Thursday, December 8, 2011
10:00 PM

Basic Ubuntu System Security Checks - CheckSecurity

The  checksecurity  command  runs  a  small collection of simple system checks which are designed  to  catch  a  few  common  security  issues.
      
The  checksecurity  command scans the mounted files systems (subject to the filter defined in /etc/checksecurity.conf) and compares the list of setuid  programs  to  the list created on the previous run. Any changes are printed to standard output. Also, it generates a list  of  nfs  and afs  filesystems that are mounted insecurely (i.e. they are missing the nodev and either the noexec or nosuid flags).

checksecurity is run by cron on a daily basis, and the output stored in /var/log/setuid/setuid.changes.

Checksecurity Installation:
Under Ubuntu Linux, open the terminal and type following command to install checksecurity:
sudo apt-get install checksecurity

Continue Reading...

0 comments:

Post a Comment