scottlinux.com

Facebook Twitter RSS

Tiger Local Security Audit

Published on December 21, 2010, by in linux, sysadmin.




Tiger is an excellent local Linux (*nix) system security audit tool.

sudo apt-get install tiger

Then run:

sudo tiger

Tiger checks various things such as all user accounts on the machine, problematic cron and service entries, complete system file permission check, rootkits, backdoors, (Debian/Ubuntu example: complete md5sum of installed files against Debian Security Advisories), listening services audit, and more!

The log file will be written to /var/log/tiger/security.report[hostname].[date-time].

Potential problems will be marked with FAIL in all captial letters, followed by a FAIL code.

Issue the command tigexp code for more details:

tigexp netw020f

This means there is no /etc/ftpusers file, for example which is ok. :)



Sweet!


Related posts:

  1. Linux Security Notices
  2. Securing Apache and PHP
Tags: , , , ,
« »

One Response

  1. laurelai
    May 17, 2012 at 17:02

    This is only for debian/ubuntu if you are going to say its for linux in a generic sense then you should put instructions on how to compile from source, how to install it via the package managers of various distros or both.

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

*

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Notify me of followup comments via e-mail. You can also subscribe without commenting.

(Optional) Your Twitter @
Home linux Tiger Local Security Audit
© Copyleft scottlinux.com CC BY-SA 3.0