====== Ubuntu - Security ======

===== Lynis Security Auditing =====

Lynis is a system and security auditing tool.

It provides insights in how well a system is hardened and what you can do, to improve your security defenses.

suggest people using it daily & compare the results for example: https://linux-audit.com/find-differences-between-two-daily-lynis-audits

Installation steps:

<code bash>
cd /tmp
wget https://cisofy.com/files/lynis-2.5.0.tar.gz
tar xvfz lynis-2.5.0.tar.gz
mv lynis cd
</code>

Move all contents of /tmp/cd into /usr/local/lynis

<WRAP important>
**WARNING:**  Make sure that the lynis file is 775 or else you will get a perm denied.
</WRAP>


To scan the server first do a update!

<code bash>
lynis update info
</code>

Then to actually scan the system:

<code bash>
lynis audit system
</code>

Once the scan is over you will get a System Scan Summary.

Lynis suggests also a very good things that might be tampered to make the system more secure.

Lynis supports plugins, reporting, central management, a dashboard, and more.

----

===== Notes =====

<code bash>
sysctl -a
lynis show
lynis –tests “SSH-7440”
lynis show help
lynis update info
systemctl status -all
</code>

----

===== References =====

https://cisofy.com/lynis