{"id":672,"date":"2008-09-22T19:32:51","date_gmt":"2008-09-22T17:32:51","guid":{"rendered":"http:\/\/www.marblestation.com\/blog\/?p=672"},"modified":"2012-04-26T16:18:58","modified_gmt":"2012-04-26T14:18:58","slug":"lynis-herramienta-de-auditoria-de-seguridad-para-unix-linux-bsd-solaris","status":"publish","type":"post","link":"https:\/\/www.marblestation.com\/?p=672","title":{"rendered":"Lynis, herramienta de auditor\u00eda de seguridad para UNIX (Linux, BSD, Solaris, &#8230;)"},"content":{"rendered":"<p>Hace unos meses escrib\u00ed una peque\u00f1a referencia a un par de herramientas que nos permit\u00edan <a href=\"http:\/\/www.marblestation.com\/blog\/?p=643\">comprobar si nuestro sistema Linux tenia oculto algun rootkit<\/a>. Podemos complementar esas herramienta con <a href=\"http:\/\/www.rootkit.nl\/projects\/lynis.html\">Lynis<\/a>, la cual realiza diversas comprobaciones en el sistema para informar de posibles debilidades de configuraci\u00f3n, como por ejemplo:<\/p>\n<ol>\n<li>Gestor de arranque protegido por contrase\u00f1a<\/li>\n<li>Kernel actualizado<\/li>\n<li>Usuarios con uid 0 (p.ej. root)<\/li>\n<li>Pol\u00edtica de contrase\u00f1as<\/li>\n<li>Firewall<\/li>\n<li>Etc&#8230;<\/li>\n<\/ol>\n<p>A modo de ejemplo:<\/p>\n<pre>\r\n  Warnings:\r\n  ----------------------------\r\n   - [19:23:40] Warning: No password set on GRUB bootloader [test:BOOT-5121] [impact:M]\r\n   - [19:24:04] Warning: grpck binary found errors in one or more group files [test:AUTH-9216] [impact:M]\r\n   - [19:24:48] Warning: iptables module(s) loaded, but no rules active [test:FIRE-4512] [impact:L]\r\n   - [19:25:04] Warning: No NTP daemon or client found [test:TIME-3104] [impact:M]\r\n<\/pre>\n<p>El detalle del an\u00e1lisis se puede localizar en el fichero &#8216;\/var\/log\/lynis.log&#8217;. Si buscamos por &#8220;Suggestion&#8221; en el log podremos identificar las sugerencias que Lynis realiza para mejorar la seguridad de la configuraci\u00f3n del sistema.<\/p>\n<p>En definitiva, Lynis es una herramienta que nos ayuda a identificar mejoras en el sistema (no realiza modificaciones\/hardening sobre el sistema como <a href=\"http:\/\/bastille-linux.sourceforge.net\/\">Bastille<\/a>) y nos puede resultar de gran utilidad tanto para auditor\u00edas UNIX como para la implantaci\u00f3n de sistemas seguros.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Hace unos meses escrib\u00ed una peque\u00f1a referencia a un par de herramientas que nos permit\u00edan comprobar si nuestro sistema Linux tenia oculto algun rootkit. Podemos complementar esas herramienta con Lynis, la cual realiza diversas comprobaciones en el sistema para informar de posibles debilidades de configuraci\u00f3n, como por ejemplo: Gestor de arranque protegido por contrase\u00f1a Kernel &hellip; <a href=\"https:\/\/www.marblestation.com\/?p=672\" class=\"more-link\">Continue reading <span class=\"screen-reader-text\">Lynis, herramienta de auditor\u00eda de seguridad para UNIX (Linux, BSD, Solaris, &#8230;)<\/span> <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[1,6],"tags":[],"class_list":["post-672","post","type-post","status-publish","format-standard","hentry","category-espanyol","category-tecnologia"],"_links":{"self":[{"href":"https:\/\/www.marblestation.com\/index.php?rest_route=\/wp\/v2\/posts\/672","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.marblestation.com\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.marblestation.com\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.marblestation.com\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.marblestation.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=672"}],"version-history":[{"count":1,"href":"https:\/\/www.marblestation.com\/index.php?rest_route=\/wp\/v2\/posts\/672\/revisions"}],"predecessor-version":[{"id":1235,"href":"https:\/\/www.marblestation.com\/index.php?rest_route=\/wp\/v2\/posts\/672\/revisions\/1235"}],"wp:attachment":[{"href":"https:\/\/www.marblestation.com\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=672"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.marblestation.com\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=672"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.marblestation.com\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=672"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}