2021-01-15 08:43:19 Starting Lynis 3.0.3 with PID 1008322, build date 2021-01-07
2021-01-15 08:43:19 ====
2021-01-15 08:43:19 ### 2007-2021, CISOfy - https://cisofy.com/lynis/ ###
2021-01-15 08:43:19 Checking permissions of /usr/share/lynis/include/profiles
2021-01-15 08:43:19 File permissions are OK
2021-01-15 08:43:19 Reading profile/configuration /etc/lynis/default.prf
2021-01-15 08:43:19 Action: created temporary file /tmp/lynis.cyvME9fujI
2021-01-15 08:43:19 Language set via profile to ''
2021-01-15 08:43:19 Plugin 'authentication' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'compliance' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'configuration' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'control-panels' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'crypto' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'dns' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'docker' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'file-integrity' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'file-systems' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'firewalls' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'forensics' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'hardware' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'intrusion-detection' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'intrusion-prevention' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'kernel' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'malware' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'memory' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'nginx' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'pam' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'processes' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'security-modules' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'software' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'system-integrity' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'systemd' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:19 Plugin 'users' enabled according profile (/etc/lynis/default.prf)
2021-01-15 08:43:20 Set option to default value: NTPD_ROLE --> client
2021-01-15 08:43:20 Language is set to zh
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 EOL check: 0
2021-01-15 08:43:25 Program version:           3.0.3
2021-01-15 08:43:25 Operating system:          Linux
2021-01-15 08:43:25 Operating system name:     CentOS Linux
2021-01-15 08:43:25 Operating system version:  8
2021-01-15 08:43:25 Kernel version:            4.18.0
2021-01-15 08:43:25 Kernel version (full):     4.18.0-193.28.1.el8_2.x86_64
2021-01-15 08:43:25 Hardware platform:         x86_64
2021-01-15 08:43:25 -----------------------------------------------------
2021-01-15 08:43:25 Hostname:                  intel1-intel1
2021-01-15 08:43:25 Auditor:                   [Not Specified]
2021-01-15 08:43:25 Profiles:                  /etc/lynis/default.prf
2021-01-15 08:43:25 Work directory:            /root/lynis
2021-01-15 08:43:25 Include directory:         /usr/share/lynis/include
2021-01-15 08:43:25 Plugin directory:          /usr/share/lynis/plugins
2021-01-15 08:43:25 -----------------------------------------------------
2021-01-15 08:43:25 Log file:                  /var/log/lynis.log
2021-01-15 08:43:25 Report file:               /var/log/lynis-report.dat
2021-01-15 08:43:25 Report version:            1.0
2021-01-15 08:43:25 -----------------------------------------------------
2021-01-15 08:43:25 Test category:             all
2021-01-15 08:43:25 Test group:                all
2021-01-15 08:43:25 BusyBox used:              0
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Test: Checking for program update...
2021-01-15 08:43:25 Result: dig, drill or host not installed, update check skipped
2021-01-15 08:43:25 Current installed version  : 303
2021-01-15 08:43:25 Latest stable version      : 0000000000
2021-01-15 08:43:25 Update check skipped due to constraints (e.g. missing dig binary)
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Checking permissions of /usr/share/lynis/include/binaries
2021-01-15 08:43:25 File permissions are OK
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Action: Performing tests from category: System tools
2021-01-15 08:43:25 Start scanning for available audit binaries and tools...
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Performing test ID CORE-1000 (Check all system binaries)
2021-01-15 08:43:25 Status: Starting binary scan...
2021-01-15 08:43:25 Test: Checking binaries in directory /root/bin
2021-01-15 08:43:25 Result: Directory /root/bin does NOT exist
2021-01-15 08:43:25 Test: Checking binaries in directory /usr/bin
2021-01-15 08:43:25 Directory /usr/bin exists. Starting directory scanning...
2021-01-15 08:43:25   Found known binary: as (compiler) - /usr/bin/as
2021-01-15 08:43:25   Found known binary: awk (string tool) - /usr/bin/awk
2021-01-15 08:43:25   Found known binary: base64 (encoding tool) - /usr/bin/base64
2021-01-15 08:43:25   Found known binary: bootctl (systemd-boot manager utility) - /usr/bin/bootctl
2021-01-15 08:43:25   Found known binary: cat (generic file handling) - /usr/bin/cat
2021-01-15 08:43:25   Found known binary: cc (compiler) - /usr/bin/cc
2021-01-15 08:43:25   Found known binary: comm (file compare) - /usr/bin/comm
2021-01-15 08:43:25   Found known binary: curl (browser, download utility) - /usr/bin/curl
2021-01-15 08:43:25   Found known binary: cut (text stream editor) - /usr/bin/cut
2021-01-15 08:43:25   Found known binary: dnf (package manager) - /usr/bin/dnf
2021-01-15 08:43:25   Found known binary: dnsdomainname (DNS domain) - /usr/bin/dnsdomainname
2021-01-15 08:43:25   Found known binary: docker (container technology) - /usr/bin/docker
2021-01-15 08:43:25   Found known binary: domainname (NIS domain) - /usr/bin/domainname
2021-01-15 08:43:25   Found known binary: egrep (text search) - /usr/bin/egrep
2021-01-15 08:43:25   Found known binary: evmctl (IMA/EVM tool) - /usr/bin/evmctl
2021-01-15 08:43:25   Found known binary: file (file type detection) - /usr/bin/file
2021-01-15 08:43:25   Found known binary: find (search tool) - /usr/bin/find
2021-01-15 08:43:25   Found known binary: g++ (compiler) - /usr/bin/g++
2021-01-15 08:43:25   Found known binary: gcc (compiler) - /usr/bin/gcc
2021-01-15 08:43:25   Found known binary: getent (query tool for name service switch libraries) - /usr/bin/getent
2021-01-15 08:43:25   Found known binary: grep (text search) - /usr/bin/grep
2021-01-15 08:43:25   Found known binary: gzip (compressing utility) - /usr/bin/gzip
2021-01-15 08:43:25   Found known binary: head (text filter) - /usr/bin/head
2021-01-15 08:43:25   Found known binary: journalctl (systemd journal) - /usr/bin/journalctl
2021-01-15 08:43:25   Found known binary: ls (file listing) - /usr/bin/ls
2021-01-15 08:43:25   Found known binary: lsattr (file attributes) - /usr/bin/lsattr
2021-01-15 08:43:25   Found known binary: lsblk (block devices) - /usr/bin/lsblk
2021-01-15 08:43:25   Found known binary: md5sum (hash tool) - /usr/bin/md5sum
2021-01-15 08:43:25   Found known binary: mount (disk utility) - /usr/bin/mount
2021-01-15 08:43:25 Found /usr/bin/mysql (version: )
2021-01-15 08:43:25   Found known binary: netstat (network statistics) - /usr/bin/netstat
2021-01-15 08:43:25 Found /usr/bin/openssl (version 1.1.1g)
2021-01-15 08:43:25 Found /usr/bin/perl (version 5.26.3)
2021-01-15 08:43:25   Found known binary: pgrep (search in process list) - /usr/bin/pgrep
2021-01-15 08:43:25   Found known binary: ps (process listing) - /usr/bin/ps
2021-01-15 08:43:25 Found known binary: python3 (programming language interpreter) - /usr/bin/python3 (version 3.6.8)
2021-01-15 08:43:25   Found known binary: readlink (follows symlinks) - /usr/bin/readlink
2021-01-15 08:43:25   Found known binary: resolvectl (systemd-resolved DNS resolver manager) - /usr/bin/resolvectl
2021-01-15 08:43:25   Found known binary: rpm (package manager) - /usr/bin/rpm
2021-01-15 08:43:25   Found known binary: sed (text stream editor) - /usr/bin/sed
2021-01-15 08:43:25   Found known binary: sha1/sha1sum/shasum (crypto hashing) - /usr/bin/sha1sum
2021-01-15 08:43:25   Found known binary: sha256/sha256sum (crypto hashing) - /usr/bin/sha256sum
2021-01-15 08:43:25   Found known binary: sort (sort data streams) - /usr/bin/sort
2021-01-15 08:43:25   Found known binary: ssh-keyscan (scanner for SSH keys) - /usr/bin/ssh-keyscan
2021-01-15 08:43:25   Found known binary: stat (file information) - /usr/bin/stat
2021-01-15 08:43:25   Found known binary: strings (text strings search) - /usr/bin/strings
2021-01-15 08:43:25   Found known binary: systemctl (client to systemd) - /usr/bin/systemctl
2021-01-15 08:43:25   Found known binary: systemd-analyze (systemd service analysis tool) - /usr/bin/systemd-analyze
2021-01-15 08:43:25   Found known binary: tail (text filter) - /usr/bin/tail
2021-01-15 08:43:25   Found known binary: timedatectl (timedate client) - /usr/bin/timedatectl
2021-01-15 08:43:25   Found known binary: tr (text transformation) - /usr/bin/tr
2021-01-15 08:43:25   Found known binary: uname (operating system details) - /usr/bin/uname
2021-01-15 08:43:25   Found known binary: uniq (text manipulation utility) - /usr/bin/uniq
2021-01-15 08:43:25   Found known binary: wc (word count) - /usr/bin/wc
2021-01-15 08:43:25 Found /usr/bin/wget (version 1.19.5)
2021-01-15 08:43:25   Found known binary: xargs (command output redirection) - /usr/bin/xargs
2021-01-15 08:43:25   Found known binary: yum (package manager) - /usr/bin/yum
2021-01-15 08:43:25   Found known binary: zgrep (text search for compressed files) - /usr/bin/zgrep
2021-01-15 08:43:25 Test: Checking binaries in directory /usr/sbin
2021-01-15 08:43:25 Directory /usr/sbin exists. Starting directory scanning...
2021-01-15 08:43:25   Found known binary: auditctl (control utility for audit daemon) - /usr/sbin/auditctl
2021-01-15 08:43:25   Found known binary: auditd (audit framework) - /usr/sbin/auditd
2021-01-15 08:43:25   Found known binary: blkid (information about block devices) - /usr/sbin/blkid
2021-01-15 08:43:25   Found known binary: chkconfig (administration tool) - /usr/sbin/chkconfig
2021-01-15 08:43:25   Found known binary: dmidecode (hardware collector tool) - /usr/sbin/dmidecode
2021-01-15 08:43:25   Found known binary: getcap (kernel capabilities) - /usr/sbin/getcap
2021-01-15 08:43:25   Found known binary: grpck (consistency checker) - /usr/sbin/grpck
2021-01-15 08:43:25   Found known binary: grub2-install (installer for boot loader) - /usr/sbin/grub2-install
2021-01-15 08:43:25   Found known binary: ipconfig (IP configuration) - /usr/sbin/ifconfig
2021-01-15 08:43:25   Found known binary: ip (IP configuration) - /usr/sbin/ip
2021-01-15 08:43:25   Found known binary: iptables (firewall) - /usr/sbin/iptables
2021-01-15 08:43:25   Found known binary: iptables-save (firewall) - /usr/sbin/iptables-save
2021-01-15 08:43:25   Found known binary: logrotate (log rotation tool) - /usr/sbin/logrotate
2021-01-15 08:43:25   Found known binary: lsmod (kernel modules) - /usr/sbin/lsmod
2021-01-15 08:43:25   Found known binary: lvdisplay (LVM tool) - /usr/sbin/lvdisplay
2021-01-15 08:43:25   Found known binary: modprobe (kernel modules) - /usr/sbin/modprobe
2021-01-15 08:43:25   Found known binary: nft (nftables client) - /usr/sbin/nft
2021-01-15 08:43:25   Found known binary: runlevel (system utility) - /usr/sbin/runlevel
2021-01-15 08:43:25   Found known binary: semanage (SELinux policy management tool) - /usr/sbin/semanage
2021-01-15 08:43:25   Found known binary: service (system services) - /usr/sbin/service
2021-01-15 08:43:25   Found known binary: sestatus (SELinux status tool) - /usr/sbin/sestatus
2021-01-15 08:43:25   Found known binary: ss (show sockets) - /usr/sbin/ss
2021-01-15 08:43:25 Found /usr/sbin/sshd (version 8.0)
2021-01-15 08:43:25   Found known binary: swapon (swap device tool) - /usr/sbin/swapon
2021-01-15 08:43:25   Found known binary: sysctl (kernel parameters) - /usr/sbin/sysctl
2021-01-15 08:43:25   Found known binary: tune2fs (file system tool) - /usr/sbin/tune2fs
2021-01-15 08:43:25   Found known binary: vgdisplay (LVM tool) - /usr/sbin/vgdisplay
2021-01-15 08:43:25 Test: Checking binaries in directory /usr/local/bin
2021-01-15 08:43:25 Directory /usr/local/bin exists. Starting directory scanning...
2021-01-15 08:43:25 Test: Checking binaries in directory /usr/local/sbin
2021-01-15 08:43:25 Directory /usr/local/sbin exists. Starting directory scanning...
2021-01-15 08:43:25 Discovered directories: /usr/bin,/usr/sbin,/usr/local/bin,/usr/local/sbin
2021-01-15 08:43:25 Result: found 1410 binaries including 15 set-uid and 1 set-gid
2021-01-15 08:43:25 Result: set-uid binaries: /usr/bin/chage /usr/bin/crontab /usr/bin/gpasswd /usr/bin/mount /usr/bin/newgrp /usr/bin/passwd /usr/bin/pkexec /usr/bin/sg /usr/bin/su /usr/bin/sudo /usr/bin/sudoedit /usr/bin/umount /usr/sbin/grub2-set-bootflag /usr/sbin/pam_timestamp_check /usr/sbin/unix_chkpwd 
2021-01-15 08:43:25 Result: set-gid binaries: /usr/bin/write 
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Informational: package manager is used
2021-01-15 08:43:25 Test: Determine if this system is a virtual machine
2021-01-15 08:43:25 Result: facter utility not found
2021-01-15 08:43:25 Test: trying to guess virtualization technology with systemd-detect-virt
2021-01-15 08:43:25 Result: found none
2021-01-15 08:43:25 Result: skipped lscpu test, as we already found machine type
2021-01-15 08:43:25 Result: skipped dmidecode test, as we already found machine type
2021-01-15 08:43:25 Result: skipped processes test, as we already found platform
2021-01-15 08:43:25 Result: skipped Amazon EC2 test, as we already found platform
2021-01-15 08:43:25 Result: skipped sysctl test, as we already found platform
2021-01-15 08:43:25 Result: skipped lshw test, as we already found machine type
2021-01-15 08:43:25 Result: Unknown virtualization type, so most likely system is physical
2021-01-15 08:43:25 Result: unknown if this system is a virtual machine
2021-01-15 08:43:25 Result: Lynis is not running in container
2021-01-15 08:43:25 Result: system is using systemd
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Action: Performing plugin tests
2021-01-15 08:43:25 Searching plugins...
2021-01-15 08:43:25 Result: Found 0 plugins of which 0 are enabled
2021-01-15 08:43:25 Result: Plugins phase 1 finished
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Result: No eth0 found (ether found), using first network interface to determine hostid (with ifconfig)
2021-01-15 08:43:25 Info: using hardware address 02:42:bb:9e:96:fa to create ID
2021-01-15 08:43:25 Result: Found HostID: 834817bc540517ef760955a554344c92228306c3
2021-01-15 08:43:25 Info: creating a HostID (version 2)
2021-01-15 08:43:25 Result: found file ssh_host_ed25519_key.pub in /etc/ssh, using that to create host identifier
2021-01-15 08:43:25 Using SSH public key to create the second host identifier
2021-01-15 08:43:25 Hash (hostname): b56cb6a004f15635734d9aca0958c8b9e5962e56db1c308384536985c4013ef6
2021-01-15 08:43:25 Hash (ssh or machineid): f807d0aa42dc277d093ac222dd6ec8c840b7167c58d7dce1aabe8b5b71ade113
2021-01-15 08:43:25 Info: found valid HostID 834817bc540517ef760955a554344c92228306c3
2021-01-15 08:43:25 Info: no machine ID found
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Info: perform tests from all categories
2021-01-15 08:43:25 Security check: file is normal
2021-01-15 08:43:25 Checking permissions of /usr/share/lynis/include/tests_boot_services
2021-01-15 08:43:25 File permissions are OK
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Action: Performing tests from category: Boot and services
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Skipped test BOOT-5102 (Check for AIX boot device)
2021-01-15 08:43:25 Reason to skip: Incorrect guest OS (AIX only)
2021-01-15 08:43:25 ====
2021-01-15 08:43:25 Performing test ID BOOT-5104 (Determine service manager)
2021-01-15 08:43:25 Result: cmdline found = /usr/lib/systemd/systemd --switched-root --system --deserialize 18
2021-01-15 08:43:26 Result: file on disk = /usr/lib/systemd/systemd
2021-01-15 08:43:26 Found: systemd
2021-01-15 08:43:26 Result: service manager found = systemd
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5106 (Check EFI boot file on Mac OS X/macOS)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (macOS only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5108 (Check Syslinux as bootloader)
2021-01-15 08:43:26 Test: checking if file /boot/syslinux/syslinux.cfg exists
2021-01-15 08:43:26 Result: file /boot/syslinux/syslinux.cfg NOT found
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5109 (Check rEFInd as bootloader)
2021-01-15 08:43:26 Test: checking if file /boot/refind_linux.conf exists
2021-01-15 08:43:26 Result: file /boot/refind_linux.conf NOT found
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5116 (Check if system is booted in UEFI mode)
2021-01-15 08:43:26 Test: checking if UEFI is used
2021-01-15 08:43:26 Result: system booted in UEFI mode
2021-01-15 08:43:26 Test: determine if Secure Boot is used
2021-01-15 08:43:26 Test: checking file /sys/firmware/efi/efivars/SecureBoot-8be4df61-93ca-11d2-aa0d-00e098032b8c
2021-01-15 08:43:26 Result: system not booted with Secure Boot (status 0 in file /sys/firmware/efi/efivars/SecureBoot-8be4df61-93ca-11d2-aa0d-00e098032b8c)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5117 (Check for systemd-boot bootloader presence)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5121 (Check for GRUB boot loader presence)
2021-01-15 08:43:26 Test: Checking for presence GRUB conf file (/boot/grub/grub.conf or /boot/grub/menu.lst)
2021-01-15 08:43:26 Result: no GRUB configuration file found.
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5122 (Check for GRUB boot password)
2021-01-15 08:43:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5124 (Check for FreeBSD boot loader presence)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (FreeBSD only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5261 (Check for DragonFly boot loader presence)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (DragonFly only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5126 (Check for NetBSD boot loader presence)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (NetBSD only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5139 (Check for LILO boot loader presence)
2021-01-15 08:43:26 Test: checking for presence LILO configuration file
2021-01-15 08:43:26 Result: LILO configuration file not found
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5142 (Check SPARC Improved boot loader (SILO))
2021-01-15 08:43:26 Result: no SILO configuration file found.
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5155 (Check for YABOOT boot loader configuration file)
2021-01-15 08:43:26 Test: Check for /etc/yaboot.conf
2021-01-15 08:43:26 Result: no YABOOT configuration file found.
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5159 (Check for OpenBSD boot loader presence)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (OpenBSD only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5165 (Check for FreeBSD boot services)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (FreeBSD only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5170 (Check for Solaris boot daemons)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5177 (Check for Linux boot and running services)
2021-01-15 08:43:26 Test: checking presence systemctl binary
2021-01-15 08:43:26 Result: systemctl binary found, trying that to discover information
2021-01-15 08:43:26 Searching for running services (systemctl services only)
2021-01-15 08:43:26 Found running service: auditd
2021-01-15 08:43:26 Found running service: chronyd
2021-01-15 08:43:26 Found running service: containerd
2021-01-15 08:43:26 Found running service: crond
2021-01-15 08:43:26 Found running service: dbus
2021-01-15 08:43:26 Found running service: docker
2021-01-15 08:43:26 Found running service: getty@tty1
2021-01-15 08:43:26 Found running service: irqbalance
2021-01-15 08:43:26 Found running service: NetworkManager
2021-01-15 08:43:26 Found running service: polkit
2021-01-15 08:43:26 Found running service: rngd
2021-01-15 08:43:26 Found running service: rsyslog
2021-01-15 08:43:26 Found running service: sshd
2021-01-15 08:43:26 Found running service: sssd
2021-01-15 08:43:26 Found running service: systemd-journald
2021-01-15 08:43:26 Found running service: systemd-logind
2021-01-15 08:43:26 Found running service: systemd-udevd
2021-01-15 08:43:26 Found running service: user@0
2021-01-15 08:43:26 Hint: Run systemctl --full --type=service to see all services
2021-01-15 08:43:26 Result: Found 18 running services
2021-01-15 08:43:26 Searching for enabled services (systemctl services only)
2021-01-15 08:43:26 Found enabled service at boot: NetworkManager-dispatcher
2021-01-15 08:43:26 Found enabled service at boot: NetworkManager-wait-online
2021-01-15 08:43:26 Found enabled service at boot: NetworkManager
2021-01-15 08:43:26 Found enabled service at boot: auditd
2021-01-15 08:43:26 Found enabled service at boot: autovt@
2021-01-15 08:43:26 Found enabled service at boot: chronyd
2021-01-15 08:43:26 Found enabled service at boot: crond
2021-01-15 08:43:26 Found enabled service at boot: dbus-org.fedoraproject.FirewallD1
2021-01-15 08:43:26 Found enabled service at boot: dbus-org.freedesktop.nm-dispatcher
2021-01-15 08:43:26 Found enabled service at boot: dbus-org.freedesktop.timedate1
2021-01-15 08:43:26 Found enabled service at boot: docker
2021-01-15 08:43:26 Found enabled service at boot: firewalld
2021-01-15 08:43:26 Found enabled service at boot: getty@
2021-01-15 08:43:26 Found enabled service at boot: import-state
2021-01-15 08:43:26 Found enabled service at boot: irqbalance
2021-01-15 08:43:26 Found enabled service at boot: kdump
2021-01-15 08:43:26 Found enabled service at boot: loadmodules
2021-01-15 08:43:26 Found enabled service at boot: lvm2-monitor
2021-01-15 08:43:26 Found enabled service at boot: microcode
2021-01-15 08:43:26 Found enabled service at boot: nis-domainname
2021-01-15 08:43:26 Found enabled service at boot: rngd
2021-01-15 08:43:26 Found enabled service at boot: rsyslog
2021-01-15 08:43:26 Found enabled service at boot: selinux-autorelabel-mark
2021-01-15 08:43:26 Found enabled service at boot: sshd
2021-01-15 08:43:26 Found enabled service at boot: sssd
2021-01-15 08:43:26 Found enabled service at boot: syslog
2021-01-15 08:43:26 Found enabled service at boot: timedatex
2021-01-15 08:43:26 Found enabled service at boot: tuned
2021-01-15 08:43:26 Hint: Run systemctl list-unit-files --type=service to see all services
2021-01-15 08:43:26 Result: Found 28 enabled services
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5180 (Check for Linux boot services (Debian style))
2021-01-15 08:43:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5184 (Check permissions for boot files/scripts)
2021-01-15 08:43:26 Result: checking /etc/init.d scripts for writable bit
2021-01-15 08:43:26 Test: checking if directory /etc/init.d exists
2021-01-15 08:43:26 Result: directory /etc/init.d found
2021-01-15 08:43:26 Test: checking for available files in directory
2021-01-15 08:43:26 Result: found no files in directory.
2021-01-15 08:43:26 Test: checking if directory /etc/rc.d exists
2021-01-15 08:43:26 Result: directory /etc/rc.d found
2021-01-15 08:43:26 Test: checking for available files in directory
2021-01-15 08:43:26 Result: found files in directory, checking permissions now
2021-01-15 08:43:26 Test: checking permissions of file /etc/rc.d/init.d/README
2021-01-15 08:43:26 Result: good, file /etc/rc.d/init.d/README not world writable
2021-01-15 08:43:26 Test: checking permissions of file /etc/rc.d/init.d/functions
2021-01-15 08:43:26 Result: good, file /etc/rc.d/init.d/functions not world writable
2021-01-15 08:43:26 Test: checking permissions of file /etc/rc.d/rc.local
2021-01-15 08:43:26 Result: good, file /etc/rc.d/rc.local not world writable
2021-01-15 08:43:26 Test: checking if directory /etc/rcS.d exists
2021-01-15 08:43:26 Result: directory /etc/rcS.d not found. Skipping..
2021-01-15 08:43:26 Test: Checking /etc/rc0.d scripts for writable bit
2021-01-15 08:43:26 Test: Checking /etc/rc1.d scripts for writable bit
2021-01-15 08:43:26 Test: Checking /etc/rc2.d scripts for writable bit
2021-01-15 08:43:26 Test: Checking /etc/rc3.d scripts for writable bit
2021-01-15 08:43:26 Test: Checking /etc/rc4.d scripts for writable bit
2021-01-15 08:43:26 Test: Checking /etc/rc5.d scripts for writable bit
2021-01-15 08:43:26 Test: Checking /etc/rc6.d scripts for writable bit
2021-01-15 08:43:26 Action: checking symlink for file /etc/rc.local
2021-01-15 08:43:26 Note: Using real readlink binary to determine symlink on /etc/rc.local
2021-01-15 08:43:26 Result: readlink shows /etc/rc.d/rc.local as output
2021-01-15 08:43:26 Result: symlink found, pointing to file /etc/rc.d/rc.local
2021-01-15 08:43:26 Result: found the path behind this symlink (/etc/rc.d/rc.local --> /etc/rc.local)
2021-01-15 08:43:26 Test: Checking /etc/rc.d/rc.local file for writable bit
2021-01-15 08:43:26 Result: good, file /etc/rc.d/rc.local not world writable
2021-01-15 08:43:26 Hardening: assigned maximum number of hardening points for this item (3). Currently having 3 points (out of 3)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5202 (Check uptime of system)
2021-01-15 08:43:26 Uptime (in seconds): 306559
2021-01-15 08:43:26 Uptime (in days): 3
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID BOOT-5260 (Check single user mode for systemd)
2021-01-15 08:43:26 Test: Searching /usr/lib/systemd/system/rescue.service
2021-01-15 08:43:26 Result: file /usr/lib/systemd/system/rescue.service
2021-01-15 08:43:26 Test: checking presence sulogin for single user mode
2021-01-15 08:43:26 Result: found sulogin, so single user is protected
2021-01-15 08:43:26 Hardening: assigned maximum number of hardening points for this item (3). Currently having 6 points (out of 6)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5262 (Check for OpenBSD boot daemons)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (OpenBSD only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5263 (Check permissions for boot files/scripts)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (OpenBSD only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test BOOT-5264 (Run systemd-analyze security)
2021-01-15 08:43:26 Reason to skip: systemd-analyze too old (v239), need at least v240
2021-01-15 08:43:26 Security check: file is normal
2021-01-15 08:43:26 Checking permissions of /usr/share/lynis/include/tests_kernel
2021-01-15 08:43:26 File permissions are OK
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Action: Performing tests from category: Kernel
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID KRNL-5622 (Determine Linux default run level)
2021-01-15 08:43:26 Test: Checking for systemd default.target
2021-01-15 08:43:26 Result: symlink found
2021-01-15 08:43:26 Result: No match found on runlevel, defaulting to runlevel 3
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID KRNL-5677 (Check CPU options and support)
2021-01-15 08:43:26 Test: Checking /proc/cpuinfo
2021-01-15 08:43:26 Result: found /proc/cpuinfo
2021-01-15 08:43:26 Test: Checking CPU options (XD/NX/PAE)
2021-01-15 08:43:26 PAE: Yes
2021-01-15 08:43:26 NX: Yes
2021-01-15 08:43:26 Result: PAE or No eXecute option(s) both found
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID KRNL-5695 (Determine Linux kernel version and release number)
2021-01-15 08:43:26 Result: found kernel release 4.18.0-193.28.1.el8_2.x86_64
2021-01-15 08:43:26 Result: found kernel version #1 SMP Thu Oct 22 00:20:22 UTC 2020
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID KRNL-5723 (Determining if Linux kernel is monolithic)
2021-01-15 08:43:26 Test: checking if kernel is monolithic or modular
2021-01-15 08:43:26 Result: Found modular kernel
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID KRNL-5726 (Checking Linux loaded kernel modules)
2021-01-15 08:43:26 Loaded modules according lsmod:
2021-01-15 08:43:26 Loaded module: acpi_pad
2021-01-15 08:43:26 Loaded module: acpi_power_meter
2021-01-15 08:43:26 Loaded module: ahci
2021-01-15 08:43:26 Loaded module: ast
2021-01-15 08:43:26 Loaded module: authenc
2021-01-15 08:43:26 Loaded module: br_netfilter
2021-01-15 08:43:26 Loaded module: bridge
2021-01-15 08:43:26 Loaded module: coretemp
2021-01-15 08:43:26 Loaded module: crc32_pclmul
2021-01-15 08:43:26 Loaded module: crc32c_intel
2021-01-15 08:43:26 Loaded module: crct10dif_pclmul
2021-01-15 08:43:26 Loaded module: dca
2021-01-15 08:43:26 Loaded module: dh_generic
2021-01-15 08:43:26 Loaded module: dm_log
2021-01-15 08:43:26 Loaded module: dm_mirror
2021-01-15 08:43:26 Loaded module: dm_mod
2021-01-15 08:43:26 Loaded module: dm_region_hash
2021-01-15 08:43:26 Loaded module: drm
2021-01-15 08:43:26 Loaded module: drm_kms_helper
2021-01-15 08:43:26 Loaded module: drm_vram_helper
2021-01-15 08:43:26 Loaded module: ext4
2021-01-15 08:43:26 Loaded module: fat
2021-01-15 08:43:26 Loaded module: fb_sys_fops
2021-01-15 08:43:26 Loaded module: ghash_clmulni_intel
2021-01-15 08:43:26 Loaded module: i2c_algo_bit
2021-01-15 08:43:26 Loaded module: i2c_i801
2021-01-15 08:43:26 Loaded module: i40e
2021-01-15 08:43:26 Loaded module: iTCO_vendor_support
2021-01-15 08:43:26 Loaded module: iTCO_wdt
2021-01-15 08:43:26 Loaded module: intel_cstate
2021-01-15 08:43:26 Loaded module: intel_powerclamp
2021-01-15 08:43:26 Loaded module: intel_qat
2021-01-15 08:43:26 Loaded module: intel_rapl_common
2021-01-15 08:43:26 Loaded module: intel_rapl_msr
2021-01-15 08:43:26 Loaded module: intel_rapl_perf
2021-01-15 08:43:26 Loaded module: intel_uncore
2021-01-15 08:43:26 Loaded module: ioatdma
2021-01-15 08:43:26 Loaded module: ip_tables
2021-01-15 08:43:26 Loaded module: ipmi_devintf
2021-01-15 08:43:26 Loaded module: ipmi_msghandler
2021-01-15 08:43:26 Loaded module: ipmi_si
2021-01-15 08:43:26 Loaded module: ipmi_ssif
2021-01-15 08:43:26 Loaded module: ipt_MASQUERADE
2021-01-15 08:43:26 Loaded module: irqbypass
2021-01-15 08:43:26 Loaded module: jbd2
2021-01-15 08:43:26 Loaded module: joydev
2021-01-15 08:43:26 Loaded module: kvm
2021-01-15 08:43:26 Loaded module: kvm_intel
2021-01-15 08:43:26 Loaded module: libahci
2021-01-15 08:43:26 Loaded module: libata
2021-01-15 08:43:26 Loaded module: libcrc32c
2021-01-15 08:43:26 Loaded module: libnvdimm
2021-01-15 08:43:26 Loaded module: llc
2021-01-15 08:43:26 Loaded module: lpc_ich
2021-01-15 08:43:26 Loaded module: mbcache
2021-01-15 08:43:26 Loaded module: mei
2021-01-15 08:43:26 Loaded module: mei_me
2021-01-15 08:43:26 Loaded module: nf_conntrack
2021-01-15 08:43:26 Loaded module: nf_conntrack_ipv4
2021-01-15 08:43:26 Loaded module: nf_conntrack_netlink
2021-01-15 08:43:26 Loaded module: nf_defrag_ipv4
2021-01-15 08:43:26 Loaded module: nf_nat
2021-01-15 08:43:26 Loaded module: nf_nat_ipv4
2021-01-15 08:43:26 Loaded module: nf_tables
2021-01-15 08:43:26 Loaded module: nfit
2021-01-15 08:43:26 Loaded module: nfnetlink
2021-01-15 08:43:26 Loaded module: nft_chain_nat_ipv4
2021-01-15 08:43:26 Loaded module: nft_compat
2021-01-15 08:43:26 Loaded module: nft_counter
2021-01-15 08:43:26 Loaded module: nvme
2021-01-15 08:43:26 Loaded module: nvme_core
2021-01-15 08:43:26 Loaded module: overlay
2021-01-15 08:43:26 Loaded module: pcspkr
2021-01-15 08:43:26 Loaded module: qat_c62x
2021-01-15 08:43:26 Loaded module: sd_mod
2021-01-15 08:43:26 Loaded module: sg
2021-01-15 08:43:26 Loaded module: sha512_generic
2021-01-15 08:43:26 Loaded module: sha512_ssse3
2021-01-15 08:43:26 Loaded module: skx_edac
2021-01-15 08:43:26 Loaded module: stp
2021-01-15 08:43:26 Loaded module: syscopyarea
2021-01-15 08:43:26 Loaded module: sysfillrect
2021-01-15 08:43:26 Loaded module: sysimgblt
2021-01-15 08:43:26 Loaded module: ttm
2021-01-15 08:43:26 Loaded module: veth
2021-01-15 08:43:26 Loaded module: vfat
2021-01-15 08:43:26 Loaded module: wmi
2021-01-15 08:43:26 Loaded module: x86_pkg_temp_thermal
2021-01-15 08:43:26 Loaded module: xfs
2021-01-15 08:43:26 Loaded module: xt_addrtype
2021-01-15 08:43:26 Loaded module: xt_conntrack
2021-01-15 08:43:26 Loaded module: xt_nat
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID KRNL-5728 (Checking Linux kernel config)
2021-01-15 08:43:26 Result: found config (/boot/config-4.18.0-193.28.1.el8_2.x86_64)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID KRNL-5730 (Checking disk I/O kernel scheduler)
2021-01-15 08:43:26 Test: Checking the default I/O kernel scheduler
2021-01-15 08:43:26 Result: no default I/O kernel scheduler found
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test KRNL-5745 (Checking FreeBSD loaded kernel modules)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (FreeBSD only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test KRNL-5831 (Checking DragonFly loaded kernel modules)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (DragonFly only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test KRNL-5770 (Checking active kernel modules)
2021-01-15 08:43:26 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Skipped test KRNL-5788 (Checking availability new Linux kernel)
2021-01-15 08:43:26 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:26 ====
2021-01-15 08:43:26 Performing test ID KRNL-5820 (Checking core dumps configuration)
2021-01-15 08:43:26 Test: Checking presence of systemd
2021-01-15 08:43:26 Result: systemd is present on this system
2021-01-15 08:43:26 Test: Checking if core dumps are disabled in /etc/systemd/coredump.conf and /etc/systemd/coredump.conf.d/*.conf
2021-01-15 08:43:26 Result: core dumps are not disabled in systemd configuration. Didn't find settings 'ProcessSizeMax=0' and 'Storage=none'
2021-01-15 08:43:26 Hardening: assigned partial number of hardening points (0 of 1). Currently having 6 points (out of 7)
2021-01-15 08:43:26 Test: Checking presence /etc/profile
2021-01-15 08:43:26 Test: Checking if 'ulimit -c 0' exists in /etc/profile or /etc/profile.d/*.sh
2021-01-15 08:43:26 Result: core dumps are not disabled in /etc/profile or /etc/profile.d/*.sh config files. Didn't find setting 'ulimit -c 0'
2021-01-15 08:43:26 Hardening: assigned partial number of hardening points (0 of 1). Currently having 6 points (out of 8)
2021-01-15 08:43:26 Test: Checking presence /etc/security/limits.conf
2021-01-15 08:43:26 Result: file /etc/security/limits.conf exists
2021-01-15 08:43:26 Test: Checking if core dumps are disabled in /etc/security/limits.conf and /etc/security/limits.d/*
2021-01-15 08:43:27 Result: core dumps are not explicitly disabled
2021-01-15 08:43:27 Suggestion: If not required, consider explicit disabling of core dump in /etc/security/limits.conf file [test:KRNL-5820] [details:-] [solution:-]
2021-01-15 08:43:27 Hardening: assigned partial number of hardening points (1 of 3). Currently having 7 points (out of 11)
2021-01-15 08:43:27 Test: Checking sysctl value of fs.suid_dumpable
2021-01-15 08:43:27 Result: value 0 found
2021-01-15 08:43:27 Result: found default option (0), no execute only program or program with changed privilege levels can dump
2021-01-15 08:43:27 Hardening: assigned maximum number of hardening points for this item (1). Currently having 8 points (out of 12)
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID KRNL-5830 (Checking if system is running on the latest installed kernel)
2021-01-15 08:43:27 Test: Checking presence /var/run/reboot-required.pkgs
2021-01-15 08:43:27 Result: file /var/run/reboot-required.pkgs not found
2021-01-15 08:43:27 Result: /boot exists, performing more tests from here
2021-01-15 08:43:27 Result: found /boot/vmlinuz-4.18.0-193.28.1.el8_2.x86_64
2021-01-15 08:43:27 Result: version derived from file name is '4.18.0-193.28.1.el8_2.x86_64'
2021-01-15 08:43:27 Result: found version 4.18.0-193.28.1.el8_2.x86_64
2021-01-15 08:43:27 Result: active kernel version 4.18.0-193.28.1.el8_2.x86_64
2021-01-15 08:43:27 Result: no reboot needed, active kernel is the same version as the one on disk
2021-01-15 08:43:27 Result: /var/cache/apt/archives/ does not exist
2021-01-15 08:43:27 Hardening: assigned maximum number of hardening points for this item (5). Currently having 13 points (out of 17)
2021-01-15 08:43:27 Security check: file is normal
2021-01-15 08:43:27 Checking permissions of /usr/share/lynis/include/tests_memory_processes
2021-01-15 08:43:27 File permissions are OK
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Action: Performing tests from category: Memory and Processes
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID PROC-3602 (Checking /proc/meminfo for memory details)
2021-01-15 08:43:27 Result: found /proc/meminfo
2021-01-15 08:43:27 Result: Found 394645644 kB memory
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Skipped test PROC-3604 (Query prtconf for memory details)
2021-01-15 08:43:27 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID PROC-3612 (Check dead or zombie processes)
2021-01-15 08:43:27 Result: no zombie processes found
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID PROC-3614 (Check heavy IO waiting based processes)
2021-01-15 08:43:27 Result: No processes were waiting for IO requests to be handled first
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID PROC-3802 (Check presence of prelink tooling)
2021-01-15 08:43:27 Result: prelink package is NOT installed
2021-01-15 08:43:27 Hardening: assigned maximum number of hardening points for this item (3). Currently having 16 points (out of 20)
2021-01-15 08:43:27 Security check: file is normal
2021-01-15 08:43:27 Checking permissions of /usr/share/lynis/include/tests_authentication
2021-01-15 08:43:27 File permissions are OK
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Action: Performing tests from category: Users, Groups and Authentication
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9204 (Check users with an UID of zero)
2021-01-15 08:43:27 Test: Searching accounts with UID 0
2021-01-15 08:43:27 Result: No accounts found with UID 0 other than root.
