcrypt,1.5.3-14.el7.x86_64 2022-02-27 22:53:37 Found package: libgomp,4.8.5-44.el7.x86_64 2022-02-27 22:53:37 Found package: libgpg-error,1.12-3.el7.x86_64 2022-02-27 22:53:37 Found package: libidn,1.28-4.el7.x86_64 2022-02-27 22:53:37 Found package: libini_config,1.3.1-32.el7.x86_64 2022-02-27 22:53:37 Found package: libmnl,1.0.3-7.el7.x86_64 2022-02-27 22:53:37 Found package: libmount,2.23.2-65.el7_9.1.x86_64 2022-02-27 22:53:37 Found package: libndp,1.2-9.el7.x86_64 2022-02-27 22:53:37 Found package: libnetfilter_conntrack,1.0.6-1.el7_3.x86_64 2022-02-27 22:53:37 Found package: libnfnetlink,1.0.1-4.el7.x86_64 2022-02-27 22:53:37 Found package: libnfsidmap,0.25-19.el7.x86_64 2022-02-27 22:53:37 Found package: libnl,1.1.4-3.el7.x86_64 2022-02-27 22:53:38 Found package: libnl3,3.2.28-4.el7.x86_64 2022-02-27 22:53:38 Found package: libnl3-cli,3.2.28-4.el7.x86_64 2022-02-27 22:53:38 Found package: libpath_utils,0.2.1-32.el7.x86_64 2022-02-27 22:53:38 Found package: libpciaccess,0.14-1.el7.x86_64 2022-02-27 22:53:38 Found package: libpipeline,1.2.3-3.el7.x86_64 2022-02-27 22:53:38 Found package: libpng,1.5.13-8.el7.x86_64 2022-02-27 22:53:38 Found package: libpwquality,1.2.3-5.el7.x86_64 2022-02-27 22:53:38 Found package: libqb,1.0.1-9.el7.x86_64 2022-02-27 22:53:38 Found package: libref_array,0.1.5-32.el7.x86_64 2022-02-27 22:53:38 Found package: libselinux,2.5-15.el7.x86_64 2022-02-27 22:53:38 Found package: libselinux-python,2.5-15.el7.x86_64 2022-02-27 22:53:38 Found package: libselinux-utils,2.5-15.el7.x86_64 2022-02-27 22:53:38 Found package: libsemanage,2.5-14.el7.x86_64 2022-02-27 22:53:38 Found package: libsepol,2.5-10.el7.x86_64 2022-02-27 22:53:38 Found package: libsmartcols,2.23.2-65.el7_9.1.x86_64 2022-02-27 22:53:38 Found package: libss,1.42.9-19.el7.x86_64 2022-02-27 22:53:38 Found package: libssh2,1.8.0-4.el7.x86_64 2022-02-27 22:53:38 Found package: libstdc++,4.8.5-44.el7.x86_64 2022-02-27 22:53:38 Found package: libsysfs,2.1.0-16.el7.x86_64 2022-02-27 22:53:38 Found package: libtasn1,4.10-1.el7.x86_64 2022-02-27 22:53:38 Found package: libteam,1.29-3.el7.x86_64 2022-02-27 22:53:38 Found package: libtirpc,0.2.4-0.16.el7.x86_64 2022-02-27 22:53:38 Found package: libunistring,0.9.3-9.el7.x86_64 2022-02-27 22:53:38 Found package: libuser,0.60-9.el7.x86_64 2022-02-27 22:53:38 Found package: libutempter,1.1.6-4.el7.x86_64 2022-02-27 22:53:38 Found package: libuuid,2.23.2-65.el7_9.1.x86_64 2022-02-27 22:53:38 Found package: libverto,0.2.5-4.el7.x86_64 2022-02-27 22:53:38 Found package: libverto-libevent,0.2.5-4.el7.x86_64 2022-02-27 22:53:38 Found package: libxml2,2.9.1-6.el7_9.6.x86_64 2022-02-27 22:53:38 Found package: libxml2-python,2.9.1-6.el7_9.6.x86_64 2022-02-27 22:53:38 Found package: linux-firmware,20200421-80.git78c0348.el7_9.noarch 2022-02-27 22:53:38 Found package: lm_sensors-libs,3.4.0-8.20160601gitf9185e5.el7.x86_64 2022-02-27 22:53:38 Found package: logrotate,3.8.6-19.el7.x86_64 2022-02-27 22:53:38 Found package: lsscsi,0.27-6.el7.x86_64 2022-02-27 22:53:38 Found package: lua,5.1.4-15.el7.x86_64 2022-02-27 22:53:38 Found package: lvm2,2.02.187-6.el7_9.5.x86_64 2022-02-27 22:53:38 Found package: lvm2-libs,2.02.187-6.el7_9.5.x86_64 2022-02-27 22:53:38 Found package: lz4,1.8.3-1.el7.x86_64 2022-02-27 22:53:38 Found package: lzo,2.06-8.el7.x86_64 2022-02-27 22:53:38 Found package: make,3.82-24.el7.x86_64 2022-02-27 22:53:38 Found package: man-db,2.6.3-11.el7.x86_64 2022-02-27 22:53:38 Found package: mariadb-libs,5.5.68-1.el7.x86_64 2022-02-27 22:53:38 Found package: microcode_ctl,2.1-73.11.el7_9.x86_64 2022-02-27 22:53:38 Found package: mozjs17,17.0.0-20.el7.x86_64 2022-02-27 22:53:38 Found package: ncurses,5.9-14.20130511.el7_4.x86_64 2022-02-27 22:53:38 Found package: ncurses-base,5.9-14.20130511.el7_4.noarch 2022-02-27 22:53:38 Found package: ncurses-libs,5.9-14.20130511.el7_4.x86_64 2022-02-27 22:53:38 Found package: net-tools,2.0-0.25.20131004git.el7.x86_64 2022-02-27 22:53:38 Found package: newt,0.52.15-4.el7.x86_64 2022-02-27 22:53:38 Found package: newt-python,0.52.15-4.el7.x86_64 2022-02-27 22:53:38 Found package: nfs-utils,1.3.0-0.68.el7.2.x86_64 2022-02-27 22:53:38 Found package: nspr,4.32.0-1.el7_9.x86_64 2022-02-27 22:53:38 Found package: nss,3.67.0-4.el7_9.x86_64 2022-02-27 22:53:38 Found package: nss-pem,1.0.3-7.el7.x86_64 2022-02-27 22:53:38 Found package: nss-softokn,3.67.0-3.el7_9.x86_64 2022-02-27 22:53:38 Found package: nss-softokn-freebl,3.67.0-3.el7_9.x86_64 2022-02-27 22:53:38 Found package: nss-sysinit,3.67.0-4.el7_9.x86_64 2022-02-27 22:53:38 Found package: nss-tools,3.67.0-4.el7_9.x86_64 2022-02-27 22:53:38 Found package: nss-util,3.67.0-1.el7_9.x86_64 2022-02-27 22:53:38 Found package: ntp,4.2.6p5-29.el7.centos.2.x86_64 2022-02-27 22:53:38 Found package: ntpdate,4.2.6p5-29.el7.centos.2.x86_64 2022-02-27 22:53:38 Found package: numactl-libs,2.0.12-5.el7.x86_64 2022-02-27 22:53:38 Found package: openldap,2.4.44-24.el7_9.x86_64 2022-02-27 22:53:38 Found package: openssh,7.4p1-22.el7_9.x86_64 2022-02-27 22:53:38 Found package: openssh-clients,7.4p1-22.el7_9.x86_64 2022-02-27 22:53:38 Found package: openssh-server,7.4p1-22.el7_9.x86_64 2022-02-27 22:53:38 Found package: openssl,1.0.2k-24.el7_9.x86_64 2022-02-27 22:53:38 Found package: openssl-libs,1.0.2k-24.el7_9.x86_64 2022-02-27 22:53:38 Found package: os-prober,1.58-9.el7.x86_64 2022-02-27 22:53:38 Found package: p11-kit,0.23.5-3.el7.x86_64 2022-02-27 22:53:38 Found package: p11-kit-trust,0.23.5-3.el7.x86_64 2022-02-27 22:53:38 Found package: pam,1.1.8-23.el7.x86_64 2022-02-27 22:53:38 Found package: parted,3.1-32.el7.x86_64 2022-02-27 22:53:38 Found package: passwd,0.79-6.el7.x86_64 2022-02-27 22:53:38 Found package: pciutils-libs,3.5.1-3.el7.x86_64 2022-02-27 22:53:38 Found package: pcre,8.32-17.el7.x86_64 2022-02-27 22:53:38 Found package: pinentry,0.8.1-17.el7.x86_64 2022-02-27 22:53:38 Found package: pkgconfig,0.27.1-4.el7.x86_64 2022-02-27 22:53:38 Found package: plymouth,0.8.9-0.34.20140113.el7.centos.x86_64 2022-02-27 22:53:38 Found package: plymouth-core-libs,0.8.9-0.34.20140113.el7.centos.x86_64 2022-02-27 22:53:38 Found package: plymouth-scripts,0.8.9-0.34.20140113.el7.centos.x86_64 2022-02-27 22:53:38 Found package: policycoreutils,2.5-34.el7.x86_64 2022-02-27 22:53:38 Found package: polkit,0.112-26.el7_9.1.x86_64 2022-02-27 22:53:39 Found package: polkit-pkla-compat,0.1-4.el7.x86_64 2022-02-27 22:53:39 Found package: popt,1.13-16.el7.x86_64 2022-02-27 22:53:39 Found package: postfix,2.10.1-9.el7.x86_64 2022-02-27 22:53:39 Found package: procps-ng,3.3.10-28.el7.x86_64 2022-02-27 22:53:39 Found package: protobuf,2.5.0-8.el7.x86_64 2022-02-27 22:53:39 Found package: pth,2.0.7-23.el7.x86_64 2022-02-27 22:53:39 Found package: pygpgme,0.3-9.el7.x86_64 2022-02-27 22:53:39 Found package: pyliblzma,0.5.3-11.el7.x86_64 2022-02-27 22:53:39 Found package: python,2.7.5-90.el7.x86_64 2022-02-27 22:53:39 Found package: python-chardet,2.2.1-3.el7.noarch 2022-02-27 22:53:39 Found package: python-configobj,4.7.2-7.el7.noarch 2022-02-27 22:53:39 Found package: python-decorator,3.4.0-3.el7.noarch 2022-02-27 22:53:39 Found package: python-firewall,0.6.3-13.el7_9.noarch 2022-02-27 22:53:39 Found package: python-gobject-base,3.22.0-1.el7_4.1.x86_64 2022-02-27 22:53:39 Found package: python-iniparse,0.4-9.el7.noarch 2022-02-27 22:53:39 Found package: python-kitchen,1.1.1-5.el7.noarch 2022-02-27 22:53:39 Found package: python-libs,2.7.5-90.el7.x86_64 2022-02-27 22:53:39 Found package: python-linux-procfs,0.4.11-4.el7.noarch 2022-02-27 22:53:39 Found package: python-perf,3.10.0-1160.53.1.el7.x86_64 2022-02-27 22:53:39 Found package: python-pycurl,7.19.0-19.el7.x86_64 2022-02-27 22:53:39 Found package: python-pyudev,0.15-9.el7.noarch 2022-02-27 22:53:39 Found package: python-schedutils,0.4-6.el7.x86_64 2022-02-27 22:53:39 Found package: python-slip,0.4.0-4.el7.noarch 2022-02-27 22:53:39 Found package: python-slip-dbus,0.4.0-4.el7.noarch 2022-02-27 22:53:39 Found package: python-urlgrabber,3.10-10.el7.noarch 2022-02-27 22:53:39 Found package: pyxattr,0.5.1-5.el7.x86_64 2022-02-27 22:53:39 Found package: qrencode-libs,3.4.1-3.el7.x86_64 2022-02-27 22:53:39 Found package: quota,4.01-19.el7.x86_64 2022-02-27 22:53:39 Found package: quota-nls,4.01-19.el7.noarch 2022-02-27 22:53:39 Found package: readline,6.2-11.el7.x86_64 2022-02-27 22:53:39 Found package: rootfiles,8.1-11.el7.noarch 2022-02-27 22:53:39 Found package: rpcbind,0.2.0-49.el7.x86_64 2022-02-27 22:53:39 Found package: rpm,4.11.3-48.el7_9.x86_64 2022-02-27 22:53:39 Found package: rpm-build-libs,4.11.3-48.el7_9.x86_64 2022-02-27 22:53:39 Found package: rpm-libs,4.11.3-48.el7_9.x86_64 2022-02-27 22:53:39 Found package: rpm-python,4.11.3-48.el7_9.x86_64 2022-02-27 22:53:39 Found package: rsyslog,8.24.0-57.el7_9.1.x86_64 2022-02-27 22:53:39 Found package: sed,4.2.2-7.el7.x86_64 2022-02-27 22:53:39 Found package: selinux-policy,3.13.1-268.el7_9.2.noarch 2022-02-27 22:53:39 Found package: selinux-policy-targeted,3.13.1-268.el7_9.2.noarch 2022-02-27 22:53:39 Found package: setup,2.8.71-11.el7.noarch 2022-02-27 22:53:39 Found package: shadow-utils,4.6-5.el7.x86_64 2022-02-27 22:53:39 Found package: shared-mime-info,1.8-5.el7.x86_64 2022-02-27 22:53:39 Found package: slang,2.2.4-11.el7.x86_64 2022-02-27 22:53:39 Found package: snappy,1.1.0-3.el7.x86_64 2022-02-27 22:53:39 Found package: sqlite,3.7.17-8.el7_7.1.x86_64 2022-02-27 22:53:39 Found package: sudo,1.8.23-10.el7_9.2.x86_64 2022-02-27 22:53:39 Found package: sysstat,10.1.5-19.el7.x86_64 2022-02-27 22:53:39 Found package: systemd,219-78.el7_9.5.x86_64 2022-02-27 22:53:39 Found package: systemd-libs,219-78.el7_9.5.x86_64 2022-02-27 22:53:39 Found package: systemd-sysv,219-78.el7_9.5.x86_64 2022-02-27 22:53:39 Found package: sysvinit-tools,2.88-14.dsf.el7.x86_64 2022-02-27 22:53:39 Found package: tar,1.26-35.el7.x86_64 2022-02-27 22:53:39 Found package: tcp_wrappers,7.6-77.el7.x86_64 2022-02-27 22:53:39 Found package: tcp_wrappers-libs,7.6-77.el7.x86_64 2022-02-27 22:53:39 Found package: teamd,1.29-3.el7.x86_64 2022-02-27 22:53:39 Found package: tuned,2.11.0-11.el7_9.noarch 2022-02-27 22:53:39 Found package: tzdata,2021e-1.el7.noarch 2022-02-27 22:53:39 Found package: usbguard,0.7.4-3.el7.x86_64 2022-02-27 22:53:39 Found package: ustr,1.0.4-16.el7.x86_64 2022-02-27 22:53:39 Found package: util-linux,2.23.2-65.el7_9.1.x86_64 2022-02-27 22:53:39 Found package: vim-minimal,7.4.629-8.el7_9.x86_64 2022-02-27 22:53:39 Found package: virt-what,1.18-4.el7_9.1.x86_64 2022-02-27 22:53:39 Found package: wget,1.14-18.el7_6.1.x86_64 2022-02-27 22:53:39 Found package: which,2.20-7.el7.x86_64 2022-02-27 22:53:39 Found package: wpa_supplicant,2.6-12.el7_9.2.x86_64 2022-02-27 22:53:39 Found package: xfsprogs,4.5.0-22.el7.x86_64 2022-02-27 22:53:39 Found package: xz,5.2.2-1.el7.x86_64 2022-02-27 22:53:39 Found package: xz-libs,5.2.2-1.el7.x86_64 2022-02-27 22:53:39 Found package: yum,3.4.3-168.el7.centos.noarch 2022-02-27 22:53:39 Found package: yum-metadata-parser,1.1.4-10.el7.x86_64 2022-02-27 22:53:39 Found package: yum-plugin-fastestmirror,1.1.31-54.el7_8.noarch 2022-02-27 22:53:39 Found package: yum-utils,1.1.31-54.el7_8.noarch 2022-02-27 22:53:39 Found package: zlib,1.2.7-19.el7_9.x86_64 2022-02-27 22:53:39 ==== 2022-02-27 22:53:39 Skipped test PKGS-7310 (Checking package list with pacman) 2022-02-27 22:53:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:39 ==== 2022-02-27 22:53:39 Skipped test PKGS-7312 (Checking available updates for pacman based system) 2022-02-27 22:53:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:39 Result: pacman binary NOT found on this system, test skipped 2022-02-27 22:53:39 ==== 2022-02-27 22:53:39 Skipped test PKGS-7314 (Checking pacman configuration options) 2022-02-27 22:53:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:39 ==== 2022-02-27 22:53:39 Skipped test PKGS-7320 (Checking for arch-audit tooling) 2022-02-27 22:53:39 Reason to skip: Test only applies to Arch Linux 2022-02-27 22:53:39 ==== 2022-02-27 22:53:40 Skipped test PKGS-7322 (Discover vulnerable packages with arch-audit) 2022-02-27 22:53:40 Reason to skip: arch-audit not found 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7328 (Querying Zypper for installed packages) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7330 (Querying Zypper for vulnerable packages) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7332 (Query macOS ports) 2022-02-27 22:53:40 Reason to skip: Incorrect guest OS (macOS only) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7334 (Query port for port upgrades) 2022-02-27 22:53:40 Reason to skip: Incorrect guest OS (macOS only) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7345 (Querying dpkg) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 Result: dpkg can NOT be found on this system, test skipped 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7346 (Search unpurged packages on system) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 Result: dpkg can NOT be found on this system, test skipped 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7348 (Check for old distfiles) 2022-02-27 22:53:40 Reason to skip: Incorrect guest OS (FreeBSD only) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7350 (Checking for installed packages with DNF utility) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7352 (Checking for security updates with DNF utility) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7354 (Checking package database integrity) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7366 (Checking for debsecan utility) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7370 (Checking for debsums utility) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7378 (Query portmaster for port upgrades) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7380 (Check for vulnerable NetBSD packages) 2022-02-27 22:53:40 Reason to skip: Incorrect guest OS (NetBSD only) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7381 (Check for vulnerable FreeBSD packages with pkg) 2022-02-27 22:53:40 Reason to skip: pkg tool not available 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Skipped test PKGS-7382 (Check for vulnerable FreeBSD packages with portaudit) 2022-02-27 22:53:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:40 ==== 2022-02-27 22:53:40 Performing test ID PKGS-7383 (Check for YUM package update management) 2022-02-27 22:53:40 Test: YUM package update management 2022-02-27 22:53:41 Result: YUM repository available (14139) 2022-02-27 22:53:41 ==== 2022-02-27 22:53:41 Performing test ID PKGS-7384 (Check for YUM utils package) 2022-02-27 22:53:41 Result: found YUM utils package (package-cleanup) 2022-02-27 22:53:41 Test: Checking for duplicate packages 2022-02-27 22:53:42 Result: No duplicate packages found 2022-02-27 22:53:42 Test: Checking for database problems 2022-02-27 22:53:43 Result: No package database problems found 2022-02-27 22:53:43 ==== 2022-02-27 22:53:43 Performing test ID PKGS-7386 (Check for YUM security package) 2022-02-27 22:53:43 Test: Determining if yum-security package installed 2022-02-27 22:53:43 Test: checking if file /usr/share/yum-cli/cli.py exists 2022-02-27 22:53:43 Result: file /usr/share/yum-cli/cli.py exists 2022-02-27 22:53:43 Test: search string \-\-security in file /usr/share/yum-cli/cli.py 2022-02-27 22:53:43 Result: found search string '\-\-security' 2022-02-27 22:53:43 Full string returned: group.add_option("--security", action="store_true", 2022-02-27 22:53:43 Result: found built-in security in yum 2022-02-27 22:53:43 Test: Checking for vulnerable packages 2022-02-27 22:53:44 Result: no vulnerable packages found 2022-02-27 22:53:44 ==== 2022-02-27 22:53:44 Performing test ID PKGS-7387 (Check for GPG signing in YUM security package) 2022-02-27 22:53:44 Test: checking enabled repositories 2022-02-27 22:53:44 Result: software repository 'base' is signed 2022-02-27 22:53:44 Hardening: assigned maximum number of hardening points for this item (4). Currently having 157 points (out of 182) 2022-02-27 22:53:44 Result: software repository 'extras' is signed 2022-02-27 22:53:44 Hardening: assigned maximum number of hardening points for this item (4). Currently having 161 points (out of 186) 2022-02-27 22:53:44 Result: software repository 'updates' is signed 2022-02-27 22:53:44 Hardening: assigned maximum number of hardening points for this item (4). Currently having 165 points (out of 190) 2022-02-27 22:53:44 Test: checking if file /etc/yum.conf exists 2022-02-27 22:53:44 Result: file /etc/yum.conf exists 2022-02-27 22:53:44 Test: search string ^gpgenabled\s*=\s*1$ in file /etc/yum.conf 2022-02-27 22:53:44 Result: search search string '^gpgenabled\s*=\s*1$' NOT found 2022-02-27 22:53:44 Test: search string ^gpgcheck\s*=\s*1$ in file /etc/yum.conf 2022-02-27 22:53:44 Result: found search string '^gpgcheck\s*=\s*1$' 2022-02-27 22:53:44 Full string returned: gpgcheck=1 2022-02-27 22:53:44 Result: GPG check is enabled 2022-02-27 22:53:44 Hardening: assigned maximum number of hardening points for this item (3). Currently having 168 points (out of 193) 2022-02-27 22:53:44 ==== 2022-02-27 22:53:44 Skipped test PKGS-7388 (Check security repository in apt sources.list file) 2022-02-27 22:53:44 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:44 ==== 2022-02-27 22:53:44 Skipped test PKGS-7390 (Check Ubuntu database consistency) 2022-02-27 22:53:44 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:44 ==== 2022-02-27 22:53:45 Skipped test PKGS-7392 (Check for Debian/Ubuntu security updates) 2022-02-27 22:53:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:45 ==== 2022-02-27 22:53:45 Skipped test PKGS-7393 (Check for Gentoo vulnerable packages) 2022-02-27 22:53:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:45 ==== 2022-02-27 22:53:45 Skipped test PKGS-7394 (Check for Ubuntu updates) 2022-02-27 22:53:45 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:45 ==== 2022-02-27 22:53:45 Performing test ID PKGS-7398 (Check for package audit tool) 2022-02-27 22:53:45 Test: checking for package audit tool 2022-02-27 22:53:45 Result: found package audit tool: yum-security 2022-02-27 22:53:45 ==== 2022-02-27 22:53:45 Performing test ID PKGS-7410 (Count installed kernel packages) 2022-02-27 22:53:45 Test: Checking how many kernel packages are installed 2022-02-27 22:53:45 Result: found 5 kernel packages on the system, which is fine 2022-02-27 22:53:45 ==== 2022-02-27 22:53:45 Performing test ID PKGS-7420 (Detect toolkit to automatically download and apply upgrades) 2022-02-27 22:53:45 Hardening: assigned partial number of hardening points (1 of 5). Currently having 169 points (out of 198) 2022-02-27 22:53:45 Result: no toolkit for automatic updates discovered 2022-02-27 22:53:45 Suggestion: Consider using a tool to automatically apply upgrades [test:PKGS-7420] [details:-] [solution:-] 2022-02-27 22:53:45 Security check: file is normal 2022-02-27 22:53:45 Checking permissions of /root/lynis/include/tests_networking 2022-02-27 22:53:45 File permissions are OK 2022-02-27 22:53:45 ==== 2022-02-27 22:53:45 Action: Performing tests from category: Networking 2022-02-27 22:53:45 ==== 2022-02-27 22:53:45 Performing test ID NETW-2400 (Hostname length and value check) 2022-02-27 22:53:45 Result: FQDN is defined and not longer than 253 characters (22 characters) 2022-02-27 22:53:45 Result: hostnamed is defined and not longer than 63 characters 2022-02-27 22:53:45 Result: good, no unexpected characters discovered in hostname 2022-02-27 22:53:45 ==== 2022-02-27 22:53:45 Performing test ID NETW-2600 (Checking IPv6 configuration) 2022-02-27 22:53:47 Result: IPV6 mode is manual 2022-02-27 22:53:47 Result: IPv6 only configuration: NO 2022-02-27 22:53:47 ==== 2022-02-27 22:53:47 Performing test ID NETW-2704 (Basic nameserver configuration tests) 2022-02-27 22:53:47 Test: Checking /etc/resolv.conf file 2022-02-27 22:53:47 Result: Found /etc/resolv.conf file 2022-02-27 22:53:47 Test: Querying nameservers 2022-02-27 22:53:47 Found nameserver: 9.30.99.253 2022-02-27 22:53:47 Result: Nameserver test for 9.30.99.253 skipped, 'dig' not installed 2022-02-27 22:53:47 Found nameserver: 9.30.6.100 2022-02-27 22:53:47 Result: Nameserver test for 9.30.6.100 skipped, 'dig' not installed 2022-02-27 22:53:47 ==== 2022-02-27 22:53:48 Performing test ID NETW-2705 (Check availability two nameservers) 2022-02-27 22:53:48 Result: dig not installed, test can't be fully performed 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Skipped test NETW-2706 (Check systemd-resolved and upstream DNSSEC status) 2022-02-27 22:53:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:48 Result: Test most likely skipped due to not having resolvectl 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID NETW-3001 (Find default gateway (route)) 2022-02-27 22:53:48 Test: Searching default gateway(s) 2022-02-27 22:53:48 Result: Found default gateway 9.30.220.1 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID NETW-3004 (Search for available network interfaces) 2022-02-27 22:53:48 Found network interface: lo 2022-02-27 22:53:48 Found network interface: eth0 2022-02-27 22:53:48 Found network interface: eth1 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID NETW-3006 (Get network MAC addresses) 2022-02-27 22:53:48 Found MAC address: 00:00:09:1e:df:e9 2022-02-27 22:53:48 Found MAC address: 00:00:0a:0b:15:a0 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID NETW-3008 (Get network IP addresses) 2022-02-27 22:53:48 Found IPv4 address: 10.11.21.160 2022-02-27 22:53:48 Found IPv4 address: 9.30.223.233 2022-02-27 22:53:48 Found IPv4 address: 127.0.0.1 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID NETW-3012 (Check listening ports) 2022-02-27 22:53:48 Test: Retrieving ss information to find listening ports 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Skipped test NETW-3014 (Checking promiscuous interfaces (BSD)) 2022-02-27 22:53:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID NETW-3015 (Checking promiscuous interfaces (Linux)) 2022-02-27 22:53:48 Test: Using ip binary to retrieve network interfaces 2022-02-27 22:53:48 Test: Checking all interfaces to discover any with promiscuous mode enabled 2022-02-27 22:53:48 Result: No promiscuous interfaces found 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID NETW-3028 (Checking connections in WAIT state) 2022-02-27 22:53:48 Test: Using netstat for check for connections in WAIT state 2022-02-27 22:53:48 Result: currently 38 connections are in a waiting state (max configured: 5000). 2022-02-27 22:53:48 Result: 38 connections are in WAIT state 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID NETW-3030 (Checking DHCP client status) 2022-02-27 22:53:48 Performing pgrep scan without uid 2022-02-27 22:53:48 IsRunning: process 'dhclient' found (1165 1314 ) 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID NETW-3032 (Checking for ARP monitoring software) 2022-02-27 22:53:48 Performing pgrep scan without uid 2022-02-27 22:53:48 IsRunning: process 'addrwatch' not found 2022-02-27 22:53:48 Performing pgrep scan without uid 2022-02-27 22:53:48 IsRunning: process 'arpwatch' not found 2022-02-27 22:53:48 Performing pgrep scan without uid 2022-02-27 22:53:48 IsRunning: process 'arpon' not found 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID NETW-3200 (Determine available network protocols) 2022-02-27 22:53:48 Test: checking the status of some network protocols that typically are not used 2022-02-27 22:53:48 Test: now checking module 'dccp' 2022-02-27 22:53:48 Suggestion: Determine if protocol 'dccp' is really needed on this system [test:NETW-3200] [details:-] [solution:-] 2022-02-27 22:53:48 Test: now checking module 'sctp' 2022-02-27 22:53:48 Suggestion: Determine if protocol 'sctp' is really needed on this system [test:NETW-3200] [details:-] [solution:-] 2022-02-27 22:53:48 Test: now checking module 'rds' 2022-02-27 22:53:48 Suggestion: Determine if protocol 'rds' is really needed on this system [test:NETW-3200] [details:-] [solution:-] 2022-02-27 22:53:48 Test: now checking module 'tipc' 2022-02-27 22:53:48 Suggestion: Determine if protocol 'tipc' is really needed on this system [test:NETW-3200] [details:-] [solution:-] 2022-02-27 22:53:48 Security check: file is normal 2022-02-27 22:53:48 Checking permissions of /root/lynis/include/tests_printers_spoolers 2022-02-27 22:53:48 File permissions are OK 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Action: Performing tests from category: Printers and Spools 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Skipped test PRNT-2302 (Check for printcap consistency) 2022-02-27 22:53:48 Reason to skip: Incorrect guest OS (FreeBSD only) 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID PRNT-2304 (Check cupsd status) 2022-02-27 22:53:48 Test: Checking cupsd status 2022-02-27 22:53:48 Performing pgrep scan without uid 2022-02-27 22:53:48 IsRunning: process 'cupsd' not found 2022-02-27 22:53:48 Result: cups daemon not running, cups daemon tests skipped 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Skipped test PRNT-2306 (Check CUPSd configuration file) 2022-02-27 22:53:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Skipped test PRNT-2307 (Check CUPSd configuration file permissions) 2022-02-27 22:53:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Skipped test PRNT-2308 (Check CUPSd network configuration) 2022-02-27 22:53:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Performing test ID PRNT-2314 (Check lpd status) 2022-02-27 22:53:48 Test: Checking lpd status 2022-02-27 22:53:48 Performing pgrep scan without uid 2022-02-27 22:53:48 IsRunning: process 'lpd' not found 2022-02-27 22:53:48 Result: lp daemon not running 2022-02-27 22:53:48 Hardening: assigned maximum number of hardening points for this item (4). Currently having 173 points (out of 202) 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Skipped test PRNT-2316 (Checking /etc/qconfig file) 2022-02-27 22:53:48 Reason to skip: Incorrect guest OS (AIX only) 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Skipped test PRNT-2418 (Checking qdaemon printer spooler status) 2022-02-27 22:53:48 Reason to skip: Incorrect guest OS (AIX only) 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Skipped test PRNT-2420 (Checking old print jobs) 2022-02-27 22:53:48 Reason to skip: Incorrect guest OS (AIX only) 2022-02-27 22:53:48 Security check: file is normal 2022-02-27 22:53:48 Checking permissions of /root/lynis/include/tests_mail_messaging 2022-02-27 22:53:48 File permissions are OK 2022-02-27 22:53:48 ==== 2022-02-27 22:53:48 Action: Performing tests from category: Software: e-mail and messaging 2022-02-27 22:53:48 ==== 2022-02-27 22:53:49 Performing test ID MAIL-8802 (Check Exim status) 2022-02-27 22:53:49 Test: check Exim status 2022-02-27 22:53:49 Performing pgrep scan without uid 2022-02-27 22:53:49 IsRunning: process 'exim4' not found 2022-02-27 22:53:49 Performing pgrep scan without uid 2022-02-27 22:53:49 IsRunning: process 'exim' not found 2022-02-27 22:53:49 Result: no running Exim processes found 2022-02-27 22:53:49 ==== 2022-02-27 22:53:49 Skipped test MAIL-8804 (Exim configuration options) 2022-02-27 22:53:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:49 ==== 2022-02-27 22:53:49 Performing test ID MAIL-8814 (Check postfix process status) 2022-02-27 22:53:49 Test: check Postfix status 2022-02-27 22:53:49 Result: no running Postfix processes found 2022-02-27 22:53:49 ==== 2022-02-27 22:53:49 Skipped test MAIL-8816 (Check Postfix configuration) 2022-02-27 22:53:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:49 ==== 2022-02-27 22:53:49 Skipped test MAIL-8817 (Check Postfix configuration errors) 2022-02-27 22:53:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:49 ==== 2022-02-27 22:53:49 Skipped test MAIL-8818 (Check Postfix configuration: banner) 2022-02-27 22:53:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:49 ==== 2022-02-27 22:53:49 Performing test ID MAIL-8820 (Postfix configuration scan) 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Performing test ID MAIL-8838 (Check dovecot process) 2022-02-27 22:53:50 Test: check dovecot status 2022-02-27 22:53:50 Performing pgrep scan without uid 2022-02-27 22:53:50 IsRunning: process 'dovecot' not found 2022-02-27 22:53:50 Result: dovecot not found 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Performing test ID MAIL-8860 (Check Qmail status) 2022-02-27 22:53:50 Test: check Qmail status 2022-02-27 22:53:50 Performing pgrep scan without uid 2022-02-27 22:53:50 IsRunning: process 'qmail-smtpd' not found 2022-02-27 22:53:50 Result: no running Qmail processes found 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Performing test ID MAIL-8880 (Check Sendmail status) 2022-02-27 22:53:50 Test: check sendmail status 2022-02-27 22:53:50 Performing pgrep scan without uid 2022-02-27 22:53:50 IsRunning: process 'sendmail' not found 2022-02-27 22:53:50 Result: no running Sendmail processes found 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Skipped test MAIL-8920 (Check OpenSMTPD status) 2022-02-27 22:53:50 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:50 Security check: file is normal 2022-02-27 22:53:50 Checking permissions of /root/lynis/include/tests_firewalls 2022-02-27 22:53:50 File permissions are OK 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Action: Performing tests from category: Software: firewalls 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Performing test ID FIRE-4502 (Check iptables kernel module) 2022-02-27 22:53:50 Result: Found iptables in loaded kernel modules 2022-02-27 22:53:50 Found module: ip_tables 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Performing test ID FIRE-4508 (Check used policies of iptables chains) 2022-02-27 22:53:50 Test: gathering information from table filter 2022-02-27 22:53:50 Result: iptables \nfilter -- INPUT policy is ACCEPT. 2022-02-27 22:53:50 Result: ACCEPT 2022-02-27 22:53:50 Result: Found ACCEPT for INPUT (table: \nfilter) 2022-02-27 22:53:50 Hardening: assigned partial number of hardening points (1 of 3). Currently having 174 points (out of 205) 2022-02-27 22:53:50 Result: iptables filter -- ACCEPT policy is RELATED. 2022-02-27 22:53:50 Result: RELATED 2022-02-27 22:53:50 Result: iptables filter -- ESTABLISHED policy is ACCEPT. 2022-02-27 22:53:50 Result: ACCEPT 2022-02-27 22:53:50 Result: iptables filter -- DROP policy is INVALID. 2022-02-27 22:53:50 Result: INVALID 2022-02-27 22:53:50 Result: iptables filter -- REJECT policy is FORWARD. 2022-02-27 22:53:50 Result: FORWARD 2022-02-27 22:53:50 Result: iptables filter -- ACCEPT policy is ACCEPT. 2022-02-27 22:53:50 Result: ACCEPT 2022-02-27 22:53:50 Result: iptables filter -- RELATED policy is ESTABLISHED. 2022-02-27 22:53:50 Result: ESTABLISHED 2022-02-27 22:53:50 Result: iptables filter -- ACCEPT policy is DROP. 2022-02-27 22:53:50 Result: DROP 2022-02-27 22:53:50 Result: iptables filter -- INVALID policy is REJECT. 2022-02-27 22:53:50 Result: REJECT 2022-02-27 22:53:50 Result: iptables filter -- OUTPUT policy is ACCEPT. 2022-02-27 22:53:50 Result: ACCEPT 2022-02-27 22:53:50 Result: iptables filter -- ACCEPT policy is ACCEPT. 2022-02-27 22:53:50 Result: ACCEPT 2022-02-27 22:53:50 Result: iptables filter -- ACCEPT policy is ACCEPT. 2022-02-27 22:53:50 Result: ACCEPT 2022-02-27 22:53:50 Result: iptables filter -- NEW policy is UNTRACKED. 2022-02-27 22:53:50 Result: UNTRACKED 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Performing test ID FIRE-4512 (Check iptables for empty ruleset) 2022-02-27 22:53:50 Result: one or more rules are available (33 rules) 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Performing test ID FIRE-4513 (Check iptables for unused rules) 2022-02-27 22:53:50 Result: Found one or more possible unused rules 2022-02-27 22:53:50 Description: Unused rules can be a sign that the firewall rules aren't optimized or up-to-date 2022-02-27 22:53:50 Note: Sometimes rules aren't triggered but still in use. Keep this in mind before cleaning up rules. 2022-02-27 22:53:50 Output: iptables rule numbers: 1 2 3 4 5 6 7 8 9 1 1 1 2 3 4 1 2 3 2022-02-27 22:53:50 Suggestion: Check iptables rules to see which rules are currently not used [test:FIRE-4513] [details:-] [solution:-] 2022-02-27 22:53:50 Tip: iptables --list --numeric --line-numbers --verbose 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Skipped test FIRE-4518 (Check pf firewall components) 2022-02-27 22:53:50 Reason to skip: No /dev/pf device 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Skipped test FIRE-4520 (Check pf configuration consistency) 2022-02-27 22:53:50 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Performing test ID FIRE-4524 (Check for CSF presence) 2022-02-27 22:53:50 Test: check /etc/csf/csf.conf 2022-02-27 22:53:50 Result: /etc/csf/csf.conf does NOT exist 2022-02-27 22:53:50 ==== 2022-02-27 22:53:50 Skipped test FIRE-4526 (Check ipf status) 2022-02-27 22:53:50 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:50 ==== 2022-02-27 22:53:51 Skipped test FIRE-4530 (Check IPFW status) 2022-02-27 22:53:51 Reason to skip: Incorrect guest OS (FreeBSD only) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test FIRE-4532 (Check macOS application firewall) 2022-02-27 22:53:51 Reason to skip: Incorrect guest OS (macOS only) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test FIRE-4534 (Check for presence of outbound firewalls on macOS) 2022-02-27 22:53:51 Reason to skip: Incorrect guest OS (macOS only) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test FIRE-4536 (Check nftables status) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test FIRE-4538 (Check nftables basic configuration) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test FIRE-4540 (Check for empty nftables configuration) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Performing test ID FIRE-4586 (Check firewall logging) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Performing test ID FIRE-4590 (Check firewall status) 2022-02-27 22:53:51 Result: host based firewall or packet filter is active 2022-02-27 22:53:51 Hardening: assigned maximum number of hardening points for this item (5). Currently having 178 points (out of 207) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Performing test ID FIRE-4594 (Check for APF presence) 2022-02-27 22:53:51 Test: check /etc/apf/conf.apf 2022-02-27 22:53:51 Result: /etc/apf/conf.apf does NOT exist 2022-02-27 22:53:51 Security check: file is normal 2022-02-27 22:53:51 Checking permissions of /root/lynis/include/tests_webservers 2022-02-27 22:53:51 File permissions are OK 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Action: Performing tests from category: Software: webserver 2022-02-27 22:53:51 Action: created temporary file /tmp/lynis.3C87WOXUvo 2022-02-27 22:53:51 Action: created temporary file /tmp/lynis.kV6u4DYzv0 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Performing test ID HTTP-6622 (Checking Apache presence) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6624 (Testing main Apache configuration file) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6626 (Testing other Apache configuration file) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6632 (Determining all available Apache modules) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6640 (Determining existence of specific Apache modules) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6641 (Determining existence of specific Apache modules) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6643 (Determining existence of specific Apache modules) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Performing test ID HTTP-6702 (Check nginx process) 2022-02-27 22:53:51 Test: searching running nginx process 2022-02-27 22:53:51 Performing pgrep scan without uid 2022-02-27 22:53:51 IsRunning: process 'nginx' not found 2022-02-27 22:53:51 Result: no running nginx process found 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6704 (Check nginx configuration file) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6706 (Check for additional nginx configuration files) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6708 (Check discovered nginx configuration settings) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6710 (Check nginx SSL configuration settings) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6712 (Check nginx access logging) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6714 (Check for missing error logs in nginx) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6716 (Check for debug mode on error log in nginx) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Skipped test HTTP-6720 (Check Nginx log files) 2022-02-27 22:53:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:51 Security check: file is normal 2022-02-27 22:53:51 Checking permissions of /root/lynis/include/tests_ssh 2022-02-27 22:53:51 File permissions are OK 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Action: Performing tests from category: SSH Support 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Performing test ID SSH-7402 (Check for running SSH daemon) 2022-02-27 22:53:51 Test: Searching for a SSH daemon 2022-02-27 22:53:51 Performing pgrep scan without uid 2022-02-27 22:53:51 IsRunning: process 'sshd' found (1722 24390 30447 30895 ) 2022-02-27 22:53:51 Action: created temporary file /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:51 ==== 2022-02-27 22:53:51 Performing test ID SSH-7404 (Check SSH daemon file location) 2022-02-27 22:53:51 Test: searching for sshd_config file 2022-02-27 22:53:51 Result: /etc/ssh/sshd_config exists 2022-02-27 22:53:51 Test: check if we can access /etc/ssh/sshd_config (escaped: /etc/ssh/sshd_config) 2022-02-27 22:53:51 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:51 Result: file /etc/ssh/sshd_config is readable (or directory accessible). 