Buck-Security is a security scanner for Debian and Ubuntu Linux. It helps you to harden your system by running some important security checks. For example, it finds world-writable files and directories, setuid and setgid programs, superuser accounts, and installed attack tool packages. It also checks your umask and checks if the sticky bit is set for /tmp, among other checks.
|Tags||Security Security Scanning Security Audit Security Analysis|
|Operating Systems||Debian GNU/Linux Ubuntu|
The next version 0.6 of buck-security will be released soon in May 2010. buck-security is a security scanner for Linux. It was designed for Debian and Ubuntu servers, but can be useful for any Linux system. The new version 0.6 will include major changes and 2 new checks. The most important changes will be: * buck-security 0.6 will be provided as a debian package too * check for running services (open ports) * check for users that can login * improved results output (links included where to find more information)
Release Notes: There have been some major and minor changes in this release. One new check was added to check for listening services. Output was improved with more information in less space. Some deprecated files were removed. A FAQ section was added to the Web site. The documentation was upgraded. Many more minor changes were made.
Release Notes: Three new checks were added to check firewall policies, to check if sshd is secured, and to make and check checksums of system programs. This should be considered a beta version.