Professional Documents
Culture Documents
2017-05-17 12:35:14 Found known binary: cat (generic file handling) - /bin/cat
2017-05-17 12:35:14 Found known binary: cut (text stream editor) - /bin/cut
2017-05-17 12:35:14 Found known binary: dnsdomainname (DNS domain) - /bin/dnsdomainname
2017-05-17 12:35:14 Found known binary: domainname (NIS domain) - /bin/domainname
2017-05-17 12:35:14 Found known binary: egrep (text search) - /bin/egrep
2017-05-17 12:35:14 Found known binary: find (search tool) - /bin/find
2017-05-17 12:35:14 Found known binary: grep (text search) - /bin/grep
2017-05-17 12:35:14 Found known binary: gzip (compressing utility) - /bin/gzip
2017-05-17 12:35:14 Found known binary: ls (file listing) - /bin/ls
2017-05-17 12:35:14 Found known binary: mount (disk utility) - /bin/mount
2017-05-17 12:35:14 Found known binary: netstat (network statistics) - /bin/netstat
2017-05-17 12:35:14 Found known binary: ps (process listing) - /bin/ps
2017-05-17 12:35:14 Found known binary: readlink (follows symlinks) - /bin/readlink
2017-05-17 12:35:14 Found known binary: rpm (package manager) - /bin/rpm
2017-05-17 12:35:14 Found known binary: sed (text stream editor) - /bin/sed
2017-05-17 12:35:14 Found known binary: sort (sort data streams) - /bin/sort
2017-05-17 12:35:15 Found known binary: uname (operating system details) - /bin/uname
2017-05-17 12:35:15 Found known binary: xargs (command output redirection) - /bin/xargs
2017-05-17 12:35:15 Test: Checking binaries in directory /sbin
2017-05-17 12:35:15 Directory /sbin exists. Starting directory scanning...
2017-05-17 12:35:15 Found known binary: auditctl (control utility for audit daemon) - /sbin/auditctl
2017-05-17 12:35:15 Found known binary: auditd (audit framework) - /sbin/auditd
2017-05-17 12:35:15 Found known binary: blkid (information about block devices) - /sbin/blkid
2017-05-17 12:35:15 Found known binary: chkconfig (administration tool) - /sbin/chkconfig
2017-05-17 12:35:15 Found known binary: ipconfig (IP configuration) - /sbin/ifconfig
2017-05-17 12:35:15 Found known binary: initctl (client to upstart init) - /sbin/initctl
2017-05-17 12:35:15 Found known binary: ip (IP configuration) - /sbin/ip
2017-05-17 12:35:15 Found known binary: iptables (firewall) - /sbin/iptables
2017-05-17 12:35:15 Found known binary: iptables-save (firewall) - /sbin/iptables-save
2017-05-17 12:35:15 Found known binary: lsmod (kernel modules) - /sbin/lsmod
2017-05-17 12:35:15 Found known binary: lvdisplay (LVM tool) - /sbin/lvdisplay
2017-05-17 12:35:15 Found known binary: modprobe (kernel modules) - /sbin/modprobe
2017-05-17 12:35:15 Found known binary: runlevel (system utility) - /sbin/runlevel
2017-05-17 12:35:15 Found known binary: service (system services) - /sbin/service
2017-05-17 12:35:15 Found known binary: sysctl (kernel parameters) - /sbin/sysctl
2017-05-17 12:35:15 Found known binary: tune2fs (file system tool) - /sbin/tune2fs
2017-05-17 12:35:15 Found known binary: vgdisplay (LVM tool) - /sbin/vgdisplay
2017-05-17 12:35:15 Test: Checking binaries in directory /usr/bin
2017-05-17 12:35:15 Directory /usr/bin exists. Starting directory scanning...
2017-05-17 12:35:15 Found known binary: as (compiler) - /usr/bin/as
2017-05-17 12:35:15 Found known binary: awk (string tool) - /usr/bin/awk
2017-05-17 12:35:15 Found known binary: base64 (encoding tool) - /usr/bin/base64
2017-05-17 12:35:15 Found known binary: comm (file compare) - /usr/bin/comm
2017-05-17 12:35:15 Found known binary: curl (browser) - /usr/bin/curl
2017-05-17 12:35:15 Found known binary: cut (text stream editor) - /usr/bin/cut
2017-05-17 12:35:20 Test: Checking for presence GRUB conf file (/boot/grub/grub.conf or /boot/grub/menu.lst)
2017-05-17 12:35:20 Result: no GRUB configuration file found.
