Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Page History

« Previous Version 3 Next »

Test document


Lynis

Nexus URL TBD


The initial results compare with the Lynis Incubation: PASS/FAIL Criteria, v1.0 as follows.


PC/Server for robot control

The Lynis Program Update test MUST pass with no errors.

 

Fix: Download and run the latest Lynis directly on SUT.

Steps To Implement Security Scan Requirements#InstallandExecute

The following list of tests MUST complete as passing
No.TestResultFix
1Test: Checking PASS_MAX_DAYS option in /etc/login.defs

Result: number of password hashing rounds is not configured
Suggestion: Configure password hashing rounds in /etc/login.defs [test:AUTH-9230] [details:-] [solution:-]


2Performing test ID AUTH-9328 (Default umask values)

3Performing test ID SSH-7440 (Check OpenSSH option: AllowUsers and AllowGroups)

4Test: checking for file /etc/network/if-up.d/ntpdate

5Performing test ID KRNL-6000 (Check sysctl key pairs in scan profile) :  Following sub-tests required

5asysctl key fs.suid_dumpable contains equal expected and current value (0)

5bsysctl key kernel.dmesg_restrict contains equal expected and current value (1)

5csysctl key net.ipv4.conf.default.accept_source_route contains equal expected and current value (0)

6Test: Check if one or more compilers can be found on the system


  • No labels