2022-02-27 22:53:51 Result: using last found configuration file: /etc/ssh/sshd_config 2022-02-27 22:53:52 ==== 2022-02-27 22:53:52 Performing test ID SSH-7406 (Determine OpenSSH version) 2022-02-27 22:53:52 Result: discovered OpenSSH version is 7.4 2022-02-27 22:53:52 Result: OpenSSH major version: 7 2022-02-27 22:53:52 Result: OpenSSH minor version: 4 2022-02-27 22:53:52 ==== 2022-02-27 22:53:52 Performing test ID SSH-7408 (Check SSH specific defined options) 2022-02-27 22:53:52 Test: Checking specific defined options in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: added additional options for OpenSSH < 7.5 2022-02-27 22:53:52 Test: Checking AllowTcpForwarding in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option AllowTcpForwarding found 2022-02-27 22:53:52 Result: Option AllowTcpForwarding value is NO 2022-02-27 22:53:52 Result: OpenSSH option AllowTcpForwarding is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 181 points (out of 210) 2022-02-27 22:53:52 Test: Checking ClientAliveCountMax in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option ClientAliveCountMax found 2022-02-27 22:53:52 Result: Option ClientAliveCountMax value is 2 2022-02-27 22:53:52 Result: OpenSSH option ClientAliveCountMax is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 184 points (out of 213) 2022-02-27 22:53:52 Test: Checking ClientAliveInterval in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option ClientAliveInterval found 2022-02-27 22:53:52 Result: Option ClientAliveInterval value is 0 2022-02-27 22:53:52 Result: OpenSSH option ClientAliveInterval is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 187 points (out of 216) 2022-02-27 22:53:52 Test: Checking Compression in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option Compression found 2022-02-27 22:53:52 Result: Option Compression value is NO 2022-02-27 22:53:52 Result: OpenSSH option Compression is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 190 points (out of 219) 2022-02-27 22:53:52 Test: Checking FingerprintHash in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option FingerprintHash found 2022-02-27 22:53:52 Result: Option FingerprintHash value is SHA256 2022-02-27 22:53:52 Result: OpenSSH option FingerprintHash is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 193 points (out of 222) 2022-02-27 22:53:52 Test: Checking GatewayPorts in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option GatewayPorts found 2022-02-27 22:53:52 Result: Option GatewayPorts value is NO 2022-02-27 22:53:52 Result: OpenSSH option GatewayPorts is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 196 points (out of 225) 2022-02-27 22:53:52 Test: Checking IgnoreRhosts in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option IgnoreRhosts found 2022-02-27 22:53:52 Result: Option IgnoreRhosts value is YES 2022-02-27 22:53:52 Result: OpenSSH option IgnoreRhosts is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 199 points (out of 228) 2022-02-27 22:53:52 Test: Checking LoginGraceTime in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option LoginGraceTime found 2022-02-27 22:53:52 Result: Option LoginGraceTime value is 60 2022-02-27 22:53:52 Result: OpenSSH option LoginGraceTime is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 202 points (out of 231) 2022-02-27 22:53:52 Test: Checking LogLevel in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option LogLevel found 2022-02-27 22:53:52 Result: Option LogLevel value is VERBOSE 2022-02-27 22:53:52 Result: OpenSSH option LogLevel is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 205 points (out of 234) 2022-02-27 22:53:52 Test: Checking MaxAuthTries in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option MaxAuthTries found 2022-02-27 22:53:52 Result: Option MaxAuthTries value is 3 2022-02-27 22:53:52 Result: OpenSSH option MaxAuthTries is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 208 points (out of 237) 2022-02-27 22:53:52 Test: Checking MaxSessions in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option MaxSessions found 2022-02-27 22:53:52 Result: Option MaxSessions value is 2 2022-02-27 22:53:52 Result: OpenSSH option MaxSessions is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 211 points (out of 240) 2022-02-27 22:53:52 Test: Checking PermitRootLogin in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option PermitRootLogin found 2022-02-27 22:53:52 Result: Option PermitRootLogin value is FORCED-COMMANDS-ONLY 2022-02-27 22:53:52 Expected value has multiple values, testing if active value is in list ((FORCED-COMMANDS-ONLY|NO|PROHIBIT-PASSWORD|WITHOUT-PASSWORD)) 2022-02-27 22:53:52 Result: found 2022-02-27 22:53:52 Result: OpenSSH option PermitRootLogin is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 214 points (out of 243) 2022-02-27 22:53:52 Test: Checking PermitUserEnvironment in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option PermitUserEnvironment found 2022-02-27 22:53:52 Result: Option PermitUserEnvironment value is NO 2022-02-27 22:53:52 Result: OpenSSH option PermitUserEnvironment is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 217 points (out of 246) 2022-02-27 22:53:52 Test: Checking PermitTunnel in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option PermitTunnel found 2022-02-27 22:53:52 Result: Option PermitTunnel value is NO 2022-02-27 22:53:52 Result: OpenSSH option PermitTunnel is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 220 points (out of 249) 2022-02-27 22:53:52 Test: Checking Port in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option Port found 2022-02-27 22:53:52 Result: Option Port value is 10022 2022-02-27 22:53:52 Result: OpenSSH option Port is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 223 points (out of 252) 2022-02-27 22:53:52 Test: Checking PrintLastLog in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option PrintLastLog found 2022-02-27 22:53:52 Result: Option PrintLastLog value is YES 2022-02-27 22:53:52 Result: OpenSSH option PrintLastLog is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 226 points (out of 255) 2022-02-27 22:53:52 Test: Checking StrictModes in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option StrictModes found 2022-02-27 22:53:52 Result: Option StrictModes value is YES 2022-02-27 22:53:52 Result: OpenSSH option StrictModes is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 229 points (out of 258) 2022-02-27 22:53:52 Test: Checking TCPKeepAlive in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:52 Result: Option TCPKeepAlive found 2022-02-27 22:53:52 Result: Option TCPKeepAlive value is NO 2022-02-27 22:53:52 Result: OpenSSH option TCPKeepAlive is configured very well 2022-02-27 22:53:52 Hardening: assigned maximum number of hardening points for this item (3). Currently having 232 points (out of 261) 2022-02-27 22:53:53 Test: Checking UseDNS in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:53 Result: Option UseDNS found 2022-02-27 22:53:53 Result: Option UseDNS value is NO 2022-02-27 22:53:53 Result: OpenSSH option UseDNS is configured very well 2022-02-27 22:53:53 Hardening: assigned maximum number of hardening points for this item (3). Currently having 235 points (out of 264) 2022-02-27 22:53:53 Test: Checking X11Forwarding in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:53 Result: Option X11Forwarding found 2022-02-27 22:53:53 Result: Option X11Forwarding value is NO 2022-02-27 22:53:53 Result: OpenSSH option X11Forwarding is configured very well 2022-02-27 22:53:53 Hardening: assigned maximum number of hardening points for this item (3). Currently having 238 points (out of 267) 2022-02-27 22:53:53 Test: Checking AllowAgentForwarding in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:53 Result: Option AllowAgentForwarding found 2022-02-27 22:53:53 Result: Option AllowAgentForwarding value is NO 2022-02-27 22:53:53 Result: OpenSSH option AllowAgentForwarding is configured very well 2022-02-27 22:53:53 Hardening: assigned maximum number of hardening points for this item (3). Currently having 241 points (out of 270) 2022-02-27 22:53:53 Test: Checking UsePrivilegeSeparation in /tmp/lynis.cMKVOQTkrp 2022-02-27 22:53:53 Result: Option UsePrivilegeSeparation found 2022-02-27 22:53:53 Result: Option UsePrivilegeSeparation value is SANDBOX 2022-02-27 22:53:53 Result: OpenSSH option UsePrivilegeSeparation is configured very well 2022-02-27 22:53:53 Hardening: assigned maximum number of hardening points for this item (3). Currently having 244 points (out of 273) 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Performing test ID SSH-7440 (Check OpenSSH option: AllowUsers and AllowGroups) 2022-02-27 22:53:53 Result: AllowUsers set, with value root 2022-02-27 22:53:53 Result: AllowUsers set root 2022-02-27 22:53:53 Result: SSH is limited to a specific set of users, which is good 2022-02-27 22:53:53 Hardening: assigned maximum number of hardening points for this item (2). Currently having 246 points (out of 275) 2022-02-27 22:53:53 Security check: file is normal 2022-02-27 22:53:53 Checking permissions of /root/lynis/include/tests_snmp 2022-02-27 22:53:53 File permissions are OK 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Action: Performing tests from category: SNMP Support 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Performing test ID SNMP-3302 (Check for running SNMP daemon) 2022-02-27 22:53:53 Test: Searching for a SNMP daemon 2022-02-27 22:53:53 Performing pgrep scan without uid 2022-02-27 22:53:53 IsRunning: process 'snmpd' not found 2022-02-27 22:53:53 Result: No running SNMP daemon found 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Skipped test SNMP-3304 (Check SNMP daemon file location) 2022-02-27 22:53:53 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Skipped test SNMP-3306 (Check SNMP communities) 2022-02-27 22:53:53 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:53 Security check: file is normal 2022-02-27 22:53:53 Checking permissions of /root/lynis/include/tests_databases 2022-02-27 22:53:53 File permissions are OK 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Action: Performing tests from category: Databases 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Performing test ID DBS-1804 (Checking active MySQL process) 2022-02-27 22:53:53 Result: MySQL process not active 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Skipped test DBS-1816 (Checking MySQL root password) 2022-02-27 22:53:53 Reason to skip: MySQL not installed, or not running 2022-02-27 22:53:53 Test skipped, MySQL daemon not running or no MySQL client available 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Performing test ID DBS-1818 (Check status of MongoDB server) 2022-02-27 22:53:53 Performing pgrep scan without uid 2022-02-27 22:53:53 IsRunning: process 'mongod' not found 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Performing test ID DBS-1820 (Check for authorization in MongoDB) 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Performing test ID DBS-1826 (Checking active PostgreSQL processes) 2022-02-27 22:53:53 Performing pgrep scan without uid 2022-02-27 22:53:53 IsRunning: process 'postgres:' not found 2022-02-27 22:53:53 Result: PostgreSQL process not active 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Skipped test DBS-1828 (Test PostgreSQL configuration) 2022-02-27 22:53:53 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Performing test ID DBS-1840 (Checking active Oracle processes) 2022-02-27 22:53:53 Result: Oracle process(es) not active 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Performing test ID DBS-1860 (Checking active DB2 instances) 2022-02-27 22:53:53 Performing pgrep scan without uid 2022-02-27 22:53:53 IsRunning: process 'db2sysc' not found 2022-02-27 22:53:53 Result: No DB2 instances are running 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Performing test ID DBS-1880 (Check for active Redis server) 2022-02-27 22:53:53 Performing pgrep scan without uid 2022-02-27 22:53:53 IsRunning: process 'redis-server' not found 2022-02-27 22:53:53 Result: No Redis processes are running 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Skipped test DBS-1882 (Redis configuration file) 2022-02-27 22:53:53 Reason to skip: Redis not running 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Skipped test DBS-1884 (Redis: requirepass option configured) 2022-02-27 22:53:53 Reason to skip: Redis not running, or no configuration file found 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Skipped test DBS-1886 (Redis: rename-command CONFIG used) 2022-02-27 22:53:53 Reason to skip: Redis not running, or no configuration found 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Skipped test DBS-1888 (Redis: bind on localhost) 2022-02-27 22:53:53 Reason to skip: Redis not running, or no configuration found 2022-02-27 22:53:53 Security check: file is normal 2022-02-27 22:53:53 Checking permissions of /root/lynis/include/tests_ldap 2022-02-27 22:53:53 File permissions are OK 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Action: Performing tests from category: LDAP Services 2022-02-27 22:53:53 ==== 2022-02-27 22:53:53 Performing test ID LDAP-2219 (Check running OpenLDAP instance) 2022-02-27 22:53:53 Performing pgrep scan without uid 2022-02-27 22:53:53 IsRunning: process 'slapd' not found 2022-02-27 22:53:53 Result: No running slapd process found. 