Lynis is a command line tool that allows to perform security audit, vulnerability detection, system hardening, etc. It scans the system to find configuration mistakes, vulnerable packages, insecure services, wrong filesystem permissions and other security issues.
This tutorial shows how to install Lynis on Raspberry Pi.
Install Lynis
Connect to Raspberry Pi via SSH and download GPG key:
sudo wget -qO /etc/apt/trusted.gpg.d/cisofy-key.asc https://packages.cisofy.com/keys/cisofy-software-public.keyRun the following command to configure APT package manager to skip downloading translations:
echo 'Acquire::Languages "none";' | sudo tee /etc/apt/apt.conf.d/99disable-translationsAdd the Lynis repository:
echo "deb https://packages.cisofy.com/community/lynis/deb/ stable main" | sudo tee /etc/apt/sources.list.d/cisofy-lynis.listUpdate the package lists:
sudo apt updateInstall Lynis:
sudo apt install -y lynisOnce installation is finished, we can check version of Lynis:
sudo lynis --versionTesting Lynis
To perform security audit, run the lynis command as follows:
sudo lynis audit systemAn example of audit report:
.......
[+] Boot and services
------------------------------------
- Service Manager [ systemd ]
- Checking UEFI boot [ DISABLED ]
- Boot loader [ NONE FOUND ]
- Check running services (systemctl) [ DONE ]
Result: found 17 running services
.......
[+] File systems
------------------------------------
- Checking mount points
- Checking /home mount point [ SUGGESTION ]
- Checking /tmp mount point [ SUGGESTION ]
- Checking /var mount point [ SUGGESTION ]
.......Uninstall Lynis
If you decided to completely remove Lynis, run the following command:
sudo apt purge --autoremove -y lynisRemove GPG key, repository and APT config file:
sudo rm -rf /etc/apt/trusted.gpg.d/cisofy-key.asc
sudo rm -rf /etc/apt/sources.list.d/cisofy-lynis.list
sudo rm -rf /etc/apt/apt.conf.d/99disable-translationsRemove logs:
sudo rm -rf /var/log/lynis*
Leave a Comment
Cancel reply