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9208 (Check non-unique accounts in passwd file)
2021-01-15 08:43:27 Test: Checking for non-unique accounts
2021-01-15 08:43:27 Result: all accounts found in /etc/passwd are unique
2021-01-15 08:43:27 Remarks: Non unique UIDs can be a risk for the system or part of a configuration mistake
2021-01-15 08:43:27 Prerequisite test: /usr/sbin/chkgrp
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Skipped test AUTH-9212 (Test group file)
2021-01-15 08:43:27 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9216 (Check group and shadow group files)
2021-01-15 08:43:27 Test: Checking for grpck binary output
2021-01-15 08:43:27 Result: grpck binary didn't find any errors in the group files
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Skipped test AUTH-9218 (Check login shells for passwordless accounts)
2021-01-15 08:43:27 Reason to skip: Incorrect guest OS (DragonFly FreeBSD NetBSD OpenBSD only)
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9222 (Check unique groups (IDs))
2021-01-15 08:43:27 Test: Checking for non unique group ID's in /etc/group
2021-01-15 08:43:27 Result: All group ID's are unique
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9226 (Check unique group names)
2021-01-15 08:43:27 Test: Checking for non unique group names in /etc/group
2021-01-15 08:43:27 Result: All group names are unique
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9228 (Check password file consistency with pwck)
2021-01-15 08:43:27 Test: Checking password file consistency (pwck)
2021-01-15 08:43:27 Result: pwck check didn't find any problems
2021-01-15 08:43:27 Hardening: assigned maximum number of hardening points for this item (2). Currently having 18 points (out of 22)
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9229 (Check password hashing methods)
2021-01-15 08:43:27 Test: Checking password hashing methods
2021-01-15 08:43:27 Result: poor password hashing methods found: sha256crypt/sha512crypt(default<=5000rounds) 
2021-01-15 08:43:27 Suggestion: Check PAM configuration, add rounds if applicable and expire passwords to encrypt with new values [test:AUTH-9229] [details:-] [solution:-]
2021-01-15 08:43:27 Hardening: assigned partial number of hardening points (0 of 2). Currently having 18 points (out of 24)
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9230 (Check password hashing rounds)
2021-01-15 08:43:27 Test: Checking SHA_CRYPT_{MIN,MAX}_ROUNDS option in /etc/login.defs
2021-01-15 08:43:27 Result: number of password hashing rounds is not configured
2021-01-15 08:43:27 Suggestion: Configure password hashing rounds in /etc/login.defs [test:AUTH-9230] [details:-] [solution:-]
2021-01-15 08:43:27 Hardening: assigned partial number of hardening points (0 of 2). Currently having 18 points (out of 26)
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9234 (Query user accounts)
2021-01-15 08:43:27 Test: Read system users (including root user) from password database (e.g. /etc/passwd)
2021-01-15 08:43:27 Result: found minimal user id specified: 1000
2021-01-15 08:43:27 Linux real users output (ID = 0, or 1000+, but not 65534):
2021-01-15 08:43:27 Real user: root,0
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9240 (Query NIS+ authentication support)
2021-01-15 08:43:27 Result: NIS+ authentication not enabled
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9242 (Query NIS authentication support)
2021-01-15 08:43:27 Result: NIS authentication not enabled
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9250 (Checking sudoers file)
2021-01-15 08:43:27 Test: checking presence /etc/sudoers
2021-01-15 08:43:27 Result: found file (/etc/sudoers)
2021-01-15 08:43:27 Test: checking presence /usr/local/etc/sudoers
2021-01-15 08:43:27 Result: file /usr/local/etc/sudoers not found
2021-01-15 08:43:27 Test: checking presence /usr/pkg/etc/sudoers
2021-01-15 08:43:27 Result: file /usr/pkg/etc/sudoers not found
2021-01-15 08:43:27 Result: sudoers file found (/etc/sudoers)
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9252 (Check ownership and permissions for sudo configuration files)
2021-01-15 08:43:27 Test: checking drop-in directory (/etc/sudoers.d)
2021-01-15 08:43:27 Result: Found directory permissions: rwxr-x--- and owner UID GID: 00
2021-01-15 08:43:27 Result: directory /etc/sudoers.d permissions OK
2021-01-15 08:43:27 Result: directory /etc/sudoers.d ownership OK
2021-01-15 08:43:27 Test: checking file (/etc/sudoers)
2021-01-15 08:43:27 Result: Found file permissions: r--r----- and owner UID GID: 00
2021-01-15 08:43:27 Result: file /etc/sudoers permissions OK
2021-01-15 08:43:27 Result: file /etc/sudoers ownership OK
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Skipped test AUTH-9254 (Solaris passwordless accounts)
2021-01-15 08:43:27 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9262 (Checking presence password strength testing tools (PAM))
2021-01-15 08:43:27 Searching PAM password testing modules (cracklib, passwdqc, pwquality)
2021-01-15 08:43:27 Result: found pam_cracklib.so (crack library PAM) in /lib64/security
2021-01-15 08:43:27 Result: found pam_pwquality.so (password quality control PAM) in /lib64/security
2021-01-15 08:43:27 Result: pam_cracklib.so found
2021-01-15 08:43:27 Result: pam_passwdqc.so NOT found (passwd quality control PAM)
2021-01-15 08:43:27 Result: pam_pwquality.so found
2021-01-15 08:43:27 Result: found at least one PAM module for password strength testing
2021-01-15 08:43:27 Hardening: assigned maximum number of hardening points for this item (3). Currently having 21 points (out of 29)
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9264 (Checking presence pam.conf)
2021-01-15 08:43:27 Test: Checking file /etc/pam.conf
2021-01-15 08:43:27 Result: file /etc/pam.conf could not be found
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9266 (Checking presence pam.d files)
2021-01-15 08:43:27 Test: Checking directory /etc/pam.d
2021-01-15 08:43:27 Result: directory /etc/pam.d exists
2021-01-15 08:43:27 Test: searching PAM configuration files
2021-01-15 08:43:27 Found file: /etc/pam.d/config-util
2021-01-15 08:43:27 Found file: /etc/pam.d/crond
2021-01-15 08:43:27 Found file: /etc/pam.d/fingerprint-auth
2021-01-15 08:43:27 Found file: /etc/pam.d/login
2021-01-15 08:43:27 Found file: /etc/pam.d/other
2021-01-15 08:43:27 Found file: /etc/pam.d/passwd
2021-01-15 08:43:27 Found file: /etc/pam.d/password-auth
2021-01-15 08:43:27 Found file: /etc/pam.d/polkit-1
2021-01-15 08:43:27 Found file: /etc/pam.d/postlogin
2021-01-15 08:43:27 Found file: /etc/pam.d/remote
2021-01-15 08:43:27 Found file: /etc/pam.d/runuser
2021-01-15 08:43:27 Found file: /etc/pam.d/runuser-l
2021-01-15 08:43:27 Found file: /etc/pam.d/smartcard-auth
2021-01-15 08:43:27 Found file: /etc/pam.d/sshd
2021-01-15 08:43:27 Found file: /etc/pam.d/sssd-shadowutils
2021-01-15 08:43:27 Found file: /etc/pam.d/su
2021-01-15 08:43:27 Found file: /etc/pam.d/su-l
2021-01-15 08:43:27 Found file: /etc/pam.d/sudo
2021-01-15 08:43:27 Found file: /etc/pam.d/sudo-i
2021-01-15 08:43:27 Found file: /etc/pam.d/system-auth
2021-01-15 08:43:27 Found file: /etc/pam.d/systemd-user
2021-01-15 08:43:27 Found file: /etc/pam.d/vlock
2021-01-15 08:43:27 ====
2021-01-15 08:43:27 Performing test ID AUTH-9268 (Checking presence pam.d files)
2021-01-15 08:43:27 Test: Searching pam modules
2021-01-15 08:43:27 Test: Checking /lib/arm-linux-gnueabihf/security
2021-01-15 08:43:27 Result: directory /lib/arm-linux-gnueabihf/security could not be found or is a symlink to another directory
2021-01-15 08:43:27 Test: Checking /lib/i386-linux-gnu/security
2021-01-15 08:43:27 Result: directory /lib/i386-linux-gnu/security could not be found or is a symlink to another directory
2021-01-15 08:43:27 Test: Checking /lib/security
2021-01-15 08:43:27 Result: directory /lib/security could not be found or is a symlink to another directory
2021-01-15 08:43:27 Test: Checking /lib/x86_64-linux-gnu/security
2021-01-15 08:43:27 Result: directory /lib/x86_64-linux-gnu/security could not be found or is a symlink to another directory
2021-01-15 08:43:27 Test: Checking /lib64/security
2021-01-15 08:43:27 Result: directory /lib64/security exists
2021-01-15 08:43:27 Found file: /lib64/security/pam_access.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_cap.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_chroot.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_console.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_cracklib.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_debug.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_deny.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_echo.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_env.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_exec.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_faildelay.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_faillock.so
2021-01-15 08:43:27 Found file: /lib64/security/pam_filter.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_ftp.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_group.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_issue.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_keyinit.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_lastlog.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_limits.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_listfile.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_localuser.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_loginuid.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_mail.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_mkhomedir.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_motd.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_namespace.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_nologin.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_permit.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_postgresok.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_pwhistory.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_pwquality.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_rhosts.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_rootok.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_securetty.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_selinux.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_sepermit.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_shells.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_sss.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_stress.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_succeed_if.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_systemd.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_time.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_timestamp.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_tty_audit.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_umask.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_unix.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_userdb.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_warn.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_wheel.so
2021-01-15 08:43:28 Found file: /lib64/security/pam_xauth.so
2021-01-15 08:43:28 Test: Checking /usr/lib
2021-01-15 08:43:28 Result: directory /usr/lib exists
2021-01-15 08:43:28 Test: Checking /usr/lib/security
2021-01-15 08:43:28 Result: directory /usr/lib/security could not be found or is a symlink to another directory
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID AUTH-9278 (Determine LDAP support in PAM files)
2021-01-15 08:43:28 Test: checking presence /etc/pam.d/common-auth
2021-01-15 08:43:28 Result: file /etc/pam.d/common-auth not found, skipping test
2021-01-15 08:43:28 Test: checking presence /etc/pam.d/system-auth
2021-01-15 08:43:28 Result: file /etc/pam.d/system-auth exists
2021-01-15 08:43:28 Test: checking presence LDAP module
2021-01-15 08:43:28 Result: LDAP module not found
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID AUTH-9282 (Checking password protected account without expire date)
2021-01-15 08:43:28 Test: Checking Linux version and password expire date status
2021-01-15 08:43:28 Result: found one or more accounts without expire date set
2021-01-15 08:43:28 Account without expire date: root
2021-01-15 08:43:28 Suggestion: When possible set expire dates for all password protected accounts [test:AUTH-9282] [details:-] [solution:-]
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID AUTH-9283 (Checking accounts without password)
2021-01-15 08:43:28 Test: Checking passwordless accounts
2021-01-15 08:43:28 Result: all accounts seem to have a password
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID AUTH-9284 (Check locked user accounts in /etc/passwd)
2021-01-15 08:43:28 Test: Checking locked accounts
2021-01-15 08:43:28 Result: all accounts seem to be unlocked
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID AUTH-9286 (Checking user password aging)
2021-01-15 08:43:28 Test: Checking PASS_MIN_DAYS option in /etc/login.defs
2021-01-15 08:43:28 Result: password minimum age is not configured
2021-01-15 08:43:28 Suggestion: Configure minimum password age in /etc/login.defs [test:AUTH-9286] [details:-] [solution:-]
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (0 of 1). Currently having 21 points (out of 30)
2021-01-15 08:43:28 Test: Checking PASS_MAX_DAYS option in /etc/login.defs 
2021-01-15 08:43:28 Result: password aging limits are not configured
2021-01-15 08:43:28 Suggestion: Configure maximum password age in /etc/login.defs [test:AUTH-9286] [details:-] [solution:-]
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (0 of 1). Currently having 21 points (out of 31)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID AUTH-9288 (Checking for expired passwords)
2021-01-15 08:43:28 Test: check if we can access /etc/shadow (escaped: /etc/shadow)
2021-01-15 08:43:28 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:28 Result: file /etc/shadow is readable (or directory accessible).
2021-01-15 08:43:28 Data: Days since epoch is 18642
2021-01-15 08:43:28 Test: collecting accounts which have an expired password (last day changed + maximum change time)
2021-01-15 08:43:28 Result: good, no passwords have been expired
2021-01-15 08:43:28 Hardening: assigned maximum number of hardening points for this item (10). Currently having 31 points (out of 41)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Skipped test AUTH-9304 (Check single user login configuration)
2021-01-15 08:43:28 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Skipped test AUTH-9306 (Check single boot authentication)
2021-01-15 08:43:28 Reason to skip: Incorrect guest OS (HP-UX only)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID AUTH-9308 (Check single user login configuration)
2021-01-15 08:43:28 Test: going to check several systemd targets now
2021-01-15 08:43:28 Test: checking if target console-shell.service is available (/lib/systemd/system/console-shell.service)
2021-01-15 08:43:28 Result: target console-shell.service not found
2021-01-15 08:43:28 Test: checking if target emergency.service is available (/lib/systemd/system/emergency.service)
2021-01-15 08:43:28 Result: found target emergency.service
2021-01-15 08:43:28 Result: sulogin was found, which is a good measure to protect single user mode
2021-01-15 08:43:28 Test: checking if target rescue.service is available (/lib/systemd/system/rescue.service)
2021-01-15 08:43:28 Result: found target rescue.service
2021-01-15 08:43:28 Result: sulogin was found, which is a good measure to protect single user mode
2021-01-15 08:43:28 Result: option set, password is needed at single user mode boot
2021-01-15 08:43:28 Hardening: assigned maximum number of hardening points for this item (2). Currently having 33 points (out of 43)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID AUTH-9328 (Default umask values)
2021-01-15 08:43:28 Test: Checking /etc/profile.d directory
2021-01-15 08:43:28 Result: found /etc/profile.d, with one or more files in it
2021-01-15 08:43:28 Test: Checking /etc/profile
2021-01-15 08:43:28 Result: file /etc/profile exists
2021-01-15 08:43:28 Test: Checking umask value in /etc/profile
2021-01-15 08:43:28 Result: found multiple umask values configured in /etc/profile
2021-01-15 08:43:28 Result: umask 002 could be more strict
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (1 of 2). Currently having 34 points (out of 45)
2021-01-15 08:43:28 Result: umask 022 could be more strict
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (1 of 2). Currently having 35 points (out of 47)
2021-01-15 08:43:28 Suggestion: Default umask in /etc/profile or /etc/profile.d/custom.sh could be more strict (e.g. 027) [test:AUTH-9328] [details:-] [solution:-]
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (0 of 2). Currently having 35 points (out of 49)
2021-01-15 08:43:28 Test: Checking umask entries in /etc/passwd (pam_umask)
2021-01-15 08:43:28 Result: file /etc/passwd exists
2021-01-15 08:43:28 Test: Checking umask value in /etc/passwd
2021-01-15 08:43:28 Manual: one or more manual actions are required for further testing of this control/plugin
2021-01-15 08:43:28 Test: Checking /etc/login.defs
2021-01-15 08:43:28 Result: file /etc/login.defs exists
2021-01-15 08:43:28 Test: Checking umask value in /etc/login.defs
2021-01-15 08:43:28 Result: umask is 077, which is fine
2021-01-15 08:43:28 Hardening: assigned maximum number of hardening points for this item (2). Currently having 37 points (out of 51)
2021-01-15 08:43:28 Test: Checking /etc/init.d/functions
2021-01-15 08:43:28 Result: file /etc/init.d/functions exists
2021-01-15 08:43:28 Test: Checking umask value in /etc/init.d/functions
2021-01-15 08:43:28 Result: found umask 022, which could be improved
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (0 of 2). Currently having 37 points (out of 53)
2021-01-15 08:43:28 Test: Checking /etc/init.d/rc
2021-01-15 08:43:28 Result: file /etc/init.d/rc does not exist
2021-01-15 08:43:28 Test: Checking /etc/init.d/rcS
2021-01-15 08:43:28 Result: file /etc/init.d/rcS does not exist
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Skipped test AUTH-9340 (Solaris account locking)
2021-01-15 08:43:28 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID AUTH-9402 (Query LDAP authentication support)
2021-01-15 08:43:28 Result: LDAP authentication not enabled
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Skipped test AUTH-9406 (Query LDAP servers in client configuration)
2021-01-15 08:43:28 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID AUTH-9408 (Logging of failed login attempts)
2021-01-15 08:43:28 Test: Checking FAILLOG_ENAB option in /etc/login.defs 
2021-01-15 08:43:28 Result: failed login attempts may not logged
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (0 of 1). Currently having 37 points (out of 54)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Skipped test AUTH-9409 (Checking /etc/doas.conf file)
2021-01-15 08:43:28 Reason to skip: Incorrect guest OS (OpenBSD only)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Skipped test AUTH-9410 (Check /etc/doas.conf file permissions)
2021-01-15 08:43:28 Reason to skip: Incorrect guest OS (OpenBSD only)
2021-01-15 08:43:28 Security check: file is normal
2021-01-15 08:43:28 Checking permissions of /usr/share/lynis/include/tests_shells
2021-01-15 08:43:28 File permissions are OK
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Action: Performing tests from category: Shells
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Skipped test SHLL-6202 (Check console TTYs)
2021-01-15 08:43:28 Reason to skip: Incorrect guest OS (FreeBSD only)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID SHLL-6211 (Available and valid shells)
2021-01-15 08:43:28 Test: Searching for /etc/shells
2021-01-15 08:43:28 Result: Found /etc/shells file
2021-01-15 08:43:28 Test: Reading available shells from /etc/shells
2021-01-15 08:43:28 Found installed shell: /bin/sh
2021-01-15 08:43:28 Found installed shell: /bin/bash
2021-01-15 08:43:28 Found installed shell: /usr/bin/sh
2021-01-15 08:43:28 Found installed shell: /usr/bin/bash
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID SHLL-6220 (Idle session killing tools or settings)
2021-01-15 08:43:28 Test: Search for session timeout tools or settings in shell
2021-01-15 08:43:28 Performing pgrep scan without uid
2021-01-15 08:43:28 IsRunning: process 'timeoutd' not found
2021-01-15 08:43:28 Performing pgrep scan without uid
2021-01-15 08:43:28 IsRunning: process 'autolog' not found
2021-01-15 08:43:28 Result: could not find TMOUT setting in /etc/profile
2021-01-15 08:43:28 Result: could not find export, readonly or typeset -r in /etc/profile
2021-01-15 08:43:28 Result: could not find TMOUT setting in /etc/profile.d/*.sh
2021-01-15 08:43:28 Result: could not find export, readonly or typeset -r in /etc/profile
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (1 of 3). Currently having 38 points (out of 57)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID SHLL-6230 (Perform umask check for shell configurations)
2021-01-15 08:43:28 Result: file /etc/bashrc exists
2021-01-15 08:43:28 Result: found umask 002 in /etc/bashrc
2021-01-15 08:43:28 Result: umask 002 can be hardened 
2021-01-15 08:43:28 Result: found umask 022 in /etc/bashrc
2021-01-15 08:43:28 Result: umask 022 can be hardened 
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (1 of 3). Currently having 39 points (out of 60)
2021-01-15 08:43:28 Result: file /etc/bash.bashrc not found
2021-01-15 08:43:28 Result: file /etc/bash.bashrc.local not found
2021-01-15 08:43:28 Result: file /etc/csh.cshrc exists
2021-01-15 08:43:28 Result: found umask 002 in /etc/csh.cshrc
2021-01-15 08:43:28 Result: umask 002 can be hardened 
2021-01-15 08:43:28 Result: found umask 022 in /etc/csh.cshrc
2021-01-15 08:43:28 Result: umask 022 can be hardened 
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (1 of 3). Currently having 40 points (out of 63)
2021-01-15 08:43:28 Result: file /etc/profile exists
2021-01-15 08:43:28 Result: found umask 002 in /etc/profile
2021-01-15 08:43:28 Result: umask 002 can be hardened 
2021-01-15 08:43:28 Result: found umask 022 in /etc/profile
2021-01-15 08:43:28 Result: umask 022 can be hardened 
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (1 of 3). Currently having 41 points (out of 66)
2021-01-15 08:43:28 Security check: file is normal
2021-01-15 08:43:28 Checking permissions of /usr/share/lynis/include/tests_filesystems
2021-01-15 08:43:28 File permissions are OK
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Action: Performing tests from category: File systems
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID FILE-6310 (Checking /tmp, /home and /var directory)
2021-01-15 08:43:28 Test: Checking if /home is mounted separately or mounted on / file system
2021-01-15 08:43:28 Result: directory /home exists
2021-01-15 08:43:28 Result: found /home as a separated mount point
2021-01-15 08:43:28 Hardening: assigned maximum number of hardening points for this item (10). Currently having 51 points (out of 76)
2021-01-15 08:43:28 Test: Checking if /tmp is mounted separately or mounted on / file system
2021-01-15 08:43:28 Result: directory /tmp exists
2021-01-15 08:43:28 Result: /tmp not found in mount list. Directory most likely stored on / file system
2021-01-15 08:43:28 Suggestion: To decrease the impact of a full /tmp file system, place /tmp on a separate partition [test:FILE-6310] [details:-] [solution:-]
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (9 of 10). Currently having 60 points (out of 86)
2021-01-15 08:43:28 Test: Checking if /var is mounted separately or mounted on / file system
2021-01-15 08:43:28 Result: directory /var exists
2021-01-15 08:43:28 Result: /var not found in mount list. Directory most likely stored on / file system
2021-01-15 08:43:28 Suggestion: To decrease the impact of a full /var file system, place /var on a separate partition [test:FILE-6310] [details:-] [solution:-]
2021-01-15 08:43:28 Hardening: assigned partial number of hardening points (9 of 10). Currently having 69 points (out of 96)
2021-01-15 08:43:28 ====
2021-01-15 08:43:28 Performing test ID FILE-6311 (Checking LVM volume groups)
2021-01-15 08:43:28 Test: Checking for LVM volume groups
2021-01-15 08:43:29 Result: found one or more volume groups
2021-01-15 08:43:29 Found LVM volume group: cl
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6312 (Checking LVM volumes)
2021-01-15 08:43:29 Test: Checking for LVM volumes
2021-01-15 08:43:29 Result: found one or more volumes
2021-01-15 08:43:29 Found LVM volume: home
2021-01-15 08:43:29 Found LVM volume: root
2021-01-15 08:43:29 Found LVM volume: swap
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6323 (Checking EXT file systems)
2021-01-15 08:43:29 Test: Checking for Linux EXT file systems
2021-01-15 08:43:29 Result: found one or more EXT file systems
2021-01-15 08:43:29 File system: /boot (type: ext4)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6324 (Checking XFS file systems)
2021-01-15 08:43:29 Test: Checking for Linux XFS file systems
2021-01-15 08:43:29 Result: found one or more XFS file systems
2021-01-15 08:43:29 File system: / (type: xfs)
2021-01-15 08:43:29 File system: /home (type: xfs)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6329 (Checking FFS/UFS file systems)
2021-01-15 08:43:29 Test: Query /etc/fstab for available FFS/UFS mount points
2021-01-15 08:43:29 Result: unable to find any single mount point (FFS/UFS)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test FILE-6330 (Checking ZFS file systems)
2021-01-15 08:43:29 Reason to skip: Incorrect guest OS (FreeBSD only)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test FILE-6439 (Checking HAMMER PFS mounts)
2021-01-15 08:43:29 Reason to skip: Incorrect guest OS (DragonFly only)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6332 (Checking swap partitions)
2021-01-15 08:43:29 Test: query swap partitions from /etc/fstab file
2021-01-15 08:43:29 Swap partition found: /dev/mapper/cl-swap
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6336 (Checking swap mount options)
2021-01-15 08:43:29 Test: check swap partitions with incorrect mount options
2021-01-15 08:43:29 Result: all swap partitions have correct options (sw or swap)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6344 (Checking proc mount options)
2021-01-15 08:43:29 Test: check proc mount with incorrect mount options
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (0 of 3). Currently having 69 points (out of 99)
2021-01-15 08:43:29 Result: /proc filesystem is not mounted with option hidepid=1 or hidepid=2
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6354 (Searching for old files in /tmp)
2021-01-15 08:43:29 Test: Searching for old files in /tmp
2021-01-15 08:43:29 Result: no files found in /tmp which are older than 3 months
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6362 (Checking /tmp sticky bit)
2021-01-15 08:43:29 Result: sticky bit found on /tmp directory
2021-01-15 08:43:29 Hardening: assigned maximum number of hardening points for this item (3). Currently having 72 points (out of 102)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6363 (Checking /var/tmp sticky bit)
2021-01-15 08:43:29 Result: sticky bit found on /var/tmp directory
2021-01-15 08:43:29 Hardening: assigned maximum number of hardening points for this item (3). Currently having 75 points (out of 105)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6368 (Checking ACL support on root file system)
2021-01-15 08:43:29 Test: Checking acl option on ext[2-4] root file system
2021-01-15 08:43:29 Result: mount point probably mounted with defaults
2021-01-15 08:43:29 Test: Checking device which holds root file system
2021-01-15 08:43:29 Result: No file system found with root file system
2021-01-15 08:43:29 Test: Checking acl option on xfs root file system
2021-01-15 08:43:29 Result: ACL option enabled on root file system
2021-01-15 08:43:29 Hardening: assigned maximum number of hardening points for this item (3). Currently having 78 points (out of 108)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6372 (Checking / mount options)
2021-01-15 08:43:29 Result: mount system / is configured with options: defaults
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6374 (Linux mount options)
2021-01-15 08:43:29 File system:    /boot
2021-01-15 08:43:29 Expected flags: nodev noexec nosuid
2021-01-15 08:43:29 Found flags:    defaults 
2021-01-15 08:43:29 Result: Could not find mount option nodev on file system /boot
2021-01-15 08:43:29 Result: Could not find mount option noexec on file system /boot
2021-01-15 08:43:29 Result: Could not find mount option nosuid on file system /boot
2021-01-15 08:43:29 Result: marked /boot options as default (not hardened)
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (3 of 5). Currently having 81 points (out of 113)
2021-01-15 08:43:29 File system:    /dev
2021-01-15 08:43:29 Expected flags: noexec nosuid
2021-01-15 08:43:29 Found flags:    (rw nosuid seclabel size=197304724k nr_inodes=49326181 mode=755) 
2021-01-15 08:43:29 Result: Could not find mount option noexec on file system /dev
2021-01-15 08:43:29 Result: GOOD, found mount option nosuid on file system /dev
2021-01-15 08:43:29 Result: marked /dev as partially hardened
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (4 of 5). Currently having 85 points (out of 118)
2021-01-15 08:43:29 File system:    /dev/shm
2021-01-15 08:43:29 Expected flags: nosuid nodev noexec
2021-01-15 08:43:29 Found flags:    (rw nosuid nodev seclabel) 
2021-01-15 08:43:29 Result: GOOD, found mount option nosuid on file system /dev/shm
2021-01-15 08:43:29 Result: GOOD, found mount option nodev on file system /dev/shm
2021-01-15 08:43:29 Result: Could not find mount option noexec on file system /dev/shm
2021-01-15 08:43:29 Result: marked /dev/shm as partially hardened
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (4 of 5). Currently having 89 points (out of 123)
2021-01-15 08:43:29 File system:    /home
2021-01-15 08:43:29 Expected flags: nodev nosuid
2021-01-15 08:43:29 Found flags:    defaults 
2021-01-15 08:43:29 Result: Could not find mount option nodev on file system /home
2021-01-15 08:43:29 Result: Could not find mount option nosuid on file system /home
2021-01-15 08:43:29 Result: marked /home options as default (not hardened)
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (3 of 5). Currently having 92 points (out of 128)
2021-01-15 08:43:29 File system:    /run
2021-01-15 08:43:29 Expected flags: nodev nosuid
2021-01-15 08:43:29 Found flags:    (rw nosuid nodev seclabel mode=755) 
2021-01-15 08:43:29 Result: GOOD, found mount option nodev on file system /run
2021-01-15 08:43:29 Result: GOOD, found mount option nosuid on file system /run
2021-01-15 08:43:29 Result: marked /run as fully hardened
2021-01-15 08:43:29 Hardening: assigned maximum number of hardening points for this item (5). Currently having 97 points (out of 133)
2021-01-15 08:43:29 Result: file system /tmp not found in /etc/fstab
2021-01-15 08:43:29 Result: file system /var not found in /etc/fstab
2021-01-15 08:43:29 Result: file system /var/log not found in /etc/fstab
2021-01-15 08:43:29 Result: file system /var/log/audit not found in /etc/fstab
2021-01-15 08:43:29 Result: file system /var/tmp not found in /etc/fstab
2021-01-15 08:43:29 Result: Total without nodev:16 noexec:18 nosuid:14 ro or noexec (W^X): 18, of total 38
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6376 (Determine if /var/tmp is bound to /tmp)
2021-01-15 08:43:29 Result: no mount point /var/tmp or expected options found
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6394 (Determine level of swappiness.)