2022-02-27 22:53:54 ==== 2022-02-27 22:53:54 Skipped test LDAP-2224 (Check presence slapd.conf) 2022-02-27 22:53:54 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:54 Security check: file is normal 2022-02-27 22:53:54 Checking permissions of /root/lynis/include/tests_php 2022-02-27 22:53:54 File permissions are OK 2022-02-27 22:53:54 ==== 2022-02-27 22:53:54 Action: Performing tests from category: PHP 2022-02-27 22:53:54 ==== 2022-02-27 22:53:54 Performing test ID PHP-2211 (Check php.ini presence) 2022-02-27 22:53:54 Test: Checking for presence php.ini 2022-02-27 22:53:54 Test: checking presence /etc/php.ini 2022-02-27 22:53:54 Result: file /etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php.ini.default 2022-02-27 22:53:54 Result: file /etc/php.ini.default not found 2022-02-27 22:53:54 Test: checking presence /etc/php/php.ini 2022-02-27 22:53:54 Result: file /etc/php/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php5.5/php.ini 2022-02-27 22:53:54 Result: file /etc/php5.5/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php5.6/php.ini 2022-02-27 22:53:54 Result: file /etc/php5.6/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php7.0/php.ini 2022-02-27 22:53:54 Result: file /etc/php7.0/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php7.1/php.ini 2022-02-27 22:53:54 Result: file /etc/php7.1/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php7.2/php.ini 2022-02-27 22:53:54 Result: file /etc/php7.2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php7.3/php.ini 2022-02-27 22:53:54 Result: file /etc/php7.3/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php7.4/php.ini 2022-02-27 22:53:54 Result: file /etc/php7.4/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cgi-php5/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cgi-php5/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cli-php5/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cli-php5/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/apache2-php5/php.ini 2022-02-27 22:53:54 Result: file /etc/php/apache2-php5/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/apache2-php5.5/php.ini 2022-02-27 22:53:54 Result: file /etc/php/apache2-php5.5/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/apache2-php5.6/php.ini 2022-02-27 22:53:54 Result: file /etc/php/apache2-php5.6/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/apache2-php7.0/php.ini 2022-02-27 22:53:54 Result: file /etc/php/apache2-php7.0/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/apache2-php7.1/php.ini 2022-02-27 22:53:54 Result: file /etc/php/apache2-php7.1/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/apache2-php7.2/php.ini 2022-02-27 22:53:54 Result: file /etc/php/apache2-php7.2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/apache2-php7.3/php.ini 2022-02-27 22:53:54 Result: file /etc/php/apache2-php7.3/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/apache2-php7.4/php.ini 2022-02-27 22:53:54 Result: file /etc/php/apache2-php7.4/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cgi-php5.5/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cgi-php5.5/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cgi-php5.6/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cgi-php5.6/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cgi-php7.0/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cgi-php7.0/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cgi-php7.1/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cgi-php7.1/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cgi-php7.2/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cgi-php7.2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cgi-php7.3/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cgi-php7.3/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cgi-php7.4/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cgi-php7.4/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cli-php5.5/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cli-php5.5/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cli-php5.6/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cli-php5.6/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cli-php7.0/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cli-php7.0/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cli-php7.1/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cli-php7.1/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cli-php7.2/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cli-php7.2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cli-php7.3/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cli-php7.3/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/cli-php7.4/php.ini 2022-02-27 22:53:54 Result: file /etc/php/cli-php7.4/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/embed-php5.5/php.ini 2022-02-27 22:53:54 Result: file /etc/php/embed-php5.5/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/embed-php5.6/php.ini 2022-02-27 22:53:54 Result: file /etc/php/embed-php5.6/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/embed-php7.0/php.ini 2022-02-27 22:53:54 Result: file /etc/php/embed-php7.0/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/embed-php7.1/php.ini 2022-02-27 22:53:54 Result: file /etc/php/embed-php7.1/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/embed-php7.2/php.ini 2022-02-27 22:53:54 Result: file /etc/php/embed-php7.2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/embed-php7.3/php.ini 2022-02-27 22:53:54 Result: file /etc/php/embed-php7.3/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/embed-php7.4/php.ini 2022-02-27 22:53:54 Result: file /etc/php/embed-php7.4/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/fpm-php7.4/php.ini 2022-02-27 22:53:54 Result: file /etc/php/fpm-php7.4/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/fpm-php7.3/php.ini 2022-02-27 22:53:54 Result: file /etc/php/fpm-php7.3/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/fpm-php7.2/php.ini 2022-02-27 22:53:54 Result: file /etc/php/fpm-php7.2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/fpm-php7.1/php.ini 2022-02-27 22:53:54 Result: file /etc/php/fpm-php7.1/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/fpm-php7.0/php.ini 2022-02-27 22:53:54 Result: file /etc/php/fpm-php7.0/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/fpm-php5.5/php.ini 2022-02-27 22:53:54 Result: file /etc/php/fpm-php5.5/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/fpm-php5.6/php.ini 2022-02-27 22:53:54 Result: file /etc/php/fpm-php5.6/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php5/cgi/php.ini 2022-02-27 22:53:54 Result: file /etc/php5/cgi/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php5/cli/php.ini 2022-02-27 22:53:54 Result: file /etc/php5/cli/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php5/cli-php5.4/php.ini 2022-02-27 22:53:54 Result: file /etc/php5/cli-php5.4/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php5/cli-php5.5/php.ini 2022-02-27 22:53:54 Result: file /etc/php5/cli-php5.5/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php5/cli-php5.6/php.ini 2022-02-27 22:53:54 Result: file /etc/php5/cli-php5.6/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php5/apache2/php.ini 2022-02-27 22:53:54 Result: file /etc/php5/apache2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php5/fpm/php.ini 2022-02-27 22:53:54 Result: file /etc/php5/fpm/php.ini not found 2022-02-27 22:53:54 Test: checking presence /private/etc/php.ini 2022-02-27 22:53:54 Result: file /private/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.0/apache2/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.0/apache2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.1/apache2/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.1/apache2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.2/apache2/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.2/apache2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.3/apache2/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.3/apache2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.4/apache2/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.4/apache2/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.0/cli/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.0/cli/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.0/fpm/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.0/fpm/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.1/cli/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.1/cli/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.1/fpm/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.1/fpm/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.2/cli/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.2/cli/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.2/fpm/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.2/fpm/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.3/cli/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.3/cli/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.3/fpm/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.3/fpm/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.4/cli/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.4/cli/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php/7.4/fpm/php.ini 2022-02-27 22:53:54 Result: file /etc/php/7.4/fpm/php.ini not found 2022-02-27 22:53:54 Test: checking presence /var/www/conf/php.ini 2022-02-27 22:53:54 Result: file /var/www/conf/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/etc/php.ini 2022-02-27 22:53:54 Result: file /usr/local/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/lib/php.ini 2022-02-27 22:53:54 Result: file /usr/local/lib/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/etc/php5/cgi/php.ini 2022-02-27 22:53:54 Result: file /usr/local/etc/php5/cgi/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/php54/lib/php.ini 2022-02-27 22:53:54 Result: file /usr/local/php54/lib/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/php56/lib/php.ini 2022-02-27 22:53:54 Result: file /usr/local/php56/lib/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/php70/lib/php.ini 2022-02-27 22:53:54 Result: file /usr/local/php70/lib/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/php71/lib/php.ini 2022-02-27 22:53:54 Result: file /usr/local/php71/lib/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/php72/lib/php.ini 2022-02-27 22:53:54 Result: file /usr/local/php72/lib/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/php73/lib/php.ini 2022-02-27 22:53:54 Result: file /usr/local/php73/lib/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/php74/lib/php.ini 2022-02-27 22:53:54 Result: file /usr/local/php74/lib/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/local/zend/etc/php.ini 2022-02-27 22:53:54 Result: file /usr/local/zend/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /usr/pkg/etc/php.ini 2022-02-27 22:53:54 Result: file /usr/pkg/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/cpanel/ea-php54/root/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/cpanel/ea-php54/root/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/cpanel/ea-php55/root/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/cpanel/ea-php55/root/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/cpanel/ea-php56/root/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/cpanel/ea-php56/root/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/cpanel/ea-php70/root/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/cpanel/ea-php70/root/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/cpanel/ea-php71/root/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/cpanel/ea-php71/root/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/cpanel/ea-php72/root/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/cpanel/ea-php72/root/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/cpanel/ea-php73/root/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/cpanel/ea-php73/root/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/cpanel/ea-php74/root/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/cpanel/ea-php74/root/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php44/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php44/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php51/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php51/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php52/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php52/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php53/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php53/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php54/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php54/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php55/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php55/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php56/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php56/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php70/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php70/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php71/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php71/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php72/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php72/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php73/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php73/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /opt/alt/php74/etc/php.ini 2022-02-27 22:53:54 Result: file /opt/alt/php74/etc/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/opt/remi/php56/php.ini 2022-02-27 22:53:54 Result: file /etc/opt/remi/php56/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/opt/remi/php70/php.ini 2022-02-27 22:53:54 Result: file /etc/opt/remi/php70/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/opt/remi/php71/php.ini 2022-02-27 22:53:54 Result: file /etc/opt/remi/php71/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/opt/remi/php72/php.ini 2022-02-27 22:53:54 Result: file /etc/opt/remi/php72/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/opt/remi/php73/php.ini 2022-02-27 22:53:54 Result: file /etc/opt/remi/php73/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/opt/remi/php74/php.ini 2022-02-27 22:53:54 Result: file /etc/opt/remi/php74/php.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php-5.6.ini 2022-02-27 22:53:54 Result: file /etc/php-5.6.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php-7.0.ini 2022-02-27 22:53:54 Result: file /etc/php-7.0.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php-7.1.ini 2022-02-27 22:53:54 Result: file /etc/php-7.1.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php-7.2.ini 2022-02-27 22:53:54 Result: file /etc/php-7.2.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php-7.3.ini 2022-02-27 22:53:54 Result: file /etc/php-7.3.ini not found 2022-02-27 22:53:54 Test: checking presence /etc/php-7.4.ini 2022-02-27 22:53:54 Result: file /etc/php-7.4.ini not found 2022-02-27 22:53:54 Result: no files found for /etc/php5/conf.d 2022-02-27 22:53:54 Result: no files found for /etc/php/7.0/cli/conf.d 2022-02-27 22:53:54 Result: no files found for /etc/php/7.1/cli/conf.d 2022-02-27 22:53:54 Result: no files found for /etc/php/7.2/cli/conf.d 2022-02-27 22:53:54 Result: no files found for /etc/php/7.3/cli/conf.d 2022-02-27 22:53:54 Result: no files found for /etc/php/7.4/cli/conf.d 2022-02-27 22:53:54 Result: no files found for /etc/php/7.0/fpm/conf.d 2022-02-27 22:53:54 Result: no files found for /etc/php/7.1/fpm/conf.d 2022-02-27 22:53:54 Result: no files found for /etc/php/7.2/fpm/conf.d 2022-02-27 22:53:54 Result: no files found for /etc/php/7.3/fpm/conf.d 2022-02-27 22:53:54 Result: no files found for /etc/php/7.4/fpm/conf.d 2022-02-27 22:53:55 Result: no files found for /etc/php.d 2022-02-27 22:53:55 Result: no files found for /opt/cpanel/ea-php54/root/etc/php.d 2022-02-27 22:53:55 Result: no files found for /opt/cpanel/ea-php55/root/etc/php.d 2022-02-27 22:53:55 Result: no files found for /opt/cpanel/ea-php56/root/etc/php.d 2022-02-27 22:53:55 Result: no files found for /opt/cpanel/ea-php70/root/etc/php.d 2022-02-27 22:53:55 Result: no files found for /opt/cpanel/ea-php71/root/etc/php.d 2022-02-27 22:53:55 Result: no files found for /opt/cpanel/ea-php72/root/etc/php.d 2022-02-27 22:53:55 Result: no files found for /opt/cpanel/ea-php73/root/etc/php.d 2022-02-27 22:53:55 Result: no files found for /opt/cpanel/ea-php74/root/etc/php.d 2022-02-27 22:53:55 Result: no files found for /opt/alt/php44/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php51/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php52/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php53/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php54/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php55/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php56/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php70/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php71/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php72/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php73/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /opt/alt/php74/etc/php.d.all 2022-02-27 22:53:55 Result: no files found for /usr/local/lib/php.conf.d 2022-02-27 22:53:55 Result: no files found for /usr/local/php70/lib/php.conf.d 2022-02-27 22:53:55 Result: no files found for /usr/local/php71/lib/php.conf.d 2022-02-27 22:53:55 Result: no files found for /usr/local/php72/lib/php.conf.d 2022-02-27 22:53:55 Result: no files found for /usr/local/php73/lib/php.conf.d 2022-02-27 22:53:55 Result: no files found for /usr/local/php74/lib/php.conf.d 2022-02-27 22:53:55 Result: no files found for /etc/php-5.6 2022-02-27 22:53:55 Result: no files found for /etc/php-7.0 2022-02-27 22:53:55 Result: no files found for /etc/php-7.1 2022-02-27 22:53:55 Result: no files found for /etc/php-7.2 2022-02-27 22:53:55 Result: no files found for /etc/php-7.3 2022-02-27 22:53:55 Result: no files found for /etc/php-7.4 2022-02-27 22:53:55 Result: no php.ini file found 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test PHP-2320 (Check PHP disabled functions) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test PHP-2368 (Check PHP register_globals option) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test PHP-2372 (Check PHP expose_php option) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test PHP-2374 (Check PHP enable_dl option) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test PHP-2376 (Check PHP allow_url_fopen option) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test PHP-2378 (Check PHP allow_url_include option) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test PHP-2382 (Check PHP expose_php option) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 Security check: file is normal 2022-02-27 22:53:55 Checking permissions of /root/lynis/include/tests_squid 2022-02-27 22:53:55 File permissions are OK 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Action: Performing tests from category: Squid Support 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Performing test ID SQD-3602 (Check for running Squid daemon) 2022-02-27 22:53:55 Test: Searching for a Squid daemon 2022-02-27 22:53:55 Result: No running Squid daemon found 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test SQD-3604 (Check Squid daemon file location) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test SQD-3606 (Check Squid version) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test SQD-3610 (Gather Squid settings) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test SQD-3613 (Check Squid file permissions) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test SQD-3614 (Check Squid authentication methods) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test SQD-3616 (Check external Squid authentication) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test SQD-3620 (Check Squid access control lists) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test SQD-3624 (Check Squid safe ports) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test SQD-3630 (Check Squid reply_body_max_size option) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Skipped test SQD-3680 (Check Squid version suppression) 2022-02-27 22:53:55 