Lab – Hardening a Linux System
This command verifies that this is the latest version and updates for the tool at the time of writing of this
lab.
© 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.
Page
2
of
5
Lab – Hardening a Linux System
Step 3: Run the Tool
a.
Type the following command in terminal and press
Enter
:
[email protected]:~/Downloads/lynis$
sudo ./lynis --auditor cisco
As displayed above, the tool will begin auditing using the user
cisco
as the auditor. Notice:
You will receive
warnings
.
b.
To continue with each stage of the audit press
Enter
. You will receive warnings as shown below.
c.
You will receive suggestions, as shown below.
© 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.
Page
3
of
5
Lab – Hardening a Linux System
d.
You will receive a notification for any configuration that is weak as shown below:
e.
You will receive detailed security enhancement suggestions as well as a final summary which provides the
location where you can find the log file.
© 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.
Page
4
of
5
Lab – Hardening a Linux System
Step 4: Review Results
a.
Scroll up to the results section after the tool is finished running.
How many Warnings did you receive?
9
How many Suggestions did you receive?
6
b.
Scroll through the suggestions and select one. You will research a suggestion that you can implement to
address the issue.
Which suggestion are you addressing?
Checking PAM password strength tools
What is your suggested solution?
Make the password characters longer and specialized symbols
References
Lynis:
© 2016 Cisco and/or its affiliates. All rights reserved. This document is Cisco Public.
Page
5
of
5
You've reached the end of your free preview.
Want to read all 5 pages?
- Fall '15
- All rights reserved, Cisco Public, Terminal emulator