2021-01-15 08:43:29 Test: checking level of vm.swappiness: 60
2021-01-15 08:43:29 Result: vm.swappiness=60 which is the standard level of swappiness and works well for desktop systems.
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test FILE-6410 (Checking Locate database)
2021-01-15 08:43:29 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID FILE-6430 (Disable mounting of some filesystems)
2021-01-15 08:43:29 Result: found cramfs support in the kernel (output = insmod /lib/modules/4.18.0-193.28.1.el8_2.x86_64/kernel/fs/cramfs/cramfs.ko.xz )
2021-01-15 08:43:29 Test: Checking if cramfs is active
2021-01-15 08:43:29 Result: module cramfs is currently not loaded in the kernel.
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (2 of 3). Currently having 99 points (out of 136)
2021-01-15 08:43:29 Hardening: assigned maximum number of hardening points for this item (3). Currently having 102 points (out of 139)
2021-01-15 08:43:29 Hardening: assigned maximum number of hardening points for this item (3). Currently having 105 points (out of 142)
2021-01-15 08:43:29 Hardening: assigned maximum number of hardening points for this item (3). Currently having 108 points (out of 145)
2021-01-15 08:43:29 Hardening: assigned maximum number of hardening points for this item (3). Currently having 111 points (out of 148)
2021-01-15 08:43:29 Result: found squashfs support in the kernel (output = insmod /lib/modules/4.18.0-193.28.1.el8_2.x86_64/kernel/fs/squashfs/squashfs.ko.xz )
2021-01-15 08:43:29 Test: Checking if squashfs is active
2021-01-15 08:43:29 Result: module squashfs is currently not loaded in the kernel.
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (2 of 3). Currently having 113 points (out of 151)
2021-01-15 08:43:29 Result: found udf support in the kernel (output = insmod /lib/modules/4.18.0-193.28.1.el8_2.x86_64/kernel/fs/udf/udf.ko.xz )
2021-01-15 08:43:29 Test: Checking if udf is active
2021-01-15 08:43:29 Result: module udf is currently not loaded in the kernel.
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (2 of 3). Currently having 115 points (out of 154)
2021-01-15 08:43:29 Suggestion: Consider disabling unused kernel modules [test:FILE-6430] [details:/etc/modprobe.d/blacklist.conf] [solution:Add 'install MODULENAME /bin/true' (without quotes)]
2021-01-15 08:43:29 Security check: file is normal
2021-01-15 08:43:29 Checking permissions of /usr/share/lynis/include/tests_usb
2021-01-15 08:43:29 File permissions are OK
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Action: Performing tests from category: USB Devices
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID USB-1000 (Check if USB storage is disabled)
2021-01-15 08:43:29 Test: Checking USB storage driver in directory /etc/modprobe.d and configuration file /etc/modprobe.conf
2021-01-15 08:43:29 Result: usb-storage driver is not explicitly disabled
2021-01-15 08:43:29 Suggestion: Disable drivers like USB storage when not used, to prevent unauthorized storage or data theft [test:USB-1000] [details:-] [solution:-]
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (2 of 3). Currently having 117 points (out of 157)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID USB-2000 (Check USB authorizations)
2021-01-15 08:43:29 Test: checking presence of USB devices path (/sys/bus/usb/devices)
2021-01-15 08:43:29 Test: Checking USB devices authorization to connect to the system
2021-01-15 08:43:29 Test: /sys/bus/usb/devices/usb1 is authorized by default (authorized_default=1)
2021-01-15 08:43:29 Test: /sys/bus/usb/devices/usb1 is authorized currently (authorized=1)
2021-01-15 08:43:29 Test: /sys/bus/usb/devices/usb2 is authorized by default (authorized_default=1)
2021-01-15 08:43:29 Test: /sys/bus/usb/devices/usb2 is authorized currently (authorized=1)
2021-01-15 08:43:29 Result: Some USB devices are authorized by default (or temporary) to connect to the system
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (0 of 3). Currently having 117 points (out of 160)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID USB-3000 (Check for presence of USBGuard)
2021-01-15 08:43:29 Result: USBGuard not found
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (0 of 8). Currently having 117 points (out of 168)
2021-01-15 08:43:29 Security check: file is normal
2021-01-15 08:43:29 Checking permissions of /usr/share/lynis/include/tests_storage
2021-01-15 08:43:29 File permissions are OK
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Action: Performing tests from category: Storage
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID STRG-1846 (Check if firewire storage is disabled)
2021-01-15 08:43:29 Test: Checking firewire storage driver in directory /etc/modprobe.d and configuration file /etc/modprobe.conf
2021-01-15 08:43:29 Result: firewire ohci driver is not explicitly disabled
2021-01-15 08:43:29 Suggestion: Disable drivers like firewire storage when not used, to prevent unauthorized storage or data theft [test:STRG-1846] [details:-] [solution:-]
2021-01-15 08:43:29 Hardening: assigned partial number of hardening points (2 of 3). Currently having 119 points (out of 171)
2021-01-15 08:43:29 Security check: file is normal
2021-01-15 08:43:29 Checking permissions of /usr/share/lynis/include/tests_storage_nfs
2021-01-15 08:43:29 File permissions are OK
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Action: Performing tests from category: NFS
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test STRG-1902 (Check rpcinfo registered programs)
2021-01-15 08:43:29 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test STRG-1904 (Check nfs rpc)
2021-01-15 08:43:29 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test STRG-1906 (Check nfs rpc)
2021-01-15 08:43:29 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID STRG-1920 (Checking NFS daemon)
2021-01-15 08:43:29 Test: Checking running NFS daemon
2021-01-15 08:43:29 Output: NFS daemon is not running
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test STRG-1926 (Checking NFS exports)
2021-01-15 08:43:29 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test STRG-1928 (Checking empty /etc/exports)
2021-01-15 08:43:29 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test STRG-1930 (Check client access to nfs share)
2021-01-15 08:43:29 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:29 Security check: file is normal
2021-01-15 08:43:29 Checking permissions of /usr/share/lynis/include/tests_nameservices
2021-01-15 08:43:29 File permissions are OK
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Action: Performing tests from category: Name services
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID NAME-4016 (Check /etc/resolv.conf default domain)
2021-01-15 08:43:29 Test: check /etc/resolv.conf for default domain
2021-01-15 08:43:29 Result: /etc/resolv.conf found
2021-01-15 08:43:29 Result: no default domain found
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID NAME-4018 (Check /etc/resolv.conf search domains)
2021-01-15 08:43:29 Test: check /etc/resolv.conf for search domains
2021-01-15 08:43:29 Result: /etc/resolv.conf found
2021-01-15 08:43:29 Found search domain: akr.iol.unh.edu
2021-01-15 08:43:29 Result: Found 1 search domains
2021-01-15 08:43:29 Result: found 1 line(s) with a search statement (expecting less than 2 lines)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID NAME-4020 (Check non default options)
2021-01-15 08:43:29 Test: check /etc/resolv.conf for non default options
2021-01-15 08:43:29 Result: /etc/resolv.conf found
2021-01-15 08:43:29 Result: no specific other options configured in /etc/resolv.conf
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test NAME-4024 (Solaris uname -n output)
2021-01-15 08:43:29 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Skipped test NAME-4026 (Check /etc/nodename)
2021-01-15 08:43:29 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID NAME-4028 (Check domain name)
2021-01-15 08:43:29 Test: Checking if dnsdomainname command is available
2021-01-15 08:43:29 Result: dnsdomainname command returned a value
2021-01-15 08:43:29 Found domain name: akr.iol.unh.edu
2021-01-15 08:43:29 Result: found domain name
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID NAME-4032 (Check nscd status)
2021-01-15 08:43:29 Test: checking nscd status
2021-01-15 08:43:29 Performing pgrep scan without uid
2021-01-15 08:43:29 IsRunning: process 'nscd' not found
2021-01-15 08:43:29 Result: nscd is not running
2021-01-15 08:43:29 ====
2021-01-15 08:43:29 Performing test ID NAME-4034 (Check Unbound status)
2021-01-15 08:43:29 Test: checking Unbound (unbound) status
2021-01-15 08:43:29 Performing pgrep scan without uid
2021-01-15 08:43:30 IsRunning: process 'unbound' not found
2021-01-15 08:43:30 Result: Unbound daemon is not running
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test NAME-4036 (Check Unbound configuration file)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Performing test ID NAME-4202 (Check BIND status)
2021-01-15 08:43:30 Test: Checking for running BIND instance
2021-01-15 08:43:30 Performing pgrep scan without uid
2021-01-15 08:43:30 IsRunning: process 'named' not found
2021-01-15 08:43:30 Result: BIND not running
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test NAME-4204 (Search BIND configuration file)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test NAME-4206 (Check BIND configuration consistency)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test NAME-4210 (Check DNS banner)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Performing test ID NAME-4230 (Check PowerDNS status)
2021-01-15 08:43:30 Test: Checking for running PowerDNS instance
2021-01-15 08:43:30 Performing pgrep scan without uid
2021-01-15 08:43:30 IsRunning: process 'pdns_server' not found
2021-01-15 08:43:30 Result: PowerDNS not running
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test NAME-4232 (Search PowerDNS configuration file)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test NAME-4236 (Check PowerDNS backends)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test NAME-4238 (Check PowerDNS authoritative status)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Performing test ID NAME-4304 (Check NIS ypbind status)
2021-01-15 08:43:30 Test: Checking status of ypbind daemon
2021-01-15 08:43:30 Performing pgrep scan without uid
2021-01-15 08:43:30 IsRunning: process 'ypbind' not found
2021-01-15 08:43:30 Result: ypbind is not active
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test NAME-4306 (Check NIS domain)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Performing test ID NAME-4402 (Check duplicate line in /etc/hosts)
2021-01-15 08:43:30 Test: check duplicate line in /etc/hosts
2021-01-15 08:43:30 Result: OK, no duplicate lines found
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Performing test ID NAME-4404 (Check /etc/hosts contains an entry for this server name)
2021-01-15 08:43:30 Test: Check /etc/hosts contains an entry for this server name
2021-01-15 08:43:30 Result: No entry found for intel1-intel1 in /etc/hosts
2021-01-15 08:43:30 Suggestion: Add the IP name and FQDN to /etc/hosts for proper name resolving [test:NAME-4404] [details:-] [solution:-]
2021-01-15 08:43:30 Risk: No entry for the server name [hostname] in /etc/hosts may cause unexpected performance problems for local connections
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Performing test ID NAME-4406 (Check server hostname mapping)
2021-01-15 08:43:30 Test: Check server hostname not locally mapped in /etc/hosts
2021-01-15 08:43:30 Result: this server hostname is not mapped to a local address
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Performing test ID NAME-4408 (Check localhost entry)
2021-01-15 08:43:30 Test: Check server hostname not locally mapped in /etc/hosts
2021-01-15 08:43:30 Result: localhost mapped to ::1
2021-01-15 08:43:30 Security check: file is normal
2021-01-15 08:43:30 Checking permissions of /usr/share/lynis/include/tests_dns
2021-01-15 08:43:30 File permissions are OK
2021-01-15 08:43:30 Security check: file is normal
2021-01-15 08:43:30 Checking permissions of /usr/share/lynis/include/tests_ports_packages
2021-01-15 08:43:30 File permissions are OK
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Action: Performing tests from category: Ports and packages
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7301 (Query FreeBSD pkg)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7302 (Query FreeBSD/NetBSD pkg_info)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7303 (Query brew package manager)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 Result: brew can NOT be found on this system
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7304 (Querying Gentoo packages)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 Result: emerge can NOT be found on this system
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7306 (Querying Solaris packages)
2021-01-15 08:43:30 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:30 Result: pkginfo can NOT be found on this system
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7308 (Checking package list with RPM)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 Result: RPM binary NOT found on this system, test skipped
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7310 (Checking package list with pacman)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7312 (Checking available updates for pacman based system)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 Result: pacman binary NOT found on this system, test skipped
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7314 (Checking pacman configuration options)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7320 (Checking for arch-audit tooling)
2021-01-15 08:43:30 Reason to skip: Test only applies to Arch Linux
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7322 (Discover vulnerable packages with arch-audit)
2021-01-15 08:43:30 Reason to skip: arch-audit not found
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7328 (Querying Zypper for installed packages)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7330 (Querying Zypper for vulnerable packages)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7332 (Query macOS ports)
2021-01-15 08:43:30 Reason to skip: Incorrect guest OS (macOS only)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7334 (Query port for port upgrades)
2021-01-15 08:43:30 Reason to skip: Incorrect guest OS (macOS only)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7345 (Querying dpkg)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 Result: dpkg can NOT be found on this system, test skipped
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7346 (Search unpurged packages on system)
2021-01-15 08:43:30 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:30 Result: dpkg can NOT be found on this system, test skipped
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Skipped test PKGS-7348 (Check for old distfiles)
2021-01-15 08:43:30 Reason to skip: Incorrect guest OS (FreeBSD only)
2021-01-15 08:43:30 ====
2021-01-15 08:43:30 Performing test ID PKGS-7350 (Checking for installed packages with DNF utility)
2021-01-15 08:43:30 Result: found DNF (Dandified YUM) utility (binary: /usr/bin/dnf)
2021-01-15 08:43:30 Found package: NetworkManager.x86_64 (version: 1:1.22.8-5.el8_2)
2021-01-15 08:43:30 Found package: NetworkManager-libnm.x86_64 (version: 1:1.22.8-5.el8_2)
2021-01-15 08:43:30 Found package: NetworkManager-team.x86_64 (version: 1:1.22.8-5.el8_2)
2021-01-15 08:43:30 Found package: NetworkManager-tui.x86_64 (version: 1:1.22.8-5.el8_2)
2021-01-15 08:43:30 Found package: acl.x86_64 (version: 2.2.53-1.el8)
2021-01-15 08:43:30 Found package: alsa-lib.x86_64 (version: 1.2.1.2-3.el8)
2021-01-15 08:43:30 Found package: atk.x86_64 (version: 2.28.1-1.el8)
2021-01-15 08:43:30 Found package: audit.x86_64 (version: 3.0-0.17.20191104git1c2f876.el8)
2021-01-15 08:43:30 Found package: audit-libs.x86_64 (version: 3.0-0.17.20191104git1c2f876.el8)
2021-01-15 08:43:30 Found package: authselect.x86_64 (version: 1.1-2.el8)
2021-01-15 08:43:30 Found package: authselect-libs.x86_64 (version: 1.1-2.el8)
2021-01-15 08:43:30 Found package: avahi-libs.x86_64 (version: 0.7-19.el8)
2021-01-15 08:43:30 Found package: basesystem.noarch (version: 11-5.el8)
2021-01-15 08:43:30 Found package: bash.x86_64 (version: 4.4.19-10.el8)
2021-01-15 08:43:30 Found package: bind-export-libs.x86_64 (version: 32:9.11.13-6.el8_2.1)
2021-01-15 08:43:30 Found package: binutils.x86_64 (version: 2.30-73.el8)
2021-01-15 08:43:30 Found package: biosdevname.x86_64 (version: 0.7.3-2.el8)
2021-01-15 08:43:30 Found package: bison.x86_64 (version: 3.0.4-10.el8)
2021-01-15 08:43:30 Found package: brotli.x86_64 (version: 1.0.6-1.el8)
2021-01-15 08:43:30 Found package: bzip2-libs.x86_64 (version: 1.0.6-26.el8)
2021-01-15 08:43:30 Found package: c-ares.x86_64 (version: 1.13.0-5.el8)
2021-01-15 08:43:30 Found package: ca-certificates.noarch (version: 2020.2.41-80.0.el8_2)
2021-01-15 08:43:30 Found package: cairo.x86_64 (version: 1.15.12-3.el8)
2021-01-15 08:43:30 Found package: centos-gpg-keys.noarch (version: 8.2-2.2004.0.2.el8)
2021-01-15 08:43:30 Found package: centos-release.x86_64 (version: 8.2-2.2004.0.2.el8)
2021-01-15 08:43:30 Found package: centos-repos.x86_64 (version: 8.2-2.2004.0.2.el8)
2021-01-15 08:43:30 Found package: checkpolicy.x86_64 (version: 2.9-1.el8)
2021-01-15 08:43:31 Found package: chkconfig.x86_64 (version: 1.11-1.el8)
2021-01-15 08:43:31 Found package: chrony.x86_64 (version: 3.5-1.el8)
2021-01-15 08:43:31 Found package: cmake.x86_64 (version: 3.11.4-7.el8)
2021-01-15 08:43:31 Found package: cmake-data.noarch (version: 3.11.4-7.el8)
2021-01-15 08:43:31 Found package: cmake-filesystem.x86_64 (version: 3.11.4-7.el8)
2021-01-15 08:43:31 Found package: cmake-rpm-macros.noarch (version: 3.11.4-7.el8)
2021-01-15 08:43:31 Found package: container-selinux.noarch (version: 2:2.144.0-1.module_el8.3.0+475+c50ce30b)
2021-01-15 08:43:31 Found package: containerd.io.x86_64 (version: 1.4.3-3.1.el8)
2021-01-15 08:43:31 Found package: copy-jdk-configs.noarch (version: 3.7-1.el8)
2021-01-15 08:43:31 Found package: coreutils.x86_64 (version: 8.30-7.el8_2.1)
2021-01-15 08:43:31 Found package: coreutils-common.x86_64 (version: 8.30-7.el8_2.1)
2021-01-15 08:43:31 Found package: cpio.x86_64 (version: 2.12-8.el8)
2021-01-15 08:43:31 Found package: cpp.x86_64 (version: 8.3.1-5.1.el8)
2021-01-15 08:43:31 Found package: cracklib.x86_64 (version: 2.9.6-15.el8)
2021-01-15 08:43:31 Found package: cracklib-dicts.x86_64 (version: 2.9.6-15.el8)
2021-01-15 08:43:31 Found package: cronie.x86_64 (version: 1.5.2-4.el8)
2021-01-15 08:43:31 Found package: cronie-anacron.x86_64 (version: 1.5.2-4.el8)
2021-01-15 08:43:31 Found package: crontabs.noarch (version: 1.11-16.20150630git.el8)
2021-01-15 08:43:31 Found package: crypto-policies.noarch (version: 20191128-2.git23e1bf1.el8)
2021-01-15 08:43:31 Found package: cryptsetup-libs.x86_64 (version: 2.2.2-1.el8)
2021-01-15 08:43:31 Found package: cups-libs.x86_64 (version: 1:2.2.6-33.el8)
2021-01-15 08:43:31 Found package: curl.x86_64 (version: 7.61.1-14.el8_3.1)
2021-01-15 08:43:31 Found package: cyrus-sasl-lib.x86_64 (version: 2.1.27-1.el8)
2021-01-15 08:43:31 Found package: dbus.x86_64 (version: 1:1.12.8-10.el8_2)
2021-01-15 08:43:31 Found package: dbus-common.noarch (version: 1:1.12.8-10.el8_2)
2021-01-15 08:43:31 Found package: dbus-daemon.x86_64 (version: 1:1.12.8-10.el8_2)
2021-01-15 08:43:31 Found package: dbus-glib.x86_64 (version: 0.110-2.el8)
2021-01-15 08:43:31 Found package: dbus-libs.x86_64 (version: 1:1.12.8-10.el8_2)
2021-01-15 08:43:31 Found package: dbus-tools.x86_64 (version: 1:1.12.8-10.el8_2)
2021-01-15 08:43:31 Found package: dbxtool.x86_64 (version: 8-5.el8)
2021-01-15 08:43:31 Found package: dejavu-fonts-common.noarch (version: 2.35-6.el8)
2021-01-15 08:43:31 Found package: dejavu-sans-fonts.noarch (version: 2.35-6.el8)
2021-01-15 08:43:31 Found package: device-mapper.x86_64 (version: 8:1.02.171-5.el8)
2021-01-15 08:43:31 Found package: device-mapper-event.x86_64 (version: 8:1.02.171-5.el8)
2021-01-15 08:43:31 Found package: device-mapper-event-libs.x86_64 (version: 8:1.02.171-5.el8)
2021-01-15 08:43:31 Found package: device-mapper-libs.x86_64 (version: 8:1.02.171-5.el8)
2021-01-15 08:43:31 Found package: device-mapper-persistent-data.x86_64 (version: 0.8.5-4.el8)
2021-01-15 08:43:31 Found package: dhcp-client.x86_64 (version: 12:4.3.6-40.el8)
2021-01-15 08:43:31 Found package: dhcp-common.noarch (version: 12:4.3.6-40.el8)
2021-01-15 08:43:31 Found package: dhcp-libs.x86_64 (version: 12:4.3.6-40.el8)
2021-01-15 08:43:31 Found package: diffutils.x86_64 (version: 3.6-6.el8)
2021-01-15 08:43:31 Found package: dmidecode.x86_64 (version: 1:3.2-5.el8)
2021-01-15 08:43:31 Found package: dnf.noarch (version: 4.2.23-4.el8)
2021-01-15 08:43:31 Found package: dnf-data.noarch (version: 4.2.23-4.el8)
2021-01-15 08:43:31 Found package: dnf-plugin-spacewalk.noarch (version: 2.8.5-11.module_el8.1.0+211+ad6c0bc7)
2021-01-15 08:43:31 Found package: dnf-plugins-core.noarch (version: 4.0.17-5.el8)
2021-01-15 08:43:31 Found package: docker-ce.x86_64 (version: 3:20.10.2-3.el8)
2021-01-15 08:43:31 Found package: docker-ce-cli.x86_64 (version: 1:20.10.2-3.el8)
2021-01-15 08:43:31 Found package: docker-ce-rootless-extras.x86_64 (version: 20.10.2-3.el8)
2021-01-15 08:43:31 Found package: dosfstools.x86_64 (version: 4.1-6.el8)
2021-01-15 08:43:31 Found package: dracut.x86_64 (version: 049-70.git20200228.el8)
2021-01-15 08:43:31 Found package: dracut-config-rescue.x86_64 (version: 049-70.git20200228.el8)
2021-01-15 08:43:31 Found package: dracut-network.x86_64 (version: 049-70.git20200228.el8)
2021-01-15 08:43:31 Found package: dracut-squash.x86_64 (version: 049-70.git20200228.el8)
2021-01-15 08:43:31 Found package: e2fsprogs.x86_64 (version: 1.45.4-3.el8)
2021-01-15 08:43:31 Found package: e2fsprogs-libs.x86_64 (version: 1.45.4-3.el8)
2021-01-15 08:43:31 Found package: efi-filesystem.noarch (version: 3-2.el8)
2021-01-15 08:43:31 Found package: efibootmgr.x86_64 (version: 16-1.el8)
2021-01-15 08:43:31 Found package: efivar.x86_64 (version: 36-1.el8)
2021-01-15 08:43:31 Found package: efivar-libs.x86_64 (version: 36-1.el8)
2021-01-15 08:43:31 Found package: elfutils-debuginfod-client.x86_64 (version: 0.178-7.el8)
2021-01-15 08:43:31 Found package: elfutils-default-yama-scope.noarch (version: 0.178-7.el8)
2021-01-15 08:43:31 Found package: elfutils-libelf.x86_64 (version: 0.178-7.el8)
2021-01-15 08:43:31 Found package: elfutils-libs.x86_64 (version: 0.178-7.el8)
2021-01-15 08:43:31 Found package: emacs-filesystem.noarch (version: 1:26.1-5.el8)
2021-01-15 08:43:31 Found package: ethtool.x86_64 (version: 2:5.0-2.el8)
2021-01-15 08:43:31 Found package: expat.x86_64 (version: 2.2.5-3.el8)
2021-01-15 08:43:31 Found package: file.x86_64 (version: 5.33-13.el8)
2021-01-15 08:43:31 Found package: file-libs.x86_64 (version: 5.33-13.el8)
2021-01-15 08:43:31 Found package: filesystem.x86_64 (version: 3.8-2.el8)
2021-01-15 08:43:31 Found package: findutils.x86_64 (version: 1:4.6.0-20.el8)
2021-01-15 08:43:31 Found package: fipscheck.x86_64 (version: 1.5.0-4.el8)
2021-01-15 08:43:31 Found package: fipscheck-lib.x86_64 (version: 1.5.0-4.el8)
2021-01-15 08:43:31 Found package: firewalld.noarch (version: 0.8.0-4.el8)
2021-01-15 08:43:31 Found package: firewalld-filesystem.noarch (version: 0.8.0-4.el8)
2021-01-15 08:43:31 Found package: flex.x86_64 (version: 2.6.1-9.el8)
2021-01-15 08:43:31 Found package: fontconfig.x86_64 (version: 2.13.1-3.el8)
2021-01-15 08:43:31 Found package: fontpackages-filesystem.noarch (version: 1.44-22.el8)
2021-01-15 08:43:31 Found package: freetype.x86_64 (version: 2.9.1-4.el8)
2021-01-15 08:43:31 Found package: fribidi.x86_64 (version: 1.0.4-8.el8)
2021-01-15 08:43:31 Found package: fuse-libs.x86_64 (version: 2.9.7-12.el8)
2021-01-15 08:43:31 Found package: fuse-overlayfs.x86_64 (version: 1.1.2-3.module_el8.3.0+507+aa0970ae)
2021-01-15 08:43:31 Found package: fuse3-libs.x86_64 (version: 3.2.1-12.el8)
2021-01-15 08:43:31 Found package: gawk.x86_64 (version: 4.2.1-1.el8)
2021-01-15 08:43:31 Found package: gcc.x86_64 (version: 8.3.1-5.1.el8)
2021-01-15 08:43:31 Found package: gcc-c++.x86_64 (version: 8.3.1-5.1.el8)
2021-01-15 08:43:31 Found package: gdbm.x86_64 (version: 1:1.18-1.el8)
2021-01-15 08:43:31 Found package: gdbm-libs.x86_64 (version: 1:1.18-1.el8)
2021-01-15 08:43:31 Found package: gdk-pixbuf2.x86_64 (version: 2.36.12-5.el8)
2021-01-15 08:43:31 Found package: gdk-pixbuf2-modules.x86_64 (version: 2.36.12-5.el8)
2021-01-15 08:43:31 Found package: geolite2-city.noarch (version: 20180605-1.el8)
2021-01-15 08:43:31 Found package: geolite2-country.noarch (version: 20180605-1.el8)
2021-01-15 08:43:31 Found package: gettext.x86_64 (version: 0.19.8.1-17.el8)
2021-01-15 08:43:31 Found package: gettext-libs.x86_64 (version: 0.19.8.1-17.el8)
2021-01-15 08:43:31 Found package: giflib.x86_64 (version: 5.1.4-3.el8)
2021-01-15 08:43:31 Found package: git.x86_64 (version: 2.18.4-2.el8_2)
2021-01-15 08:43:31 Found package: git-core.x86_64 (version: 2.18.4-2.el8_2)
2021-01-15 08:43:31 Found package: git-core-doc.noarch (version: 2.18.4-2.el8_2)
2021-01-15 08:43:31 Found package: glib2.x86_64 (version: 2.56.4-8.el8)
2021-01-15 08:43:31 Found package: glibc.x86_64 (version: 2.28-101.el8)