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:55 Security check: file is normal 2022-02-27 22:53:55 Checking permissions of /root/lynis/include/tests_logging 2022-02-27 22:53:55 File permissions are OK 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Action: Performing tests from category: Logging and files 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Performing test ID LOGG-2130 (Check for running syslog daemon) 2022-02-27 22:53:55 Test: Searching for a logging daemon 2022-02-27 22:53:55 Result: Found a logging daemon 2022-02-27 22:53:55 Hardening: assigned maximum number of hardening points for this item (3). Currently having 249 points (out of 278) 2022-02-27 22:53:55 ==== 2022-02-27 22:53:55 Performing test ID LOGG-2132 (Check for running syslog-ng daemon) 2022-02-27 22:53:55 Test: Searching for syslog-ng daemon in process list 2022-02-27 22:53:55 Performing pgrep scan without uid 2022-02-27 22:53:56 IsRunning: process 'syslog-ng' not found 2022-02-27 22:53:56 Result: Syslog-ng NOT found in process list 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Skipped test LOGG-2134 (Checking Syslog-NG configuration file consistency) 2022-02-27 22:53:56 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2136 (Check for running systemd journal daemon) 2022-02-27 22:53:56 Test: Searching for systemd journal daemon in process list 2022-02-27 22:53:56 Performing pgrep scan without uid 2022-02-27 22:53:56 IsRunning: process 'systemd-journal' found (501 ) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2210 (Check for running metalog daemon) 2022-02-27 22:53:56 Test: Searching for metalog daemon in process list 2022-02-27 22:53:56 Performing pgrep scan without uid 2022-02-27 22:53:56 IsRunning: process 'metalog' not found 2022-02-27 22:53:56 Result: metalog NOT found in process list 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2230 (Check for running RSyslog daemon) 2022-02-27 22:53:56 Test: Searching for RSyslog daemon in process list 2022-02-27 22:53:56 Performing pgrep scan without uid 2022-02-27 22:53:56 IsRunning: process 'rsyslogd' found (1379 ) 2022-02-27 22:53:56 Result: Found rsyslogd in process list 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2240 (Check for running RFC 3195 compliant daemon) 2022-02-27 22:53:56 Test: Searching for RFC 3195 daemon (alias syslog reliable) in process list 2022-02-27 22:53:56 Performing pgrep scan without uid 2022-02-27 22:53:56 IsRunning: process 'rfc3195d' not found 2022-02-27 22:53:56 Result: rfc3195d NOT found in process list 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2138 (Checking kernel logger daemon on Linux) 2022-02-27 22:53:56 Test: Searching kernel logger daemon (klogd) 2022-02-27 22:53:56 Result: test skipped, because other facility is being used to log kernel messages 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2142 (Checking minilog daemon) 2022-02-27 22:53:56 Result: Checking for unkilled minilogd instances 2022-02-27 22:53:56 Performing pgrep scan without uid 2022-02-27 22:53:56 IsRunning: process 'minilogd' not found 2022-02-27 22:53:56 Result: No minilogd is running 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2146 (Checking logrotate.conf and logrotate.d) 2022-02-27 22:53:56 Test: Checking for /etc/logrotate.conf 2022-02-27 22:53:56 Result: /etc/logrotate.conf found (file) 2022-02-27 22:53:56 Test: Checking for /etc/logrotate.d (directory) 2022-02-27 22:53:56 Result: /etc/logrotate.d found 2022-02-27 22:53:56 Result: logrotate configuration found 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2148 (Checking logrotated files) 2022-02-27 22:53:56 Test: Checking which files are rotated with logrotate and if they exist 2022-02-27 22:53:56 Result: found one or more files which are rotated via logrotate 2022-02-27 22:53:56 Output: File:/var/log/wpa_supplicant.log:does_not_exist 2022-02-27 22:53:56 Output: File:/var/log/boot.log:exists 2022-02-27 22:53:56 Output: File:/var/log/btmp:exists 2022-02-27 22:53:56 Output: File:/var/log/cron:exists 2022-02-27 22:53:56 Output: File:/var/log/falcon-sensor.log:exists 2022-02-27 22:53:56 Output: File:/var/log/firewalld:exists 2022-02-27 22:53:56 Output: File:/var/log/maillog:exists 2022-02-27 22:53:56 Output: File:/var/log/messages:exists 2022-02-27 22:53:56 Output: File:/var/log/secure:exists 2022-02-27 22:53:56 Output: File:/var/log/spooler:exists 2022-02-27 22:53:56 Output: File:/var/log/wpa_supplicant.log:exists 2022-02-27 22:53:56 Output: File:/var/log/wtmp:exists 2022-02-27 22:53:56 Output: File:/var/log/yum.log:exists 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2150 (Checking directories in logrotate configuration) 2022-02-27 22:53:56 Test: Checking which directories can be found in logrotate configuration 2022-02-27 22:53:56 Result: found one or more directories (via logrotate configuration) 2022-02-27 22:53:56 Directory found: /var/log 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Skipped test LOGG-2152 (Checking loghost) 2022-02-27 22:53:56 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2154 (Checking syslog configuration file) 2022-02-27 22:53:56 Test: analyzing file /etc/rsyslog.conf for remote target 2022-02-27 22:53:56 Result: no remote target found 2022-02-27 22:53:56 Test: analyzing file /etc/rsyslog.d/listen.conf for remote target 2022-02-27 22:53:56 Result: no remote target found 2022-02-27 22:53:56 Result: no remote logging found 2022-02-27 22:53:56 Suggestion: Enable logging to an external logging host for archiving purposes and additional protection [test:LOGG-2154] [details:-] [solution:-] 2022-02-27 22:53:56 Hardening: assigned partial number of hardening points (1 of 3). Currently having 250 points (out of 281) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Skipped test LOGG-2160 (Checking /etc/newsyslog.conf) 2022-02-27 22:53:56 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Skipped test LOGG-2162 (Checking directories in /etc/newsyslog.conf) 2022-02-27 22:53:56 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Skipped test LOGG-2164 (Checking files specified /etc/newsyslog.conf) 2022-02-27 22:53:56 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2170 (Checking log paths) 2022-02-27 22:53:56 Test: Searching log paths 2022-02-27 22:53:56 Result: directory /var/log exists 2022-02-27 22:53:56 Result: directory /var/adm exists 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID LOGG-2180 (Checking open log files) 2022-02-27 22:53:56 Test: checking open log files with lsof 2022-02-27 22:53:56 Result: lsof not installed, skipping test 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Skipped test LOGG-2190 (Checking for deleted files in use) 2022-02-27 22:53:56 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Skipped test LOGG-2192 (Checking for open log files that are empty) 2022-02-27 22:53:56 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:56 Security check: file is normal 2022-02-27 22:53:56 Checking permissions of /root/lynis/include/tests_insecure_services 2022-02-27 22:53:56 File permissions are OK 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Action: Performing tests from category: Insecure services 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Performing test ID INSE-8000 (Installed inetd package) 2022-02-27 22:53:56 Test: Checking if inetd is installed 2022-02-27 22:53:56 Result: inetd is NOT installed 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Skipped test INSE-8002 (Check for enabled inet daemon) 2022-02-27 22:53:56 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Skipped test INSE-8004 (Presence of inetd configuration file) 2022-02-27 22:53:56 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:56 Skipped test INSE-8006 (Check configuration of inetd when disabled) 2022-02-27 22:53:56 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:56 ==== 2022-02-27 22:53:57 Skipped test INSE-8016 (Check for telnet via inetd) 2022-02-27 22:53:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Performing test ID INSE-8100 (Check for installed xinetd daemon) 2022-02-27 22:53:57 Test: Checking for installed xinetd daemon 2022-02-27 22:53:57 Result: xinetd is NOT installed 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Performing test ID INSE-8102 (Check for active xinet daemon) 2022-02-27 22:53:57 Test: Searching for active extended internet services daemon (xinetd) 2022-02-27 22:53:57 Performing pgrep scan without uid 2022-02-27 22:53:57 IsRunning: process 'xinetd' not found 2022-02-27 22:53:57 Result: xinetd is NOT running 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Skipped test INSE-8104 (Check for enabled xinet daemon) 2022-02-27 22:53:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Skipped test INSE-8106 (Check configuration of xinetd when disabled) 2022-02-27 22:53:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Skipped test INSE-8116 (Insecure services enabled via xinetd) 2022-02-27 22:53:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Skipped test INSE-8200 (Check if tcp_wrappers is installed when inetd/xinetd is active) 2022-02-27 22:53:57 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Performing test ID INSE-8300 (Check if rsh client is installed) 2022-02-27 22:53:57 Test: Checking if rsh client is installed 2022-02-27 22:53:57 Result: rsh client is NOT installed 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Performing test ID INSE-8304 (Check if rsh server is installed) 2022-02-27 22:53:57 Test: Checking if rsh server is installed 2022-02-27 22:53:57 Result: rsh server is NOT installed 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Performing test ID INSE-8310 (Check if telnet client is installed) 2022-02-27 22:53:57 Test: Checking if telnet client is installed 2022-02-27 22:53:57 Result: telnet client is NOT installed 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Performing test ID INSE-8322 (Check if telnet server is installed) 2022-02-27 22:53:57 Test: Checking if telnet server is installed 2022-02-27 22:53:57 Result: telnet server is NOT installed 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Performing test ID INSE-8314 (Check if NIS client is installed) 2022-02-27 22:53:57 Test: Checking if NIS client is installed 2022-02-27 22:53:57 Result: NIS client is NOT installed 2022-02-27 22:53:57 ==== 2022-02-27 22:53:57 Performing test ID INSE-8316 (Check if NIS server is installed) 2022-02-27 22:53:57 Test: Checking if NIS server is installed 2022-02-27 22:53:57 Result: NIS server is NOT installed 2022-02-27 22:53:57 ==== 2022-02-27 22:53:58 Performing test ID INSE-8318 (Check if TFTP client is installed) 2022-02-27 22:53:58 Test: Checking if TFTP client is installed 2022-02-27 22:53:58 Result: TFTP client is NOT installed 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Performing test ID INSE-8320 (Check if TFTP server is installed) 2022-02-27 22:53:58 Test: Checking if TFTP server is installed 2022-02-27 22:53:58 Result: TFTP server is NOT installed 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Skipped test INSE-8050 (Check for insecure services on macOS) 2022-02-27 22:53:58 Reason to skip: Incorrect guest OS (macOS only) 2022-02-27 22:53:58 Security check: file is normal 2022-02-27 22:53:58 Checking permissions of /root/lynis/include/tests_banners 2022-02-27 22:53:58 File permissions are OK 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Action: Performing tests from category: Banners and identification 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Skipped test BANN-7113 (Check COPYRIGHT banner file) 2022-02-27 22:53:58 Reason to skip: Incorrect guest OS (FreeBSD only) 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Performing test ID BANN-7124 (Check issue banner file) 2022-02-27 22:53:58 Test: Checking file /etc/issue 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Performing test ID BANN-7126 (Check issue banner file contents) 2022-02-27 22:53:58 Test: Checking file /etc/issue contents for legal key words 2022-02-27 22:53:58 Result: Found only 0 key words (5 or more suggested), to warn unauthorized users and could be increased 2022-02-27 22:53:58 Suggestion: Add a legal banner to /etc/issue, to warn unauthorized users [test:BANN-7126] [details:-] [solution:-] 2022-02-27 22:53:58 Hardening: assigned partial number of hardening points (0 of 1). Currently having 250 points (out of 282) 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Performing test ID BANN-7128 (Check issue.net banner file) 2022-02-27 22:53:58 Test: Checking file /etc/issue.net 2022-02-27 22:53:58 Result: file /etc/issue.net exists 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Performing test ID BANN-7130 (Check issue.net banner file contents) 2022-02-27 22:53:58 Test: Checking file /etc/issue.net contents for legal key words 2022-02-27 22:53:58 Result: Found only 0 key words, to warn unauthorized users and could be increased 2022-02-27 22:53:58 Suggestion: Add legal banner to /etc/issue.net, to warn unauthorized users [test:BANN-7130] [details:-] [solution:-] 2022-02-27 22:53:58 Hardening: assigned partial number of hardening points (0 of 1). Currently having 250 points (out of 283) 2022-02-27 22:53:58 Security check: file is normal 2022-02-27 22:53:58 Checking permissions of /root/lynis/include/tests_scheduling 2022-02-27 22:53:58 File permissions are OK 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Action: Performing tests from category: Scheduled tasks 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Performing test ID SCHD-7702 (Check status of cron daemon) 2022-02-27 22:53:58 Result: cron daemon running 2022-02-27 22:53:58 ==== 2022-02-27 22:53:58 Performing test ID SCHD-7704 (Check crontab/cronjobs) 2022-02-27 22:53:59 Test: checking directory /etc/cron.d 2022-02-27 22:53:59 Test: check if we can access /etc/cron.d (escaped: /etc/cron.d) 2022-02-27 22:53:59 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:59 Result: file /etc/cron.d is readable (or directory accessible). 2022-02-27 22:53:59 Result: found directory /etc/cron.d 2022-02-27 22:53:59 Test: searching files in /etc/cron.d 2022-02-27 22:53:59 Result: found one or more files in /etc/cron.d. Analyzing files.. 2022-02-27 22:53:59 Result: Found cronjob (/etc/cron.d/0hourly): 01,*,*,*,*,root,run-parts,/etc/cron.hourly 2022-02-27 22:53:59 Result: Found cronjob (/etc/cron.d/sysstat): */10,*,*,*,*,root,/usr/lib64/sa/sa1,1,1 2022-02-27 22:53:59 Result: Found cronjob (/etc/cron.d/sysstat): 53,23,*,*,*,root,/usr/lib64/sa/sa2,-A 2022-02-27 22:53:59 Result: done with analyzing files in /etc/cron.d 2022-02-27 22:53:59 Test: checking directory /etc/cron.hourly 2022-02-27 22:53:59 Result: found directory /etc/cron.hourly 2022-02-27 22:53:59 Test: check if we can access /etc/cron.hourly (escaped: /etc/cron.hourly) 2022-02-27 22:53:59 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:59 Result: file /etc/cron.hourly is readable (or directory accessible). 2022-02-27 22:53:59 Test: searching files in /etc/cron.hourly 2022-02-27 22:53:59 Result: found one or more files in /etc/cron.hourly. Analyzing files.. 2022-02-27 22:53:59 Result: Found cronjob (/etc/cron.hourly): /etc/cron.hourly/0anacron 2022-02-27 22:53:59 Result: done with analyzing files in /etc/cron.hourly 2022-02-27 22:53:59 Test: checking directory /etc/cron.daily 2022-02-27 22:53:59 Result: found directory /etc/cron.daily 2022-02-27 22:53:59 Test: check if we can access /etc/cron.daily (escaped: /etc/cron.daily) 2022-02-27 22:53:59 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:59 Result: file /etc/cron.daily is readable (or directory accessible). 2022-02-27 22:53:59 Test: searching files in /etc/cron.daily 2022-02-27 22:53:59 Result: found one or more files in /etc/cron.daily. Analyzing files.. 2022-02-27 22:53:59 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/logrotate 2022-02-27 22:53:59 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/man-db.cron 2022-02-27 22:53:59 Result: done with analyzing files in /etc/cron.daily 2022-02-27 22:53:59 Test: checking directory /etc/cron.weekly 2022-02-27 22:53:59 Result: found directory /etc/cron.weekly 2022-02-27 22:53:59 Test: check if we can access /etc/cron.weekly (escaped: /etc/cron.weekly) 2022-02-27 22:53:59 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:59 Result: file /etc/cron.weekly is readable (or directory accessible). 2022-02-27 22:53:59 Test: searching files in /etc/cron.weekly 2022-02-27 22:53:59 Result: no files found in /etc/cron.weekly 2022-02-27 22:53:59 Test: checking directory /etc/cron.monthly 2022-02-27 22:53:59 Result: found directory /etc/cron.monthly 2022-02-27 22:53:59 Test: check if we can access /etc/cron.monthly (escaped: /etc/cron.monthly) 2022-02-27 22:53:59 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:53:59 Result: file /etc/cron.monthly is readable (or directory accessible). 