2017-05-17 12:35:20 ===---------------------------------------------------------------===
2017-05-17 12:35:20 Skipped test BOOT-5122 (Check for GRUB boot password)
2017-05-17 12:35:20 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:20 ===---------------------------------------------------------------===
2017-05-17 12:35:20 Skipped test BOOT-5124 (Check for FreeBSD boot loader presence)
2017-05-17 12:35:20 Reason to skip: Incorrect guest OS (FreeBSD only)
2017-05-17 12:35:20 ===---------------------------------------------------------------===
2017-05-17 12:35:20 Skipped test BOOT-5261 (Check for DragonFly boot loader presence)
2017-05-17 12:35:20 Reason to skip: Incorrect guest OS (DragonFly only)
2017-05-17 12:35:20 ===---------------------------------------------------------------===
2017-05-17 12:35:20 Skipped test BOOT-5126 (Check for NetBSD boot loader presence)
2017-05-17 12:35:20 Reason to skip: Incorrect guest OS (NetBSD only)
2017-05-17 12:35:20 ===---------------------------------------------------------------===
2017-05-17 12:35:20 Performing test ID BOOT-5139 (Check for LILO boot loader presence)
2017-05-17 12:35:20 Test: checking for presence LILO configuration file
2017-05-17 12:35:20 Result: LILO configuration file not found
2017-05-17 12:35:20 ===---------------------------------------------------------------===
2017-05-17 12:35:20 Performing test ID BOOT-5142 (Check SPARC Improved boot loader (SILO))
2017-05-17 12:35:20 Result: no SILO configuration file found.
2017-05-17 12:35:20 ===---------------------------------------------------------------===
2017-05-17 12:35:20 Performing test ID BOOT-5155 (Check for YABOOT boot loader configuration file)
2017-05-17 12:35:20 Test: Check for /etc/yaboot.conf
2017-05-17 12:35:20 Result: no YABOOT configuration file found.
2017-05-17 12:35:20 ===---------------------------------------------------------------===
2017-05-17 12:35:20 Skipped test BOOT-5159 (Check for OpenBSD boot loader presence)
2017-05-17 12:35:20 Reason to skip: Incorrect guest OS (OpenBSD only)
2017-05-17 12:35:20 ===---------------------------------------------------------------===
2017-05-17 12:35:20 Skipped test BOOT-5165 (Check for FreeBSD boot services)
2017-05-17 12:35:20 Reason to skip: Incorrect guest OS (FreeBSD only)
2017-05-17 12:35:20 ===---------------------------------------------------------------===
2017-05-17 12:35:20 Performing test ID BOOT-5177 (Check for Linux boot and running services)
2017-05-17 12:35:20 Test: checking presence systemctl binary
2017-05-17 12:35:20 Result: systemctl binary not found, checking chkconfig binary
2017-05-17 12:35:20 Result: chkconfig binary found, trying that to discover information
2017-05-17 12:35:20 Searching for services at startup (chkconfig, runlevel 3 and 5)
2017-05-17 12:35:20 Found service (at boot, runlevel 3 or 5): auditd
2017-05-17 12:35:20 Found service (at boot, runlevel 3 or 5): bigstart
2017-05-17 12:35:20 Found service (at boot, runlevel 3 or 5): blk-availability
2017-05-17 12:35:20 Found service (at boot, runlevel 3 or 5): cluster
2017-05-17 12:35:20 Found service (at boot, runlevel 3 or 5): crond
2017-05-17 12:35:20 Found service (at boot, runlevel 3 or 5): dhclient
2017-05-17 12:35:20 Found service (at boot, runlevel 3 or 5): f5dirs
2017-05-17 12:35:20 Found service (at boot, runlevel 3 or 5): fips
2017-05-17 12:35:22 Performing test ID KRNL-5726 (Checking Linux loaded kernel modules)
2017-05-17 12:35:22 Loaded modules according lsmod:
2017-05-17 12:35:22 Loaded module: 3w_9xxx
2017-05-17 12:35:22 Loaded module: 8021q
2017-05-17 12:35:22 Loaded module: acpi_cpufreq
2017-05-17 12:35:22 Loaded module: ahci
2017-05-17 12:35:22 Loaded module: amd74xx
2017-05-17 12:35:22 Loaded module: ata_piix
2017-05-17 12:35:22 Loaded module: binfmt_misc
2017-05-17 12:35:22 Loaded module: bridge
2017-05-17 12:35:22 Loaded module: crc_t10dif
2017-05-17 12:35:22 Loaded module: crct10dif_common
2017-05-17 12:35:22 Loaded module: dm_bufio
2017-05-17 12:35:22 Loaded module: dm_log
2017-05-17 12:35:22 Loaded module: dm_mirror
2017-05-17 12:35:22 Loaded module: dm_mod
2017-05-17 12:35:22 Loaded module: dm_region_hash
2017-05-17 12:35:22 Loaded module: dm_snapshot
2017-05-17 12:35:22 Loaded module: dm_zero