2021-01-15 08:43:31 Found package: glibc-common.x86_64 (version: 2.28-101.el8)
2021-01-15 08:43:31 Found package: glibc-devel.x86_64 (version: 2.28-101.el8)
2021-01-15 08:43:31 Found package: glibc-headers.x86_64 (version: 2.28-101.el8)
2021-01-15 08:43:31 Found package: glibc-langpack-en.x86_64 (version: 2.28-101.el8)
2021-01-15 08:43:31 Found package: gmp.x86_64 (version: 1:6.1.2-10.el8)
2021-01-15 08:43:31 Found package: gnupg2.x86_64 (version: 2.2.9-1.el8)
2021-01-15 08:43:31 Found package: gnupg2-smime.x86_64 (version: 2.2.9-1.el8)
2021-01-15 08:43:31 Found package: gnutls.x86_64 (version: 3.6.8-11.el8_2)
2021-01-15 08:43:31 Found package: gobject-introspection.x86_64 (version: 1.56.1-1.el8)
2021-01-15 08:43:31 Found package: gpgme.x86_64 (version: 1.10.0-6.el8.0.1)
2021-01-15 08:43:31 Found package: gpm-libs.x86_64 (version: 1.20.7-15.el8)
2021-01-15 08:43:31 Found package: graphite2.x86_64 (version: 1.3.10-10.el8)
2021-01-15 08:43:31 Found package: grep.x86_64 (version: 3.1-6.el8)
2021-01-15 08:43:31 Found package: groff-base.x86_64 (version: 1.22.3-18.el8)
2021-01-15 08:43:31 Found package: grub2-common.noarch (version: 1:2.02-87.el8_2)
2021-01-15 08:43:31 Found package: grub2-efi-x64.x86_64 (version: 1:2.02-87.el8_2)
2021-01-15 08:43:31 Found package: grub2-pc.x86_64 (version: 1:2.02-87.el8_2)
2021-01-15 08:43:31 Found package: grub2-pc-modules.noarch (version: 1:2.02-87.el8_2)
2021-01-15 08:43:31 Found package: grub2-tools.x86_64 (version: 1:2.02-87.el8_2)
2021-01-15 08:43:31 Found package: grub2-tools-extra.x86_64 (version: 1:2.02-87.el8_2)
2021-01-15 08:43:31 Found package: grub2-tools-minimal.x86_64 (version: 1:2.02-87.el8_2)
2021-01-15 08:43:31 Found package: grubby.x86_64 (version: 8.40-38.el8)
2021-01-15 08:43:31 Found package: gtk-update-icon-cache.x86_64 (version: 3.22.30-5.el8)
2021-01-15 08:43:31 Found package: gtk2.x86_64 (version: 2.24.32-4.el8)
2021-01-15 08:43:31 Found package: gzip.x86_64 (version: 1.9-9.el8)
2021-01-15 08:43:31 Found package: hardlink.x86_64 (version: 1:1.3-6.el8)
2021-01-15 08:43:31 Found package: harfbuzz.x86_64 (version: 1.7.5-3.el8)
2021-01-15 08:43:31 Found package: hdparm.x86_64 (version: 9.54-2.el8)
2021-01-15 08:43:31 Found package: hicolor-icon-theme.noarch (version: 0.17-2.el8)
2021-01-15 08:43:31 Found package: hostname.x86_64 (version: 3.20-6.el8)
2021-01-15 08:43:31 Found package: hwdata.noarch (version: 0.314-8.4.el8)
2021-01-15 08:43:31 Found package: ima-evm-utils.x86_64 (version: 1.1-5.el8)
2021-01-15 08:43:31 Found package: info.x86_64 (version: 6.5-6.el8)
2021-01-15 08:43:31 Found package: initscripts.x86_64 (version: 10.00.6-1.el8_2.2)
2021-01-15 08:43:31 Found package: ipcalc.x86_64 (version: 0.2.4-4.el8)
2021-01-15 08:43:31 Found package: iproute.x86_64 (version: 5.3.0-1.el8)
2021-01-15 08:43:31 Found package: iprutils.x86_64 (version: 2.4.18.1-1.el8)
2021-01-15 08:43:31 Found package: ipset.x86_64 (version: 7.1-1.el8)
2021-01-15 08:43:31 Found package: ipset-libs.x86_64 (version: 7.1-1.el8)
2021-01-15 08:43:31 Found package: iptables.x86_64 (version: 1.8.4-10.el8_2.1)
2021-01-15 08:43:31 Found package: iptables-ebtables.x86_64 (version: 1.8.4-10.el8_2.1)
2021-01-15 08:43:31 Found package: iptables-libs.x86_64 (version: 1.8.4-10.el8_2.1)
2021-01-15 08:43:31 Found package: iputils.x86_64 (version: 20180629-2.el8)
2021-01-15 08:43:31 Found package: irqbalance.x86_64 (version: 2:1.4.0-4.el8)
2021-01-15 08:43:31 Found package: isl.x86_64 (version: 0.16.1-6.el8)
2021-01-15 08:43:31 Found package: iwl100-firmware.noarch (version: 39.31.5.1-97.el8.1)
2021-01-15 08:43:31 Found package: iwl1000-firmware.noarch (version: 1:39.31.5.1-97.el8.1)
2021-01-15 08:43:31 Found package: iwl105-firmware.noarch (version: 18.168.6.1-97.el8.1)
2021-01-15 08:43:31 Found package: iwl135-firmware.noarch (version: 18.168.6.1-97.el8.1)
2021-01-15 08:43:31 Found package: iwl2000-firmware.noarch (version: 18.168.6.1-97.el8.1)
2021-01-15 08:43:31 Found package: iwl2030-firmware.noarch (version: 18.168.6.1-97.el8.1)
2021-01-15 08:43:31 Found package: iwl3160-firmware.noarch (version: 1:25.30.13.0-97.el8.1)
2021-01-15 08:43:31 Found package: iwl3945-firmware.noarch (version: 15.32.2.9-97.el8.1)
2021-01-15 08:43:31 Found package: iwl4965-firmware.noarch (version: 228.61.2.24-97.el8.1)
2021-01-15 08:43:31 Found package: iwl5000-firmware.noarch (version: 8.83.5.1_1-97.el8.1)
2021-01-15 08:43:31 Found package: iwl5150-firmware.noarch (version: 8.24.2.2-97.el8.1)
2021-01-15 08:43:31 Found package: iwl6000-firmware.noarch (version: 9.221.4.1-97.el8.1)
2021-01-15 08:43:31 Found package: iwl6000g2a-firmware.noarch (version: 18.168.6.1-97.el8.1)
2021-01-15 08:43:31 Found package: iwl6050-firmware.noarch (version: 41.28.5.1-97.el8.1)
2021-01-15 08:43:31 Found package: iwl7260-firmware.noarch (version: 1:25.30.13.0-97.el8.1)
2021-01-15 08:43:31 Found package: jansson.x86_64 (version: 2.11-3.el8)
2021-01-15 08:43:31 Found package: jasper-libs.x86_64 (version: 2.0.14-4.el8)
2021-01-15 08:43:31 Found package: java-1.8.0-openjdk.x86_64 (version: 1:1.8.0.272.b10-1.el8_2)
2021-01-15 08:43:31 Found package: java-1.8.0-openjdk-headless.x86_64 (version: 1:1.8.0.272.b10-1.el8_2)
2021-01-15 08:43:31 Found package: javapackages-filesystem.noarch (version: 5.3.0-1.module_el8.0.0+11+5b8c10bd)
2021-01-15 08:43:31 Found package: jbigkit-libs.x86_64 (version: 2.1-14.el8)
2021-01-15 08:43:31 Found package: json-c.x86_64 (version: 0.13.1-0.2.el8)
2021-01-15 08:43:31 Found package: kbd.x86_64 (version: 2.0.4-8.el8)
2021-01-15 08:43:31 Found package: kbd-legacy.noarch (version: 2.0.4-8.el8)
2021-01-15 08:43:31 Found package: kbd-misc.noarch (version: 2.0.4-8.el8)
2021-01-15 08:43:31 Found package: kernel.x86_64 (version: 4.18.0-193.28.1.el8_2)
2021-01-15 08:43:31 Found package: kernel-core.x86_64 (version: 4.18.0-193.28.1.el8_2)
2021-01-15 08:43:31 Found package: kernel-headers.x86_64 (version: 4.18.0-193.28.1.el8_2)
2021-01-15 08:43:31 Found package: kernel-modules.x86_64 (version: 4.18.0-193.28.1.el8_2)
2021-01-15 08:43:31 Found package: kernel-tools.x86_64 (version: 4.18.0-193.28.1.el8_2)
2021-01-15 08:43:31 Found package: kernel-tools-libs.x86_64 (version: 4.18.0-193.28.1.el8_2)
2021-01-15 08:43:31 Found package: kexec-tools.x86_64 (version: 2.0.20-14.el8)
2021-01-15 08:43:31 Found package: keyutils-libs.x86_64 (version: 1.5.10-6.el8)
2021-01-15 08:43:31 Found package: keyutils-libs-devel.x86_64 (version: 1.5.10-6.el8)
2021-01-15 08:43:31 Found package: kmod.x86_64 (version: 25-16.el8)
2021-01-15 08:43:31 Found package: kmod-libs.x86_64 (version: 25-16.el8)
2021-01-15 08:43:31 Found package: kpartx.x86_64 (version: 0.8.3-3.el8_2.3)
2021-01-15 08:43:31 Found package: krb5-devel.x86_64 (version: 1.17-18.el8)
2021-01-15 08:43:31 Found package: krb5-libs.x86_64 (version: 1.17-18.el8)
2021-01-15 08:43:31 Found package: langpacks-en.noarch (version: 1.0-12.el8)
2021-01-15 08:43:31 Found package: less.x86_64 (version: 530-1.el8)
2021-01-15 08:43:31 Found package: libX11.x86_64 (version: 1.6.8-3.el8)
2021-01-15 08:43:31 Found package: libX11-common.noarch (version: 1.6.8-3.el8)
2021-01-15 08:43:31 Found package: libXau.x86_64 (version: 1.0.8-13.el8)
2021-01-15 08:43:31 Found package: libXcomposite.x86_64 (version: 0.4.4-14.el8)
2021-01-15 08:43:31 Found package: libXcursor.x86_64 (version: 1.1.15-3.el8)
2021-01-15 08:43:31 Found package: libXdamage.x86_64 (version: 1.1.4-14.el8)
2021-01-15 08:43:31 Found package: libXext.x86_64 (version: 1.3.3-9.el8)
2021-01-15 08:43:31 Found package: libXfixes.x86_64 (version: 5.0.3-7.el8)
2021-01-15 08:43:31 Found package: libXft.x86_64 (version: 2.3.2-10.el8)
2021-01-15 08:43:31 Found package: libXi.x86_64 (version: 1.7.9-7.el8)
2021-01-15 08:43:31 Found package: libXinerama.x86_64 (version: 1.1.4-1.el8)
2021-01-15 08:43:31 Found package: libXrandr.x86_64 (version: 1.5.1-7.el8)
2021-01-15 08:43:31 Found package: libXrender.x86_64 (version: 0.9.10-7.el8)
2021-01-15 08:43:31 Found package: libXtst.x86_64 (version: 1.2.3-7.el8)
2021-01-15 08:43:31 Found package: libacl.x86_64 (version: 2.2.53-1.el8)
2021-01-15 08:43:31 Found package: libaio.x86_64 (version: 0.3.112-1.el8)
2021-01-15 08:43:31 Found package: libarchive.x86_64 (version: 3.3.2-8.el8_1)
2021-01-15 08:43:31 Found package: libassuan.x86_64 (version: 2.5.1-3.el8)
2021-01-15 08:43:31 Found package: libattr.x86_64 (version: 2.4.48-3.el8)
2021-01-15 08:43:31 Found package: libbasicobjects.x86_64 (version: 0.1.1-39.el8)
2021-01-15 08:43:31 Found package: libblkid.x86_64 (version: 2.32.1-22.el8)
2021-01-15 08:43:31 Found package: libcap.x86_64 (version: 2.26-3.el8)
2021-01-15 08:43:31 Found package: libcap-ng.x86_64 (version: 0.7.9-5.el8)
2021-01-15 08:43:31 Found package: libcgroup.x86_64 (version: 0.41-19.el8)
2021-01-15 08:43:31 Found package: libcollection.x86_64 (version: 0.7.0-39.el8)
2021-01-15 08:43:31 Found package: libcom_err.x86_64 (version: 1.45.4-3.el8)
2021-01-15 08:43:31 Found package: libcom_err-devel.x86_64 (version: 1.45.4-3.el8)
2021-01-15 08:43:31 Found package: libcomps.x86_64 (version: 0.1.11-4.el8)
2021-01-15 08:43:31 Found package: libcroco.x86_64 (version: 0.6.12-4.el8_2.1)
2021-01-15 08:43:31 Found package: libcurl.x86_64 (version: 7.61.1-14.el8_3.1)
2021-01-15 08:43:31 Found package: libdaemon.x86_64 (version: 0.14-15.el8)
2021-01-15 08:43:31 Found package: libdatrie.x86_64 (version: 0.2.9-7.el8)
2021-01-15 08:43:31 Found package: libdb.x86_64 (version: 5.3.28-37.el8)
2021-01-15 08:43:31 Found package: libdb-utils.x86_64 (version: 5.3.28-37.el8)
2021-01-15 08:43:31 Found package: libdhash.x86_64 (version: 0.5.0-39.el8)
2021-01-15 08:43:31 Found package: libdnf.x86_64 (version: 0.48.0-5.el8)
2021-01-15 08:43:31 Found package: libedit.x86_64 (version: 3.1-23.20170329cvs.el8)
2021-01-15 08:43:31 Found package: libestr.x86_64 (version: 0.1.10-1.el8)
2021-01-15 08:43:31 Found package: libevent.x86_64 (version: 2.1.8-5.el8)
2021-01-15 08:43:31 Found package: libfastjson.x86_64 (version: 0.99.8-2.el8)
2021-01-15 08:43:31 Found package: libfdisk.x86_64 (version: 2.32.1-22.el8)
2021-01-15 08:43:31 Found package: libffi.x86_64 (version: 3.1-21.el8)
2021-01-15 08:43:31 Found package: libfontenc.x86_64 (version: 1.1.3-8.el8)
2021-01-15 08:43:31 Found package: libgcc.x86_64 (version: 8.3.1-5.1.el8)
2021-01-15 08:43:31 Found package: libgcrypt.x86_64 (version: 1.8.3-4.el8)
2021-01-15 08:43:31 Found package: libgomp.x86_64 (version: 8.3.1-5.1.el8)
2021-01-15 08:43:31 Found package: libgpg-error.x86_64 (version: 1.31-1.el8)
2021-01-15 08:43:31 Found package: libgudev.x86_64 (version: 232-4.el8)
2021-01-15 08:43:31 Found package: libidn2.x86_64 (version: 2.2.0-1.el8)
2021-01-15 08:43:31 Found package: libini_config.x86_64 (version: 1.3.1-39.el8)
2021-01-15 08:43:31 Found package: libjpeg-turbo.x86_64 (version: 1.5.3-10.el8)
2021-01-15 08:43:31 Found package: libkadm5.x86_64 (version: 1.17-18.el8)
2021-01-15 08:43:31 Found package: libkcapi.x86_64 (version: 1.1.1-16_1.el8)
2021-01-15 08:43:31 Found package: libkcapi-hmaccalc.x86_64 (version: 1.1.1-16_1.el8)
2021-01-15 08:43:31 Found package: libksba.x86_64 (version: 1.3.5-7.el8)
2021-01-15 08:43:31 Found package: libldb.x86_64 (version: 2.0.7-3.el8)
2021-01-15 08:43:31 Found package: libmaxminddb.x86_64 (version: 1.2.0-7.el8)
2021-01-15 08:43:31 Found package: libmetalink.x86_64 (version: 0.1.3-7.el8)
2021-01-15 08:43:31 Found package: libmnl.x86_64 (version: 1.0.4-6.el8)
2021-01-15 08:43:31 Found package: libmodulemd.x86_64 (version: 2.9.4-2.el8)
2021-01-15 08:43:31 Found package: libmodulemd1.x86_64 (version: 1.8.16-0.2.8.2.1)
2021-01-15 08:43:31 Found package: libmount.x86_64 (version: 2.32.1-22.el8)
2021-01-15 08:43:31 Found package: libmpc.x86_64 (version: 1.0.2-9.el8)
2021-01-15 08:43:31 Found package: libndp.x86_64 (version: 1.7-3.el8)
2021-01-15 08:43:31 Found package: libnetfilter_conntrack.x86_64 (version: 1.0.6-5.el8)
2021-01-15 08:43:31 Found package: libnfnetlink.x86_64 (version: 1.0.1-13.el8)
2021-01-15 08:43:31 Found package: libnfsidmap.x86_64 (version: 1:2.3.3-31.el8)
2021-01-15 08:43:31 Found package: libnftnl.x86_64 (version: 1.1.5-4.el8)
2021-01-15 08:43:31 Found package: libnghttp2.x86_64 (version: 1.33.0-3.el8_2.1)
2021-01-15 08:43:31 Found package: libnl3.x86_64 (version: 3.5.0-1.el8)
2021-01-15 08:43:31 Found package: libnl3-cli.x86_64 (version: 3.5.0-1.el8)
2021-01-15 08:43:31 Found package: libnsl2.x86_64 (version: 1.2.0-2.20180605git4a062cf.el8)
2021-01-15 08:43:31 Found package: libpath_utils.x86_64 (version: 0.2.1-39.el8)
2021-01-15 08:43:31 Found package: libpcap.x86_64 (version: 14:1.9.0-3.el8)
2021-01-15 08:43:31 Found package: libpipeline.x86_64 (version: 1.5.0-2.el8)
2021-01-15 08:43:31 Found package: libpkgconf.x86_64 (version: 1.4.2-1.el8)
2021-01-15 08:43:32 Found package: libpng.x86_64 (version: 2:1.6.34-5.el8)
2021-01-15 08:43:32 Found package: libpsl.x86_64 (version: 0.20.2-5.el8)
2021-01-15 08:43:32 Found package: libpwquality.x86_64 (version: 1.4.0-9.el8)
2021-01-15 08:43:32 Found package: libref_array.x86_64 (version: 0.1.5-39.el8)
2021-01-15 08:43:32 Found package: librepo.x86_64 (version: 1.12.0-2.el8)
2021-01-15 08:43:32 Found package: libreport-filesystem.x86_64 (version: 2.9.5-10.el8)
2021-01-15 08:43:32 Found package: libseccomp.x86_64 (version: 2.4.1-1.el8)
2021-01-15 08:43:32 Found package: libsecret.x86_64 (version: 0.18.6-1.el8)
2021-01-15 08:43:32 Found package: libselinux.x86_64 (version: 2.9-3.el8)
2021-01-15 08:43:32 Found package: libselinux-devel.x86_64 (version: 2.9-3.el8)
2021-01-15 08:43:32 Found package: libselinux-utils.x86_64 (version: 2.9-3.el8)
2021-01-15 08:43:32 Found package: libsemanage.x86_64 (version: 2.9-2.el8)
2021-01-15 08:43:32 Found package: libsepol.x86_64 (version: 2.9-1.el8)
2021-01-15 08:43:32 Found package: libsepol-devel.x86_64 (version: 2.9-1.el8)
2021-01-15 08:43:32 Found package: libsigsegv.x86_64 (version: 2.11-5.el8)
2021-01-15 08:43:32 Found package: libslirp.x86_64 (version: 4.3.1-1.module_el8.3.0+475+c50ce30b)
2021-01-15 08:43:32 Found package: libsmartcols.x86_64 (version: 2.32.1-22.el8)
2021-01-15 08:43:32 Found package: libsolv.x86_64 (version: 0.7.7-1.el8)
2021-01-15 08:43:32 Found package: libss.x86_64 (version: 1.45.4-3.el8)
2021-01-15 08:43:32 Found package: libssh.x86_64 (version: 0.9.4-2.el8)
2021-01-15 08:43:32 Found package: libssh-config.noarch (version: 0.9.4-2.el8)
2021-01-15 08:43:32 Found package: libsss_autofs.x86_64 (version: 2.2.3-20.el8)
2021-01-15 08:43:32 Found package: libsss_certmap.x86_64 (version: 2.2.3-20.el8)
2021-01-15 08:43:32 Found package: libsss_idmap.x86_64 (version: 2.2.3-20.el8)
2021-01-15 08:43:32 Found package: libsss_nss_idmap.x86_64 (version: 2.2.3-20.el8)
2021-01-15 08:43:32 Found package: libsss_sudo.x86_64 (version: 2.2.3-20.el8)
2021-01-15 08:43:32 Found package: libstdc++.x86_64 (version: 8.3.1-5.1.el8)
2021-01-15 08:43:32 Found package: libstdc++-devel.x86_64 (version: 8.3.1-5.1.el8)
2021-01-15 08:43:32 Found package: libsysfs.x86_64 (version: 2.1.0-24.el8)
2021-01-15 08:43:32 Found package: libtalloc.x86_64 (version: 2.2.0-7.el8)
2021-01-15 08:43:32 Found package: libtasn1.x86_64 (version: 4.13-3.el8)
2021-01-15 08:43:32 Found package: libtdb.x86_64 (version: 1.4.2-2.el8)
2021-01-15 08:43:32 Found package: libteam.x86_64 (version: 1.29-1.el8_2.2)
2021-01-15 08:43:32 Found package: libtevent.x86_64 (version: 0.10.0-2.el8)
2021-01-15 08:43:32 Found package: libthai.x86_64 (version: 0.1.27-2.el8)
2021-01-15 08:43:32 Found package: libtiff.x86_64 (version: 4.0.9-17.el8)
2021-01-15 08:43:32 Found package: libtirpc.x86_64 (version: 1.1.4-4.el8)
2021-01-15 08:43:32 Found package: libunistring.x86_64 (version: 0.9.9-3.el8)
2021-01-15 08:43:32 Found package: libusbx.x86_64 (version: 1.0.22-1.el8)
2021-01-15 08:43:32 Found package: libuser.x86_64 (version: 0.62-23.el8)
2021-01-15 08:43:32 Found package: libutempter.x86_64 (version: 1.1.6-14.el8)
2021-01-15 08:43:32 Found package: libuuid.x86_64 (version: 2.32.1-22.el8)
2021-01-15 08:43:32 Found package: libuv.x86_64 (version: 1:1.23.1-1.el8)
2021-01-15 08:43:32 Found package: libverto.x86_64 (version: 0.3.0-5.el8)
2021-01-15 08:43:32 Found package: libverto-devel.x86_64 (version: 0.3.0-5.el8)
2021-01-15 08:43:32 Found package: libxcb.x86_64 (version: 1.13.1-1.el8)
2021-01-15 08:43:32 Found package: libxcrypt.x86_64 (version: 4.1.1-4.el8)
2021-01-15 08:43:32 Found package: libxcrypt-devel.x86_64 (version: 4.1.1-4.el8)
2021-01-15 08:43:32 Found package: libxkbcommon.x86_64 (version: 0.9.1-1.el8)
2021-01-15 08:43:32 Found package: libxml2.x86_64 (version: 2.9.7-7.el8)
2021-01-15 08:43:32 Found package: libyaml.x86_64 (version: 0.1.7-5.el8)
2021-01-15 08:43:32 Found package: libzstd.x86_64 (version: 1.4.2-2.el8)
2021-01-15 08:43:32 Found package: linux-firmware.noarch (version: 20191202-97.gite8a0f4c9.el8)
2021-01-15 08:43:32 Found package: lksctp-tools.x86_64 (version: 1.0.18-3.el8)
2021-01-15 08:43:32 Found package: logrotate.x86_64 (version: 3.14.0-3.el8)
2021-01-15 08:43:32 Found package: lshw.x86_64 (version: B.02.18-23.el8)
2021-01-15 08:43:32 Found package: lsscsi.x86_64 (version: 0.30-1.el8)
2021-01-15 08:43:32 Found package: lua.x86_64 (version: 5.3.4-11.el8)
2021-01-15 08:43:32 Found package: lua-libs.x86_64 (version: 5.3.4-11.el8)
2021-01-15 08:43:32 Found package: lvm2.x86_64 (version: 8:2.03.09-5.el8)
2021-01-15 08:43:32 Found package: lvm2-libs.x86_64 (version: 8:2.03.09-5.el8)
2021-01-15 08:43:32 Found package: lynis.noarch (version: 3.0.3-100)
2021-01-15 08:43:32 Found package: lz4-libs.x86_64 (version: 1.8.1.2-4.el8)
2021-01-15 08:43:32 Found package: lzo.x86_64 (version: 2.08-14.el8)
2021-01-15 08:43:32 Found package: m4.x86_64 (version: 1.4.18-7.el8)
2021-01-15 08:43:32 Found package: make.x86_64 (version: 1:4.2.1-10.el8)
2021-01-15 08:43:32 Found package: man-db.x86_64 (version: 2.7.6.1-17.el8)
2021-01-15 08:43:32 Found package: mariadb-connector-c-config.noarch (version: 3.0.7-1.el8)
2021-01-15 08:43:32 Found package: mecab.x86_64 (version: 0.996-1.module_el8.2.0+493+63b41e36.9)
2021-01-15 08:43:32 Found package: microcode_ctl.x86_64 (version: 4:20191115-4.20200609.1.el8_2)
2021-01-15 08:43:32 Found package: mokutil.x86_64 (version: 1:0.3.0-9.el8)
2021-01-15 08:43:32 Found package: mozjs60.x86_64 (version: 60.9.0-4.el8)
2021-01-15 08:43:32 Found package: mpfr.x86_64 (version: 3.1.6-1.el8)
2021-01-15 08:43:32 Found package: mysql.x86_64 (version: 8.0.21-1.module_el8.2.0+493+63b41e36)
2021-01-15 08:43:32 Found package: mysql-common.x86_64 (version: 8.0.21-1.module_el8.2.0+493+63b41e36)
2021-01-15 08:43:32 Found package: mysql-devel.x86_64 (version: 8.0.21-1.module_el8.2.0+493+63b41e36)
2021-01-15 08:43:32 Found package: mysql-errmsg.x86_64 (version: 8.0.21-1.module_el8.2.0+493+63b41e36)
2021-01-15 08:43:32 Found package: mysql-libs.x86_64 (version: 8.0.21-1.module_el8.2.0+493+63b41e36)
2021-01-15 08:43:32 Found package: mysql-server.x86_64 (version: 8.0.21-1.module_el8.2.0+493+63b41e36)
2021-01-15 08:43:32 Found package: mysql57-community-release.noarch (version: el7-10)
2021-01-15 08:43:32 Found package: ncurses.x86_64 (version: 6.1-7.20180224.el8)
2021-01-15 08:43:32 Found package: ncurses-base.noarch (version: 6.1-7.20180224.el8)
2021-01-15 08:43:32 Found package: ncurses-c++-libs.x86_64 (version: 6.1-7.20180224.el8)
2021-01-15 08:43:32 Found package: ncurses-devel.x86_64 (version: 6.1-7.20180224.el8)
2021-01-15 08:43:32 Found package: ncurses-libs.x86_64 (version: 6.1-7.20180224.el8)
2021-01-15 08:43:32 Found package: net-tools.x86_64 (version: 2.0-0.51.20160912git.el8)
2021-01-15 08:43:32 Found package: nettle.x86_64 (version: 3.4.1-1.el8)
2021-01-15 08:43:32 Found package: newt.x86_64 (version: 0.52.20-11.el8)
2021-01-15 08:43:32 Found package: nftables.x86_64 (version: 1:0.9.3-12.el8_2.1)
2021-01-15 08:43:32 Found package: nodejs.x86_64 (version: 1:10.21.0-3.module_el8.2.0+391+8da3adc6)
2021-01-15 08:43:32 Found package: nodejs-full-i18n.x86_64 (version: 1:10.21.0-3.module_el8.2.0+391+8da3adc6)
2021-01-15 08:43:32 Found package: npm.x86_64 (version: 1:6.14.4-1.10.21.0.3.module_el8.2.0+391+8da3adc6)
2021-01-15 08:43:32 Found package: npth.x86_64 (version: 1.5-4.el8)
2021-01-15 08:43:32 Found package: numactl-libs.x86_64 (version: 2.0.12-9.el8)
2021-01-15 08:43:32 Found package: openldap.x86_64 (version: 2.4.46-11.el8_1)
2021-01-15 08:43:32 Found package: openssh.x86_64 (version: 8.0p1-4.el8_1)
2021-01-15 08:43:32 Found package: openssh-clients.x86_64 (version: 8.0p1-4.el8_1)
2021-01-15 08:43:32 Found package: openssh-server.x86_64 (version: 8.0p1-4.el8_1)
2021-01-15 08:43:32 Found package: openssl.x86_64 (version: 1:1.1.1g-12.el8_3)
2021-01-15 08:43:32 Found package: openssl-devel.x86_64 (version: 1:1.1.1g-12.el8_3)
2021-01-15 08:43:32 Found package: openssl-libs.x86_64 (version: 1:1.1.1g-12.el8_3)
2021-01-15 08:43:32 Found package: openssl-pkcs11.x86_64 (version: 0.4.10-2.el8)
2021-01-15 08:43:32 Found package: os-prober.x86_64 (version: 1.74-6.el8)
2021-01-15 08:43:32 Found package: p11-kit.x86_64 (version: 0.23.14-5.el8_0)
2021-01-15 08:43:32 Found package: p11-kit-trust.x86_64 (version: 0.23.14-5.el8_0)
2021-01-15 08:43:32 Found package: pam.x86_64 (version: 1.3.1-8.el8)
2021-01-15 08:43:32 Found package: pango.x86_64 (version: 1.42.4-6.el8)
2021-01-15 08:43:32 Found package: parted.x86_64 (version: 3.2-38.el8)
2021-01-15 08:43:32 Found package: passwd.x86_64 (version: 0.80-3.el8)
2021-01-15 08:43:32 Found package: pciutils-libs.x86_64 (version: 3.5.6-4.el8)
2021-01-15 08:43:32 Found package: pcre.x86_64 (version: 8.42-4.el8)
2021-01-15 08:43:32 Found package: pcre2.x86_64 (version: 10.32-1.el8)
2021-01-15 08:43:32 Found package: pcre2-devel.x86_64 (version: 10.32-1.el8)
2021-01-15 08:43:32 Found package: pcre2-utf16.x86_64 (version: 10.32-1.el8)
2021-01-15 08:43:32 Found package: pcre2-utf32.x86_64 (version: 10.32-1.el8)
2021-01-15 08:43:32 Found package: perl-Carp.noarch (version: 1.42-396.el8)
2021-01-15 08:43:32 Found package: perl-Data-Dumper.x86_64 (version: 2.167-399.el8)
2021-01-15 08:43:32 Found package: perl-Digest.noarch (version: 1.17-395.el8)
2021-01-15 08:43:32 Found package: perl-Digest-MD5.x86_64 (version: 2.55-396.el8)
2021-01-15 08:43:32 Found package: perl-Encode.x86_64 (version: 4:2.97-3.el8)
2021-01-15 08:43:32 Found package: perl-Errno.x86_64 (version: 1.28-416.el8)
2021-01-15 08:43:32 Found package: perl-Error.noarch (version: 1:0.17025-2.el8)
2021-01-15 08:43:32 Found package: perl-Exporter.noarch (version: 5.72-396.el8)
2021-01-15 08:43:32 Found package: perl-File-Path.noarch (version: 2.15-2.el8)
2021-01-15 08:43:32 Found package: perl-File-Temp.noarch (version: 0.230.600-1.el8)
2021-01-15 08:43:32 Found package: perl-Getopt-Long.noarch (version: 1:2.50-4.el8)
2021-01-15 08:43:32 Found package: perl-Git.noarch (version: 2.18.4-2.el8_2)
2021-01-15 08:43:32 Found package: perl-HTTP-Tiny.noarch (version: 0.074-1.el8)
2021-01-15 08:43:32 Found package: perl-IO.x86_64 (version: 1.38-416.el8)
2021-01-15 08:43:32 Found package: perl-IO-Socket-IP.noarch (version: 0.39-5.el8)
2021-01-15 08:43:32 Found package: perl-IO-Socket-SSL.noarch (version: 2.066-4.el8)
2021-01-15 08:43:32 Found package: perl-MIME-Base64.x86_64 (version: 3.15-396.el8)
2021-01-15 08:43:32 Found package: perl-Mozilla-CA.noarch (version: 20160104-7.el8)
2021-01-15 08:43:32 Found package: perl-Net-SSLeay.x86_64 (version: 1.88-1.el8)
2021-01-15 08:43:32 Found package: perl-PathTools.x86_64 (version: 3.74-1.el8)
2021-01-15 08:43:32 Found package: perl-Pod-Escapes.noarch (version: 1:1.07-395.el8)
2021-01-15 08:43:32 Found package: perl-Pod-Perldoc.noarch (version: 3.28-396.el8)
2021-01-15 08:43:32 Found package: perl-Pod-Simple.noarch (version: 1:3.35-395.el8)
2021-01-15 08:43:32 Found package: perl-Pod-Usage.noarch (version: 4:1.69-395.el8)
2021-01-15 08:43:32 Found package: perl-Scalar-List-Utils.x86_64 (version: 3:1.49-2.el8)
2021-01-15 08:43:32 Found package: perl-Socket.x86_64 (version: 4:2.027-3.el8)
2021-01-15 08:43:32 Found package: perl-Storable.x86_64 (version: 1:3.11-3.el8)
2021-01-15 08:43:32 Found package: perl-Term-ANSIColor.noarch (version: 4.06-396.el8)
2021-01-15 08:43:32 Found package: perl-Term-Cap.noarch (version: 1.17-395.el8)
2021-01-15 08:43:32 Found package: perl-TermReadKey.x86_64 (version: 2.37-7.el8)
2021-01-15 08:43:32 Found package: perl-Text-ParseWords.noarch (version: 3.30-395.el8)
2021-01-15 08:43:32 Found package: perl-Text-Tabs+Wrap.noarch (version: 2013.0523-395.el8)
2021-01-15 08:43:32 Found package: perl-Time-Local.noarch (version: 1:1.280-1.el8)
2021-01-15 08:43:32 Found package: perl-URI.noarch (version: 1.73-3.el8)
2021-01-15 08:43:32 Found package: perl-Unicode-Normalize.x86_64 (version: 1.25-396.el8)
2021-01-15 08:43:32 Found package: perl-constant.noarch (version: 1.33-396.el8)
2021-01-15 08:43:32 Found package: perl-interpreter.x86_64 (version: 4:5.26.3-416.el8)
2021-01-15 08:43:32 Found package: perl-libnet.noarch (version: 3.11-3.el8)
2021-01-15 08:43:32 Found package: perl-libs.x86_64 (version: 4:5.26.3-416.el8)
2021-01-15 08:43:32 Found package: perl-macros.x86_64 (version: 4:5.26.3-416.el8)
2021-01-15 08:43:32 Found package: perl-parent.noarch (version: 1:0.237-1.el8)
2021-01-15 08:43:32 Found package: perl-podlators.noarch (version: 4.11-1.el8)
2021-01-15 08:43:32 Found package: perl-threads.x86_64 (version: 1:2.21-2.el8)
2021-01-15 08:43:32 Found package: perl-threads-shared.x86_64 (version: 1.58-2.el8)
2021-01-15 08:43:32 Found package: pigz.x86_64 (version: 2.4-4.el8)
2021-01-15 08:43:32 Found package: pinentry.x86_64 (version: 1.1.0-2.el8)