2022-02-27 22:53:59 Test: searching files in /etc/cron.monthly 2022-02-27 22:53:59 Result: no files found in /etc/cron.monthly 2022-02-27 22:53:59 Test: checking anacrontab 2022-02-27 22:53:59 Found anacron job (/etc/anacrontab): 1,5,cron.daily,nice,run-parts,/etc/cron.daily 2022-02-27 22:53:59 Found anacron job (/etc/anacrontab): 7,25,cron.weekly,nice,run-parts,/etc/cron.weekly 2022-02-27 22:53:59 Found anacron job (/etc/anacrontab): @monthly,45,cron.monthly,nice,run-parts,/etc/cron.monthly 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Performing test ID SCHD-7718 (Check at users) 2022-02-27 22:53:59 Test: Checking atd status 2022-02-27 22:53:59 Result: at daemon not active 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Skipped test SCHD-7720 (Check at users) 2022-02-27 22:53:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Skipped test SCHD-7724 (Check at jobs) 2022-02-27 22:53:59 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:53:59 Result: no scheduled Lynis execution found (e.g. crontab, cronjob) 2022-02-27 22:53:59 Security check: file is normal 2022-02-27 22:53:59 Checking permissions of /root/lynis/include/tests_accounting 2022-02-27 22:53:59 File permissions are OK 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Action: Performing tests from category: Accounting 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Skipped test ACCT-2754 (Check for available FreeBSD accounting information) 2022-02-27 22:53:59 Reason to skip: Incorrect guest OS (FreeBSD only) 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Skipped test ACCT-2760 (Check for available OpenBSD accounting information) 2022-02-27 22:53:59 Reason to skip: Incorrect guest OS (OpenBSD only) 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Performing test ID ACCT-9622 (Check for available Linux accounting information) 2022-02-27 22:53:59 Test: Check accounting information 2022-02-27 22:53:59 Result: No accounting information available (/var/account/pacct, /var/log/account/pact nor /var/log/pact exist) 2022-02-27 22:53:59 Remark: Possibly there is another location where the accounting data is stored 2022-02-27 22:53:59 Suggestion: Enable process accounting [test:ACCT-9622] [details:-] [solution:-] 2022-02-27 22:53:59 Hardening: assigned partial number of hardening points (2 of 3). Currently having 252 points (out of 286) 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Performing test ID ACCT-9626 (Check for sysstat accounting data) 2022-02-27 22:53:59 Test: check /etc/default/sysstat presence 2022-02-27 22:53:59 Result: sysstat enabled via /etc/cron.d/sysstat 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Performing test ID ACCT-9628 (Check for auditd) 2022-02-27 22:53:59 Test: Check auditd status 2022-02-27 22:53:59 Performing pgrep scan without uid 2022-02-27 22:53:59 IsRunning: process 'auditd' found (675 ) 2022-02-27 22:53:59 Result: auditd running 2022-02-27 22:53:59 Hardening: assigned maximum number of hardening points for this item (4). Currently having 256 points (out of 290) 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Performing test ID ACCT-9630 (Check for auditd rules) 2022-02-27 22:53:59 Test: Checking auditd rules 2022-02-27 22:53:59 Result: auditd rules empty 2022-02-27 22:53:59 Hardening: assigned partial number of hardening points (0 of 2). Currently having 256 points (out of 292) 2022-02-27 22:53:59 Suggestion: Audit daemon is enabled with an empty ruleset. Disable the daemon or define rules [test:ACCT-9630] [details:-] [solution:-] 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Performing test ID ACCT-9632 (Check for auditd configuration file) 2022-02-27 22:53:59 Test: Checking auditd configuration file 2022-02-27 22:53:59 Result: /etc/auditd.conf not found 2022-02-27 22:53:59 Result: Found /etc/audit/auditd.conf 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Performing test ID ACCT-9634 (Check for auditd log file) 2022-02-27 22:53:59 Test: Checking auditd log file 2022-02-27 22:53:59 Result: log file is defined 2022-02-27 22:53:59 Defined value: /var/log/audit/audit.log 2022-02-27 22:53:59 Result: log file /var/log/audit/audit.log exists on disk 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Performing test ID ACCT-9636 (Check for Snoopy wrapper and logger) 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Skipped test ACCT-9650 (Check Solaris audit daemon) 2022-02-27 22:53:59 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Skipped test ACCT-9652 (Check auditd SMF status) 2022-02-27 22:53:59 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:59 ==== 2022-02-27 22:53:59 Skipped test ACCT-9654 (Check BSM auditing in /etc/system) 2022-02-27 22:53:59 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:53:59 ==== 2022-02-27 22:54:00 Skipped test ACCT-9656 (Check BSM auditing in module list) 2022-02-27 22:54:00 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Skipped test ACCT-9660 (Check location of audit events) 2022-02-27 22:54:00 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Skipped test ACCT-9662 (Check Solaris auditing stats) 2022-02-27 22:54:00 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:54:00 Security check: file is normal 2022-02-27 22:54:00 Checking permissions of /root/lynis/include/tests_time 2022-02-27 22:54:00 File permissions are OK 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Action: Performing tests from category: Time and Synchronization 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Performing test ID TIME-3104 (Check for running NTP daemon or client) 2022-02-27 22:54:00 Test: Searching for a running NTP daemon or available client 2022-02-27 22:54:00 Result: no chrony configuration found 2022-02-27 22:54:00 Performing pgrep scan without uid 2022-02-27 22:54:00 IsRunning: process 'dntpd' not found 2022-02-27 22:54:00 Result: found running NTP daemon in process list 2022-02-27 22:54:00 Performing pgrep scan without uid 2022-02-27 22:54:00 IsRunning: process 'timed' not found 2022-02-27 22:54:00 Test: checking for ntpdate, rdate, sntp or ntpdig in crontab file /etc/anacrontab 2022-02-27 22:54:00 Result: no ntpdate, rdate, sntp or ntpdig reference found in crontab file /etc/anacrontab 2022-02-27 22:54:00 Test: checking for ntpdate, rdate, sntp or ntpdig in crontab file /etc/crontab 2022-02-27 22:54:00 Result: no ntpdate, rdate, sntp or ntpdig reference found in crontab file /etc/crontab 2022-02-27 22:54:00 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.d/0hourly 2022-02-27 22:54:00 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.d/sysstat 2022-02-27 22:54:00 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.hourly/0anacron 2022-02-27 22:54:00 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/logrotate 2022-02-27 22:54:00 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/man-db.cron 2022-02-27 22:54:00 Result: no ntpdate or rdate found in cron directories 2022-02-27 22:54:00 Test: checking for file /etc/network/if-up.d/ntpdate 2022-02-27 22:54:00 Result: file /etc/network/if-up.d/ntpdate does not exist 2022-02-27 22:54:00 Result: Found a time syncing daemon/client. 2022-02-27 22:54:00 Hardening: assigned maximum number of hardening points for this item (3). Currently having 259 points (out of 295) 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Skipped test TIME-3106 (Check systemd NTP time synchronization status) 2022-02-27 22:54:00 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Performing test ID TIME-3112 (Check active NTP associations ID's) 2022-02-27 22:54:00 Test: Checking for NTP association ID's from ntpq peers list 2022-02-27 22:54:00 Result: Found one or more association ID's 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Performing test ID TIME-3116 (Check peers with stratum value of 16) 2022-02-27 22:54:00 Test: Checking stratum 16 sources from ntpq peers list 2022-02-27 22:54:00 Found stratum 16 peer: 172.16.200.70 2022-02-27 22:54:00 Found stratum 16 peer: 172.16.200.71 2022-02-27 22:54:00 Found stratum 16 peer: 9.30.99.120 2022-02-27 22:54:00 Result: Found 3 high stratum (16) peers) 2022-02-27 22:54:00 Suggestion: Check ntpq peers output for stratum 16 peers [test:TIME-3116] [details:-] [solution:-] 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Performing test ID TIME-3120 (Check unreliable NTP peers) 2022-02-27 22:54:00 Test: Checking unreliable ntp peers 2022-02-27 22:54:00 Result: No unreliable peers found 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Performing test ID TIME-3124 (Check selected time source) 2022-02-27 22:54:00 Test: Checking selected time source 2022-02-27 22:54:00 Result: Found selected time source (value: 9.30.99.134) 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Performing test ID TIME-3128 (Check preferred time source) 2022-02-27 22:54:00 Test: Checking preferred time source 2022-02-27 22:54:00 Result: No other time source candidates found 2022-02-27 22:54:00 Suggestion: Check ntpq peers output for time source candidates [test:TIME-3128] [details:-] [solution:-] 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Performing test ID TIME-3132 (Check NTP falsetickers) 2022-02-27 22:54:00 Test: Checking preferred time source 2022-02-27 22:54:00 Result: No falsetickers found (items preceding with an 'x') 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Performing test ID TIME-3136 (Check NTP protocol version) 2022-02-27 22:54:00 Test: Checking NTP protocol version (ntpq -c ntpversion) 2022-02-27 22:54:00 Result: Found NTP version 2 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Performing test ID TIME-3148 (Check TZ variable) 2022-02-27 22:54:00 Test: testing for TZ variable 2022-02-27 22:54:00 Result: found TZ variable with value notset 2022-02-27 22:54:00 ==== 2022-02-27 22:54:00 Performing test ID TIME-3160 (Check empty NTP step-tickers) 2022-02-27 22:54:00 Result: /etc/ntp/step-tickers is not empty, which is fine 2022-02-27 22:54:00 Result: 0.centos.pool.ntp.org exist in /etc/ntp/step-tickers 2022-02-27 22:54:00 Result: all time servers are in step-tickers file 2022-02-27 22:54:00 Hardening: assigned maximum number of hardening points for this item (4). Currently having 263 points (out of 299) 2022-02-27 22:54:00 Information: step-tickers is used by ntpdate where as ntp.conf is the configuration file for the ntpd daemon. ntpdate is initially run to set the clock before ntpd to make sure time is within 1000 sec. 2022-02-27 22:54:00 Risk: ntp will not run at boot if the time difference between the server and client by more then 1000 sec. 2022-02-27 22:54:00 ==== 2022-02-27 22:54:01 Performing test ID TIME-3170 (Check configuration files) 2022-02-27 22:54:01 Result: found /etc/ntp.conf 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Skipped test TIME-3180 (Report if ntpctl cannot communicate with OpenNTPD) 2022-02-27 22:54:01 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Skipped test TIME-3181 (Check status of OpenNTPD time synchronisation) 2022-02-27 22:54:01 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Skipped test TIME-3182 (Check OpenNTPD has working peers) 2022-02-27 22:54:01 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Skipped test TIME-3185 (Check systemd-timesyncd synchronized time) 2022-02-27 22:54:01 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:01 Security check: file is normal 2022-02-27 22:54:01 Checking permissions of /root/lynis/include/tests_crypto 2022-02-27 22:54:01 File permissions are OK 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Action: Performing tests from category: Cryptography 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Performing test ID CRYP-7902 (Check expire date of SSL certificates) 2022-02-27 22:54:01 Paths to scan: /etc/apache2 /etc/dovecot /etc/httpd /etc/letsencrypt /etc/pki /etc/postfix /etc/refind.d/keys /etc/ssl /opt/psa/var/certificates /usr/local/psa/var/certificates /usr/local/share/ca-certificates /usr/share/ca-certificates /usr/share/gnupg /var/www /srv/www 2022-02-27 22:54:01 Paths to ignore: /etc/letsencrypt/archive 2022-02-27 22:54:01 Result: SSL path /etc/apache2 does not exist 2022-02-27 22:54:01 Result: SSL path /etc/dovecot does not exist 2022-02-27 22:54:01 Result: SSL path /etc/httpd does not exist 2022-02-27 22:54:01 Result: SSL path /etc/letsencrypt does not exist 2022-02-27 22:54:01 Test: check if we can access /etc/pki (escaped: /etc/pki) 2022-02-27 22:54:01 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:54:01 Result: file /etc/pki is readable (or directory accessible). 2022-02-27 22:54:01 Result: found directory /etc/pki 2022-02-27 22:54:01 Test: check if we can access /etc/pki/ca-trust/extracted/openssl/ca-bundle.trust.crt (escaped: /etc/pki/ca-trust/extracted/openssl/ca-bundle.trust.crt) 2022-02-27 22:54:01 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:54:01 Result: file /etc/pki/ca-trust/extracted/openssl/ca-bundle.trust.crt is readable (or directory accessible). 2022-02-27 22:54:01 Result: file '/etc/pki/ca-trust/extracted/openssl/ca-bundle.trust.crt' belongs to package (ca) 2022-02-27 22:54:01 Test: check if we can access /etc/pki/ca-trust/extracted/pem/email-ca-bundle.pem (escaped: /etc/pki/ca-trust/extracted/pem/email-ca-bundle.pem) 2022-02-27 22:54:01 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:54:01 Result: file /etc/pki/ca-trust/extracted/pem/email-ca-bundle.pem is readable (or directory accessible). 2022-02-27 22:54:01 Result: file '/etc/pki/ca-trust/extracted/pem/email-ca-bundle.pem' belongs to package (ca) 2022-02-27 22:54:01 Test: check if we can access /etc/pki/ca-trust/extracted/pem/objsign-ca-bundle.pem (escaped: /etc/pki/ca-trust/extracted/pem/objsign-ca-bundle.pem) 2022-02-27 22:54:01 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:54:01 Result: file /etc/pki/ca-trust/extracted/pem/objsign-ca-bundle.pem is readable (or directory accessible). 2022-02-27 22:54:01 Result: file '/etc/pki/ca-trust/extracted/pem/objsign-ca-bundle.pem' belongs to package (ca) 2022-02-27 22:54:01 Test: check if we can access /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem (escaped: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem) 2022-02-27 22:54:01 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:54:01 Result: file /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem is readable (or directory accessible). 2022-02-27 22:54:01 Result: file '/etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem' belongs to package (ca) 2022-02-27 22:54:01 Result: found 4 certificates in /etc/pki 2022-02-27 22:54:01 Test: check if we can access /etc/postfix (escaped: /etc/postfix) 2022-02-27 22:54:01 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:54:01 Result: file /etc/postfix is readable (or directory accessible). 2022-02-27 22:54:01 Result: found directory /etc/postfix 2022-02-27 22:54:01 Result: found 0 certificates in /etc/postfix 2022-02-27 22:54:01 Result: SSL path /etc/refind.d/keys does not exist 2022-02-27 22:54:01 Test: check if we can access /etc/ssl (escaped: /etc/ssl) 2022-02-27 22:54:01 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:54:01 Result: file /etc/ssl is readable (or directory accessible). 2022-02-27 22:54:01 Result: found directory /etc/ssl 2022-02-27 22:54:01 Result: found 0 certificates in /etc/ssl 2022-02-27 22:54:01 Result: SSL path /opt/psa/var/certificates does not exist 2022-02-27 22:54:01 Result: SSL path /usr/local/psa/var/certificates does not exist 2022-02-27 22:54:01 Result: SSL path /usr/local/share/ca-certificates does not exist 2022-02-27 22:54:01 Result: SSL path /usr/share/ca-certificates does not exist 2022-02-27 22:54:01 Test: check if we can access /usr/share/gnupg (escaped: /usr/share/gnupg) 2022-02-27 22:54:01 Result: file is owned by our current user ID (0), checking if it is readable 2022-02-27 22:54:01 Result: file /usr/share/gnupg is readable (or directory accessible). 2022-02-27 22:54:01 Result: found directory /usr/share/gnupg 2022-02-27 22:54:01 Result: found 0 certificates in /usr/share/gnupg 2022-02-27 22:54:01 Result: SSL path /var/www does not exist 2022-02-27 22:54:01 Result: SSL path /srv/www does not exist 2022-02-27 22:54:01 Result: found a total of 4 certificates 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Performing test ID CRYP-7930 (Determine if system uses LUKS block device encryption) 2022-02-27 22:54:01 Result: crypttab (/etc/crypttab) exists 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Skipped test CRYP-7931 (Determine if system uses encrypted swap) 2022-02-27 22:54:01 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Performing test ID CRYP-8002 (Gather available kernel entropy) 2022-02-27 22:54:01 Result: found kernel entropy value of 1711 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Performing test ID CRYP-8004 (Presence of hardware random number generators) 2022-02-27 22:54:01 Test: looking for /sys/class/misc/hw_random/rng_current 2022-02-27 22:54:01 Result: no HW RNG available 2022-02-27 22:54:01 ==== 2022-02-27 22:54:01 Performing test ID CRYP-8005 (Presence of software pseudo random number generators) 2022-02-27 22:54:01 Test: looking for software pseudo random number generators 2022-02-27 22:54:01 Performing pgrep scan without uid 2022-02-27 22:54:01 IsRunning: process 'audio-entropyd' not found 2022-02-27 22:54:01 Performing pgrep scan without uid 2022-02-27 22:54:01 IsRunning: process 'haveged' not found 2022-02-27 22:54:02 Performing pgrep scan without uid 2022-02-27 22:54:02 IsRunning: process 'jitterentropy-rngd' not found 2022-02-27 22:54:02 Suggestion: Utilize software pseudo random number generators [test:CRYP-8005] [details:-] [solution:-] 2022-02-27 22:54:02 Security check: file is normal 2022-02-27 22:54:02 Checking permissions of /root/lynis/include/tests_virtualization 2022-02-27 22:54:02 File permissions are OK 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Action: Performing tests from category: Virtualization 2022-02-27 22:54:02 Security check: file is normal 2022-02-27 22:54:02 Checking permissions of /root/lynis/include/tests_containers 2022-02-27 22:54:02 File permissions are OK 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Action: Performing tests from category: Containers 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test CONT-8004 (Query running Solaris zones) 2022-02-27 22:54:02 Reason to skip: Incorrect guest OS (Solaris only) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID CONT-8102 (Checking Docker status and information) 2022-02-27 22:54:02 Performing pgrep scan without uid 2022-02-27 22:54:02 IsRunning: process 'dockerd' not found 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test CONT-8104 (Checking Docker info for any warnings) 2022-02-27 22:54:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test CONT-8106 (Gather basic stats from Docker) 2022-02-27 22:54:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test CONT-8107 (Check number of Docker containers) 2022-02-27 22:54:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test CONT-8108 (Check file permissions for Docker