2017-05-17 12:35:22 Loaded module: evchannel
2017-05-17 12:35:22 Loaded module: ext2
2017-05-17 12:35:22 Loaded module: ext3
2017-05-17 12:35:22 Loaded module: garp
2017-05-17 12:35:22 Loaded module: hrsleep
2017-05-17 12:35:22 Loaded module: i2c_core
2017-05-17 12:35:22 Loaded module: i2c_dev
2017-05-17 12:35:22 Loaded module: i2c_i801
2017-05-17 12:35:22 Loaded module: ide_core
2017-05-17 12:35:22 Loaded module: ide_gd_mod
2017-05-17 12:35:22 Loaded module: igb
2017-05-17 12:35:22 Loaded module: ip_tables
2017-05-17 12:35:22 Loaded module: ipt_REJECT
2017-05-17 12:35:22 Loaded module: iptable_filter
2017-05-17 12:35:22 Loaded module: iptable_raw
2017-05-17 12:35:22 Loaded module: isofs
2017-05-17 12:35:22 Loaded module: ixgbe
2017-05-17 12:35:22 Loaded module: jbd
2017-05-17 12:35:22 Loaded module: jiffies
2017-05-17 12:35:22 Loaded module: lasthop
2017-05-17 12:35:22 Loaded module: libahci
2017-05-17 12:35:22 Loaded module: libata
2017-05-17 12:35:22 Loaded module: libsas
2017-05-17 12:35:22 Loaded module: llc
2017-05-17 12:35:22 Loaded module: loop
2017-05-17 12:35:22 Loaded module: lpc_ich
2017-05-17 12:35:23 Hardening: assigned maximum number of hardening points for this item (5). Currently having 12 points
(out of 12)
2017-05-17 12:35:23 Checking permissions of /home/admin/assess/include/tests_memory_processes
2017-05-17 12:35:23 File permissions are OK
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Action: Performing tests from category: Memory and Processes
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID PROC-3602 (Checking /proc/meminfo for memory details)
2017-05-17 12:35:23 Result: found /proc/meminfo
2017-05-17 12:35:23 Result: Found 8167288 kB memory
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Skipped test PROC-3604 (Query prtconf for memory details)
2017-05-17 12:35:23 Reason to skip: Incorrect guest OS (Solaris only)
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID PROC-3612 (Check dead or zombie processes)
2017-05-17 12:35:23 Result: found one or more dead or zombie processes
2017-05-17 12:35:23 Output: PIDs 9557 9559 9561 28120 28164 28198 28227 30541 Comment [4]: 9557 ? Z 0:00 [rm]
2017-05-17 12:35:23 Suggestion: Check the output of ps for dead or zombie processes [test:PROC-3612] [details:-] <defunct>
[solution:-]
9559 ? Z 0:00 [rm] <defunct>
2017-05-17 12:35:23 ===---------------------------------------------------------------===
9561 ? Z 0:00 [rm] <defunct>
2017-05-17 12:35:23 Performing test ID PROC-3614 (Check heavy IO waiting based processes)
28120 ? Z 0:00 [generate_config] <defunct>
2017-05-17 12:35:23 Result: No processes were waiting for IO requests to be handled first
28164 ? Z 0:00 [generate_config] <defunct>
2017-05-17 12:35:23 Checking permissions of /home/admin/assess/include/tests_authentication
28198 ? Z 0:00 [generate_config] <defunct>
2017-05-17 12:35:23 File permissions are OK
28227 ? Z 0:00 [generate_config] <defunct>
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Action: Performing tests from category: Users, Groups and Authentication
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID AUTH-9204 (Check users with an UID of zero)
2017-05-17 12:35:23 Test: Searching accounts with UID 0
2017-05-17 12:35:23 Result: Found more than one administrator accounts
2017-05-17 12:35:23 Warning: Multiple users with UID 0 found in passwd file [test:AUTH-9204] [details:-] [solution:-]
2017-05-17 12:35:23 Administrator account: admin:0
2017-05-17 12:35:23 Administrator account: <anon>:0 Comment [5]: Is <anon> using a general or a
2017-05-17 12:35:23 ===---------------------------------------------------------------===
customer specific password?
2017-05-17 12:35:23 Performing test ID AUTH-9208 (Check non-unique accounts in passwd file)
2017-05-17 12:35:23 Test: Checking for non-unique accounts
2017-05-17 12:35:23 Result: found multiple accounts with same UID
2017-05-17 12:35:23 Output (non-unique UIDs): 0
2017-05-17 12:35:23 Warning: Multiple accounts found with same UID [test:AUTH-9208] [details:-] [solution:-]
Comment [6]: User Admin and user
2017-05-17 12:35:23 Remarks: Non unique UIDs can be a risk for the system or part of a configuration mistake Qsight have the same UID.