2021-01-15 08:43:32 Found package: pixman.x86_64 (version: 0.38.4-1.el8)
2021-01-15 08:43:32 Found package: pkgconf.x86_64 (version: 1.4.2-1.el8)
2021-01-15 08:43:32 Found package: pkgconf-m4.noarch (version: 1.4.2-1.el8)
2021-01-15 08:43:32 Found package: pkgconf-pkg-config.x86_64 (version: 1.4.2-1.el8)
2021-01-15 08:43:32 Found package: platform-python.x86_64 (version: 3.6.8-23.el8)
2021-01-15 08:43:32 Found package: platform-python-pip.noarch (version: 9.0.3-16.el8)
2021-01-15 08:43:32 Found package: platform-python-setuptools.noarch (version: 39.2.0-5.el8)
2021-01-15 08:43:32 Found package: plymouth.x86_64 (version: 0.9.3-16.el8)
2021-01-15 08:43:32 Found package: plymouth-core-libs.x86_64 (version: 0.9.3-16.el8)
2021-01-15 08:43:32 Found package: plymouth-scripts.x86_64 (version: 0.9.3-16.el8)
2021-01-15 08:43:32 Found package: policycoreutils.x86_64 (version: 2.9-9.el8)
2021-01-15 08:43:32 Found package: policycoreutils-python-utils.noarch (version: 2.9-9.el8)
2021-01-15 08:43:32 Found package: polkit.x86_64 (version: 0.115-11.el8)
2021-01-15 08:43:32 Found package: polkit-libs.x86_64 (version: 0.115-11.el8)
2021-01-15 08:43:32 Found package: polkit-pkla-compat.x86_64 (version: 0.1-12.el8)
2021-01-15 08:43:32 Found package: popt.x86_64 (version: 1.16-14.el8)
2021-01-15 08:43:32 Found package: prefixdevname.x86_64 (version: 0.1.0-6.el8)
2021-01-15 08:43:32 Found package: procps-ng.x86_64 (version: 3.3.15-1.el8)
2021-01-15 08:43:32 Found package: protobuf-lite.x86_64 (version: 3.5.0-7.el8)
2021-01-15 08:43:32 Found package: psmisc.x86_64 (version: 23.1-4.el8)
2021-01-15 08:43:32 Found package: publicsuffix-list-dafsa.noarch (version: 20180723-1.el8)
2021-01-15 08:43:32 Found package: python3-asn1crypto.noarch (version: 0.24.0-3.el8)
2021-01-15 08:43:32 Found package: python3-audit.x86_64 (version: 3.0-0.17.20191104git1c2f876.el8)
2021-01-15 08:43:32 Found package: python3-cffi.x86_64 (version: 1.11.5-5.el8)
2021-01-15 08:43:32 Found package: python3-configobj.noarch (version: 5.0.6-11.el8)
2021-01-15 08:43:32 Found package: python3-cryptography.x86_64 (version: 2.3-3.el8)
2021-01-15 08:43:32 Found package: python3-dateutil.noarch (version: 1:2.6.1-6.el8)
2021-01-15 08:43:32 Found package: python3-dbus.x86_64 (version: 1.2.4-15.el8)
2021-01-15 08:43:32 Found package: python3-decorator.noarch (version: 4.2.1-2.el8)
2021-01-15 08:43:32 Found package: python3-dmidecode.x86_64 (version: 3.12.2-15.el8)
2021-01-15 08:43:32 Found package: python3-dnf.noarch (version: 4.2.23-4.el8)
2021-01-15 08:43:32 Found package: python3-dnf-plugin-spacewalk.noarch (version: 2.8.5-11.module_el8.1.0+211+ad6c0bc7)
2021-01-15 08:43:32 Found package: python3-dnf-plugins-core.noarch (version: 4.0.17-5.el8)
2021-01-15 08:43:32 Found package: python3-firewall.noarch (version: 0.8.0-4.el8)
2021-01-15 08:43:32 Found package: python3-gobject-base.x86_64 (version: 3.28.3-1.el8)
2021-01-15 08:43:32 Found package: python3-gpg.x86_64 (version: 1.10.0-6.el8.0.1)
2021-01-15 08:43:32 Found package: python3-hawkey.x86_64 (version: 0.48.0-5.el8)
2021-01-15 08:43:32 Found package: python3-hwdata.noarch (version: 2.3.6-3.el8)
2021-01-15 08:43:32 Found package: python3-idna.noarch (version: 2.5-5.el8)
2021-01-15 08:43:32 Found package: python3-libcomps.x86_64 (version: 0.1.11-4.el8)
2021-01-15 08:43:32 Found package: python3-libdnf.x86_64 (version: 0.48.0-5.el8)
2021-01-15 08:43:32 Found package: python3-librepo.x86_64 (version: 1.12.0-2.el8)
2021-01-15 08:43:32 Found package: python3-libs.x86_64 (version: 3.6.8-23.el8)
2021-01-15 08:43:32 Found package: python3-libselinux.x86_64 (version: 2.9-3.el8)
2021-01-15 08:43:32 Found package: python3-libsemanage.x86_64 (version: 2.9-2.el8)
2021-01-15 08:43:32 Found package: python3-libxml2.x86_64 (version: 2.9.7-7.el8)
2021-01-15 08:43:32 Found package: python3-linux-procfs.noarch (version: 0.6-7.el8)
2021-01-15 08:43:32 Found package: python3-netifaces.x86_64 (version: 0.10.6-4.el8)
2021-01-15 08:43:32 Found package: python3-newt.x86_64 (version: 0.52.20-11.el8)
2021-01-15 08:43:32 Found package: python3-nftables.x86_64 (version: 1:0.9.3-12.el8_2.1)
2021-01-15 08:43:32 Found package: python3-perf.x86_64 (version: 4.18.0-193.28.1.el8_2)
2021-01-15 08:43:32 Found package: python3-pip.noarch (version: 9.0.3-16.el8)
2021-01-15 08:43:32 Found package: python3-pip-wheel.noarch (version: 9.0.3-16.el8)
2021-01-15 08:43:32 Found package: python3-ply.noarch (version: 3.9-8.el8)
2021-01-15 08:43:32 Found package: python3-policycoreutils.noarch (version: 2.9-9.el8)
2021-01-15 08:43:32 Found package: python3-pyOpenSSL.noarch (version: 18.0.0-1.el8)
2021-01-15 08:43:32 Found package: python3-pycparser.noarch (version: 2.14-14.el8)
2021-01-15 08:43:32 Found package: python3-pyudev.noarch (version: 0.21.0-7.el8)
2021-01-15 08:43:32 Found package: python3-rhn-client-tools.x86_64 (version: 2.8.16-13.module_el8.1.0+211+ad6c0bc7)
2021-01-15 08:43:32 Found package: python3-rhnlib.noarch (version: 2.8.6-8.module_el8.1.0+211+ad6c0bc7)
2021-01-15 08:43:32 Found package: python3-rpm.x86_64 (version: 4.14.2-37.el8)
2021-01-15 08:43:32 Found package: python3-schedutils.x86_64 (version: 0.6-6.el8)
2021-01-15 08:43:32 Found package: python3-setools.x86_64 (version: 4.2.2-2.el8)
2021-01-15 08:43:32 Found package: python3-setuptools.noarch (version: 39.2.0-5.el8)
2021-01-15 08:43:32 Found package: python3-setuptools-wheel.noarch (version: 39.2.0-5.el8)
2021-01-15 08:43:32 Found package: python3-six.noarch (version: 1.11.0-8.el8)
2021-01-15 08:43:32 Found package: python3-slip.noarch (version: 0.6.4-11.el8)
2021-01-15 08:43:32 Found package: python3-slip-dbus.noarch (version: 0.6.4-11.el8)
2021-01-15 08:43:32 Found package: python3-syspurpose.x86_64 (version: 1.26.20-1.el8_2)
2021-01-15 08:43:32 Found package: python3-unbound.x86_64 (version: 1.7.3-11.el8_2)
2021-01-15 08:43:32 Found package: python36.x86_64 (version: 3.6.8-2.module_el8.1.0+245+c39af44f)
2021-01-15 08:43:32 Found package: readline.x86_64 (version: 7.0-10.el8)
2021-01-15 08:43:32 Found package: rhn-client-tools.x86_64 (version: 2.8.16-13.module_el8.1.0+211+ad6c0bc7)
2021-01-15 08:43:32 Found package: rng-tools.x86_64 (version: 6.8-3.el8)
2021-01-15 08:43:32 Found package: rootfiles.noarch (version: 8.1-22.el8)
2021-01-15 08:43:32 Found package: rpm.x86_64 (version: 4.14.2-37.el8)
2021-01-15 08:43:32 Found package: rpm-build-libs.x86_64 (version: 4.14.2-37.el8)
2021-01-15 08:43:32 Found package: rpm-libs.x86_64 (version: 4.14.2-37.el8)
2021-01-15 08:43:32 Found package: rpm-plugin-selinux.x86_64 (version: 4.14.2-37.el8)
2021-01-15 08:43:32 Found package: rpm-plugin-systemd-inhibit.x86_64 (version: 4.14.2-37.el8)
2021-01-15 08:43:32 Found package: rsyslog.x86_64 (version: 8.1911.0-3.el8)
2021-01-15 08:43:32 Found package: sed.x86_64 (version: 4.5-1.el8)
2021-01-15 08:43:32 Found package: selinux-policy.noarch (version: 3.14.3-41.el8_2.8)
2021-01-15 08:43:32 Found package: selinux-policy-targeted.noarch (version: 3.14.3-41.el8_2.8)
2021-01-15 08:43:32 Found package: setup.noarch (version: 2.12.2-5.el8)
2021-01-15 08:43:32 Found package: sg3_utils.x86_64 (version: 1.44-5.el8)
2021-01-15 08:43:32 Found package: sg3_utils-libs.x86_64 (version: 1.44-5.el8)
2021-01-15 08:43:32 Found package: shadow-utils.x86_64 (version: 2:4.6-8.el8)
2021-01-15 08:43:32 Found package: shared-mime-info.x86_64 (version: 1.9-3.el8)
2021-01-15 08:43:32 Found package: shim-x64.x86_64 (version: 15-15.el8_2)
2021-01-15 08:43:32 Found package: slang.x86_64 (version: 2.3.2-3.el8)
2021-01-15 08:43:32 Found package: slirp4netns.x86_64 (version: 1.1.4-2.module_el8.3.0+475+c50ce30b)
2021-01-15 08:43:32 Found package: snappy.x86_64 (version: 1.1.7-5.el8)
2021-01-15 08:43:32 Found package: sqlite-libs.x86_64 (version: 3.26.0-6.el8)
2021-01-15 08:43:32 Found package: squashfs-tools.x86_64 (version: 4.3-19.el8)
2021-01-15 08:43:32 Found package: sssd-client.x86_64 (version: 2.2.3-20.el8)
2021-01-15 08:43:32 Found package: sssd-common.x86_64 (version: 2.2.3-20.el8)
2021-01-15 08:43:32 Found package: sssd-kcm.x86_64 (version: 2.2.3-20.el8)
2021-01-15 08:43:32 Found package: sssd-nfs-idmap.x86_64 (version: 2.2.3-20.el8)
2021-01-15 08:43:33 Found package: sudo.x86_64 (version: 1.8.29-5.el8)
2021-01-15 08:43:33 Found package: systemd.x86_64 (version: 239-31.el8_2.2)
2021-01-15 08:43:33 Found package: systemd-libs.x86_64 (version: 239-31.el8_2.2)
2021-01-15 08:43:33 Found package: systemd-pam.x86_64 (version: 239-31.el8_2.2)
2021-01-15 08:43:33 Found package: systemd-udev.x86_64 (version: 239-31.el8_2.2)
2021-01-15 08:43:33 Found package: tar.x86_64 (version: 2:1.30-5.el8)
2021-01-15 08:43:33 Found package: teamd.x86_64 (version: 1.29-1.el8_2.2)
2021-01-15 08:43:33 Found package: timedatex.x86_64 (version: 0.5-3.el8)
2021-01-15 08:43:33 Found package: tree.x86_64 (version: 1.7.0-15.el8)
2021-01-15 08:43:33 Found package: trousers.x86_64 (version: 0.3.14-4.el8)
2021-01-15 08:43:33 Found package: trousers-lib.x86_64 (version: 0.3.14-4.el8)
2021-01-15 08:43:33 Found package: ttmkfdir.x86_64 (version: 3.0.9-54.el8)
2021-01-15 08:43:33 Found package: tuned.noarch (version: 2.13.0-6.el8)
2021-01-15 08:43:33 Found package: tzdata.noarch (version: 2020d-1.el8)
2021-01-15 08:43:33 Found package: tzdata-java.noarch (version: 2020d-1.el8)
2021-01-15 08:43:33 Found package: unbound-libs.x86_64 (version: 1.7.3-11.el8_2)
2021-01-15 08:43:33 Found package: util-linux.x86_64 (version: 2.32.1-22.el8)
2021-01-15 08:43:33 Found package: vim-common.x86_64 (version: 2:8.0.1763-15.el8)
2021-01-15 08:43:33 Found package: vim-enhanced.x86_64 (version: 2:8.0.1763-15.el8)
2021-01-15 08:43:33 Found package: vim-filesystem.noarch (version: 2:8.0.1763-15.el8)
2021-01-15 08:43:33 Found package: vim-minimal.x86_64 (version: 2:8.0.1763-13.el8)
2021-01-15 08:43:33 Found package: virt-what.x86_64 (version: 1.18-6.el8)
2021-01-15 08:43:33 Found package: wget.x86_64 (version: 1.19.5-8.el8_1.1)
2021-01-15 08:43:33 Found package: which.x86_64 (version: 2.21-12.el8)
2021-01-15 08:43:33 Found package: xfsprogs.x86_64 (version: 5.0.0-2.el8)
2021-01-15 08:43:33 Found package: xkeyboard-config.noarch (version: 2.28-1.el8)
2021-01-15 08:43:33 Found package: xorg-x11-font-utils.x86_64 (version: 1:7.5-40.el8)
2021-01-15 08:43:33 Found package: xorg-x11-fonts-Type1.noarch (version: 7.5-19.el8)
2021-01-15 08:43:33 Found package: xz.x86_64 (version: 5.2.4-3.el8)
2021-01-15 08:43:33 Found package: xz-libs.x86_64 (version: 5.2.4-3.el8)
2021-01-15 08:43:33 Found package: yum.noarch (version: 4.2.23-4.el8)
2021-01-15 08:43:33 Found package: yum-utils.noarch (version: 4.0.17-5.el8)
2021-01-15 08:43:33 Found package: zlib.x86_64 (version: 1.2.11-16.el8_2)
2021-01-15 08:43:33 Found package: zlib-devel.x86_64 (version: 1.2.11-16.el8_2)
2021-01-15 08:43:33 ====
2021-01-15 08:43:33 Performing test ID PKGS-7352 (Checking for security updates with DNF utility)
2021-01-15 08:43:33 Action: checking updateinfo for security updates
2021-01-15 08:43:33 Result: no security updates found
2021-01-15 08:43:33 Hardening: assigned maximum number of hardening points for this item (5). Currently having 124 points (out of 176)
2021-01-15 08:43:33 ====
2021-01-15 08:43:33 Performing test ID PKGS-7354 (Checking package database integrity)
2021-01-15 08:43:34 Action: checking integrity of package database
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7366 (Checking for debsecan utility)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7370 (Checking for debsums utility)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7378 (Query portmaster for port upgrades)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7380 (Check for vulnerable NetBSD packages)
2021-01-15 08:43:35 Reason to skip: Incorrect guest OS (NetBSD only)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7381 (Check for vulnerable FreeBSD packages with pkg)
2021-01-15 08:43:35 Reason to skip: pkg tool not available
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7382 (Check for vulnerable FreeBSD packages with portaudit)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7383 (Check for YUM package update management)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7384 (Check for YUM utils package)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7386 (Check for YUM security package)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7387 (Check for GPG signing in YUM security package)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7388 (Check security repository in apt sources.list file)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7390 (Check Ubuntu database consistency)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7392 (Check for Debian/Ubuntu security updates)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7393 (Check for Gentoo vulnerable packages)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Skipped test PKGS-7394 (Check for Ubuntu updates)
2021-01-15 08:43:35 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Performing test ID PKGS-7398 (Check for package audit tool)
2021-01-15 08:43:35 Test: checking for package audit tool
2021-01-15 08:43:35 Result: found package audit tool: dnf
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Performing test ID PKGS-7410 (Count installed kernel packages)
2021-01-15 08:43:35 Test: Checking how many kernel packages are installed
2021-01-15 08:43:35 Result: found 1 kernel packages on the system, which is fine
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Performing test ID PKGS-7420 (Detect toolkit to automatically download and apply upgrades)
2021-01-15 08:43:35 Hardening: assigned partial number of hardening points (1 of 5). Currently having 125 points (out of 181)
2021-01-15 08:43:35 Result: no toolkit for automatic updates discovered
2021-01-15 08:43:35 Suggestion: Consider using a tool to automatically apply upgrades [test:PKGS-7420] [details:-] [solution:-]
2021-01-15 08:43:35 Security check: file is normal
2021-01-15 08:43:35 Checking permissions of /usr/share/lynis/include/tests_networking
2021-01-15 08:43:35 File permissions are OK
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Action: Performing tests from category: Networking
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Performing test ID NETW-2400 (Hostname length and value check)
2021-01-15 08:43:35 Result: FQDN is defined and not longer than 253 characters (29 characters)
2021-01-15 08:43:35 Result: hostnamed is defined and not longer than 63 characters
2021-01-15 08:43:35 Result: good, no unexpected characters discovered in hostname
2021-01-15 08:43:35 ====
2021-01-15 08:43:35 Performing test ID NETW-2600 (Checking IPv6 configuration)
2021-01-15 08:43:37 Result: IPV6 mode is auto
2021-01-15 08:43:37 Result: IPv6 only configuration: NO
2021-01-15 08:43:37 ====
2021-01-15 08:43:37 Performing test ID NETW-2704 (Basic nameserver configuration tests)
2021-01-15 08:43:37 Test: Checking /etc/resolv.conf file
2021-01-15 08:43:37 Result: Found /etc/resolv.conf file
2021-01-15 08:43:37 Test: Querying nameservers
2021-01-15 08:43:37 Found nameserver: 10.11.8.1
2021-01-15 08:43:37 Result: Nameserver test for 10.11.8.1 skipped, 'dig' not installed
2021-01-15 08:43:37 ====
2021-01-15 08:43:37 Performing test ID NETW-2705 (Check availability two nameservers)
2021-01-15 08:43:37 Result: dig not installed, test can't be fully performed
2021-01-15 08:43:37 ====
2021-01-15 08:43:38 Performing test ID NETW-2706 (Check systemd-resolved and upstream DNSSEC status)
2021-01-15 08:43:38 Result: command '/usr/bin/resolvectl statistics' returned an error. Please run command manually to check for details.
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID NETW-3001 (Find default gateway (route))
2021-01-15 08:43:38 Test: Searching default gateway(s)
2021-01-15 08:43:38 Result: Found default gateway 10.11.8.1
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID NETW-3004 (Search for available network interfaces)
2021-01-15 08:43:38 Found network interface: lo
2021-01-15 08:43:38 Found network interface: ens805f0
2021-01-15 08:43:38 Found network interface: ens805f1
2021-01-15 08:43:38 Found network interface: ens787f0
2021-01-15 08:43:38 Found network interface: ens787f1
2021-01-15 08:43:38 Found network interface: docker0
2021-01-15 08:43:38 Found network interface: vethcf91635@if7
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID NETW-3006 (Get network MAC addresses)
2021-01-15 08:43:38 Found MAC address: 02:42:bb:9e:96:fa
2021-01-15 08:43:38 Found MAC address: 22:61:41:a8:77:22
2021-01-15 08:43:38 Found MAC address: 3c:fd:fe:cd:99:30
2021-01-15 08:43:38 Found MAC address: 3c:fd:fe:cd:99:31
2021-01-15 08:43:38 Found MAC address: 3c:fd:fe:dd:a4:ec
2021-01-15 08:43:38 Found MAC address: 3c:fd:fe:dd:a4:ed
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID NETW-3008 (Get network IP addresses)
2021-01-15 08:43:38 Found IPv4 address: 172.17.0.1
2021-01-15 08:43:38 Found IPv4 address: 10.11.8.11
2021-01-15 08:43:38 Found IPv4 address: 127.0.0.1
2021-01-15 08:43:38 Found IPv6 address: fe80::42:bbff:fe9e:96fa
2021-01-15 08:43:38 Found IPv6 address: fe80::248c:a83c:8701:ff93
2021-01-15 08:43:38 Found IPv6 address: ::1
2021-01-15 08:43:38 Found IPv6 address: fe80::2061:41ff:fea8:7722
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID NETW-3012 (Check listening ports)
2021-01-15 08:43:38 Test: Retrieving ss information to find listening ports
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test NETW-3014 (Checking promiscuous interfaces (BSD))
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID NETW-3015 (Checking promiscuous interfaces (Linux))
2021-01-15 08:43:38 Test: Using ip binary to retrieve network interfaces
2021-01-15 08:43:38 Test: Checking all interfaces to discover any with promiscuous mode enabled
2021-01-15 08:43:38 Result: No promiscuous interfaces found
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID NETW-3028 (Checking connections in WAIT state)
2021-01-15 08:43:38 Test: Using netstat for check for connections in WAIT state
2021-01-15 08:43:38 Result: currently 0 connections are in a waiting state (max configured: 5000).
2021-01-15 08:43:38 Result: 0 connections are in WAIT state
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID NETW-3030 (Checking DHCP client status)
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'dhclient' not found
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'dhcpcd' not found
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'udhcpc' not found
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID NETW-3032 (Checking for ARP monitoring software)
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'addrwatch' not found
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'arpwatch' not found
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'arpon' not found
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID NETW-3200 (Determine available network protocols)
2021-01-15 08:43:38 Test: checking the status of some network protocols that typically are not used
2021-01-15 08:43:38 Test: now checking module 'dccp'
2021-01-15 08:43:38 Suggestion: Determine if protocol 'dccp' is really needed on this system [test:NETW-3200] [details:-] [solution:-]
2021-01-15 08:43:38 Test: now checking module 'sctp'
2021-01-15 08:43:38 Suggestion: Determine if protocol 'sctp' is really needed on this system [test:NETW-3200] [details:-] [solution:-]
2021-01-15 08:43:38 Test: now checking module 'rds'
2021-01-15 08:43:38 Suggestion: Determine if protocol 'rds' is really needed on this system [test:NETW-3200] [details:-] [solution:-]
2021-01-15 08:43:38 Test: now checking module 'tipc'
2021-01-15 08:43:38 Suggestion: Determine if protocol 'tipc' is really needed on this system [test:NETW-3200] [details:-] [solution:-]
2021-01-15 08:43:38 Security check: file is normal
2021-01-15 08:43:38 Checking permissions of /usr/share/lynis/include/tests_printers_spoolers
2021-01-15 08:43:38 File permissions are OK
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Action: Performing tests from category: Printers and Spools
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test PRNT-2302 (Check for printcap consistency)
2021-01-15 08:43:38 Reason to skip: Incorrect guest OS (FreeBSD only)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID PRNT-2304 (Check cupsd status)
2021-01-15 08:43:38 Test: Checking cupsd status
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'cupsd' not found
2021-01-15 08:43:38 Result: cups daemon not running, cups daemon tests skipped
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test PRNT-2306 (Check CUPSd configuration file)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test PRNT-2307 (Check CUPSd configuration file permissions)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test PRNT-2308 (Check CUPSd network configuration)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID PRNT-2314 (Check lpd status)
2021-01-15 08:43:38 Test: Checking lpd status
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'lpd' not found
2021-01-15 08:43:38 Result: lp daemon not running
2021-01-15 08:43:38 Hardening: assigned maximum number of hardening points for this item (4). Currently having 129 points (out of 185)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test PRNT-2316 (Checking /etc/qconfig file)
2021-01-15 08:43:38 Reason to skip: Incorrect guest OS (AIX only)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test PRNT-2418 (Checking qdaemon printer spooler status)
2021-01-15 08:43:38 Reason to skip: Incorrect guest OS (AIX only)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test PRNT-2420 (Checking old print jobs)
2021-01-15 08:43:38 Reason to skip: Incorrect guest OS (AIX only)
2021-01-15 08:43:38 Security check: file is normal
2021-01-15 08:43:38 Checking permissions of /usr/share/lynis/include/tests_mail_messaging
2021-01-15 08:43:38 File permissions are OK
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Action: Performing tests from category: Software: e-mail and messaging
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID MAIL-8802 (Check Exim status)
2021-01-15 08:43:38 Test: check Exim status
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'exim4' not found
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'exim' not found
2021-01-15 08:43:38 Result: no running Exim processes found
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test MAIL-8804 (Exim configuration options)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID MAIL-8814 (Check postfix process status)
2021-01-15 08:43:38 Test: check Postfix status
2021-01-15 08:43:38 Result: no running Postfix processes found
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test MAIL-8816 (Check Postfix configuration)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test MAIL-8817 (Check Postfix configuration errors)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test MAIL-8818 (Check Postfix configuration: banner)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID MAIL-8820 (Postfix configuration scan)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID MAIL-8838 (Check dovecot process)
2021-01-15 08:43:38 Test: check dovecot status
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'dovecot' not found
2021-01-15 08:43:38 Result: dovecot not found
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID MAIL-8860 (Check Qmail status)
2021-01-15 08:43:38 Test: check Qmail status
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'qmail-smtpd' not found
2021-01-15 08:43:38 Result: no running Qmail processes found
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID MAIL-8880 (Check Sendmail status)
2021-01-15 08:43:38 Test: check sendmail status
2021-01-15 08:43:38 Performing pgrep scan without uid
2021-01-15 08:43:38 IsRunning: process 'sendmail' not found
2021-01-15 08:43:38 Result: no running Sendmail processes found
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test MAIL-8920 (Check OpenSMTPD status)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 Security check: file is normal
2021-01-15 08:43:38 Checking permissions of /usr/share/lynis/include/tests_firewalls
2021-01-15 08:43:38 File permissions are OK
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Action: Performing tests from category: Software: firewalls
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4502 (Check iptables kernel module)
2021-01-15 08:43:38 Result: Found iptables in loaded kernel modules
2021-01-15 08:43:38 Found module: ip_tables
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4508 (Check used policies of iptables chains)
2021-01-15 08:43:38 Test: gathering information from table filter
2021-01-15 08:43:38 Result: iptables  \nfilter  -- INPUTACCEPTFORWARDDROPDOCKERUSERDOCKERISOLATIONSTAGEACCEPTRELATEDESTABLISHEDDOCKERACCEPTACCEPTOUTPUTACCEPTDOCKERACCEPTDOCKERISOLATIONSTAGEDOCKERISOLATIONSTAGERETURNDOCKERISOLATIONSTAGEDROPRETURNDOCKERUSERRETURN policy is .
2021-01-15 08:43:38 Result: 
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4512 (Check iptables for empty ruleset)
2021-01-15 08:43:38 Result: one or more rules are available (12 rules)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4513 (Check iptables for unused rules)
2021-01-15 08:43:38 Result: Found one or more possible unused rules
2021-01-15 08:43:38 Description: Unused rules can be a sign that the firewall rules aren't optimized or up-to-date
2021-01-15 08:43:38 Note: Sometimes rules aren't triggered but still in use. Keep this in mind before cleaning up rules.