files) 2022-02-27 22:54:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:02 Security check: file is normal 2022-02-27 22:54:02 Checking permissions of /root/lynis/include/tests_mac_frameworks 2022-02-27 22:54:02 File permissions are OK 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Action: Performing tests from category: Security frameworks 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID MACF-6204 (Check AppArmor presence) 2022-02-27 22:54:02 Result: aa-status binary not found, AppArmor not installed 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test MACF-6208 (Check if AppArmor is enabled) 2022-02-27 22:54:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID MACF-6232 (Check SELINUX presence) 2022-02-27 22:54:02 Test: checking if we have sestatus binary 2022-02-27 22:54:02 Result: found sestatus binary (/usr/sbin/sestatus) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID MACF-6234 (Check SELINUX status) 2022-02-27 22:54:02 Result: SELinux framework is disabled 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID MACF-6240 (Check TOMOYO Linux presence) 2022-02-27 22:54:02 Test: checking if we have tomoyo-init binary 2022-02-27 22:54:02 Result: tomoyo-init binary not found 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test MACF-6242 (Check TOMOYO Linux status) 2022-02-27 22:54:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID RBAC-6272 (Check grsecurity presence) 2022-02-27 22:54:02 Result: no grsecurity found in kernel config 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID MACF-6290 (Check for implemented MAC framework) 2022-02-27 22:54:02 Hardening: assigned partial number of hardening points (2 of 3). Currently having 265 points (out of 302) 2022-02-27 22:54:02 Result: found no implemented MAC framework 2022-02-27 22:54:02 Security check: file is normal 2022-02-27 22:54:02 Checking permissions of /root/lynis/include/tests_file_integrity 2022-02-27 22:54:02 File permissions are OK 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Action: Performing tests from category: Software: file integrity 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID FINT-4310 (AFICK availability) 2022-02-27 22:54:02 Test: Checking AFICK binary 2022-02-27 22:54:02 Result: AFICK is not installed 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID FINT-4314 (AIDE availability) 2022-02-27 22:54:02 Test: Checking AIDE binary 2022-02-27 22:54:02 Result: AIDE is not installed 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test FINT-4315 (Check AIDE configuration file) 2022-02-27 22:54:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test FINT-4316 (Presence of AIDE database and size check) 2022-02-27 22:54:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID FINT-4318 (Osiris availability) 2022-02-27 22:54:02 Test: Checking Osiris binary 2022-02-27 22:54:02 Result: Osiris is not installed 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID FINT-4322 (Samhain availability) 2022-02-27 22:54:02 Test: Checking Samhain binary 2022-02-27 22:54:02 Result: Samhain is not installed 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID FINT-4326 (Tripwire availability) 2022-02-27 22:54:02 Test: Checking Tripwire binary 2022-02-27 22:54:02 Result: Tripwire is not installed 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID FINT-4328 (OSSEC syscheck daemon running) 2022-02-27 22:54:02 Test: Checking if OSSEC syscheck daemon is running 2022-02-27 22:54:02 Performing pgrep scan without uid 2022-02-27 22:54:02 IsRunning: process 'ossec-syscheckd' not found 2022-02-27 22:54:02 Result: syscheck (OSSEC) is not active 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID FINT-4330 (mtree availability) 2022-02-27 22:54:02 Test: Checking mtree binary 2022-02-27 22:54:02 Result: mtree is not installed 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test FINT-4334 (Check lfd daemon status) 2022-02-27 22:54:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Skipped test FINT-4336 (Check lfd configuration status) 2022-02-27 22:54:02 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:02 ==== 2022-02-27 22:54:02 Performing test ID FINT-4338 (osqueryd syscheck daemon running) 2022-02-27 22:54:02 Test: Checking if osqueryd syscheck daemon is running 2022-02-27 22:54:02 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'osqueryd' not found 2022-02-27 22:54:03 Result: syscheck (osquery) not installed 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Skipped test FINT-4339 (Check IMA/EVM status) 2022-02-27 22:54:03 Reason to skip: No evmctl binary found 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Skipped test FINT-4340 (Check dm-integrity status) 2022-02-27 22:54:03 Reason to skip: No integritysetup binary found 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Skipped test FINT-4341 (Check dm-verity status) 2022-02-27 22:54:03 Reason to skip: No veritysetup binary found 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Skipped test FINT-4402 (AIDE configuration: Checksums (SHA256 or SHA512)) 2022-02-27 22:54:03 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID FINT-4350 (File integrity software installed) 2022-02-27 22:54:03 Test: Check if at least on file integrity tool is available/installed 2022-02-27 22:54:03 Result: No file integrity tools found 2022-02-27 22:54:03 Suggestion: Install a file integrity tool to monitor changes to critical and sensitive files [test:FINT-4350] [details:-] [solution:-] 2022-02-27 22:54:03 Hardening: assigned partial number of hardening points (0 of 5). Currently having 265 points (out of 307) 2022-02-27 22:54:03 Security check: file is normal 2022-02-27 22:54:03 Checking permissions of /root/lynis/include/tests_tooling 2022-02-27 22:54:03 File permissions are OK 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Action: Performing tests from category: Software: System tooling 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID TOOL-5002 (Checking for automation tools) 2022-02-27 22:54:03 Test: checking if directory /root/.ansible exists 2022-02-27 22:54:03 Result: directory /root/.ansible NOT found 2022-02-27 22:54:03 Test: checking if directory /etc/ansible exists 2022-02-27 22:54:03 Result: directory /etc/ansible NOT found 2022-02-27 22:54:03 Test: checking if directory /root/.ansible exists 2022-02-27 22:54:03 Result: directory /root/.ansible NOT found 2022-02-27 22:54:03 Test: checking if directory /tmp/.ansible exists 2022-02-27 22:54:03 Result: directory /tmp/.ansible NOT found 2022-02-27 22:54:03 Test: checking if file /var/log/ansible.log exists 2022-02-27 22:54:03 Result: file /var/log/ansible.log NOT found 2022-02-27 22:54:03 Test: checking if file ~/.ansible-retry exists 2022-02-27 22:54:03 Result: file ~/.ansible-retry NOT found 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'puppet master' not found 2022-02-27 22:54:03 Suggestion: Determine if automation tools are present for system management [test:TOOL-5002] [details:-] [solution:-] 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID TOOL-5102 (Check for presence of Fail2ban) 2022-02-27 22:54:03 Result: Fail2ban not present (fail2ban-server not found) 2022-02-27 22:54:03 Checking Fail2ban configuration file 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Skipped test TOOL-5104 (Enabled tests in Fail2ban) 2022-02-27 22:54:03 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID TOOL-5120 (Check for presence of Snort) 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'snort' not found 2022-02-27 22:54:03 Result: Snort not present (Snort not running) 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID TOOL-5122 (Check Snort configuration file) 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID TOOL-5126 (Check for active OSSEC daemon) 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'ossec-analysisd' not found 2022-02-27 22:54:03 Result: OSSEC analysis daemon not active 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'ossec-agentd' not found 2022-02-27 22:54:03 Result: OSSEC agent daemon not active 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID TOOL-5190 (Check presence of IDS/IPS tool) 2022-02-27 22:54:03 Hardening: assigned partial number of hardening points (0 of 2). Currently having 265 points (out of 309) 2022-02-27 22:54:03 Security check: file is normal 2022-02-27 22:54:03 Checking permissions of /root/lynis/include/tests_malware 2022-02-27 22:54:03 File permissions are OK 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Action: Performing tests from category: Software: Malware 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID MALW-3275 (Check for chkrootkit) 2022-02-27 22:54:03 Test: checking presence chkrootkit 2022-02-27 22:54:03 Result: chkrootkit not found 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID MALW-3276 (Check for Rootkit Hunter) 2022-02-27 22:54:03 Test: checking presence Rootkit Hunter 2022-02-27 22:54:03 Result: Rootkit Hunter not found 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID MALW-3278 (Check for LMD) 2022-02-27 22:54:03 Test: checking presence LMD 2022-02-27 22:54:03 Result: LMD not found 2022-02-27 22:54:03 ==== 2022-02-27 22:54:03 Performing test ID MALW-3280 (Check if anti-virus tool is installed) 2022-02-27 22:54:03 Test: checking process com.avast.daemon 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'com.avast.daemon' not found 2022-02-27 22:54:03 Test: checking process Avira daemon 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'avqmd' not found 2022-02-27 22:54:03 Test: checking process epagd 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'bdagentd' not found 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'epagd' not found 2022-02-27 22:54:03 Test: checking process falcon-sensor (CrowdStrike) 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'falcon-sensor' found (656 ) 2022-02-27 22:54:03 Result: found falcon-sensor service 2022-02-27 22:54:03 Test: checking process CylanceSvc 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'CylanceSvc' not found 2022-02-27 22:54:03 Test: checking process esets_daemon 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'esets_daemon' not found 2022-02-27 22:54:03 Test: checking process wdserver or klnagent (Kaspersky) 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'klnagent' not found 2022-02-27 22:54:03 Test: checking process cma or cmdagent (McAfee) 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'cmdagent' not found 2022-02-27 22:54:03 Test: checking process savscand 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'savscand' not found 2022-02-27 22:54:03 Test: checking process SophosScanD 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'SophosScanD' not found 2022-02-27 22:54:03 Test: checking process rtvscand 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'rtvscand' not found 2022-02-27 22:54:03 Test: checking process Symantec management client service 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'smcd' not found 2022-02-27 22:54:03 Test: checking process Symantec Endpoint Protection configuration service 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'symcfgd' not found 2022-02-27 22:54:03 Test: checking process TmccMac to test for Trend Micro anti-virus (macOS) 2022-02-27 22:54:03 Performing pgrep scan without uid 2022-02-27 22:54:03 IsRunning: process 'TmccMac' not found 2022-02-27 22:54:04 Result: found one or more commercial anti-virus tools 2022-02-27 22:54:04 Hardening: assigned maximum number of hardening points for this item (2). Currently having 267 points (out of 311) 2022-02-27 22:54:04 ==== 2022-02-27 22:54:04 Performing test ID MALW-3282 (Check for clamscan) 2022-02-27 22:54:04 Test: checking presence clamscan 2022-02-27 22:54:04 Result: clamscan couldn't be found 2022-02-27 22:54:04 ==== 2022-02-27 22:54:04 Performing test ID MALW-3284 (Check for clamd) 2022-02-27 22:54:04 Test: checking running ClamAV daemon (clamd) 2022-02-27 22:54:04 Performing pgrep scan without uid 2022-02-27 22:54:04 IsRunning: process 'clamd' not found 2022-02-27 22:54:04 Result: clamd not running 2022-02-27 22:54:04 ==== 2022-02-27 22:54:04 Skipped test MALW-3286 (Check for freshclam) 2022-02-27 22:54:04 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:04 ==== 2022-02-27 22:54:04 Skipped test MALW-3288 (Check for ClamXav) 2022-02-27 22:54:04 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution) 2022-02-27 22:54:04 Security check: file is normal 2022-02-27 22:54:04 Checking permissions of /root/lynis/include/tests_file_permissions 2022-02-27 22:54:04 File permissions are OK 2022-02-27 22:54:04 ==== 2022-02-27 22:54:04 Action: Performing tests from category: File Permissions 2022-02-27 22:54:04 ==== 2022-02-27 22:54:04 Performing test ID FILE-7524 (Perform file permissions check) 2022-02-27 22:54:04 Test: Checking file permissions 2022-02-27 22:54:04 Using profile /root/lynis/default.prf for baseline. 2022-02-27 22:54:04 Test: checking file/directory /boot/grub/grub.cfg 2022-02-27 22:54:04 Skipping file/directory /boot/grub/grub.cfg as it does not exist on this system 2022-02-27 22:54:04 Test: checking file/directory /boot/grub2/grub.cfg 2022-02-27 22:54:04 Test: checking if file /boot/grub2/grub.cfg has the permissions set to 600 or more restrictive 2022-02-27 22:54:04 Outcome: permissions of file /boot/grub2/grub.cfg are not matching expected value (644 != rw-------) 2022-02-27 22:54:04 Test: checking file/directory /boot/grub2/user.cfg 2022-02-27 22:54:04 Skipping file/directory /boot/grub2/user.cfg as it does not exist on this system 2022-02-27 22:54:04 Test: checking file/directory /etc/at.allow 2022-02-27 22:54:04 Test: checking if file /etc/at.allow has the permissions set to 600 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (600) 2022-02-27 22:54:04 Test: checking file/directory /etc/at.deny 2022-02-27 22:54:04 Skipping file/directory /etc/at.deny as it does not exist on this system 2022-02-27 22:54:04 Test: checking file/directory /etc/cron.allow 2022-02-27 22:54:04 Test: checking if file /etc/cron.allow has the permissions set to 600 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (600) 2022-02-27 22:54:04 Test: checking file/directory /etc/cron.deny 2022-02-27 22:54:04 Test: checking if file /etc/cron.deny has the permissions set to 600 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (600) 2022-02-27 22:54:04 Test: checking file/directory /etc/crontab 2022-02-27 22:54:04 Test: checking if file /etc/crontab has the permissions set to 600 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (600) 2022-02-27 22:54:04 Test: checking file/directory /etc/group 2022-02-27 22:54:04 Test: checking if file /etc/group has the permissions set to 644 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (644) 2022-02-27 22:54:04 Test: checking file/directory /etc/group- 2022-02-27 22:54:04 Test: checking if file /etc/group- has the permissions set to 644 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (644) 2022-02-27 22:54:04 Test: checking file/directory /etc/hosts.allow 2022-02-27 22:54:04 Test: checking if file /etc/hosts.allow has the permissions set to 644 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (644) 2022-02-27 22:54:04 Test: checking file/directory /etc/hosts.deny 2022-02-27 22:54:04 Test: checking if file /etc/hosts.deny has the permissions set to 644 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (644) 2022-02-27 22:54:04 Test: checking file/directory /etc/issue 2022-02-27 22:54:04 Test: checking if file /etc/issue has the permissions set to 644 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (644) 2022-02-27 22:54:04 Test: checking file/directory /etc/issue.net 2022-02-27 22:54:04 Test: checking if file /etc/issue.net has the permissions set to 644 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (644) 2022-02-27 22:54:04 Test: checking file/directory /etc/lilo.conf 2022-02-27 22:54:04 Skipping file/directory /etc/lilo.conf as it does not exist on this system 2022-02-27 22:54:04 Test: checking file/directory /etc/motd 2022-02-27 22:54:04 Test: checking if file /etc/motd has the permissions set to 644 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (644) 2022-02-27 22:54:04 Test: checking file/directory /etc/passwd 2022-02-27 22:54:04 Test: checking if file /etc/passwd has the permissions set to 644 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (644) 2022-02-27 22:54:04 Test: checking file/directory /etc/passwd- 2022-02-27 22:54:04 Test: checking if file /etc/passwd- has the permissions set to 644 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (644) 2022-02-27 22:54:04 Test: checking file/directory /etc/ssh/sshd_config 2022-02-27 22:54:04 Test: checking if file /etc/ssh/sshd_config has the permissions set to 600 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (600) 2022-02-27 22:54:04 Test: checking file/directory /etc/hosts.equiv 2022-02-27 22:54:04 Skipping file/directory /etc/hosts.equiv as it does not exist on this system 2022-02-27 22:54:04 Test: checking file/directory /etc/shosts.equiv 2022-02-27 22:54:04 Skipping file/directory /etc/shosts.equiv as it does not exist on this system 2022-02-27 22:54:04 Test: checking file/directory /root/.rhosts 2022-02-27 22:54:04 Skipping file/directory /root/.rhosts as it does not exist on this system 2022-02-27 22:54:04 Test: checking file/directory /root/.rlogin 2022-02-27 22:54:04 Skipping file/directory /root/.rlogin as it does not exist on this system 2022-02-27 22:54:04 Test: checking file/directory /root/.shosts 2022-02-27 22:54:04 Skipping file/directory /root/.shosts as it does not exist on this system 2022-02-27 22:54:04 Test: checking file/directory /root/.ssh 2022-02-27 22:54:04 Test: checking if file /root/.ssh has the permissions set to 700 or more restrictive 2022-02-27 22:54:04 Outcome: correct permissions (700) 2022-02-27 22:54:04 Test: checking file/directory /etc/cron.d 2022-02-27 22:54:05 Test: checking if