2017-05-17 12:35:23 Prerequisite test: /usr/sbin/chkgrp
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Skipped test AUTH-9212 (Test group file)
2017-05-17 12:35:23 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID AUTH-9216 (Check group and shadow group files)
2017-05-17 12:35:23 Test: Checking for grpck binary output
2017-05-17 12:35:23 Warning: grpck binary found errors in one or more group files [test:AUTH-9216] [details:-]
[solution:-]
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Skipped test AUTH-9218 (Check login shells for passwordless accounts)
2017-05-17 12:35:23 Reason to skip: Incorrect guest OS (FreeBSD only)
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Skipped test AUTH-9489 (Check login shells for passwordless accounts)
2017-05-17 12:35:23 Reason to skip: Incorrect guest OS (DragonFly only)
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID AUTH-9222 (Check unique groups (IDs))
2017-05-17 12:35:23 Test: Checking for non unique group ID's in /etc/group
2017-05-17 12:35:23 Result: All group ID's are unique
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID AUTH-9226 (Check unique group names)
2017-05-17 12:35:23 Test: Checking for non unique group names in /etc/group
2017-05-17 12:35:23 Result: All group names are unique
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID AUTH-9228 (Check password file consistency with pwck)
2017-05-17 12:35:23 Test: Checking password file consistency (pwck)
2017-05-17 12:35:23 Result: pwck check didn't find any problems
2017-05-17 12:35:23 Hardening: assigned maximum number of hardening points for this item (2). Currently having 14 points
(out of 14)
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID AUTH-9234 (Query user accounts)
2017-05-17 12:35:23 Test: Read system users (including root user) from password database (e.g. /etc/passwd)
2017-05-17 12:35:23 Result: found minimal user id specified: 500
2017-05-17 12:35:23 Linux real users output (ID = 0, or 500+, but not 65534):
2017-05-17 12:35:23 Real user: root,0
2017-05-17 12:35:23 Real user: tmshnobody,32765
2017-05-17 12:35:23 Real user: admin,0
2017-05-17 12:35:23 Real user: qsight,0
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID AUTH-9240 (Query NIS+ authentication support)
2017-05-17 12:35:23 Result: NIS+ authentication not enabled
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID AUTH-9242 (Query NIS authentication support)
2017-05-17 12:35:23 Result: NIS authentication not enabled
2017-05-17 12:35:23 ===---------------------------------------------------------------===
2017-05-17 12:35:23 Performing test ID AUTH-9250 (Checking sudoers file)
2017-05-17 12:35:23 Test: checking presence /etc/sudoers
2017-05-17 12:35:23 Result: file /etc/sudoers not found
2017-05-17 12:35:23 Test: checking presence /usr/local/etc/sudoers
2017-05-17 12:35:23 Result: file /usr/local/etc/sudoers not found
2017-05-17 12:35:24 Hardening: assigned partial number of hardening points (0 of 1). Currently having 17 points (out of
18)
2017-05-17 12:35:24 Test: Checking PASS_MAX_DAYS option in /etc/login.defs
2017-05-17 12:35:24 Result: password aging limits are not configured
2017-05-17 12:35:24 Suggestion: Configure maximum password age in /etc/login.defs [test:AUTH-9286] [details:-]
[solution:-]
2017-05-17 12:35:24 Hardening: assigned partial number of hardening points (0 of 1). Currently having 17 points (out of
19)
2017-05-17 12:35:24 ===---------------------------------------------------------------===
2017-05-17 12:35:24 Performing test ID AUTH-9288 (Checking for expired passwords)
2017-05-17 12:35:24 Test: check if we can access /etc/shadow (escaped: /etc/shadow)
2017-05-17 12:35:24 Result: file is owned by our current user ID (0), checking if it is readable
2017-05-17 12:35:24 Result: file /etc/shadow is readable (or directory accessible).
2017-05-17 12:35:24 Data: Days since epoch is 17303
2017-05-17 12:35:24 Test: collecting accounts which have an expired password (last day changed + maximum change time)
2017-05-17 12:35:24 Result: good, no passwords have been expired
2017-05-17 12:35:25 Hardening: assigned maximum number of hardening points for this item (10). Currently having 27
points (out of 29)
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Skipped test AUTH-9304 (Check single user login configuration)
2017-05-17 12:35:25 Reason to skip: Incorrect guest OS (Solaris only)
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Skipped test AUTH-9306 (Check single boot authentication)
2017-05-17 12:35:25 Reason to skip: Incorrect guest OS (HP-UX only)
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Performing test ID AUTH-9308 (Check single user login configuration)
2017-05-17 12:35:25 Test: Searching /etc/inittab
2017-05-17 12:35:25 Result: file /etc/inittab exists
2017-05-17 12:35:25 Test: checking presence sulogin for single user mode
2017-05-17 12:35:25 Test: Searching /etc/sysconfig/init
2017-05-17 12:35:25 Result: file /etc/sysconfig/init exists
2017-05-17 12:35:25 Test: checking presence sulogin for single user mode
2017-05-17 12:35:25 Result: option not set, no password needed at single user mode boot
2017-05-17 12:35:25 Warning: No password set for single mode [test:AUTH-9308] [details:-] [solution:-]
Comment [7]: Although the physical console
2017-05-17 12:35:25 Suggestion: Set password for single user mode to minimize physical access attack surface [test:AUTH- isnt accessable, it should be protected by a password. This
9308] [details:-] [solution:-]
can be exploited through other accounts to get elevated rights.
2017-05-17 12:35:25 Hardening: assigned partial number of hardening points (0 of 2). Currently having 27 points (out of
31)
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Performing test ID AUTH-9328 (Default umask values)
2017-05-17 12:35:25 Test: Checking /etc/profile.d directory
2017-05-17 12:35:25 Result: found /etc/profile.d, with one or more files in it
2017-05-17 12:35:25 Test: Checking /etc/profile
2017-05-17 12:35:25 Result: file /etc/profile exists
2017-05-17 12:35:25 Test: Checking umask value in /etc/profile
2017-05-17 12:35:25 Result: found multiple umask values configured in /etc/profile Comment [8]: if [ $UID -gt 199 ] && [ "`id -
2017-05-17 12:35:25 Result: umask 002 could be more strict
gn`" = "`id -un`" ]; then
2017-05-17 12:35:25 Hardening: assigned partial number of hardening points (1 of 2). Currently having 28 points (out of
umask 002
33)
else
2017-05-17 12:35:25 Result: umask 022 could be more strict
umask 022
2017-05-17 12:35:25 Hardening: assigned partial number of hardening points (1 of 2). Currently having 29 points (out of
fi
35)
2017-05-17 12:35:25 Suggestion: Default umask in /etc/profile or /etc/profile.d/custom.sh could be more strict (e.g.
