Tiger Local Security Audit

By | 2010/12/21

Tiger is an excellent local Linux (*nix) system security audit tool.

sudo apt-get install tiger

Then run:

sudo tiger

Tiger checks various things such as all user accounts on the machine, problematic cron and service entries, complete system file permission check, rootkits, backdoors, (Debian/Ubuntu example: complete md5sum of installed files against Debian Security Advisories), listening services audit, and more!

The log file will be written to /var/log/tiger/security.report[hostname].[date-time].

Potential problems will be marked with FAIL in all captial letters, followed by a FAIL code.

Issue the command tigexp code for more details:

tigexp netw020f

This means there is no /etc/ftpusers file, for example which is ok. 🙂


Sweet!

One thought on “Tiger Local Security Audit

  1. laurelai

    This is only for debian/ubuntu if you are going to say its for linux in a generic sense then you should put instructions on how to compile from source, how to install it via the package managers of various distros or both.

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *

Notify me of followup comments via e-mail. You can also subscribe without commenting.