Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014
-
Upload
michael-boelen -
Category
Software
-
view
369 -
download
1
description
Transcript of Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014
![Page 1: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/1.jpg)
NLUUG - Spring 2014 1
Lynis
Security Auditing and Hardening for Linux, Mac & Unix systems
Michael Boelen
Twitter @mboelenGoogle+ +MichaelBoelenWeb http://cisofy.com
![Page 2: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/2.jpg)
2
Passion
http://en.wikipedia.org/wiki/File:Passiflora_Edulis_Open_Fruit2.jpg
What's yours?
![Page 3: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/3.jpg)
3
whoami
Michael Boelen
◼ Open Source developer◼ Author of Rootkit Hunter & Lynis◼ Passion for auditing
![Page 4: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/4.jpg)
4
The Problem
Auditing and Hardening..
◼ A lot of work!◼ Not that interesting, right?◼ And.. prone to errors
![Page 5: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/5.jpg)
5
Solutions
Options
◼ Guides◼ SCAP◼ Tools
![Page 6: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/6.jpg)
6
Benchmarks / Guides
Pros
◼ Free to use◼ Extensive information
Cons
◼ Time intensive◼ Usually no tooling◼ Limited distributions◼ Delayed releases
![Page 7: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/7.jpg)
7
SCAP
Pros
◼ Free to use◼ Focused on automation
Cons
◼ Limited distributions◼ Easy of use◼ Lacking documentation or
already outdated
![Page 8: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/8.jpg)
8
Lynis
![Page 9: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/9.jpg)
9
Lynis
Benefits
● Easy to implement● Quick results● Focus on automation● In-depth auditing
![Page 10: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/10.jpg)
10
Lynis
2007
◼ Quality of existing tools◼ Efficiency of work
![Page 11: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/11.jpg)
11
Lynis+
2014
◼ New website◼ Documentation refresh◼ Lynis controls online◼ Enterprise support◼ Plugins
![Page 12: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/12.jpg)
12
Demo
![Page 13: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/13.jpg)
13
Lynis++
DoneDone
● Website● Documentation● Lynis controls online● Enterprise support● Plugins
NewNew● In-depth reports● Hardening automation● Intrusion detection● Performance tuning● Compliance checking● (Forensics)● (Malware)
![Page 14: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/14.jpg)
14
Questions?
There is more..
![Page 15: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/15.jpg)
15
Demo 2
![Page 16: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/16.jpg)
16
Thank You
● Try Lynis● Share open source
Twitter @mboelenGoogle+ +MichaelBoelenWeb http://cisofy.com
![Page 17: Lynis - Hardening and auditing for Linux, Mac and Unix - NLUUG May 2014](https://reader034.fdocuments.in/reader034/viewer/2022051412/549478a2ac7959ff2d8b4bc7/html5/thumbnails/17.jpg)
17