027) [test:AUTH-9328] [details:-] [solution:-] What is the use of this? Looks like unfinished code.
2017-05-17 12:35:25 Hardening: assigned partial number of hardening points (0 of 2). Currently having 29 points (out of
37)
2017-05-17 12:35:25 Test: Checking umask entries in /etc/passwd (pam_umask)
2017-05-17 12:35:25 Result: file /etc/passwd exists
2017-05-17 12:35:25 Test: Checking umask value in /etc/passwd
2017-05-17 12:35:25 Manual: one or more manual actions are required for further testing of this control/plugin
2017-05-17 12:35:25 Test: Checking /etc/login.defs
2017-05-17 12:35:25 Result: file /etc/login.defs exists
2017-05-17 12:35:25 Test: Checking umask value in /etc/login.defs
2017-05-17 12:35:25 Result: umask is 0077, which is fine
2017-05-17 12:35:25 Hardening: assigned maximum number of hardening points for this item (2). Currently having 31 points
(out of 39)
2017-05-17 12:35:25 Test: Checking /etc/init.d/functions
2017-05-17 12:35:25 Result: file /etc/init.d/functions exists
2017-05-17 12:35:25 Test: Checking umask value in /etc/init.d/functions
2017-05-17 12:35:25 Result: found umask 022, which could be improved
2017-05-17 12:35:25 Hardening: assigned partial number of hardening points (0 of 2). Currently having 31 points (out of
41)
2017-05-17 12:35:25 Test: Checking /etc/init.d/rc
2017-05-17 12:35:25 Result: file /etc/init.d/rc does not exist
2017-05-17 12:35:25 Test: Checking /etc/init.d/rcS
2017-05-17 12:35:25 Result: file /etc/init.d/rcS does not exist
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Skipped test AUTH-9340 (Solaris account locking)
2017-05-17 12:35:25 Reason to skip: Incorrect guest OS (Solaris only)
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Performing test ID AUTH-9402 (Query LDAP authentication support)
2017-05-17 12:35:25 Result: LDAP authentication not enabled
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Skipped test AUTH-9406 (Query LDAP servers in client configuration)
2017-05-17 12:35:25 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Performing test ID AUTH-9408 (Logging of failed login attempts via /etc/login.defs)
2017-05-17 12:35:25 Test: Checking FAILLOG_ENAB option in /etc/login.defs Comment [9]: Why would you not log? Easy
2017-05-17 12:35:25 Result: failed login attempts are not logged fix.
2017-05-17 12:35:25 Hardening: assigned partial number of hardening points (0 of 1). Currently having 31 points (out of
42)
2017-05-17 12:35:25 Checking permissions of /home/admin/assess/include/tests_shells
2017-05-17 12:35:25 File permissions are OK
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Action: Performing tests from category: Shells
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Skipped test SHLL-6202 (Check console TTYs)
2017-05-17 12:35:25 Reason to skip: Incorrect guest OS (FreeBSD only)
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Performing test ID SHLL-6211 (Checking available and valid shells)
2017-05-17 12:35:25 Test: Searching for /etc/shells
2017-05-17 12:35:25 Result: Found /etc/shells file
2017-05-17 12:35:25 Test: Reading available shells from /etc/shells
2017-05-17 12:35:25 Found installed shell: /bin/sh
2017-05-17 12:35:25 Found installed shell: /bin/bash
2017-05-17 12:35:25 Found installed shell: /sbin/nologin
2017-05-17 12:35:25 Found installed shell: /usr/bin/tmsh
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Performing test ID SHLL-6220 (Checking available and valid shells)
2017-05-17 12:35:25 Test: Search for session timeout tools or settings in shell
2017-05-17 12:35:25 IsRunning: process 'timeoutd' not found
2017-05-17 12:35:25 IsRunning: process 'autolog' not found
2017-05-17 12:35:25 Result: could not find TMOUT setting in /etc/profile
2017-05-17 12:35:25 Result: could not find export, readonly or typeset -r in /etc/profile
2017-05-17 12:35:25 Result: could not find TMOUT setting in /etc/profile.d/*.sh
2017-05-17 12:35:25 Result: could not find export, readonly or typeset -r in /etc/profile
2017-05-17 12:35:25 Hardening: assigned partial number of hardening points (1 of 3). Currently having 32 points (out of
45)
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Performing test ID SHLL-6230 (Perform umask check for shell configurations)
2017-05-17 12:35:25 Result: file /etc/bashrc exists
2017-05-17 12:35:25 Result: found umask 002 in /etc/bashrc
2017-05-17 12:35:25 Result: umask 002 can be hardened
2017-05-17 12:35:25 Result: found umask 022 in /etc/bashrc
2017-05-17 12:35:25 Result: umask 022 can be hardened
2017-05-17 12:35:25 Hardening: assigned partial number of hardening points (1 of 3). Currently having 33 points (out of
48)
2017-05-17 12:35:25 Result: file /etc/bash.bashrc not found
2017-05-17 12:35:25 Result: file /etc/csh.cshrc exists
2017-05-17 12:35:25 Result: found umask 077 in /etc/csh.cshrc
2017-05-17 12:35:25 Result: umask 077 is considered a properly hardened value
2017-05-17 12:35:25 Result: found umask 077 in /etc/csh.cshrc
2017-05-17 12:35:25 Result: umask 077 is considered a properly hardened value
2017-05-17 12:35:25 Hardening: assigned partial number of hardening points (1 of 3). Currently having 34 points (out of
51)
2017-05-17 12:35:25 Result: file /etc/profile exists
2017-05-17 12:35:25 Result: found umask 002 in /etc/profile
2017-05-17 12:35:25 Result: umask 002 can be hardened Comment [10]: Easy fix.