2021-01-15 08:43:38 Output: iptables rule numbers: 4 6 1 1
2021-01-15 08:43:38 Suggestion: Check iptables rules to see which rules are currently not used [test:FIRE-4513] [details:-] [solution:-]
2021-01-15 08:43:38 Tip: iptables --list --numeric --line-numbers --verbose
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test FIRE-4518 (Check pf firewall components)
2021-01-15 08:43:38 Reason to skip: No /dev/pf device
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test FIRE-4520 (Check pf configuration consistency)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4524 (Check for CSF presence)
2021-01-15 08:43:38 Test: check /etc/csf/csf.conf
2021-01-15 08:43:38 Result: /etc/csf/csf.conf does NOT exist
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test FIRE-4526 (Check ipf status)
2021-01-15 08:43:38 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test FIRE-4530 (Check IPFW status)
2021-01-15 08:43:38 Reason to skip: Incorrect guest OS (FreeBSD only)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test FIRE-4532 (Check macOS application firewall)
2021-01-15 08:43:38 Reason to skip: Incorrect guest OS (macOS only)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test FIRE-4534 (Check for presence of outbound firewalls on macOS)
2021-01-15 08:43:38 Reason to skip: Incorrect guest OS (macOS only)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4536 (Check nftables status)
2021-01-15 08:43:38 Result: found nftables kernel module
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4538 (Check nftables basic configuration)
2021-01-15 08:43:38 Result: found version 0.9.3 of nft
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4540 (Check for empty nftables configuration)
2021-01-15 08:43:38 Result: this firewall set has 3 rules or less and is considered to be empty
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4586 (Check firewall logging)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4590 (Check firewall status)
2021-01-15 08:43:38 Result: host based firewall or packet filter is active
2021-01-15 08:43:38 Hardening: assigned maximum number of hardening points for this item (5). Currently having 134 points (out of 190)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID FIRE-4594 (Check for APF presence)
2021-01-15 08:43:38 Test: check /etc/apf/conf.apf
2021-01-15 08:43:38 Result: /etc/apf/conf.apf does NOT exist
2021-01-15 08:43:38 Security check: file is normal
2021-01-15 08:43:38 Checking permissions of /usr/share/lynis/include/tests_webservers
2021-01-15 08:43:38 File permissions are OK
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Action: Performing tests from category: Software: webserver
2021-01-15 08:43:38 Action: created temporary file /tmp/lynis.GEzxxihLVL
2021-01-15 08:43:38 Action: created temporary file /tmp/lynis.JwLsCjWsfq
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Performing test ID HTTP-6622 (Checking Apache presence)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test HTTP-6624 (Testing main Apache configuration file)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:38 ====
2021-01-15 08:43:38 Skipped test HTTP-6626 (Testing other Apache configuration file)
2021-01-15 08:43:38 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6632 (Determining all available Apache modules)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6640 (Determining existence of specific Apache modules)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6641 (Determining existence of specific Apache modules)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6643 (Determining existence of specific Apache modules)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID HTTP-6702 (Check nginx process)
2021-01-15 08:43:39 Test: searching running nginx process
2021-01-15 08:43:39 Performing pgrep scan without uid
2021-01-15 08:43:39 IsRunning: process 'nginx' not found
2021-01-15 08:43:39 Result: no running nginx process found
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6704 (Check nginx configuration file)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6706 (Check for additional nginx configuration files)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6708 (Check discovered nginx configuration settings)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6710 (Check nginx SSL configuration settings)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6712 (Check nginx access logging)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6714 (Check for missing error logs in nginx)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6716 (Check for debug mode on error log in nginx)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test HTTP-6720 (Check Nginx log files)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 Security check: file is normal
2021-01-15 08:43:39 Checking permissions of /usr/share/lynis/include/tests_ssh
2021-01-15 08:43:39 File permissions are OK
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Action: Performing tests from category: SSH Support
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID SSH-7402 (Check for running SSH daemon)
2021-01-15 08:43:39 Test: Searching for a SSH daemon
2021-01-15 08:43:39 Performing pgrep scan without uid
2021-01-15 08:43:39 IsRunning: process 'sshd' found (1831 932566 932601 )
2021-01-15 08:43:39 Action: created temporary file /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID SSH-7404 (Check SSH daemon file location)
2021-01-15 08:43:39 Test: searching for sshd_config file
2021-01-15 08:43:39 Result: /etc/ssh/sshd_config exists
2021-01-15 08:43:39 Test: check if we can access /etc/ssh/sshd_config (escaped: /etc/ssh/sshd_config)
2021-01-15 08:43:39 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:39 Result: file /etc/ssh/sshd_config is readable (or directory accessible).
2021-01-15 08:43:39 Result: using last found configuration file: /etc/ssh/sshd_config
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID SSH-7406 (Determine OpenSSH version)
2021-01-15 08:43:39 Result: discovered OpenSSH version is 8.0
2021-01-15 08:43:39 Result: OpenSSH major version: 8
2021-01-15 08:43:39 Result: OpenSSH minor version: 0
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID SSH-7408 (Check SSH specific defined options)
2021-01-15 08:43:39 Test: Checking specific defined options in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Test: Checking AllowTcpForwarding in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option AllowTcpForwarding found
2021-01-15 08:43:39 Result: Option AllowTcpForwarding value is YES
2021-01-15 08:43:39 Result: OpenSSH option AllowTcpForwarding is in a weak configuration state and should be fixed
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:AllowTcpForwarding (set YES to NO)] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (0 of 3). Currently having 134 points (out of 193)
2021-01-15 08:43:39 Test: Checking ClientAliveCountMax in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option ClientAliveCountMax found
2021-01-15 08:43:39 Result: Option ClientAliveCountMax value is 3
2021-01-15 08:43:39 Result: OpenSSH option ClientAliveCountMax is configured reasonably
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:ClientAliveCountMax (set 3 to 2)] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (1 of 3). Currently having 135 points (out of 196)
2021-01-15 08:43:39 Test: Checking ClientAliveInterval in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option ClientAliveInterval found
2021-01-15 08:43:39 Result: Option ClientAliveInterval value is 0
2021-01-15 08:43:39 Result: OpenSSH option ClientAliveInterval is configured very well
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (3). Currently having 138 points (out of 199)
2021-01-15 08:43:39 Test: Checking Compression in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option Compression found
2021-01-15 08:43:39 Result: Option Compression value is YES
2021-01-15 08:43:39 Result: OpenSSH option Compression is in a weak configuration state and should be fixed
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:Compression (set YES to NO)] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (0 of 3). Currently having 138 points (out of 202)
2021-01-15 08:43:39 Test: Checking FingerprintHash in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option FingerprintHash found
2021-01-15 08:43:39 Result: Option FingerprintHash value is SHA256
2021-01-15 08:43:39 Result: OpenSSH option FingerprintHash is configured very well
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (3). Currently having 141 points (out of 205)
2021-01-15 08:43:39 Test: Checking GatewayPorts in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option GatewayPorts found
2021-01-15 08:43:39 Result: Option GatewayPorts value is NO
2021-01-15 08:43:39 Result: OpenSSH option GatewayPorts is configured very well
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (3). Currently having 144 points (out of 208)
2021-01-15 08:43:39 Test: Checking IgnoreRhosts in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option IgnoreRhosts found
2021-01-15 08:43:39 Result: Option IgnoreRhosts value is YES
2021-01-15 08:43:39 Result: OpenSSH option IgnoreRhosts is configured very well
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (3). Currently having 147 points (out of 211)
2021-01-15 08:43:39 Test: Checking LoginGraceTime in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option LoginGraceTime found
2021-01-15 08:43:39 Result: Option LoginGraceTime value is 120
2021-01-15 08:43:39 Result: OpenSSH option LoginGraceTime is configured very well
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (3). Currently having 150 points (out of 214)
2021-01-15 08:43:39 Test: Checking LogLevel in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option LogLevel found
2021-01-15 08:43:39 Result: Option LogLevel value is INFO
2021-01-15 08:43:39 Result: OpenSSH option LogLevel is configured reasonably
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:LogLevel (set INFO to VERBOSE)] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (1 of 3). Currently having 151 points (out of 217)
2021-01-15 08:43:39 Test: Checking MaxAuthTries in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option MaxAuthTries found
2021-01-15 08:43:39 Result: Option MaxAuthTries value is 6
2021-01-15 08:43:39 Result: OpenSSH option MaxAuthTries is configured reasonably
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:MaxAuthTries (set 6 to 3)] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (1 of 3). Currently having 152 points (out of 220)
2021-01-15 08:43:39 Test: Checking MaxSessions in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option MaxSessions found
2021-01-15 08:43:39 Result: Option MaxSessions value is 10
2021-01-15 08:43:39 Result: OpenSSH option MaxSessions is in a weak configuration state and should be fixed
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:MaxSessions (set 10 to 2)] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (0 of 3). Currently having 152 points (out of 223)
2021-01-15 08:43:39 Test: Checking PermitRootLogin in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option PermitRootLogin found
2021-01-15 08:43:39 Result: Option PermitRootLogin value is YES
2021-01-15 08:43:39 Result: OpenSSH option PermitRootLogin is in a weak configuration state and should be fixed
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:PermitRootLogin (set YES to (FORCED-COMMANDS-ONLY|NO|PROHIBIT-PASSWORD|WITHOUT-PASSWORD))] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (0 of 3). Currently having 152 points (out of 226)
2021-01-15 08:43:39 Test: Checking PermitUserEnvironment in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option PermitUserEnvironment found
2021-01-15 08:43:39 Result: Option PermitUserEnvironment value is NO
2021-01-15 08:43:39 Result: OpenSSH option PermitUserEnvironment is configured very well
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (3). Currently having 155 points (out of 229)
2021-01-15 08:43:39 Test: Checking PermitTunnel in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option PermitTunnel found
2021-01-15 08:43:39 Result: Option PermitTunnel value is NO
2021-01-15 08:43:39 Result: OpenSSH option PermitTunnel is configured very well
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (3). Currently having 158 points (out of 232)
2021-01-15 08:43:39 Test: Checking Port in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option Port found
2021-01-15 08:43:39 Result: Option Port value is 22
2021-01-15 08:43:39 Result: OpenSSH option Port is in a weak configuration state and should be fixed
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:Port (set 22 to )] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (0 of 3). Currently having 158 points (out of 235)
2021-01-15 08:43:39 Test: Checking PrintLastLog in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option PrintLastLog found
2021-01-15 08:43:39 Result: Option PrintLastLog value is YES
2021-01-15 08:43:39 Result: OpenSSH option PrintLastLog is configured very well
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (3). Currently having 161 points (out of 238)
2021-01-15 08:43:39 Test: Checking StrictModes in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option StrictModes found
2021-01-15 08:43:39 Result: Option StrictModes value is YES
2021-01-15 08:43:39 Result: OpenSSH option StrictModes is configured very well
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (3). Currently having 164 points (out of 241)
2021-01-15 08:43:39 Test: Checking TCPKeepAlive in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option TCPKeepAlive found
2021-01-15 08:43:39 Result: Option TCPKeepAlive value is YES
2021-01-15 08:43:39 Result: OpenSSH option TCPKeepAlive is in a weak configuration state and should be fixed
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:TCPKeepAlive (set YES to NO)] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (0 of 3). Currently having 164 points (out of 244)
2021-01-15 08:43:39 Test: Checking UseDNS in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option UseDNS found
2021-01-15 08:43:39 Result: Option UseDNS value is NO
2021-01-15 08:43:39 Result: OpenSSH option UseDNS is configured very well
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (3). Currently having 167 points (out of 247)
2021-01-15 08:43:39 Test: Checking X11Forwarding in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option X11Forwarding found
2021-01-15 08:43:39 Result: Option X11Forwarding value is YES
2021-01-15 08:43:39 Result: OpenSSH option X11Forwarding is in a weak configuration state and should be fixed
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:X11Forwarding (set YES to NO)] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (0 of 3). Currently having 167 points (out of 250)
2021-01-15 08:43:39 Test: Checking AllowAgentForwarding in /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:39 Result: Option AllowAgentForwarding found
2021-01-15 08:43:39 Result: Option AllowAgentForwarding value is YES
2021-01-15 08:43:39 Result: OpenSSH option AllowAgentForwarding is in a weak configuration state and should be fixed
2021-01-15 08:43:39 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:AllowAgentForwarding (set YES to NO)] [solution:-]
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (0 of 3). Currently having 167 points (out of 253)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID SSH-7440 (Check OpenSSH option: AllowUsers and AllowGroups)
2021-01-15 08:43:39 Result: AllowUsers is not set
2021-01-15 08:43:39 Result: AllowGroups is not set
2021-01-15 08:43:39 Result: SSH has no specific user or group limitation. Most likely all valid users can SSH to this machine.
2021-01-15 08:43:39 Hardening: assigned partial number of hardening points (0 of 1). Currently having 167 points (out of 254)
2021-01-15 08:43:39 Security check: file is normal
2021-01-15 08:43:39 Checking permissions of /usr/share/lynis/include/tests_snmp
2021-01-15 08:43:39 File permissions are OK
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Action: Performing tests from category: SNMP Support
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID SNMP-3302 (Check for running SNMP daemon)
2021-01-15 08:43:39 Test: Searching for a SNMP daemon
2021-01-15 08:43:39 Performing pgrep scan without uid
2021-01-15 08:43:39 IsRunning: process 'snmpd' not found
2021-01-15 08:43:39 Result: No running SNMP daemon found
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test SNMP-3304 (Check SNMP daemon file location)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test SNMP-3306 (Check SNMP communities)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 Security check: file is normal
2021-01-15 08:43:39 Checking permissions of /usr/share/lynis/include/tests_databases
2021-01-15 08:43:39 File permissions are OK
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Action: Performing tests from category: Databases
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID DBS-1804 (Checking active MySQL process)
2021-01-15 08:43:39 Result: MySQL is active
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID DBS-1816 (Checking MySQL root password)
2021-01-15 08:43:39 Test: Trying to login to local MySQL server without password
2021-01-15 08:43:39 Result: Login did not succeed, so a MySQL root password is set
2021-01-15 08:43:39 Hardening: assigned maximum number of hardening points for this item (2). Currently having 169 points (out of 256)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID DBS-1818 (Check status of MongoDB server)
2021-01-15 08:43:39 Performing pgrep scan without uid
2021-01-15 08:43:39 IsRunning: process 'mongod' not found
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID DBS-1820 (Check for authorization in MongoDB)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID DBS-1826 (Checking active PostgreSQL processes)
2021-01-15 08:43:39 Performing pgrep scan without uid
2021-01-15 08:43:39 IsRunning: process 'postgres:' not found
2021-01-15 08:43:39 Result: PostgreSQL process not active
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Skipped test DBS-1828 (Test PostgreSQL configuration)
2021-01-15 08:43:39 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID DBS-1840 (Checking active Oracle processes)
2021-01-15 08:43:39 Result: Oracle process(es) not active
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID DBS-1860 (Checking active DB2 instances)
2021-01-15 08:43:39 Performing pgrep scan without uid
2021-01-15 08:43:39 IsRunning: process 'db2sysc' not found
2021-01-15 08:43:39 Result: No DB2 instances are running
2021-01-15 08:43:39 ====
2021-01-15 08:43:39 Performing test ID DBS-1880 (Check for active Redis server)
2021-01-15 08:43:39 Performing pgrep scan without uid
2021-01-15 08:43:39 IsRunning: process 'redis-server' not found
2021-01-15 08:43:39 Result: No Redis processes are running
2021-01-15 08:43:39 ====
2021-01-15 08:43:40 Skipped test DBS-1882 (Redis configuration file)
2021-01-15 08:43:40 Reason to skip: Redis not running
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test DBS-1884 (Redis: requirepass option configured)
2021-01-15 08:43:40 Reason to skip: Redis not running, or no configuration file found
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test DBS-1886 (Redis: rename-command CONFIG used)
2021-01-15 08:43:40 Reason to skip: Redis not running, or no configuration found
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test DBS-1888 (Redis: bind on localhost)
2021-01-15 08:43:40 Reason to skip: Redis not running, or no configuration found
2021-01-15 08:43:40 Security check: file is normal
2021-01-15 08:43:40 Checking permissions of /usr/share/lynis/include/tests_ldap
2021-01-15 08:43:40 File permissions are OK
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Action: Performing tests from category: LDAP Services
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LDAP-2219 (Check running OpenLDAP instance)
2021-01-15 08:43:40 Performing pgrep scan without uid
2021-01-15 08:43:40 IsRunning: process 'slapd' not found
2021-01-15 08:43:40 Result: No running slapd process found.
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test LDAP-2224 (Check presence slapd.conf)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 Security check: file is normal
2021-01-15 08:43:40 Checking permissions of /usr/share/lynis/include/tests_php
2021-01-15 08:43:40 File permissions are OK
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Action: Performing tests from category: PHP
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID PHP-2211 (Check php.ini presence)
2021-01-15 08:43:40 Test: Checking for presence php.ini
2021-01-15 08:43:40 Test: checking presence /etc/php.ini
2021-01-15 08:43:40 Result: file /etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php.ini.default
2021-01-15 08:43:40 Result: file /etc/php.ini.default not found
2021-01-15 08:43:40 Test: checking presence /etc/php/php.ini
2021-01-15 08:43:40 Result: file /etc/php/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php5.5/php.ini
2021-01-15 08:43:40 Result: file /etc/php5.5/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php5.6/php.ini
2021-01-15 08:43:40 Result: file /etc/php5.6/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php7.0/php.ini
2021-01-15 08:43:40 Result: file /etc/php7.0/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php7.1/php.ini
2021-01-15 08:43:40 Result: file /etc/php7.1/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php7.2/php.ini
2021-01-15 08:43:40 Result: file /etc/php7.2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php7.3/php.ini
2021-01-15 08:43:40 Result: file /etc/php7.3/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php7.4/php.ini
2021-01-15 08:43:40 Result: file /etc/php7.4/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cgi-php5/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cgi-php5/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cli-php5/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cli-php5/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/apache2-php5/php.ini
2021-01-15 08:43:40 Result: file /etc/php/apache2-php5/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/apache2-php5.5/php.ini
2021-01-15 08:43:40 Result: file /etc/php/apache2-php5.5/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/apache2-php5.6/php.ini
2021-01-15 08:43:40 Result: file /etc/php/apache2-php5.6/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/apache2-php7.0/php.ini
2021-01-15 08:43:40 Result: file /etc/php/apache2-php7.0/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/apache2-php7.1/php.ini
2021-01-15 08:43:40 Result: file /etc/php/apache2-php7.1/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/apache2-php7.2/php.ini
2021-01-15 08:43:40 Result: file /etc/php/apache2-php7.2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/apache2-php7.3/php.ini
2021-01-15 08:43:40 Result: file /etc/php/apache2-php7.3/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/apache2-php7.4/php.ini
2021-01-15 08:43:40 Result: file /etc/php/apache2-php7.4/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cgi-php5.5/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cgi-php5.5/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cgi-php5.6/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cgi-php5.6/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cgi-php7.0/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cgi-php7.0/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cgi-php7.1/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cgi-php7.1/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cgi-php7.2/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cgi-php7.2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cgi-php7.3/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cgi-php7.3/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cgi-php7.4/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cgi-php7.4/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cli-php5.5/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cli-php5.5/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cli-php5.6/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cli-php5.6/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cli-php7.0/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cli-php7.0/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cli-php7.1/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cli-php7.1/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cli-php7.2/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cli-php7.2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cli-php7.3/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cli-php7.3/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/cli-php7.4/php.ini
2021-01-15 08:43:40 Result: file /etc/php/cli-php7.4/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/embed-php5.5/php.ini
2021-01-15 08:43:40 Result: file /etc/php/embed-php5.5/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/embed-php5.6/php.ini
2021-01-15 08:43:40 Result: file /etc/php/embed-php5.6/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/embed-php7.0/php.ini
2021-01-15 08:43:40 Result: file /etc/php/embed-php7.0/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/embed-php7.1/php.ini
2021-01-15 08:43:40 Result: file /etc/php/embed-php7.1/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/embed-php7.2/php.ini
2021-01-15 08:43:40 Result: file /etc/php/embed-php7.2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/embed-php7.3/php.ini
2021-01-15 08:43:40 Result: file /etc/php/embed-php7.3/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/embed-php7.4/php.ini
2021-01-15 08:43:40 Result: file /etc/php/embed-php7.4/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/fpm-php7.4/php.ini
2021-01-15 08:43:40 Result: file /etc/php/fpm-php7.4/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/fpm-php7.3/php.ini
2021-01-15 08:43:40 Result: file /etc/php/fpm-php7.3/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/fpm-php7.2/php.ini
2021-01-15 08:43:40 Result: file /etc/php/fpm-php7.2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/fpm-php7.1/php.ini
2021-01-15 08:43:40 Result: file /etc/php/fpm-php7.1/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/fpm-php7.0/php.ini
2021-01-15 08:43:40 Result: file /etc/php/fpm-php7.0/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/fpm-php5.5/php.ini
2021-01-15 08:43:40 Result: file /etc/php/fpm-php5.5/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/fpm-php5.6/php.ini
2021-01-15 08:43:40 Result: file /etc/php/fpm-php5.6/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php5/cgi/php.ini
2021-01-15 08:43:40 Result: file /etc/php5/cgi/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php5/cli/php.ini
2021-01-15 08:43:40 Result: file /etc/php5/cli/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php5/cli-php5.4/php.ini
2021-01-15 08:43:40 Result: file /etc/php5/cli-php5.4/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php5/cli-php5.5/php.ini
2021-01-15 08:43:40 Result: file /etc/php5/cli-php5.5/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php5/cli-php5.6/php.ini
2021-01-15 08:43:40 Result: file /etc/php5/cli-php5.6/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php5/apache2/php.ini
2021-01-15 08:43:40 Result: file /etc/php5/apache2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php5/fpm/php.ini
2021-01-15 08:43:40 Result: file /etc/php5/fpm/php.ini not found
2021-01-15 08:43:40 Test: checking presence /private/etc/php.ini
2021-01-15 08:43:40 Result: file /private/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.0/apache2/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.0/apache2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.1/apache2/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.1/apache2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.2/apache2/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.2/apache2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.3/apache2/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.3/apache2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.4/apache2/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.4/apache2/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.0/cli/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.0/cli/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.0/fpm/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.0/fpm/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.1/cli/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.1/cli/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.1/fpm/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.1/fpm/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.2/cli/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.2/cli/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.2/fpm/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.2/fpm/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.3/cli/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.3/cli/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.3/fpm/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.3/fpm/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.4/cli/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.4/cli/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php/7.4/fpm/php.ini
2021-01-15 08:43:40 Result: file /etc/php/7.4/fpm/php.ini not found
2021-01-15 08:43:40 Test: checking presence /var/www/conf/php.ini
2021-01-15 08:43:40 Result: file /var/www/conf/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/etc/php.ini
2021-01-15 08:43:40 Result: file /usr/local/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/lib/php.ini
2021-01-15 08:43:40 Result: file /usr/local/lib/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/etc/php5/cgi/php.ini
2021-01-15 08:43:40 Result: file /usr/local/etc/php5/cgi/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/php54/lib/php.ini
2021-01-15 08:43:40 Result: file /usr/local/php54/lib/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/php56/lib/php.ini
2021-01-15 08:43:40 Result: file /usr/local/php56/lib/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/php70/lib/php.ini
2021-01-15 08:43:40 Result: file /usr/local/php70/lib/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/php71/lib/php.ini
2021-01-15 08:43:40 Result: file /usr/local/php71/lib/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/php72/lib/php.ini
2021-01-15 08:43:40 Result: file /usr/local/php72/lib/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/php73/lib/php.ini
2021-01-15 08:43:40 Result: file /usr/local/php73/lib/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/php74/lib/php.ini
2021-01-15 08:43:40 Result: file /usr/local/php74/lib/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/local/zend/etc/php.ini
2021-01-15 08:43:40 Result: file /usr/local/zend/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /usr/pkg/etc/php.ini
2021-01-15 08:43:40 Result: file /usr/pkg/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/cpanel/ea-php54/root/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/cpanel/ea-php54/root/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/cpanel/ea-php55/root/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/cpanel/ea-php55/root/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/cpanel/ea-php56/root/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/cpanel/ea-php56/root/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/cpanel/ea-php70/root/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/cpanel/ea-php70/root/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/cpanel/ea-php71/root/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/cpanel/ea-php71/root/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/cpanel/ea-php72/root/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/cpanel/ea-php72/root/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/cpanel/ea-php73/root/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/cpanel/ea-php73/root/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/cpanel/ea-php74/root/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/cpanel/ea-php74/root/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php44/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php44/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php51/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php51/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php52/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php52/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php53/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php53/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php54/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php54/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php55/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php55/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php56/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php56/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php70/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php70/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php71/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php71/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php72/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php72/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php73/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php73/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /opt/alt/php74/etc/php.ini
2021-01-15 08:43:40 Result: file /opt/alt/php74/etc/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/opt/remi/php56/php.ini
2021-01-15 08:43:40 Result: file /etc/opt/remi/php56/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/opt/remi/php70/php.ini
2021-01-15 08:43:40 Result: file /etc/opt/remi/php70/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/opt/remi/php71/php.ini
2021-01-15 08:43:40 Result: file /etc/opt/remi/php71/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/opt/remi/php72/php.ini
2021-01-15 08:43:40 Result: file /etc/opt/remi/php72/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/opt/remi/php73/php.ini
2021-01-15 08:43:40 Result: file /etc/opt/remi/php73/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/opt/remi/php74/php.ini
2021-01-15 08:43:40 Result: file /etc/opt/remi/php74/php.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php-5.6.ini
2021-01-15 08:43:40 Result: file /etc/php-5.6.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php-7.0.ini
2021-01-15 08:43:40 Result: file /etc/php-7.0.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php-7.1.ini
2021-01-15 08:43:40 Result: file /etc/php-7.1.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php-7.2.ini
2021-01-15 08:43:40 Result: file /etc/php-7.2.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php-7.3.ini
2021-01-15 08:43:40 Result: file /etc/php-7.3.ini not found
2021-01-15 08:43:40 Test: checking presence /etc/php-7.4.ini
2021-01-15 08:43:40 Result: file /etc/php-7.4.ini not found
2021-01-15 08:43:40 Result: no files found for /etc/php5/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php/7.0/cli/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php/7.1/cli/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php/7.2/cli/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php/7.3/cli/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php/7.4/cli/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php/7.0/fpm/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php/7.1/fpm/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php/7.2/fpm/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php/7.3/fpm/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php/7.4/fpm/conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php.d
2021-01-15 08:43:40 Result: no files found for /opt/cpanel/ea-php54/root/etc/php.d
2021-01-15 08:43:40 Result: no files found for /opt/cpanel/ea-php55/root/etc/php.d
2021-01-15 08:43:40 Result: no files found for /opt/cpanel/ea-php56/root/etc/php.d
2021-01-15 08:43:40 Result: no files found for /opt/cpanel/ea-php70/root/etc/php.d
2021-01-15 08:43:40 Result: no files found for /opt/cpanel/ea-php71/root/etc/php.d
2021-01-15 08:43:40 Result: no files found for /opt/cpanel/ea-php72/root/etc/php.d
2021-01-15 08:43:40 Result: no files found for /opt/cpanel/ea-php73/root/etc/php.d
2021-01-15 08:43:40 Result: no files found for /opt/cpanel/ea-php74/root/etc/php.d
2021-01-15 08:43:40 Result: no files found for /opt/alt/php44/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php51/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php52/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php53/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php54/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php55/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php56/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php70/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php71/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php72/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php73/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /opt/alt/php74/etc/php.d.all
2021-01-15 08:43:40 Result: no files found for /usr/local/lib/php.conf.d
2021-01-15 08:43:40 Result: no files found for /usr/local/php70/lib/php.conf.d
2021-01-15 08:43:40 Result: no files found for /usr/local/php71/lib/php.conf.d
2021-01-15 08:43:40 Result: no files found for /usr/local/php72/lib/php.conf.d
2021-01-15 08:43:40 Result: no files found for /usr/local/php73/lib/php.conf.d
2021-01-15 08:43:40 Result: no files found for /usr/local/php74/lib/php.conf.d
2021-01-15 08:43:40 Result: no files found for /etc/php-5.6
2021-01-15 08:43:40 Result: no files found for /etc/php-7.0
2021-01-15 08:43:40 Result: no files found for /etc/php-7.1
2021-01-15 08:43:40 Result: no files found for /etc/php-7.2
2021-01-15 08:43:40 Result: no files found for /etc/php-7.3
2021-01-15 08:43:40 Result: no files found for /etc/php-7.4
2021-01-15 08:43:40 Result: no php.ini file found
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test PHP-2320 (Check PHP disabled functions)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test PHP-2368 (Check PHP register_globals option)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test PHP-2372 (Check PHP expose_php option)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test PHP-2374 (Check PHP enable_dl option)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test PHP-2376 (Check PHP allow_url_fopen option)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test PHP-2378 (Check PHP allow_url_include option)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test PHP-2382 (Check PHP expose_php option)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 Security check: file is normal
2021-01-15 08:43:40 Checking permissions of /usr/share/lynis/include/tests_squid
2021-01-15 08:43:40 File permissions are OK
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Action: Performing tests from category: Squid Support
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID SQD-3602 (Check for running Squid daemon)
2021-01-15 08:43:40 Test: Searching for a Squid daemon
2021-01-15 08:43:40 Result: No running Squid daemon found
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test SQD-3604 (Check Squid daemon file location)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test SQD-3606 (Check Squid version)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test SQD-3610 (Gather Squid settings)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test SQD-3613 (Check Squid file permissions)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test SQD-3614 (Check Squid authentication methods)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test SQD-3616 (Check external Squid authentication)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test SQD-3620 (Check Squid access control lists)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test SQD-3624 (Check Squid safe ports)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test SQD-3630 (Check Squid reply_body_max_size option)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test SQD-3680 (Check Squid version suppression)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 Security check: file is normal
2021-01-15 08:43:40 Checking permissions of /usr/share/lynis/include/tests_logging
2021-01-15 08:43:40 File permissions are OK
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Action: Performing tests from category: Logging and files
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LOGG-2130 (Check for running syslog daemon)
2021-01-15 08:43:40 Test: Searching for a logging daemon
2021-01-15 08:43:40 Result: Found a logging daemon
2021-01-15 08:43:40 Hardening: assigned maximum number of hardening points for this item (3). Currently having 172 points (out of 259)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LOGG-2132 (Check for running syslog-ng daemon)
2021-01-15 08:43:40 Test: Searching for syslog-ng daemon in process list
2021-01-15 08:43:40 Performing pgrep scan without uid
2021-01-15 08:43:40 IsRunning: process 'syslog-ng' not found
2021-01-15 08:43:40 Result: Syslog-ng NOT found in process list
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Skipped test LOGG-2134 (Checking Syslog-NG configuration file consistency)
2021-01-15 08:43:40 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LOGG-2136 (Check for running systemd journal daemon)
2021-01-15 08:43:40 Test: Searching for systemd journal daemon in process list
2021-01-15 08:43:40 Performing pgrep scan without uid
2021-01-15 08:43:40 IsRunning: process 'systemd-journal' found (1403 )
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LOGG-2210 (Check for running metalog daemon)
2021-01-15 08:43:40 Test: Searching for metalog daemon in process list
2021-01-15 08:43:40 Performing pgrep scan without uid
2021-01-15 08:43:40 IsRunning: process 'metalog' not found
2021-01-15 08:43:40 Result: metalog NOT found in process list
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LOGG-2230 (Check for running RSyslog daemon)
2021-01-15 08:43:40 Test: Searching for RSyslog daemon in process list
2021-01-15 08:43:40 Performing pgrep scan without uid
2021-01-15 08:43:40 IsRunning: process 'rsyslogd' found (2013 )
2021-01-15 08:43:40 Result: Found rsyslogd in process list
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LOGG-2240 (Check for running RFC 3195 compliant daemon)
2021-01-15 08:43:40 Test: Searching for RFC 3195 daemon (alias syslog reliable) in process list
2021-01-15 08:43:40 Performing pgrep scan without uid
2021-01-15 08:43:40 IsRunning: process 'rfc3195d' not found
2021-01-15 08:43:40 Result: rfc3195d NOT found in process list
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LOGG-2138 (Checking kernel logger daemon on Linux)
2021-01-15 08:43:40 Test: Searching kernel logger daemon (klogd)
2021-01-15 08:43:40 Result: test skipped, because other facility is being used to log kernel messages
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LOGG-2142 (Checking minilog daemon)
2021-01-15 08:43:40 Result: Checking for unkilled minilogd instances
2021-01-15 08:43:40 Performing pgrep scan without uid
2021-01-15 08:43:40 IsRunning: process 'minilogd' not found
2021-01-15 08:43:40 Result: No minilogd is running
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LOGG-2146 (Checking logrotate.conf and logrotate.d)
2021-01-15 08:43:40 Test: Checking for /etc/logrotate.conf
2021-01-15 08:43:40 Result: /etc/logrotate.conf found (file)
2021-01-15 08:43:40 Test: Checking for /etc/logrotate.d (directory)
2021-01-15 08:43:40 Result: /etc/logrotate.d found
2021-01-15 08:43:40 Result: logrotate configuration found
2021-01-15 08:43:40 ====
2021-01-15 08:43:40 Performing test ID LOGG-2148 (Checking logrotated files)
2021-01-15 08:43:40 Test: Checking which files are rotated with logrotate and if they exist
2021-01-15 08:43:41 Result: found one or more files which are rotated via logrotate
2021-01-15 08:43:41 Output: File:/var/log/up2date:does_not_exist
2021-01-15 08:43:41 Output: File:/var/log/boot.log:exists
2021-01-15 08:43:41 Output: File:/var/log/btmp:exists
2021-01-15 08:43:41 Output: File:/var/log/cron:exists
2021-01-15 08:43:41 Output: File:/var/log/dnf.librepo.log:exists
2021-01-15 08:43:41 Output: File:/var/log/hawkey.log:exists
2021-01-15 08:43:41 Output: File:/var/log/maillog:exists
2021-01-15 08:43:41 Output: File:/var/log/messages:exists
2021-01-15 08:43:41 Output: File:/var/log/mysql/mysqld.log:exists
2021-01-15 08:43:41 Output: File:/var/log/secure:exists
2021-01-15 08:43:41 Output: File:/var/log/spooler:exists
2021-01-15 08:43:41 Output: File:/var/log/sssd/sssd.log:exists
2021-01-15 08:43:41 Output: File:/var/log/sssd/sssd_implicit_files.log:exists
2021-01-15 08:43:41 Output: File:/var/log/sssd/sssd_kcm.log:exists
2021-01-15 08:43:41 Output: File:/var/log/sssd/sssd_nss.log:exists
2021-01-15 08:43:41 Output: File:/var/log/up2date:exists
2021-01-15 08:43:41 Output: File:/var/log/wtmp:exists
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Performing test ID LOGG-2150 (Checking directories in logrotate configuration)
2021-01-15 08:43:41 Test: Checking which directories can be found in logrotate configuration
2021-01-15 08:43:41 Result: found one or more directories (via logrotate configuration)
2021-01-15 08:43:41 Directory found: /var/log
2021-01-15 08:43:41 Directory found: /var/log/mysql
2021-01-15 08:43:41 Directory found: /var/log/sssd
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test LOGG-2152 (Checking loghost)
2021-01-15 08:43:41 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test LOGG-2153 (Checking loghost is localhost)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Performing test ID LOGG-2154 (Checking syslog configuration file)
2021-01-15 08:43:41 Test: analyzing file /etc/rsyslog.conf for remote target
2021-01-15 08:43:41 Result: no remote target found
2021-01-15 08:43:41 Result: no remote logging found
2021-01-15 08:43:41 Suggestion: Enable logging to an external logging host for archiving purposes and additional protection [test:LOGG-2154] [details:-] [solution:-]
2021-01-15 08:43:41 Hardening: assigned partial number of hardening points (1 of 3). Currently having 173 points (out of 262)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test LOGG-2160 (Checking /etc/newsyslog.conf)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test LOGG-2162 (Checking directories in /etc/newsyslog.conf)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test LOGG-2164 (Checking files specified /etc/newsyslog.conf)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Performing test ID LOGG-2170 (Checking log paths)
2021-01-15 08:43:41 Test: Searching log paths
2021-01-15 08:43:41 Result: directory /var/log exists
2021-01-15 08:43:41 Result: directory /var/adm exists
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Performing test ID LOGG-2180 (Checking open log files)
2021-01-15 08:43:41 Test: checking open log files with lsof
2021-01-15 08:43:41 Result: lsof not installed, skipping test
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test LOGG-2190 (Checking for deleted files in use)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test LOGG-2192 (Checking for open log files that are empty)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 Security check: file is normal
2021-01-15 08:43:41 Checking permissions of /usr/share/lynis/include/tests_insecure_services
2021-01-15 08:43:41 File permissions are OK
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Action: Performing tests from category: Insecure services
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Performing test ID INSE-8000 (Installed inetd package)
2021-01-15 08:43:41 Test: Checking if inetd is installed
2021-01-15 08:43:41 Result: inetd is NOT installed
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test INSE-8002 (Check for enabled inet daemon)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test INSE-8004 (Presence of inetd configuration file)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test INSE-8006 (Check configuration of inetd when disabled)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test INSE-8016 (Check for telnet via inetd)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Performing test ID INSE-8100 (Check for installed xinetd daemon)
2021-01-15 08:43:41 Test: Checking for installed xinetd daemon
2021-01-15 08:43:41 Result: xinetd is NOT installed
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Performing test ID INSE-8102 (Check for active xinet daemon)
2021-01-15 08:43:41 Test: Searching for active extended internet services daemon (xinetd)
2021-01-15 08:43:41 Performing pgrep scan without uid
2021-01-15 08:43:41 IsRunning: process 'xinetd' not found
2021-01-15 08:43:41 Result: xinetd is NOT running
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test INSE-8104 (Check for enabled xinet daemon)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test INSE-8106 (Check configuration of xinetd when disabled)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test INSE-8116 (Insecure services enabled via xinetd)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Skipped test INSE-8200 (Check if tcp_wrappers is installed when inetd/xinetd is active)
2021-01-15 08:43:41 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:41 ====
2021-01-15 08:43:41 Performing test ID INSE-8300 (Check if rsh client is installed)
2021-01-15 08:43:41 Test: Checking if rsh client is installed
2021-01-15 08:43:42 Result: rsh client is NOT installed
2021-01-15 08:43:42 ====
2021-01-15 08:43:42 Performing test ID INSE-8304 (Check if rsh server is installed)
2021-01-15 08:43:42 Test: Checking if rsh server is installed
2021-01-15 08:43:43 Result: rsh server is NOT installed
2021-01-15 08:43:43 ====
2021-01-15 08:43:43 Performing test ID INSE-8310 (Check if telnet client is installed)
2021-01-15 08:43:43 Test: Checking if telnet client is installed
2021-01-15 08:43:43 Result: telnet client is NOT installed
2021-01-15 08:43:43 ====
2021-01-15 08:43:43 Performing test ID INSE-8322 (Check if telnet server is installed)
2021-01-15 08:43:43 Test: Checking if telnet server is installed
2021-01-15 08:43:44 Result: telnet server is NOT installed
2021-01-15 08:43:44 ====
2021-01-15 08:43:44 Performing test ID INSE-8314 (Check if NIS client is installed)
2021-01-15 08:43:44 Test: Checking if NIS client is installed
2021-01-15 08:43:44 Result: NIS client is NOT installed
2021-01-15 08:43:44 ====
2021-01-15 08:43:44 Performing test ID INSE-8316 (Check if NIS server is installed)
2021-01-15 08:43:44 Test: Checking if NIS server is installed
2021-01-15 08:43:45 Result: NIS server is NOT installed
2021-01-15 08:43:45 ====
2021-01-15 08:43:45 Performing test ID INSE-8318 (Check if TFTP client is installed)
2021-01-15 08:43:45 Test: Checking if TFTP client is installed
2021-01-15 08:43:46 Result: TFTP client is NOT installed
2021-01-15 08:43:46 ====
2021-01-15 08:43:46 Performing test ID INSE-8320 (Check if TFTP server is installed)
2021-01-15 08:43:46 Test: Checking if TFTP server is installed
2021-01-15 08:43:47 Result: TFTP server is NOT installed
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test INSE-8050 (Check for insecure services on macOS)
2021-01-15 08:43:47 Reason to skip: Incorrect guest OS (macOS only)
2021-01-15 08:43:47 Security check: file is normal
2021-01-15 08:43:47 Checking permissions of /usr/share/lynis/include/tests_banners
2021-01-15 08:43:47 File permissions are OK
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Action: Performing tests from category: Banners and identification
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test BANN-7113 (Check COPYRIGHT banner file)
2021-01-15 08:43:47 Reason to skip: Incorrect guest OS (FreeBSD only)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID BANN-7124 (Check issue banner file)
2021-01-15 08:43:47 Test: Checking file /etc/issue
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID BANN-7126 (Check issue banner file contents)
2021-01-15 08:43:47 Test: Checking file /etc/issue contents for legal key words
2021-01-15 08:43:47 Result: Found only 0 key words (5 or more suggested), to warn unauthorized users and could be increased
2021-01-15 08:43:47 Suggestion: Add a legal banner to /etc/issue, to warn unauthorized users [test:BANN-7126] [details:-] [solution:-]
2021-01-15 08:43:47 Hardening: assigned partial number of hardening points (0 of 1). Currently having 173 points (out of 263)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID BANN-7128 (Check issue.net banner file)
2021-01-15 08:43:47 Test: Checking file /etc/issue.net
2021-01-15 08:43:47 Result: file /etc/issue.net exists
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID BANN-7130 (Check issue.net banner file contents)
2021-01-15 08:43:47 Test: Checking file /etc/issue.net contents for legal key words
2021-01-15 08:43:47 Result: Found only 0 key words, to warn unauthorized users and could be increased
2021-01-15 08:43:47 Suggestion: Add legal banner to /etc/issue.net, to warn unauthorized users [test:BANN-7130] [details:-] [solution:-]
2021-01-15 08:43:47 Hardening: assigned partial number of hardening points (0 of 1). Currently having 173 points (out of 264)
2021-01-15 08:43:47 Security check: file is normal
2021-01-15 08:43:47 Checking permissions of /usr/share/lynis/include/tests_scheduling
2021-01-15 08:43:47 File permissions are OK
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Action: Performing tests from category: Scheduled tasks
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID SCHD-7702 (Check status of cron daemon)
2021-01-15 08:43:47 Result: cron daemon running
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID SCHD-7704 (Check crontab/cronjobs)
2021-01-15 08:43:47 Test: checking directory /etc/cron.d
2021-01-15 08:43:47 Test: check if we can access /etc/cron.d (escaped: /etc/cron.d)
2021-01-15 08:43:47 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:47 Result: file /etc/cron.d is readable (or directory accessible).