file /etc/cron.d has the permissions set to 700 or more restrictive 2022-02-27 22:54:05 Outcome: permissions of file /etc/cron.d are not matching expected value (755 != rwx------) 2022-02-27 22:54:05 Test: checking file/directory /etc/cron.daily 2022-02-27 22:54:05 Test: checking if file /etc/cron.daily has the permissions set to 700 or more restrictive 2022-02-27 22:54:05 Outcome: correct permissions (700) 2022-02-27 22:54:05 Test: checking file/directory /etc/cron.hourly 2022-02-27 22:54:05 Test: checking if file /etc/cron.hourly has the permissions set to 700 or more restrictive 2022-02-27 22:54:05 Outcome: correct permissions (700) 2022-02-27 22:54:05 Test: checking file/directory /etc/cron.weekly 2022-02-27 22:54:05 Test: checking if file /etc/cron.weekly has the permissions set to 700 or more restrictive 2022-02-27 22:54:05 Outcome: correct permissions (700) 2022-02-27 22:54:05 Test: checking file/directory /etc/cron.monthly 2022-02-27 22:54:05 Test: checking if file /etc/cron.monthly has the permissions set to 700 or more restrictive 2022-02-27 22:54:05 Outcome: correct permissions (700) 2022-02-27 22:54:05 Suggestion: Consider restricting file permissions [test:FILE-7524] [details:See screen output or log file] [solution:text:Use chmod to change file permissions] 2022-02-27 22:54:05 Security check: file is normal 2022-02-27 22:54:05 Checking permissions of /root/lynis/include/tests_homedirs 2022-02-27 22:54:05 File permissions are OK 2022-02-27 22:54:05 ==== 2022-02-27 22:54:05 Action: Performing tests from category: Home directories 2022-02-27 22:54:05 ==== 2022-02-27 22:54:05 Performing test ID HOME-9302 (Create list with home directories) 2022-02-27 22:54:05 Test: query /etc/passwd to obtain home directories 2022-02-27 22:54:05 Result: found home directory: / (directory exists) 2022-02-27 22:54:05 Result: found home directory: /bin (directory exists) 2022-02-27 22:54:05 Result: found home directory: /etc/ntp (directory exists) 2022-02-27 22:54:05 Result: found home directory: /home/hhwang (directory exists) 2022-02-27 22:54:05 Result: found home directory: /root (directory exists) 2022-02-27 22:54:05 Result: found home directory: /sbin (directory exists) 2022-02-27 22:54:05 Result: found home directory: /usr/games (directory exists) 2022-02-27 22:54:05 Result: found home directory: /var/adm (directory exists) 2022-02-27 22:54:05 Result: found home directory: /var/empty/sshd (directory exists) 2022-02-27 22:54:05 Result: found home directory: /var/ftp (directory does not exist) 2022-02-27 22:54:05 Result: found home directory: /var/lib/nfs (directory exists) 2022-02-27 22:54:05 Result: found home directory: /var/lib/rpcbind (directory exists) 2022-02-27 22:54:05 Result: found home directory: /var/spool/lpd (directory exists) 2022-02-27 22:54:05 Result: found home directory: /var/spool/mail (directory exists) 2022-02-27 22:54:05 Result: found home directory: /var/spool/postfix (directory exists) 2022-02-27 22:54:05 ==== 2022-02-27 22:54:05 Performing test ID HOME-9304 (Check if users' home directories permissions are 750 or more restrictive) 2022-02-27 22:54:05 Test: checking directory '/home/hhwang' for user 'hhwang' 2022-02-27 22:54:05 Result: permissions of home directory /home/hhwang of user hhwang are fine 2022-02-27 22:54:05 Result: OK, all permissions of the home directories are 750 or more restrictive 2022-02-27 22:54:05 ==== 2022-02-27 22:54:05 Performing test ID HOME-9306 (Check if users own their home directories) 2022-02-27 22:54:05 Test: checking directory '/home/hhwang' for user 'hhwang' 2022-02-27 22:54:05 Result: ownership of home directory /home/hhwang for user hhwang looks to be correct 2022-02-27 22:54:05 Result: OK, all users own their home directories 2022-02-27 22:54:05 ==== 2022-02-27 22:54:05 Performing test ID HOME-9310 (Checking for suspicious shell history files) 2022-02-27 22:54:05 Result: Ok, history files are type 'file'. 2022-02-27 22:54:05 Remark: History files are normally of the type 'file'. Symbolic links and other types are suspicious. 2022-02-27 22:54:05 ==== 2022-02-27 22:54:05 Performing test ID HOME-9350 (Collecting information from home directories) 2022-02-27 22:54:05 Result: IGNORE_HOME_DIRS empty, no paths excluded 2022-02-27 22:54:05 Security check: file is normal 2022-02-27 22:54:05 Checking permissions of /root/lynis/include/tests_kernel_hardening 2022-02-27 22:54:05 File permissions are OK 2022-02-27 22:54:05 ==== 2022-02-27 22:54:05 Action: Performing tests from category: Kernel Hardening 2022-02-27 22:54:05 ==== 2022-02-27 22:54:05 Performing test ID KRNL-6000 (Check sysctl key pairs in scan profile) 2022-02-27 22:54:06 Result: sysctl key fs.protected_hardlinks contains equal expected and current value (1) 2022-02-27 22:54:06 Hardening: assigned maximum number of hardening points for this item (1). Currently having 268 points (out of 312) 2022-02-27 22:54:06 Result: sysctl key fs.protected_symlinks contains equal expected and current value (1) 2022-02-27 22:54:06 Hardening: assigned maximum number of hardening points for this item (1). Currently having 269 points (out of 313) 2022-02-27 22:54:06 Result: sysctl key fs.suid_dumpable contains equal expected and current value (0) 2022-02-27 22:54:06 Hardening: assigned maximum number of hardening points for this item (1). Currently having 270 points (out of 314) 2022-02-27 22:54:06 Result: key hw.kbd.keymap_restrict_change does not exist on this machine 2022-02-27 22:54:06 Result: key kern.sugid_coredump does not exist on this machine 2022-02-27 22:54:06 Result: key kernel.core_setuid_ok does not exist on this machine 2022-02-27 22:54:06 Result: sysctl key kernel.core_uses_pid contains equal expected and current value (1) 2022-02-27 22:54:06 Hardening: assigned maximum number of hardening points for this item (1). Currently having 271 points (out of 315) 2022-02-27 22:54:06 Result: sysctl key kernel.ctrl-alt-del contains equal expected and current value (0) 2022-02-27 22:54:06 Hardening: assigned maximum number of hardening points for this item (1). Currently having 272 points (out of 316) 2022-02-27 22:54:06 Result: sysctl key kernel.dmesg_restrict contains equal expected and current value (1) 2022-02-27 22:54:06 Hardening: assigned maximum number of hardening points for this item (1). Currently having 273 points (out of 317) 2022-02-27 22:54:06 Result: key kernel.exec-shield-randomize does not exist on this machine 2022-02-27 22:54:06 Result: key kernel.exec-shield does not exist on this machine 2022-02-27 22:54:06 Result: sysctl key kernel.kptr_restrict contains equal expected and current value (2) 2022-02-27 22:54:06 Hardening: assigned maximum number of hardening points for this item (1). Currently having 274 points (out of 318) 2022-02-27 22:54:06 Result: key kernel.maps_protect does not exist on this machine 2022-02-27 22:54:06 Result: sysctl key kernel.randomize_va_space contains equal expected and current value (2) 2022-02-27 22:54:06 Hardening: assigned maximum number of hardening points for this item (1). Currently having 275 points (out of 319) 2022-02-27 22:54:06 Result: key kernel.suid_dumpable does not exist on this machine 2022-02-27 22:54:06 Result: sysctl key kernel.sysrq contains equal expected and current value (0) 2022-02-27 22:54:06 Hardening: assigned maximum number of hardening points for this item (1). Currently having 276 points (out of 320) 2022-02-27 22:54:06 Result: key kernel.use-nx does not exist on this machine 2022-02-27 22:54:06 Result: sysctl key kernel.yama.ptrace_scope contains equal expected and current value (1 2 3) 2022-02-27 22:54:06 Hardening: assigned maximum number of hardening points for this item (1). Currently having 277 points (out of 321) 2022-02-27 22:54:06 Result: key net.inet.icmp.bmcastecho does not exist on this machine 2022-02-27 22:54:06 Result: key net.inet.icmp.drop_redirect does not exist on this machine 2022-02-27 22:54:06 Result: key net.inet.icmp.rediraccept does not exist on this machine 2022-02-27 22:54:06 Result: key net.inet.icmp.timestamp does not exist on this machine 2022-02-27 22:54:06 Result: key net.inet.ip.accept_sourceroute does not exist on this machine 2022-02-27 22:54:06 Result: key net.inet.ip.check_interface does not exist on this machine 2022-02-27 22:54:06 Result: key net.inet.ip.forwarding does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.ip.linklocal.in.allowbadttl does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.ip.process_options does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.ip.random_id does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.ip.redirect does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.ip.sourceroute does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.ip6.redirect does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.tcp.always_keepalive does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.tcp.blackhole does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.tcp.drop_synfin does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.tcp.icmp_may_rst does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.tcp.nolocaltimewait does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.tcp.path_mtu_discovery does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet.udp.blackhole does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet6.icmp6.rediraccept does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet6.ip6.forwarding does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet6.ip6.fw.enable does not exist on this machine 2022-02-27 22:54:07 Result: key net.inet6.ip6.redirect does not exist on this machine 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.all.accept_redirects contains equal expected and current value (0) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 278 points (out of 322) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.all.accept_source_route contains equal expected and current value (0) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 279 points (out of 323) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.all.bootp_relay contains equal expected and current value (0) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 280 points (out of 324) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.all.forwarding contains equal expected and current value (0) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 281 points (out of 325) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.all.log_martians contains equal expected and current value (1) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 282 points (out of 326) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.all.mc_forwarding contains equal expected and current value (0) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 283 points (out of 327) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.all.proxy_arp contains equal expected and current value (0) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 284 points (out of 328) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.all.rp_filter contains equal expected and current value (1) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 285 points (out of 329) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.all.send_redirects contains equal expected and current value (0) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 286 points (out of 330) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.default.accept_redirects contains equal expected and current value (0) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 287 points (out of 331) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.default.accept_source_route contains equal expected and current value (0) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 288 points (out of 332) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.conf.default.log_martians contains equal expected and current value (1) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 289 points (out of 333) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.icmp_echo_ignore_broadcasts contains equal expected and current value (1) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 290 points (out of 334) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.icmp_ignore_bogus_error_responses contains equal expected and current value (1) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 291 points (out of 335) 2022-02-27 22:54:07 Result: sysctl key net.ipv4.tcp_syncookies contains equal expected and current value (1) 2022-02-27 22:54:07 Hardening: assigned maximum number of hardening points for this item (1). Currently having 292 points (out of 336) 2022-02-27 22:54:08 Result: sysctl key net.ipv4.tcp_timestamps contains equal expected and current value (0 1) 2022-02-27 22:54:08 Hardening: assigned maximum number of hardening points for this item (1). Currently having 293 points (out of 337) 2022-02-27 22:54:08 Result: sysctl key net.ipv6.conf.all.accept_redirects contains equal expected and current value (0) 2022-02-27 22:54:08 Hardening: assigned maximum number of hardening points for this item (1). Currently having 294 points (out of 338) 2022-02-27 22:54:08 Result: sysctl key net.ipv6.conf.all.accept_source_route contains equal expected and current value (0) 2022-02-27 22:54:08 Hardening: assigned maximum number of hardening points for this item (1). Currently having 295 points (out of 339) 2022-02-27 22:54:08 Result: key net.ipv6.conf.all.send_redirects does not exist on this machine 2022-02-27 22:54:08 Result: sysctl key net.ipv6.conf.default.accept_redirects contains equal expected and current value (0) 2022-02-27 22:54:08 Hardening: assigned maximum number of hardening points for this item (1). Currently having 296 points (out of 340) 2022-02-27 22:54:08 Result: sysctl key net.ipv6.conf.default.accept_source_route contains equal expected and current value (0) 2022-02-27 22:54:08 Hardening: assigned maximum number of hardening points for this item (1). Currently having 297 points (out of 341) 2022-02-27 22:54:08 Result: key security.bsd.hardlink_check_gid does not exist on this machine 2022-02-27 22:54:08 Result: key security.bsd.hardlink_check_uid does not exist on this machine 2022-02-27 22:54:08 Result: key security.bsd.see_other_gids does not exist on this machine 2022-02-27 22:54:08 Result: key security.bsd.see_other_uids does not exist on this machine 2022-02-27 22:54:08 Result: key security.bsd.stack_guard_page does not exist on this machine 2022-02-27 22:54:08 Result: key security.bsd.unprivileged_proc_debug does not exist on this machine 2022-02-27 22:54:08 Result: key security.bsd.unprivileged_read_msgbuf does not exist on this machine 2022-02-27 22:54:08 Security check: file is normal 2022-02-27 22:54:08 Checking permissions of /root/lynis/include/tests_hardening 2022-02-27 22:54:08 File permissions are OK 2022-02-27 22:54:08 ==== 2022-02-27 22:54:08 Action: Performing tests from category: Hardening 2022-02-27 22:54:08 ==== 2022-02-27 22:54:08 Performing test ID HRDN-7220 (Check if one or more compilers are installed) 2022-02-27 22:54:08 Test: Check if one or more compilers can be found on the system 2022-02-27 22:54:08 Result: no compilers found 2022-02-27 22:54:08 Hardening: assigned maximum number of hardening points for this item (3). Currently having 300 points (out of 344) 2022-02-27 22:54:08 ==== 2022-02-27 22:54:08 Performing test ID HRDN-7222 (Check compiler permissions) 2022-02-27 22:54:08 Test: Check if one or more compilers can be found on the system 2022-02-27 22:54:08 Result: no compilers found 2022-02-27 22:54:08 ==== 2022-02-27 22:54:08 Performing test ID HRDN-7230 (Check for malware scanner) 2022-02-27 22:54:08 Test: Check if a malware scanner is installed 2022-02-27 22:54:08 Result: found at least one malware scanner 2022-02-27 22:54:08 Hardening: assigned maximum number of hardening points for this item (3). Currently having 303 points (out of 347) 2022-02-27 22:54:08 ==== 2022-02-27 22:54:08 Action: Performing tests from category: Custom tests 2022-02-27 22:54:08 Test: Checking for tests_custom file 2022-02-27 22:54:08 ==== 2022-02-27 22:54:08 Action: Performing plugin tests 2022-02-27 22:54:08 Result: Found 2 plugins of which 2 are enabled 2022-02-27 22:54:08 Result: Plugins phase 2 finished 2022-02-27 22:54:08 Checking permissions of /root/lynis/include/report 2022-02-27 22:54:08 File permissions are OK 2022-02-27 22:54:08 Hardening index : [87] [################# ] 2022-02-27 22:54:08 Hardening strength: System seem to be decent hardened 2022-02-27 22:54:08 ==== 2022-02-27 22:54:09 Checking permissions of /root/lynis/include/tool_tips 2022-02-27 22:54:09 File permissions are OK 2022-02-27 22:54:09 Tool tips: enabled 2022-02-27 22:54:09 ================================================================================ 2022-02-27 22:54:09 Tests performed: 262 2022-02-27 22:54:09 Total tests: 450 2022-02-27 22:54:09 Active plugins: 2 2022-02-27 22:54:09 Total plugins: 2 2022-02-27 22:54:09 ================================================================================ 2022-02-27 22:54:09 Lynis 3.0.1 2022-02-27 22:54:09 2007-2020, CISOfy - https://cisofy.com/lynis/ 2022-02-27 22:54:09 Enterprise support available (compliance, plugins, interface and tools) 2022-02-27 22:54:09 Program ended successfully 2022-02-27 22:54:09 ================================================================================ 2022-02-27 22:54:09 PID file removed (/var/run/lynis.pid) 2022-02-27 22:54:09 Temporary files: /tmp/lynis.QhU1Q4wj6j /tmp/lynis.3C87WOXUvo /tmp/lynis.kV6u4DYzv0 /tmp/lynis.cMKVOQTkrp 2022-02-27 22:54:09 Action: removing temporary file /tmp/lynis.QhU1Q4wj6j 2022-02-27 22:54:09 Info: temporary file /tmp/lynis.3C87WOXUvo was already removed 2022-02-27 22:54:09 Info: temporary file /tmp/lynis.kV6u4DYzv0 was already removed 2022-02-27 22:54:10 Action: removing temporary file /tmp/lynis.cMKVOQTkrp 2022-02-27 22:54:10 Lynis ended successfully.