2017-05-17 12:35:25 Result: found umask 022 in /etc/profile
2017-05-17 12:35:25 Result: umask 022 can be hardened
2017-05-17 12:35:25 Hardening: assigned partial number of hardening points (1 of 3). Currently having 35 points (out of
54)
2017-05-17 12:35:25 Checking permissions of /home/admin/assess/include/tests_filesystems
2017-05-17 12:35:25 File permissions are OK
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Action: Performing tests from category: File systems
2017-05-17 12:35:25 ===---------------------------------------------------------------===
2017-05-17 12:35:25 Performing test ID FILE-6310 (Checking /tmp, /home and /var directory)
2017-05-17 12:35:25 Test: Checking if /home is mounted separately or mounted on / file system
2017-05-17 12:35:25 Result: directory /home exists
2017-05-17 12:35:25 Result: /home not found in mount list. Directory most likely stored on / file system
2017-05-17 12:35:25 Suggestion: To decrease the impact of a full /home file system, place /home on a separated partition
[test:FILE-6310] [details:-] [solution:-]
2017-05-17 12:35:26 Hardening: assigned partial number of hardening points (9 of 10). Currently having 44 points (out of
64)
2017-05-17 12:35:26 Test: Checking if /tmp is mounted separately or mounted on / file system
2017-05-17 12:35:26 Result: directory /tmp exists
2017-05-17 12:35:26 Result: found /tmp as a separated mount point
2017-05-17 12:35:26 Hardening: assigned maximum number of hardening points for this item (10). Currently having 54
points (out of 74)
2017-05-17 12:35:26 Test: Checking if /var is mounted separately or mounted on / file system
2017-05-17 12:35:26 Result: directory /var exists
2017-05-17 12:35:26 Result: found /var as a separated mount point
2017-05-17 12:35:26 Hardening: assigned maximum number of hardening points for this item (10). Currently having 64
points (out of 84)
2017-05-17 12:35:26 ===---------------------------------------------------------------===
2017-05-17 12:35:26 Performing test ID FILE-6311 (Checking LVM volume groups)
2017-05-17 12:35:26 Test: Checking for LVM volume groups
2017-05-17 12:35:26 Result: found one or more volume groups
2017-05-17 12:35:26 Found LVM volume group: vg-db-sda
2017-05-17 12:35:26 ===---------------------------------------------------------------===
2017-05-17 12:35:26 Performing test ID FILE-6312 (Checking LVM volumes)
2017-05-17 12:35:26 Test: Checking for LVM volumes
2017-05-17 12:35:27 Result: found one or more volumes
2017-05-17 12:35:27 Found LVM volume: app.ASWADB.set.1.mysqldb
2017-05-17 12:35:27 Found LVM volume: app.ASWADB.set.2.mysqldb
2017-05-17 12:35:27 Found LVM volume: app.asm.dat.asmdata1
2017-05-17 12:35:27 Found LVM volume: app.avr.dat.avrdata
2017-05-17 12:35:27 Test: check proc mount with incorrect mount options
2017-05-17 12:35:27 Hardening: assigned partial number of hardening points (0 of 3). Currently having 64 points (out of
87)
2017-05-17 12:35:27 Result: /proc filesystem is not mounted with option hidepid=1 or hidepid=2
2017-05-17 12:35:27 ===---------------------------------------------------------------===
2017-05-17 12:35:27 Performing test ID FILE-6354 (Searching for old files in /tmp)
2017-05-17 12:35:27 Test: Searching for old files in /tmp
2017-05-17 12:35:27 Result: no files found in /tmp which are older than 3 months
2017-05-17 12:35:27 ===---------------------------------------------------------------===
2017-05-17 12:35:27 Performing test ID FILE-6362 (Checking /tmp sticky bit)
2017-05-17 12:35:27 Result: sticky bit found on /tmp directory
2017-05-17 12:35:27 Hardening: assigned maximum number of hardening points for this item (3). Currently having 67 points
(out of 90)
2017-05-17 12:35:27 ===---------------------------------------------------------------===
2017-05-17 12:35:27 Performing test ID FILE-6368 (Checking ACL support on root file system)
2017-05-17 12:35:27 Test: Checking acl option on ext[2-4] root file system
2017-05-17 12:35:27 Result: mount point probably mounted with defaults
2017-05-17 12:35:27 Test: Checking device which holds root file system
2017-05-17 12:35:27 Result: found /dev/root
2017-05-17 12:35:27 Test: Checking default options on /dev/root
2017-05-17 12:35:28 Result: no ACL option found in default mount options list
2017-05-17 12:35:28 Test: Checking acl option on xfs root file system
2017-05-17 12:35:28 Result: ACL option enabled on root file system
2017-05-17 12:35:28 Hardening: assigned maximum number of hardening points for this item (3). Currently having 70 points
(out of 93)
2017-05-17 12:35:28 ===---------------------------------------------------------------===
2017-05-17 12:35:28 Performing test ID FILE-6372 (Checking / mount options)
2017-05-17 12:35:28 Result: mount system / is configured with options: defaults,noatime
2017-05-17 12:35:28 ===---------------------------------------------------------------===
2017-05-17 12:35:28 Performing test ID FILE-6374 (Checking /boot mount options)
2017-05-17 12:35:28 Result: file system /boot not found in /etc/fstab
2017-05-17 12:35:28 File system: /dev/shm
2017-05-17 12:35:28 Expected flags: nosuid nodev noexec