2021-01-15 08:43:47 Result: found directory /etc/cron.d
2021-01-15 08:43:47 Test: searching files in /etc/cron.d
2021-01-15 08:43:47 Result: found one or more files in /etc/cron.d. Analyzing files..
2021-01-15 08:43:47 Result: Found cronjob (/etc/cron.d/0hourly): 01,*,*,*,*,root,run-parts,/etc/cron.hourly
2021-01-15 08:43:47 Result: done with analyzing files in /etc/cron.d
2021-01-15 08:43:47 Test: checking directory /etc/cron.hourly
2021-01-15 08:43:47 Result: found directory /etc/cron.hourly
2021-01-15 08:43:47 Test: check if we can access /etc/cron.hourly (escaped: /etc/cron.hourly)
2021-01-15 08:43:47 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:47 Result: file /etc/cron.hourly is readable (or directory accessible).
2021-01-15 08:43:47 Test: searching files in /etc/cron.hourly
2021-01-15 08:43:47 Result: found one or more files in /etc/cron.hourly. Analyzing files..
2021-01-15 08:43:47 Result: Found cronjob (/etc/cron.hourly): /etc/cron.hourly/0anacron
2021-01-15 08:43:47 Result: done with analyzing files in /etc/cron.hourly
2021-01-15 08:43:47 Test: checking directory /etc/cron.daily
2021-01-15 08:43:47 Result: found directory /etc/cron.daily
2021-01-15 08:43:47 Test: check if we can access /etc/cron.daily (escaped: /etc/cron.daily)
2021-01-15 08:43:47 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:47 Result: file /etc/cron.daily is readable (or directory accessible).
2021-01-15 08:43:47 Test: searching files in /etc/cron.daily
2021-01-15 08:43:47 Result: found one or more files in /etc/cron.daily. Analyzing files..
2021-01-15 08:43:47 Result: Found cronjob (/etc/cron.daily): /etc/cron.daily/logrotate
2021-01-15 08:43:47 Result: done with analyzing files in /etc/cron.daily
2021-01-15 08:43:47 Test: checking directory /etc/cron.weekly
2021-01-15 08:43:47 Result: found directory /etc/cron.weekly
2021-01-15 08:43:47 Test: check if we can access /etc/cron.weekly (escaped: /etc/cron.weekly)
2021-01-15 08:43:47 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:47 Result: file /etc/cron.weekly is readable (or directory accessible).
2021-01-15 08:43:47 Test: searching files in /etc/cron.weekly
2021-01-15 08:43:47 Result: no files found in /etc/cron.weekly
2021-01-15 08:43:47 Test: checking directory /etc/cron.monthly
2021-01-15 08:43:47 Result: found directory /etc/cron.monthly
2021-01-15 08:43:47 Test: check if we can access /etc/cron.monthly (escaped: /etc/cron.monthly)
2021-01-15 08:43:47 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:47 Result: file /etc/cron.monthly is readable (or directory accessible).
2021-01-15 08:43:47 Test: searching files in /etc/cron.monthly
2021-01-15 08:43:47 Result: no files found in /etc/cron.monthly
2021-01-15 08:43:47 Test: checking anacrontab
2021-01-15 08:43:47 Found anacron job (/etc/anacrontab): 1,5,cron.daily,nice,run-parts,/etc/cron.daily
2021-01-15 08:43:47 Found anacron job (/etc/anacrontab): 7,25,cron.weekly,nice,run-parts,/etc/cron.weekly
2021-01-15 08:43:47 Found anacron job (/etc/anacrontab): @monthly,45,cron.monthly,nice,run-parts,/etc/cron.monthly
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID SCHD-7718 (Check at users)
2021-01-15 08:43:47 Test: Checking atd status
2021-01-15 08:43:47 Result: at daemon not active
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test SCHD-7720 (Check at users)
2021-01-15 08:43:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test SCHD-7724 (Check at jobs)
2021-01-15 08:43:47 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:47 Result: no scheduled Lynis execution found (e.g. crontab, cronjob)
2021-01-15 08:43:47 Security check: file is normal
2021-01-15 08:43:47 Checking permissions of /usr/share/lynis/include/tests_accounting
2021-01-15 08:43:47 File permissions are OK
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Action: Performing tests from category: Accounting
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test ACCT-2754 (Check for available FreeBSD accounting information)
2021-01-15 08:43:47 Reason to skip: Incorrect guest OS (FreeBSD only)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test ACCT-2760 (Check for available OpenBSD accounting information)
2021-01-15 08:43:47 Reason to skip: Incorrect guest OS (OpenBSD only)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID ACCT-9622 (Check for available Linux accounting information)
2021-01-15 08:43:47 Test: Check accounting information
2021-01-15 08:43:47 Result: No accounting information available (/var/account/pacct, /var/log/account/pact nor /var/log/pact exist)
2021-01-15 08:43:47 Remark: Possibly there is another location where the accounting data is stored
2021-01-15 08:43:47 Suggestion: Enable process accounting [test:ACCT-9622] [details:-] [solution:-]
2021-01-15 08:43:47 Hardening: assigned partial number of hardening points (2 of 3). Currently having 175 points (out of 267)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID ACCT-9626 (Check for sysstat accounting data)
2021-01-15 08:43:47 Test: check /etc/default/sysstat presence
2021-01-15 08:43:47 Result: sysstat not found via /etc/default/sysstat or /etc/cron.d/sysstat or as a systemd unit
2021-01-15 08:43:47 Suggestion: Enable sysstat to collect accounting (no results) [test:ACCT-9626] [details:-] [solution:-]
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID ACCT-9628 (Check for auditd)
2021-01-15 08:43:47 Test: Check auditd status
2021-01-15 08:43:47 Performing pgrep scan without uid
2021-01-15 08:43:47 IsRunning: process 'auditd' found (1714 )
2021-01-15 08:43:47 Result: auditd running
2021-01-15 08:43:47 Hardening: assigned maximum number of hardening points for this item (4). Currently having 179 points (out of 271)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID ACCT-9630 (Check for auditd rules)
2021-01-15 08:43:47 Test: Checking auditd rules
2021-01-15 08:43:47 Result: auditd rules empty
2021-01-15 08:43:47 Hardening: assigned partial number of hardening points (0 of 2). Currently having 179 points (out of 273)
2021-01-15 08:43:47 Suggestion: Audit daemon is enabled with an empty ruleset. Disable the daemon or define rules [test:ACCT-9630] [details:-] [solution:-]
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID ACCT-9632 (Check for auditd configuration file)
2021-01-15 08:43:47 Test: Checking auditd configuration file
2021-01-15 08:43:47 Result: /etc/auditd.conf not found
2021-01-15 08:43:47 Result: Found /etc/audit/auditd.conf
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID ACCT-9634 (Check for auditd log file)
2021-01-15 08:43:47 Test: Checking auditd log file
2021-01-15 08:43:47 Result: log file is defined
2021-01-15 08:43:47 Defined value: /var/log/audit/audit.log
2021-01-15 08:43:47 Result: log file /var/log/audit/audit.log exists on disk
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID ACCT-9636 (Check for Snoopy wrapper and logger)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test ACCT-9650 (Check Solaris audit daemon)
2021-01-15 08:43:47 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test ACCT-9652 (Check auditd SMF status)
2021-01-15 08:43:47 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test ACCT-9654 (Check BSM auditing in /etc/system)
2021-01-15 08:43:47 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test ACCT-9656 (Check BSM auditing in module list)
2021-01-15 08:43:47 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test ACCT-9660 (Check location of audit events)
2021-01-15 08:43:47 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Skipped test ACCT-9662 (Check Solaris auditing stats)
2021-01-15 08:43:47 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:47 Security check: file is normal
2021-01-15 08:43:47 Checking permissions of /usr/share/lynis/include/tests_time
2021-01-15 08:43:47 File permissions are OK
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Action: Performing tests from category: Time and Synchronization
2021-01-15 08:43:47 ====
2021-01-15 08:43:47 Performing test ID TIME-3104 (Check for running NTP daemon or client)
2021-01-15 08:43:47 Test: Searching for a running NTP daemon or available client
2021-01-15 08:43:47 result: found chrony configuration: /etc/chrony.conf
2021-01-15 08:43:47 Performing pgrep scan without uid
2021-01-15 08:43:47 IsRunning: process 'chronyd' found (1782 )
2021-01-15 08:43:47 Performing pgrep scan without uid
2021-01-15 08:43:47 IsRunning: process 'dntpd' not found
2021-01-15 08:43:48 Performing pgrep scan without uid
2021-01-15 08:43:48 IsRunning: process 'timed' not found
2021-01-15 08:43:48 Test: checking for ntpdate, rdate, sntp or ntpdig in crontab file /etc/anacrontab
2021-01-15 08:43:48 Result: no ntpdate, rdate, sntp or ntpdig reference found in crontab file /etc/anacrontab
2021-01-15 08:43:48 Test: checking for ntpdate, rdate, sntp or ntpdig in crontab file /etc/crontab
2021-01-15 08:43:48 Result: no ntpdate, rdate, sntp or ntpdig reference found in crontab file /etc/crontab
2021-01-15 08:43:48 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.d/0hourly
2021-01-15 08:43:48 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.hourly/0anacron
2021-01-15 08:43:48 Test: checking for ntpdate, rdate, sntp or ntpdig in /etc/cron.daily/logrotate
2021-01-15 08:43:48 Result: no ntpdate or rdate found in cron directories
2021-01-15 08:43:48 Test: checking for file /etc/network/if-up.d/ntpdate
2021-01-15 08:43:48 Result: file /etc/network/if-up.d/ntpdate does not exist
2021-01-15 08:43:48 Result: Found a time syncing daemon/client.
2021-01-15 08:43:48 Hardening: assigned maximum number of hardening points for this item (3). Currently having 182 points (out of 276)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3106 (Check systemd NTP time synchronization status)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3112 (Check active NTP associations ID's)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3116 (Check peers with stratum value of 16)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3120 (Check unreliable NTP peers)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3124 (Check selected time source)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3128 (Check preferred time source)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3132 (Check NTP falsetickers)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3136 (Check NTP protocol version)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Performing test ID TIME-3148 (Check TZ variable)
2021-01-15 08:43:48 Test: testing for TZ variable
2021-01-15 08:43:48 Result: found TZ variable with value notset
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3160 (Check empty NTP step-tickers)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Performing test ID TIME-3170 (Check configuration files)
2021-01-15 08:43:48 Result: found /etc/chrony.conf
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3180 (Report if ntpctl cannot communicate with OpenNTPD)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3181 (Check status of OpenNTPD time synchronisation)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3182 (Check OpenNTPD has working peers)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test TIME-3185 (Check systemd-timesyncd synchronized time)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 Security check: file is normal
2021-01-15 08:43:48 Checking permissions of /usr/share/lynis/include/tests_crypto
2021-01-15 08:43:48 File permissions are OK
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Action: Performing tests from category: Cryptography
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Performing test ID CRYP-7902 (Check expire date of SSL certificates)
2021-01-15 08:43:48 Paths to scan: /etc/apache2 /etc/dovecot /etc/httpd /etc/letsencrypt /etc/pki /etc/postfix /etc/refind.d/keys /etc/ssl /opt/psa/var/certificates /usr/local/psa/var/certificates /usr/local/share/ca-certificates /usr/share/ca-certificates /usr/share/gnupg /var/www /srv/www
2021-01-15 08:43:48 Paths to ignore: /etc/letsencrypt/archive
2021-01-15 08:43:48 Result: SSL path /etc/apache2 does not exist
2021-01-15 08:43:48 Result: SSL path /etc/dovecot does not exist
2021-01-15 08:43:48 Result: SSL path /etc/httpd does not exist
2021-01-15 08:43:48 Result: SSL path /etc/letsencrypt does not exist
2021-01-15 08:43:48 Test: check if we can access /etc/pki (escaped: /etc/pki)
2021-01-15 08:43:48 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:48 Result: file /etc/pki is readable (or directory accessible).
2021-01-15 08:43:48 Result: found directory /etc/pki
2021-01-15 08:43:48 Test: check if we can access /etc/pki/ca-trust/extracted/openssl/ca-bundle.trust.crt (escaped: /etc/pki/ca-trust/extracted/openssl/ca-bundle.trust.crt)
2021-01-15 08:43:48 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:48 Result: file /etc/pki/ca-trust/extracted/openssl/ca-bundle.trust.crt is readable (or directory accessible).
2021-01-15 08:43:48 Result: file '/etc/pki/ca-trust/extracted/openssl/ca-bundle.trust.crt' belongs to package (ca)
2021-01-15 08:43:48 Test: check if we can access /etc/pki/ca-trust/extracted/pem/email-ca-bundle.pem (escaped: /etc/pki/ca-trust/extracted/pem/email-ca-bundle.pem)
2021-01-15 08:43:48 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:48 Result: file /etc/pki/ca-trust/extracted/pem/email-ca-bundle.pem is readable (or directory accessible).
2021-01-15 08:43:48 Result: file '/etc/pki/ca-trust/extracted/pem/email-ca-bundle.pem' belongs to package (ca)
2021-01-15 08:43:48 Test: check if we can access /etc/pki/ca-trust/extracted/pem/objsign-ca-bundle.pem (escaped: /etc/pki/ca-trust/extracted/pem/objsign-ca-bundle.pem)
2021-01-15 08:43:48 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:48 Result: file /etc/pki/ca-trust/extracted/pem/objsign-ca-bundle.pem is readable (or directory accessible).
2021-01-15 08:43:48 Result: file '/etc/pki/ca-trust/extracted/pem/objsign-ca-bundle.pem' belongs to package (ca)
2021-01-15 08:43:48 Test: check if we can access /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem (escaped: /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem)
2021-01-15 08:43:48 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:48 Result: file /etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem is readable (or directory accessible).
2021-01-15 08:43:48 Result: file '/etc/pki/ca-trust/extracted/pem/tls-ca-bundle.pem' belongs to package (ca)
2021-01-15 08:43:48 Result: found 4 certificates in /etc/pki
2021-01-15 08:43:48 Result: SSL path /etc/postfix does not exist
2021-01-15 08:43:48 Result: SSL path /etc/refind.d/keys does not exist
2021-01-15 08:43:48 Test: check if we can access /etc/ssl (escaped: /etc/ssl)
2021-01-15 08:43:48 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:48 Result: file /etc/ssl is readable (or directory accessible).
2021-01-15 08:43:48 Result: found directory /etc/ssl
2021-01-15 08:43:48 Result: found 0 certificates in /etc/ssl
2021-01-15 08:43:48 Result: SSL path /opt/psa/var/certificates does not exist
2021-01-15 08:43:48 Result: SSL path /usr/local/psa/var/certificates does not exist
2021-01-15 08:43:48 Result: SSL path /usr/local/share/ca-certificates does not exist
2021-01-15 08:43:48 Result: SSL path /usr/share/ca-certificates does not exist
2021-01-15 08:43:48 Test: check if we can access /usr/share/gnupg (escaped: /usr/share/gnupg)
2021-01-15 08:43:48 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:48 Result: file /usr/share/gnupg is readable (or directory accessible).
2021-01-15 08:43:48 Result: found directory /usr/share/gnupg
2021-01-15 08:43:48 Test: check if we can access /usr/share/gnupg/sks-keyservers.netCA.pem (escaped: /usr/share/gnupg/sks-keyservers.netCA.pem)
2021-01-15 08:43:48 Result: file is owned by our current user ID (0), checking if it is readable
2021-01-15 08:43:48 Result: file /usr/share/gnupg/sks-keyservers.netCA.pem is readable (or directory accessible).
2021-01-15 08:43:48 Result: file '/usr/share/gnupg/sks-keyservers.netCA.pem' belongs to package (gnupg2)
2021-01-15 08:43:48 Result: found 1 certificates in /usr/share/gnupg
2021-01-15 08:43:48 Result: SSL path /var/www does not exist
2021-01-15 08:43:48 Result: SSL path /srv/www does not exist
2021-01-15 08:43:48 Result: found a total of 5 certificates
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Performing test ID CRYP-7930 (Determine if system uses LUKS block device encryption)
2021-01-15 08:43:48 Result: crypttab (/etc/crypttab) exists
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test CRYP-7931 (Determine if system uses encrypted swap)
2021-01-15 08:43:48 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Performing test ID CRYP-8002 (Gather available kernel entropy)
2021-01-15 08:43:48 Result: found kernel entropy value of 3580
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Performing test ID CRYP-8004 (Presence of hardware random number generators)
2021-01-15 08:43:48 Test: looking for /sys/class/misc/hw_random/rng_current
2021-01-15 08:43:48 Result: positive match, found RNG: tpm-rng-0
2021-01-15 08:43:48 Performing pgrep scan without uid
2021-01-15 08:43:48 IsRunning: process 'rngd' found (1759 )
2021-01-15 08:43:48 Result: rngd is running
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Performing test ID CRYP-8005 (Presence of software pseudo random number generators)
2021-01-15 08:43:48 Test: looking for software pseudo random number generators
2021-01-15 08:43:48 Performing pgrep scan without uid
2021-01-15 08:43:48 IsRunning: process 'audio-entropyd' not found
2021-01-15 08:43:48 Performing pgrep scan without uid
2021-01-15 08:43:48 IsRunning: process 'haveged' not found
2021-01-15 08:43:48 Performing pgrep scan without uid
2021-01-15 08:43:48 IsRunning: process 'jitterentropy-rngd' not found
2021-01-15 08:43:48 Security check: file is normal
2021-01-15 08:43:48 Checking permissions of /usr/share/lynis/include/tests_virtualization
2021-01-15 08:43:48 File permissions are OK
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Action: Performing tests from category: Virtualization
2021-01-15 08:43:48 Security check: file is normal
2021-01-15 08:43:48 Checking permissions of /usr/share/lynis/include/tests_containers
2021-01-15 08:43:48 File permissions are OK
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Action: Performing tests from category: Containers
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Skipped test CONT-8004 (Query running Solaris zones)
2021-01-15 08:43:48 Reason to skip: Incorrect guest OS (Solaris only)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Performing test ID CONT-8102 (Checking Docker status and information)
2021-01-15 08:43:48 Performing pgrep scan without uid
2021-01-15 08:43:48 IsRunning: process 'dockerd' found (21477 )
2021-01-15 08:43:48 Result: found Docker daemon running
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Performing test ID CONT-8104 (Checking Docker info for any warnings)
2021-01-15 08:43:48 Test: Check for any warnings
2021-01-15 08:43:48 Result: found warning(s) in output
2021-01-15 08:43:48 Output: No blkio weight support
2021-01-15 08:43:48 Output: No blkio weight_device support
2021-01-15 08:43:48 Suggestion: Run 'docker info' to see warnings applicable to Docker daemon [test:CONT-8104] [details:-] [solution:-]
2021-01-15 08:43:48 Hardening: assigned partial number of hardening points (3 of 4). Currently having 185 points (out of 280)
2021-01-15 08:43:48 ====
2021-01-15 08:43:48 Performing test ID CONT-8106 (Gather basic stats from Docker)
2021-01-15 08:43:48 Test: checking total amount of Docker containers
2021-01-15 08:43:48 Result: docker info shows 2 containers
2021-01-15 08:43:48 Result: docker ps -a shows 2 containers
2021-01-15 08:43:48 Result: 2 containers are currently active
2021-01-15 08:43:48 ====
2021-01-15 08:43:49 Performing test ID CONT-8107 (Check number of Docker containers)
2021-01-15 08:43:49 Result: found 0 unused containers
2021-01-15 08:43:49 Hardening: assigned maximum number of hardening points for this item (1). Currently having 186 points (out of 281)
2021-01-15 08:43:49 ====
2021-01-15 08:43:49 Performing test ID CONT-8108 (Check file permissions for Docker files)
2021-01-15 08:43:49 Test: Check /var/run/docker.sock
2021-01-15 08:43:49 Hardening: assigned maximum number of hardening points for this item (5). Currently having 191 points (out of 286)
2021-01-15 08:43:49 Security check: file is normal
2021-01-15 08:43:49 Checking permissions of /usr/share/lynis/include/tests_mac_frameworks
2021-01-15 08:43:49 File permissions are OK
2021-01-15 08:43:49 ====
2021-01-15 08:43:49 Action: Performing tests from category: Security frameworks
2021-01-15 08:43:49 ====
2021-01-15 08:43:49 Performing test ID MACF-6204 (Check AppArmor presence)
2021-01-15 08:43:49 Result: aa-status binary not found, AppArmor not installed
2021-01-15 08:43:49 ====
2021-01-15 08:43:49 Skipped test MACF-6208 (Check if AppArmor is enabled)
2021-01-15 08:43:49 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:49 ====
2021-01-15 08:43:49 Performing test ID MACF-6232 (Check SELINUX presence)
2021-01-15 08:43:49 Test: checking if we have sestatus binary
2021-01-15 08:43:49 Result: found sestatus binary (/usr/sbin/sestatus)
2021-01-15 08:43:49 ====
2021-01-15 08:43:49 Performing test ID MACF-6234 (Check SELINUX status)
2021-01-15 08:43:49 Result: SELinux framework is enabled
2021-01-15 08:43:49 Result: current SELinux mode is enforcing
2021-01-15 08:43:49 Result: mode configured in config file is enforcing
2021-01-15 08:43:49 Result: Current SELinux mode is the same as in config file.
