I've written a somewhat short-ish review of Lynis, an open-source security auditing tool for UNIX-like systems, tested in Linux, including non-privileged and privileged runs, reports, system hardening suggestions, ease of use, importance of relevant domain knowledge, some other observations, and more. Enjoy. https://www.dedoimedo.com/computers/lynis.html Cheers, Mrk
Hello @Mrkvonic Thank you and Bravo! I would respectfully wish to add: As you well noted, the version in your illustrations has been updated many times in over two and a half years to v3.1.1 (Latest in March 2024) Elsewhere in this forum is kept a subtopic for mostly Lynis update notices at hxxps://www.wilderssecurity.com/threads/scan-your-linux-security-with-lynis.431479/ Although easily installed from the download, the Lynis installation may be streamlined by Homebrew (Brew) on macOS systems through macOS 14 Sonoma. It is a rare *nix system that does not have something that could be tweaked as a result of a security audit. Lynis is still run “once in a while” to keep an eye on your systems. Although a paid “Enterprise” edition is available, most of us home users will do nicely with the free edition. Thank you again, Mrk.
Nobody uses security software on UNIX systems apart from turning on the firewall. I've never been infected. An AV is more for making sure MacOS/Linux files don't have malware to pass onto Windows users. Built in security is robust by design long before Microsoft began doing that for Windows.
That's not true, my employer does. Actually many employers does, because they are required by law to do that or at least log system and network activity. Lynis checks for misconfigurations or other "built in security". This comment doesn't even makes sense in that context.
As a home user I've had Lynis installed a while now. I used to install and run from /root. Last year I decide to build a package for Slackware to install it properly. Until my run today, my last run was in August of 2023. It's not a daily or even monthly thing, it nice to have a tool that gives meaningful information on possible issues and a place to go to read up on the reasoning. A lot of the warnings or suggestions are not really needed for a home system in my opinion. Regardless, I find it a useful informational tool.