2017-05-17 12:35:28 Found flags: defaults noatime
2017-05-17 12:35:28 Result: Could not find mount option nosuid on file system /dev/shm
2017-05-17 12:35:28 Result: Could not find mount option nodev on file system /dev/shm
2017-05-17 12:35:28 Result: Could not find mount option noexec on file system /dev/shm
2017-05-17 12:35:28 Result: marked /dev/shm options as non default (unclear about hardening)
2017-05-17 12:35:28 Hardening: assigned partial number of hardening points (4 of 5). Currently having 74 points (out of
98)
2017-05-17 12:35:28 Result: file system /home not found in /etc/fstab
2017-05-17 12:35:28 Result: file system /tmp not found in /etc/fstab
2017-05-17 12:35:28 File system: /var
2017-05-17 12:35:28 Expected flags: nosuid
2017-05-17 12:35:28 Found flags: defaults noatime noexec
2017-05-17 12:35:28 Result: Could not find mount option nosuid on file system /var
2017-05-17 12:35:28 Result: marked /var options as non default (unclear about hardening)
2017-05-17 12:35:28 Hardening: assigned partial number of hardening points (4 of 5). Currently having 78 points (out of
103)
2017-05-17 12:35:28 File system: /var/log
2017-05-17 12:35:28 Expected flags: nodev noexec nosuid
2017-05-17 12:35:28 Found flags: defaults noatime
2017-05-17 12:35:28 Result: Could not find mount option nodev on file system /var/log
2017-05-17 12:35:28 Result: Could not find mount option noexec on file system /var/log Comment [11]: Really easy to alter or delete
2017-05-17 12:35:28 Result: Could not find mount option nosuid on file system /var/log logs by user without elevated rights. Priority #1 for an
2017-05-17 12:35:28 Result: marked /var/log options as non default (unclear about hardening)
attacker to cover his tracks.
2017-05-17 12:35:28 Hardening: assigned partial number of hardening points (4 of 5). Currently having 82 points (out of
108)
2017-05-17 12:35:28 Result: file system /var/log/audit not found in /etc/fstab
2017-05-17 12:35:28 Result: file system /var/tmp not found in /etc/fstab
2017-05-17 12:35:28 ===---------------------------------------------------------------===
2017-05-17 12:35:28 Performing test ID FILE-6376 (Determine if /var/tmp is bound to /tmp)
2017-05-17 12:35:28 Result: no mount point /var/tmp or expected options found
2017-05-17 12:35:28 ===---------------------------------------------------------------===
2017-05-17 12:35:28 Skipped test FILE-6410 (Checking Locate database)
2017-05-17 12:35:28 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:28 ===---------------------------------------------------------------===
2017-05-17 12:35:28 Performing test ID FILE-6430 (Disable mounting of some filesystems)
2017-05-17 12:35:28 Result: found module support in kernel: insmod /lib/modules/3.10.0-
327.36.3.el7.x86_64/kernel/fs/cramfs/cramfs.ko
2017-05-17 12:35:28 Test: Checking if cramfs is active
2017-05-17 12:35:28 Result: module cramfs is not loaded in the kernel
2017-05-17 12:35:28 Hardening: assigned partial number of hardening points (2 of 3). Currently having 84 points (out of
111)
2017-05-17 12:35:28 Hardening: assigned maximum number of hardening points for this item (3). Currently having 87 points
(out of 114)
2017-05-17 12:35:28 Hardening: assigned maximum number of hardening points for this item (3). Currently having 90 points
(out of 117)
2017-05-17 12:35:28 Hardening: assigned maximum number of hardening points for this item (3). Currently having 93 points
(out of 120)
2017-05-17 12:35:28 Hardening: assigned maximum number of hardening points for this item (3). Currently having 96 points
(out of 123)
2017-05-17 12:35:28 Result: found module support in kernel: insmod /lib/modules/3.10.0-
327.36.3.el7.x86_64/kernel/fs/squashfs/squashfs.ko
2017-05-17 12:35:28 Test: Checking if squashfs is active
2017-05-17 12:35:28 Result: module squashfs is not loaded in the kernel
2017-05-17 12:35:28 Hardening: assigned partial number of hardening points (2 of 3). Currently having 98 points (out of
126)
2017-05-17 12:35:29 Result: found module support in kernel: insmod /lib/modules/3.10.0-
327.36.3.el7.x86_64/kernel/fs/udf/udf.ko
2017-05-17 12:35:53 Note: some tools put an interface into promiscuous mode, to capture/log network traffic
2017-05-17 12:35:53 Result: Promiscuous interface: pf2-1
2017-05-17 12:35:53 Warning: Found promiscuous interface (pf2-1) [test:NETW-3015] [details:-] [solution:-]
2017-05-17 12:35:53 Note: some tools put an interface into promiscuous mode, to capture/log network traffic
2017-05-17 12:35:53 Result: Promiscuous interface: pf2-2
2017-05-17 12:35:53 Warning: Found promiscuous interface (pf2-2) [test:NETW-3015] [details:-] [solution:-]
2017-05-17 12:35:53 Note: some tools put an interface into promiscuous mode, to capture/log network traffic
2017-05-17 12:35:53 ===---------------------------------------------------------------===
2017-05-17 12:35:53 Performing test ID NETW-3028 (Checking connections in WAIT state)
2017-05-17 12:35:53 Test: Using netstat for check for connections in WAIT state
2017-05-17 12:35:53 Result: currently 83 connections are in a waiting state (max configured: 5000).