2021-01-15 08:43:50 Permissive SELinux object types: 
2021-01-15 08:43:50 Unconfined processes: unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 932587 /usr/lib/systemd/systemd --user unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 932601 sshd: root@pts/0 unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 932602 -bash unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 1008322 /bin/sh /usr/bin/lynis audit system unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 1032968 /bin/sh /usr/bin/lynis audit system unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 1032969 /usr/bin/ps -eo label,pid,command unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 1032970 /usr/bin/grep [u]nconfined_t unconfined_u:unconfined_r:unconfined_t:s0-s0:c0.c1023 1032971 /usr/bin/tr \n   
2021-01-15 08:43:50 Processes with initrc_t type: 
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID MACF-6240 (Check TOMOYO Linux presence)
2021-01-15 08:43:50 Test: checking if we have tomoyo-init binary
2021-01-15 08:43:50 Result: tomoyo-init binary not found
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Skipped test MACF-6242 (Check TOMOYO Linux status)
2021-01-15 08:43:50 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID RBAC-6272 (Check grsecurity presence)
2021-01-15 08:43:50 Result: no grsecurity found in kernel config
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID MACF-6290 (Check for implemented MAC framework)
2021-01-15 08:43:50 Hardening: assigned maximum number of hardening points for this item (3). Currently having 194 points (out of 289)
2021-01-15 08:43:50 Result: found implemented MAC framework
2021-01-15 08:43:50 Security check: file is normal
2021-01-15 08:43:50 Checking permissions of /usr/share/lynis/include/tests_file_integrity
2021-01-15 08:43:50 File permissions are OK
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Action: Performing tests from category: Software: file integrity
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID FINT-4310 (AFICK availability)
2021-01-15 08:43:50 Test: Checking AFICK binary
2021-01-15 08:43:50 Result: AFICK is not installed
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID FINT-4314 (AIDE availability)
2021-01-15 08:43:50 Test: Checking AIDE binary
2021-01-15 08:43:50 Result: AIDE is not installed
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Skipped test FINT-4315 (Check AIDE configuration file)
2021-01-15 08:43:50 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Skipped test FINT-4316 (Presence of AIDE database and size check)
2021-01-15 08:43:50 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID FINT-4318 (Osiris availability)
2021-01-15 08:43:50 Test: Checking Osiris binary
2021-01-15 08:43:50 Result: Osiris is not installed
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID FINT-4322 (Samhain availability)
2021-01-15 08:43:50 Test: Checking Samhain binary
2021-01-15 08:43:50 Result: Samhain is not installed
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID FINT-4326 (Tripwire availability)
2021-01-15 08:43:50 Test: Checking Tripwire binary
2021-01-15 08:43:50 Result: Tripwire is not installed
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID FINT-4328 (OSSEC syscheck daemon running)
2021-01-15 08:43:50 Test: Checking if OSSEC syscheck daemon is running
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'ossec-syscheckd' not found
2021-01-15 08:43:50 Result: syscheck (OSSEC) is not active
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID FINT-4330 (mtree availability)
2021-01-15 08:43:50 Test: Checking mtree binary
2021-01-15 08:43:50 Result: mtree is not installed
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Skipped test FINT-4334 (Check lfd daemon status)
2021-01-15 08:43:50 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Skipped test FINT-4336 (Check lfd configuration status)
2021-01-15 08:43:50 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID FINT-4338 (osqueryd syscheck daemon running)
2021-01-15 08:43:50 Test: Checking if osqueryd syscheck daemon is running
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'osqueryd' not found
2021-01-15 08:43:50 Result: syscheck (osquery) not installed
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID FINT-4339 (Check IMA/EVM status)
2021-01-15 08:43:50 Result: EVM tools found, IMA/EVM enabled
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Skipped test FINT-4340 (Check dm-integrity status)
2021-01-15 08:43:50 Reason to skip: No integritysetup binary found
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Skipped test FINT-4341 (Check dm-verity status)
2021-01-15 08:43:50 Reason to skip: No veritysetup binary found
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Skipped test FINT-4402 (AIDE configuration: Checksums (SHA256 or SHA512))
2021-01-15 08:43:50 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID FINT-4350 (File integrity software installed)
2021-01-15 08:43:50 Test: Check if at least on file integrity tool is available/installed
2021-01-15 08:43:50 Result: found at least one file integrity tool
2021-01-15 08:43:50 Hardening: assigned maximum number of hardening points for this item (5). Currently having 199 points (out of 294)
2021-01-15 08:43:50 Security check: file is normal
2021-01-15 08:43:50 Checking permissions of /usr/share/lynis/include/tests_tooling
2021-01-15 08:43:50 File permissions are OK
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Action: Performing tests from category: Software: System tooling
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID TOOL-5002 (Checking for automation tools)
2021-01-15 08:43:50 Test: checking if directory /root/.ansible exists
2021-01-15 08:43:50 Result: directory /root/.ansible NOT found
2021-01-15 08:43:50 Test: checking if directory /etc/ansible exists
2021-01-15 08:43:50 Result: directory /etc/ansible NOT found
2021-01-15 08:43:50 Test: checking if directory /root/.ansible exists
2021-01-15 08:43:50 Result: directory /root/.ansible NOT found
2021-01-15 08:43:50 Test: checking if directory /tmp/.ansible exists
2021-01-15 08:43:50 Result: directory /tmp/.ansible NOT found
2021-01-15 08:43:50 Test: checking if file /var/log/ansible.log exists
2021-01-15 08:43:50 Result: file /var/log/ansible.log NOT found
2021-01-15 08:43:50 Test: checking if file ~/.ansible-retry exists
2021-01-15 08:43:50 Result: file ~/.ansible-retry NOT found
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'puppet master' not found
2021-01-15 08:43:50 Suggestion: Determine if automation tools are present for system management [test:TOOL-5002] [details:-] [solution:-]
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID TOOL-5102 (Check for presence of Fail2ban)
2021-01-15 08:43:50 Result: Fail2ban not present (fail2ban-server not found)
2021-01-15 08:43:50 Checking Fail2ban configuration file
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Skipped test TOOL-5104 (Enabled tests in Fail2ban)
2021-01-15 08:43:50 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID TOOL-5120 (Check for presence of Snort)
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'snort' not found
2021-01-15 08:43:50 Result: Snort not present (Snort not running)
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID TOOL-5122 (Check Snort configuration file)
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID TOOL-5130 (Check for active Suricata daemon)
2021-01-15 08:43:50 Result: Suricata not installed (suricata not found)
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID TOOL-5126 (Check for active OSSEC daemon)
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'ossec-analysisd' not found
2021-01-15 08:43:50 Result: OSSEC analysis daemon not active
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'ossec-agentd' not found
2021-01-15 08:43:50 Result: OSSEC agent daemon not active
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID TOOL-5190 (Check presence of IDS/IPS tool)
2021-01-15 08:43:50 Hardening: assigned partial number of hardening points (0 of 2). Currently having 199 points (out of 296)
2021-01-15 08:43:50 Security check: file is normal
2021-01-15 08:43:50 Checking permissions of /usr/share/lynis/include/tests_malware
2021-01-15 08:43:50 File permissions are OK
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Action: Performing tests from category: Software: Malware
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID MALW-3275 (Check for chkrootkit)
2021-01-15 08:43:50 Test: checking presence chkrootkit
2021-01-15 08:43:50 Result: chkrootkit not found
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID MALW-3276 (Check for Rootkit Hunter)
2021-01-15 08:43:50 Test: checking presence Rootkit Hunter
2021-01-15 08:43:50 Result: Rootkit Hunter not found
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID MALW-3278 (Check for LMD)
2021-01-15 08:43:50 Test: checking presence LMD
2021-01-15 08:43:50 Result: LMD not found
2021-01-15 08:43:50 ====
2021-01-15 08:43:50 Performing test ID MALW-3280 (Check if anti-virus tool is installed)
2021-01-15 08:43:50 Test: checking process com.avast.daemon
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'com.avast.daemon' not found
2021-01-15 08:43:50 Test: checking process Avira daemon
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'avqmd' not found
2021-01-15 08:43:50 Test: checking process epagd
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'bdagentd' not found
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'epagd' not found
2021-01-15 08:43:50 Test: checking process falcon-sensor (CrowdStrike)
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'falcon-sensor' not found
2021-01-15 08:43:50 Test: checking process CylanceSvc
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'CylanceSvc' not found
2021-01-15 08:43:50 Test: checking process esets_daemon
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'esets_daemon' not found
2021-01-15 08:43:50 Test: checking process wdserver or klnagent (Kaspersky)
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'klnagent' not found
2021-01-15 08:43:50 Test: checking process cma or cmdagent (McAfee)
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'cmdagent' not found
2021-01-15 08:43:50 Test: checking process savscand
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'savscand' not found
2021-01-15 08:43:50 Test: checking process SophosScanD
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'SophosScanD' not found
2021-01-15 08:43:50 Test: checking process rtvscand
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:50 IsRunning: process 'rtvscand' not found
2021-01-15 08:43:50 Test: checking process Symantec management client service
2021-01-15 08:43:50 Performing pgrep scan without uid
2021-01-15 08:43:51 IsRunning: process 'smcd' not found
2021-01-15 08:43:51 Test: checking process Symantec Endpoint Protection configuration service
2021-01-15 08:43:51 Performing pgrep scan without uid
2021-01-15 08:43:51 IsRunning: process 'symcfgd' not found
2021-01-15 08:43:51 Test: checking process synoavd
2021-01-15 08:43:51 Performing pgrep scan without uid
2021-01-15 08:43:51 IsRunning: process 'synoavd' not found
2021-01-15 08:43:51 Test: checking process TmccMac to test for Trend Micro anti-virus (macOS)
2021-01-15 08:43:51 Performing pgrep scan without uid
2021-01-15 08:43:51 IsRunning: process 'TmccMac' not found
2021-01-15 08:43:51 Result: no commercial anti-virus tools found
2021-01-15 08:43:51 Hardening: assigned partial number of hardening points (0 of 3). Currently having 199 points (out of 299)
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Performing test ID MALW-3282 (Check for clamscan)
2021-01-15 08:43:51 Test: checking presence clamscan
2021-01-15 08:43:51 Result: clamscan couldn't be found
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Performing test ID MALW-3284 (Check for clamd)
2021-01-15 08:43:51 Test: checking running ClamAV daemon (clamd)
2021-01-15 08:43:51 Performing pgrep scan without uid
2021-01-15 08:43:51 IsRunning: process 'clamd' not found
2021-01-15 08:43:51 Result: clamd not running
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Skipped test MALW-3286 (Check for freshclam)
2021-01-15 08:43:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Skipped test MALW-3288 (Check for ClamXav)
2021-01-15 08:43:51 Reason to skip: Prerequisites not met (ie missing tool, other type of Linux distribution)
2021-01-15 08:43:51 Security check: file is normal
2021-01-15 08:43:51 Checking permissions of /usr/share/lynis/include/tests_file_permissions
2021-01-15 08:43:51 File permissions are OK
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Action: Performing tests from category: File Permissions
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Performing test ID FILE-7524 (Perform file permissions check)
2021-01-15 08:43:51 Test: Checking file permissions
2021-01-15 08:43:51 Using profile /etc/lynis/default.prf for baseline.
2021-01-15 08:43:51 Test: checking file/directory /boot/grub/grub.cfg
2021-01-15 08:43:51 Skipping file/directory /boot/grub/grub.cfg as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /boot/grub2/grub.cfg
2021-01-15 08:43:51 Skipping file/directory /boot/grub2/grub.cfg as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /boot/grub2/user.cfg
2021-01-15 08:43:51 Skipping file/directory /boot/grub2/user.cfg as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /etc/at.allow
2021-01-15 08:43:51 Skipping file/directory /etc/at.allow as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /etc/at.deny
2021-01-15 08:43:51 Skipping file/directory /etc/at.deny as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /etc/cron.allow
2021-01-15 08:43:51 Skipping file/directory /etc/cron.allow as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /etc/cron.deny
2021-01-15 08:43:51 Test: checking if file /etc/cron.deny has the permissions set to 600 or more restrictive
2021-01-15 08:43:51 Outcome: permissions of file /etc/cron.deny are not matching expected value (644 != rw-------)
2021-01-15 08:43:51 Test: checking file/directory /etc/crontab
2021-01-15 08:43:51 Test: checking if file /etc/crontab has the permissions set to 600 or more restrictive
2021-01-15 08:43:51 Outcome: permissions of file /etc/crontab are not matching expected value (644 != rw-------)
2021-01-15 08:43:51 Test: checking file/directory /etc/group
2021-01-15 08:43:51 Test: checking if file /etc/group has the permissions set to 644 or more restrictive
2021-01-15 08:43:51 Outcome: correct permissions (644)
2021-01-15 08:43:51 Test: checking file/directory /etc/group-
2021-01-15 08:43:51 Test: checking if file /etc/group- has the permissions set to 644 or more restrictive
2021-01-15 08:43:51 Outcome: correct permissions (644)
2021-01-15 08:43:51 Test: checking file/directory /etc/hosts.allow
2021-01-15 08:43:51 Skipping file/directory /etc/hosts.allow as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /etc/hosts.deny
2021-01-15 08:43:51 Skipping file/directory /etc/hosts.deny as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /etc/issue
2021-01-15 08:43:51 Test: checking if file /etc/issue has the permissions set to 644 or more restrictive
2021-01-15 08:43:51 Outcome: correct permissions (644)
2021-01-15 08:43:51 Test: checking file/directory /etc/issue.net
2021-01-15 08:43:51 Test: checking if file /etc/issue.net has the permissions set to 644 or more restrictive
2021-01-15 08:43:51 Outcome: correct permissions (644)
2021-01-15 08:43:51 Test: checking file/directory /etc/lilo.conf
2021-01-15 08:43:51 Skipping file/directory /etc/lilo.conf as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /etc/motd
2021-01-15 08:43:51 Test: checking if file /etc/motd has the permissions set to 644 or more restrictive
2021-01-15 08:43:51 Outcome: correct permissions (644)
2021-01-15 08:43:51 Test: checking file/directory /etc/passwd
2021-01-15 08:43:51 Test: checking if file /etc/passwd has the permissions set to 644 or more restrictive
2021-01-15 08:43:51 Outcome: correct permissions (644)
2021-01-15 08:43:51 Test: checking file/directory /etc/passwd-
2021-01-15 08:43:51 Test: checking if file /etc/passwd- has the permissions set to 644 or more restrictive
2021-01-15 08:43:51 Outcome: correct permissions (644)
2021-01-15 08:43:51 Test: checking file/directory /etc/ssh/sshd_config
2021-01-15 08:43:51 Test: checking if file /etc/ssh/sshd_config has the permissions set to 600 or more restrictive
2021-01-15 08:43:51 Outcome: correct permissions (600)
2021-01-15 08:43:51 Test: checking file/directory /etc/hosts.equiv
2021-01-15 08:43:51 Skipping file/directory /etc/hosts.equiv as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /etc/shosts.equiv
2021-01-15 08:43:51 Skipping file/directory /etc/shosts.equiv as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /root/.rhosts
2021-01-15 08:43:51 Skipping file/directory /root/.rhosts as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /root/.rlogin
2021-01-15 08:43:51 Skipping file/directory /root/.rlogin as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /root/.shosts
2021-01-15 08:43:51 Skipping file/directory /root/.shosts as it does not exist on this system
2021-01-15 08:43:51 Test: checking file/directory /root/.ssh
2021-01-15 08:43:51 Test: checking if file /root/.ssh has the permissions set to 700 or more restrictive
2021-01-15 08:43:51 Outcome: correct permissions (700)
2021-01-15 08:43:51 Test: checking file/directory /etc/cron.d
2021-01-15 08:43:51 Test: checking if file /etc/cron.d has the permissions set to 700 or more restrictive
2021-01-15 08:43:51 Outcome: permissions of file /etc/cron.d are not matching expected value (755 != rwx------)
2021-01-15 08:43:51 Test: checking file/directory /etc/cron.daily
2021-01-15 08:43:51 Test: checking if file /etc/cron.daily has the permissions set to 700 or more restrictive
2021-01-15 08:43:51 Outcome: permissions of file /etc/cron.daily are not matching expected value (755 != rwx------)
2021-01-15 08:43:51 Test: checking file/directory /etc/cron.hourly
2021-01-15 08:43:51 Test: checking if file /etc/cron.hourly has the permissions set to 700 or more restrictive
2021-01-15 08:43:51 Outcome: permissions of file /etc/cron.hourly are not matching expected value (755 != rwx------)
2021-01-15 08:43:51 Test: checking file/directory /etc/cron.weekly
2021-01-15 08:43:51 Test: checking if file /etc/cron.weekly has the permissions set to 700 or more restrictive
2021-01-15 08:43:51 Outcome: permissions of file /etc/cron.weekly are not matching expected value (755 != rwx------)
2021-01-15 08:43:51 Test: checking file/directory /etc/cron.monthly
2021-01-15 08:43:51 Test: checking if file /etc/cron.monthly has the permissions set to 700 or more restrictive
2021-01-15 08:43:51 Outcome: permissions of file /etc/cron.monthly are not matching expected value (755 != rwx------)
2021-01-15 08:43:51 Suggestion: Consider restricting file permissions [test:FILE-7524] [details:See screen output or log file] [solution:text:Use chmod to change file permissions]
2021-01-15 08:43:51 Security check: file is normal
2021-01-15 08:43:51 Checking permissions of /usr/share/lynis/include/tests_homedirs
2021-01-15 08:43:51 File permissions are OK
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Action: Performing tests from category: Home directories
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Performing test ID HOME-9302 (Create list with home directories)
2021-01-15 08:43:51 Test: query /etc/passwd to obtain home directories
2021-01-15 08:43:51 Result: found home directory: / (directory exists)
2021-01-15 08:43:51 Result: found home directory: /bin (directory exists)
2021-01-15 08:43:51 Result: found home directory: /dev/null (directory does not exist)
2021-01-15 08:43:51 Result: found home directory: /etc/unbound (directory exists)
2021-01-15 08:43:51 Result: found home directory: /root (directory exists)
2021-01-15 08:43:51 Result: found home directory: /sbin (directory exists)
2021-01-15 08:43:51 Result: found home directory: /usr/games (directory exists)
2021-01-15 08:43:51 Result: found home directory: /var/adm (directory exists)
2021-01-15 08:43:51 Result: found home directory: /var/empty/sshd (directory exists)
2021-01-15 08:43:51 Result: found home directory: /var/ftp (directory exists)
2021-01-15 08:43:51 Result: found home directory: /var/lib/chrony (directory exists)
2021-01-15 08:43:51 Result: found home directory: /var/lib/mysql (directory exists)
2021-01-15 08:43:51 Result: found home directory: /var/lib/rngd (directory does not exist)
2021-01-15 08:43:51 Result: found home directory: /var/spool/lpd (directory exists)
2021-01-15 08:43:51 Result: found home directory: /var/spool/mail (directory exists)
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Performing test ID HOME-9304 (Check if users' home directories permissions are 750 or more restrictive)
2021-01-15 08:43:51 Test: checking directory '' for user ''
2021-01-15 08:43:51 Result: OK, all permissions of the home directories are 750 or more restrictive
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Performing test ID HOME-9306 (Check if users own their home directories)
2021-01-15 08:43:51 Test: checking directory '' for user ''
2021-01-15 08:43:51 Result: OK, all users own their home directories
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Performing test ID HOME-9310 (Checking for suspicious shell history files)
2021-01-15 08:43:51 Result: Ok, history files are type 'file'.
2021-01-15 08:43:51 Remark: History files are normally of the type 'file'. Symbolic links and other types are suspicious.
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Performing test ID HOME-9350 (Collecting information from home directories)
2021-01-15 08:43:51 Result: IGNORE_HOME_DIRS empty, no paths excluded
2021-01-15 08:43:51 Security check: file is normal
2021-01-15 08:43:51 Checking permissions of /usr/share/lynis/include/tests_kernel_hardening
2021-01-15 08:43:51 File permissions are OK
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Action: Performing tests from category: Kernel Hardening
2021-01-15 08:43:51 ====
2021-01-15 08:43:51 Performing test ID KRNL-6000 (Check sysctl key pairs in scan profile)
2021-01-15 08:43:51 Result: key dev.tty.ldisc_autoload does not exist on this machine
2021-01-15 08:43:51 Result: key fs.protected_fifos does not exist on this machine
2021-01-15 08:43:51 Result: sysctl key fs.protected_hardlinks contains equal expected and current value (1)
2021-01-15 08:43:51 Hardening: assigned maximum number of hardening points for this item (1). Currently having 200 points (out of 300)
2021-01-15 08:43:51 Result: key fs.protected_regular does not exist on this machine
2021-01-15 08:43:51 Result: sysctl key fs.protected_symlinks contains equal expected and current value (1)
2021-01-15 08:43:51 Hardening: assigned maximum number of hardening points for this item (1). Currently having 201 points (out of 301)
2021-01-15 08:43:51 Result: sysctl key fs.suid_dumpable contains equal expected and current value (0)
2021-01-15 08:43:51 Hardening: assigned maximum number of hardening points for this item (1). Currently having 202 points (out of 302)
2021-01-15 08:43:51 Result: key hw.kbd.keymap_restrict_change does not exist on this machine
2021-01-15 08:43:51 Result: key kern.sugid_coredump does not exist on this machine
2021-01-15 08:43:52 Result: key kernel.core_setuid_ok does not exist on this machine
2021-01-15 08:43:52 Result: sysctl key kernel.core_uses_pid contains equal expected and current value (1)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 203 points (out of 303)
2021-01-15 08:43:52 Result: sysctl key kernel.ctrl-alt-del contains equal expected and current value (0)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 204 points (out of 304)
2021-01-15 08:43:52 Result: sysctl key kernel.dmesg_restrict has a different value than expected in scan profile. Expected=1, Real=0
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 204 points (out of 305)
2021-01-15 08:43:52 Result: key kernel.exec-shield-randomize does not exist on this machine
2021-01-15 08:43:52 Result: key kernel.exec-shield does not exist on this machine
2021-01-15 08:43:52 Result: sysctl key kernel.kptr_restrict has a different value than expected in scan profile. Expected=2, Real=1
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 204 points (out of 306)
2021-01-15 08:43:52 Result: key kernel.maps_protect does not exist on this machine
2021-01-15 08:43:52 Result: sysctl key kernel.modules_disabled has a different value than expected in scan profile. Expected=1, Real=0
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 204 points (out of 307)
2021-01-15 08:43:52 Result: sysctl key kernel.perf_event_paranoid has a different value than expected in scan profile. Expected=3, Real=2
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 204 points (out of 308)
2021-01-15 08:43:52 Result: sysctl key kernel.randomize_va_space contains equal expected and current value (2)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 205 points (out of 309)
2021-01-15 08:43:52 Result: key kernel.suid_dumpable does not exist on this machine
2021-01-15 08:43:52 Result: sysctl key kernel.sysrq has a different value than expected in scan profile. Expected=0, Real=16
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 205 points (out of 310)
2021-01-15 08:43:52 Result: sysctl key kernel.unprivileged_bpf_disabled contains equal expected and current value (1)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 206 points (out of 311)
2021-01-15 08:43:52 Result: key kernel.use-nx does not exist on this machine
2021-01-15 08:43:52 Result: sysctl key kernel.yama.ptrace_scope has a different value than expected in scan profile. Expected=1 2 3, Real=0
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 206 points (out of 312)
2021-01-15 08:43:52 Result: sysctl key net.core.bpf_jit_harden has a different value than expected in scan profile. Expected=2, Real=1
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 206 points (out of 313)
2021-01-15 08:43:52 Result: key net.inet.icmp.bmcastecho does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.icmp.drop_redirect does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.icmp.rediraccept does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.icmp.timestamp does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.ip.accept_sourceroute does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.ip.check_interface does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.ip.forwarding does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.ip.linklocal.in.allowbadttl does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.ip.process_options does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.ip.random_id does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.ip.redirect does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.ip.sourceroute does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.ip6.redirect does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.tcp.always_keepalive does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.tcp.blackhole does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.tcp.drop_synfin does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.tcp.icmp_may_rst does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.tcp.nolocaltimewait does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.tcp.path_mtu_discovery does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet.udp.blackhole does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet6.icmp6.rediraccept does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet6.ip6.forwarding does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet6.ip6.fw.enable does not exist on this machine
2021-01-15 08:43:52 Result: key net.inet6.ip6.redirect does not exist on this machine
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.all.accept_redirects contains equal expected and current value (0)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 207 points (out of 314)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.all.accept_source_route contains equal expected and current value (0)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 208 points (out of 315)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.all.bootp_relay contains equal expected and current value (0)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 209 points (out of 316)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.all.forwarding has a different value than expected in scan profile. Expected=0, Real=1
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 209 points (out of 317)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.all.log_martians has a different value than expected in scan profile. Expected=1, Real=0
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 209 points (out of 318)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.all.mc_forwarding contains equal expected and current value (0)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 210 points (out of 319)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.all.proxy_arp contains equal expected and current value (0)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 211 points (out of 320)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.all.rp_filter contains equal expected and current value (1)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 212 points (out of 321)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.all.send_redirects has a different value than expected in scan profile. Expected=0, Real=1
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 212 points (out of 322)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.default.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 212 points (out of 323)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.default.accept_source_route has a different value than expected in scan profile. Expected=0, Real=1
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 212 points (out of 324)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.conf.default.log_martians has a different value than expected in scan profile. Expected=1, Real=0
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 212 points (out of 325)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.icmp_echo_ignore_broadcasts contains equal expected and current value (1)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 213 points (out of 326)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.icmp_ignore_bogus_error_responses contains equal expected and current value (1)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 214 points (out of 327)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.tcp_syncookies contains equal expected and current value (1)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 215 points (out of 328)
2021-01-15 08:43:52 Result: sysctl key net.ipv4.tcp_timestamps contains equal expected and current value (0 1)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 216 points (out of 329)
2021-01-15 08:43:52 Result: sysctl key net.ipv6.conf.all.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 216 points (out of 330)
2021-01-15 08:43:52 Result: sysctl key net.ipv6.conf.all.accept_source_route contains equal expected and current value (0)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 217 points (out of 331)
2021-01-15 08:43:52 Result: key net.ipv6.conf.all.send_redirects does not exist on this machine
2021-01-15 08:43:52 Result: sysctl key net.ipv6.conf.default.accept_redirects has a different value than expected in scan profile. Expected=0, Real=1
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (0 of 1). Currently having 217 points (out of 332)
2021-01-15 08:43:52 Result: sysctl key net.ipv6.conf.default.accept_source_route contains equal expected and current value (0)
2021-01-15 08:43:52 Hardening: assigned maximum number of hardening points for this item (1). Currently having 218 points (out of 333)
2021-01-15 08:43:52 Result: key security.bsd.hardlink_check_gid does not exist on this machine
2021-01-15 08:43:52 Result: key security.bsd.hardlink_check_uid does not exist on this machine
2021-01-15 08:43:52 Result: key security.bsd.see_other_gids does not exist on this machine
2021-01-15 08:43:52 Result: key security.bsd.see_other_uids does not exist on this machine
2021-01-15 08:43:52 Result: key security.bsd.stack_guard_page does not exist on this machine
2021-01-15 08:43:52 Result: key security.bsd.unprivileged_proc_debug does not exist on this machine
2021-01-15 08:43:52 Result: key security.bsd.unprivileged_read_msgbuf does not exist on this machine
2021-01-15 08:43:52 Result: found 15 keys that can use tuning, according scan profile
2021-01-15 08:43:52 Suggestion: One or more sysctl values differ from the scan profile and could be tweaked [test:KRNL-6000] [details:] [solution:Change sysctl value or disable test (skip-test=KRNL-6000:<sysctl-key>)]
2021-01-15 08:43:52 Security check: file is normal
2021-01-15 08:43:52 Checking permissions of /usr/share/lynis/include/tests_hardening
2021-01-15 08:43:52 File permissions are OK
2021-01-15 08:43:52 ====
2021-01-15 08:43:52 Action: Performing tests from category: Hardening
2021-01-15 08:43:52 ====
2021-01-15 08:43:52 Performing test ID HRDN-7220 (Check if one or more compilers are installed)
2021-01-15 08:43:52 Test: Check if one or more compilers can be found on the system
2021-01-15 08:43:52 Result: found installed compiler. See top of logfile which compilers have been found or use /usr/bin/grep to filter on 'compiler'
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (1 of 3). Currently having 219 points (out of 336)
2021-01-15 08:43:52 ====
2021-01-15 08:43:52 Performing test ID HRDN-7222 (Check compiler permissions)
2021-01-15 08:43:52 Test: Check if one or more compilers can be found on the system
2021-01-15 08:43:52 Test: Check file permissions for /usr/bin/as
2021-01-15 08:43:52 Action: checking symlink for file /usr/bin/as
2021-01-15 08:43:52 Result: file /usr/bin/as is not a symlink
2021-01-15 08:43:52 Binary: found /usr/bin/as (world executable)
2021-01-15 08:43:52 Hardening: assigned partial number of hardening points (2 of 3). Currently having 221 points (out of 339)
2021-01-15 08:43:52 Test: Check file permissions for /usr/bin/cc
2021-01-15 08:43:52 Action: checking symlink for file /usr/bin/cc
2021-01-15 08:43:52 Note: Using real readlink binary to determine symlink on /usr/bin/cc
2021-01-15 08:43:52 Result: readlink shows /usr/bin/gcc as output
2021-01-15 08:43:52 Result: symlink found, pointing to file /usr/bin/gcc
2021-01-15 08:43:52 Binary: found /usr/bin/gcc (world executable)
2021-01-15 08:43:53 Hardening: assigned partial number of hardening points (2 of 3). Currently having 223 points (out of 342)
2021-01-15 08:43:53 Test: Check file permissions for /usr/bin/gcc
2021-01-15 08:43:53 Action: checking symlink for file /usr/bin/gcc
2021-01-15 08:43:53 Result: file /usr/bin/gcc is not a symlink
2021-01-15 08:43:53 Binary: found /usr/bin/gcc (world executable)
2021-01-15 08:43:53 Hardening: assigned partial number of hardening points (2 of 3). Currently having 225 points (out of 345)
2021-01-15 08:43:53 Result: at least one compiler could be better hardened by restricting executable access to root or group only
2021-01-15 08:43:53 Suggestion: Harden compilers like restricting access to root user only [test:HRDN-7222] [details:-] [solution:-]
2021-01-15 08:43:53 ====
2021-01-15 08:43:53 Performing test ID HRDN-7230 (Check for malware scanner)
2021-01-15 08:43:53 Test: Check if a malware scanner is installed
2021-01-15 08:43:53 Result: no malware scanner found
2021-01-15 08:43:53 Suggestion: Harden the system by installing at least one malware scanner, to perform periodic file system scans [test:HRDN-7230] [details:-] [solution:Install a tool like rkhunter, chkrootkit, OSSEC]
2021-01-15 08:43:53 Hardening: assigned partial number of hardening points (1 of 3). Currently having 226 points (out of 348)
2021-01-15 08:43:53 Result: no malware scanner found
2021-01-15 08:43:53 ====
2021-01-15 08:43:53 Performing test ID HRDN-7231 (Check for registered non-native binary formats)
2021-01-15 08:43:53 Test: Check for registered non-native binary formats
2021-01-15 08:43:53 Result: no non-native binary formats found
2021-01-15 08:43:53 ====
2021-01-15 08:43:53 Action: Performing tests from category: Custom tests
2021-01-15 08:43:53 Test: Checking for tests_custom file
2021-01-15 08:43:53 ====
2021-01-15 08:43:53 Action: Performing plugin tests
2021-01-15 08:43:53 Result: Found 0 plugins of which 0 are enabled
2021-01-15 08:43:53 Result: Plugins phase 2 finished
2021-01-15 08:43:53 Checking permissions of /usr/share/lynis/include/report
2021-01-15 08:43:53 File permissions are OK
2021-01-15 08:43:53 Hardening index : [64] [############        ]
2021-01-15 08:43:53 Hardening strength: System has been hardened, but could use additional hardening
2021-01-15 08:43:53 ====
2021-01-15 08:43:53 Checking permissions of /usr/share/lynis/include/tool_tips
2021-01-15 08:43:53 File permissions are OK
2021-01-15 08:43:53 Tool tips: enabled
2021-01-15 08:43:53 ================================================================================
2021-01-15 08:43:53 Tests performed:     244
2021-01-15 08:43:53 Total tests:         437
2021-01-15 08:43:53 Active plugins:      0
2021-01-15 08:43:53 Total plugins:       0
2021-01-15 08:43:53 ================================================================================
2021-01-15 08:43:53 Lynis 3.0.3
2021-01-15 08:43:53 2007-2021, CISOfy - https://cisofy.com/lynis/
2021-01-15 08:43:53 Enterprise support available (compliance, plugins, interface and tools)
2021-01-15 08:43:53 Program ended successfully
2021-01-15 08:43:53 ================================================================================
2021-01-15 08:43:53 PID file removed (/var/run/lynis.pid)
2021-01-15 08:43:53 Temporary files:  /tmp/lynis.cyvME9fujI /tmp/lynis.GEzxxihLVL /tmp/lynis.JwLsCjWsfq /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:53 Action: removing temporary file /tmp/lynis.cyvME9fujI
2021-01-15 08:43:53 Info: temporary file /tmp/lynis.GEzxxihLVL was already removed
2021-01-15 08:43:53 Info: temporary file /tmp/lynis.JwLsCjWsfq was already removed
2021-01-15 08:43:53 Action: removing temporary file /tmp/lynis.jMjT3G3ePX
2021-01-15 08:43:53 Lynis ended successfully.