UNIX system security Tools

Example output of a Linux security scan with Lynis

Lynis

Open source software provides trust by having people look into the code. Adjustments are easily made, providing you with a flexible solution for your business. But can you trust systems and software with your data? Lynis provides you this confidence and helps with auditing your systems. So you can verify yourself and trust!

How it works
Lynis is an open source security auditing tool. Its main goal is to audit and harden Unix and Linux based systems. It scans the system by performing many security control checks. Examples include searching for installed software and determine possible configuration flaws.

Many tests are part of common security guidelines and standards, with on top additional security tests. After the scan a report will be displayed with all discovered findings. To provide you with initial guidance, a link is shared to the related Lynis control.

Example output:

The primary goal of Lynis is to perform a quick scan on your systems and determine room for improvement. Our Lynis Enterprise Suite is also using Lynis as a core component, however with much more functionality on top. Lynis Enterprise focuses on companies serious about their information security policy. Main audience is system administrators, security professionals and auditors working for these kind of companies.

Fact sheet
» Open Source (GPLv3)
» Free to use
» Well-known and mature
» Big community of users
» Packages/ports available
» Used by individuals, businesses,
government departments and multinationals

(Open Source and Free)

Lynis Enterprise

Lynis Enterprise begins, where Lynis stops. The Enterprise Suite also includes central management, reporting, action plans and security measurements.

Central management

No more custom scripting or deploying systems without hardening going undetected.

Reporting / Implementation Plan

The reporting capabilities are powerful. For example including an overview of the quick wins, or the group of systems with the highest risk rating. This makes it easy for you to determine your priorities. Just check the most important areas first and save a lot of time and efforts!

Lynis Plugins

The software functionality can be extended with the help of plugins. Examples:
  • Malware detection
  • Forensics
  • Heuristics
  • System statistics
  • Software

Integration

Centralized data can be exported and linked to existing systems. The bigger plans also include the use of an API, to easily export data.

Integration possibilities:
  • SIEM solutions (event/incident logging)
  • Configuration management and automation tools
  • CMDB or other ITIL based tooling

Lynis Collector

The Enterprise solution includes Lynis Collector, a piece of software to handle central collection of data from all systems. Even if your systems do not have direct access to a WAN or internet link, the Collector can act as a proxy.

You might also like

Alternative Open Source Hosting Control Panels  — TheHostingNews.com
Zpanel – Written in PHP, Zpanel is light and flexible, working on Windows, Linux and other Unix-like operating systems. It supports modules, themes and more.

O'Reilly Media Mac Hacks: Tips & Tools for unlocking the power of OS X
Book (O'Reilly Media)
  • Used Book in Good Condition

Q&A

avatar
How does the UNIX file system work?

I'm not too sure what your question is. Any chance of sharing what you want>

avatar
What are the features of the Unix file system?

A file system is a logical method for organising and storing large amounts of information in a way which makes it easy manage. The file is the smallest unit in which information is stored. The UNIX file system has several important features.

  • Different types of file
  • Structure of the file system
  • Your home directory
  • Your current directory
  • Pathnames
  • Access permissions