2017-05-17 12:35:53 Result: 83 connections are in WAIT state
2017-05-17 12:35:53 ===---------------------------------------------------------------===
2017-05-17 12:35:53 Performing test ID NETW-3030 (Checking DHCP client status)
2017-05-17 12:35:53 IsRunning: process 'dhclient' not found
2017-05-17 12:35:53 IsRunning: process 'dhcpd' not found
2017-05-17 12:35:53 ===---------------------------------------------------------------===
2017-05-17 12:35:53 Performing test ID NETW-3032 (Checking for ARP monitoring software)
2017-05-17 12:35:53 IsRunning: process 'arpwatch' not found
2017-05-17 12:35:53 IsRunning: process 'arpon' not found
2017-05-17 12:35:53 Suggestion: Consider running ARP monitoring software (arpwatch,arpon) [test:NETW-3032] [details:-]
[solution:-]
2017-05-17 12:35:53 Checking permissions of /home/admin/assess/include/tests_printers_spools
2017-05-17 12:35:53 File permissions are OK
2017-05-17 12:35:53 ===---------------------------------------------------------------===
2017-05-17 12:35:53 Action: Performing tests from category: Printers and Spools
2017-05-17 12:35:53 ===---------------------------------------------------------------===
2017-05-17 12:35:53 Skipped test PRNT-2302 (Check for printcap consistency)
2017-05-17 12:35:53 Reason to skip: Incorrect guest OS (FreeBSD only)
2017-05-17 12:35:53 ===---------------------------------------------------------------===
2017-05-17 12:35:53 Performing test ID PRNT-2304 (Check cupsd status)
2017-05-17 12:35:53 Test: Checking cupsd status
2017-05-17 12:35:53 IsRunning: process 'cupsd' not found
2017-05-17 12:35:53 Result: cups daemon not running, cups daemon tests skipped
2017-05-17 12:35:53 ===---------------------------------------------------------------===
2017-05-17 12:35:53 Skipped test PRNT-2306 (Check CUPSd configuration file)
2017-05-17 12:35:53 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:53 ===---------------------------------------------------------------===
2017-05-17 12:35:53 Skipped test PRNT-2307 (Check CUPSd configuration file permissions)
2017-05-17 12:35:53 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:53 ===---------------------------------------------------------------===
2017-05-17 12:35:53 Skipped test PRNT-2308 (Check CUPSd network configuration)
2017-05-17 12:35:53 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:53 ===---------------------------------------------------------------===
2017-05-17 12:35:53 Performing test ID PRNT-2314 (Check lpd status)
2017-05-17 12:35:55 Hardening: assigned partial number of hardening points (2 of 3). Currently having 124 points (out of
160)
2017-05-17 12:35:55 Suggestion: Install Apache modsecurity to guard webserver against web application attacks
[test:HTTP-6643] [details:-] [solution:-]
2017-05-17 12:35:55 ===---------------------------------------------------------------===
2017-05-17 12:35:55 Performing test ID HTTP-6702 (Check nginx process)
2017-05-17 12:35:55 Test: searching running nginx process
2017-05-17 12:35:55 Result: no running nginx process found
2017-05-17 12:35:55 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Skipped test HTTP-6704 (Check nginx configuration file)
2017-05-17 12:35:56 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:56 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Skipped test HTTP-6706 (Check for additional nginx configuration files)
2017-05-17 12:35:56 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:56 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Skipped test HTTP-6708 (Check discovered nginx configuration settings)
2017-05-17 12:35:56 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:56 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Skipped test HTTP-6710 (Check nginx SSL configuration settings)
2017-05-17 12:35:56 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:56 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Skipped test HTTP-6712 (Check nginx access logging)
2017-05-17 12:35:56 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:56 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Skipped test HTTP-6714 (Check for missing error logs in nginx)
2017-05-17 12:35:56 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:56 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Skipped test HTTP-6716 (Check for debug mode on error log in nginx)
2017-05-17 12:35:56 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:56 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Skipped test HTTP-6720 (Check Nginx log files)
2017-05-17 12:35:56 Reason to skip: Prerequisities not met (ie missing tool, other type of Linux distribution)
2017-05-17 12:35:56 Checking permissions of /home/admin/assess/include/tests_ssh
2017-05-17 12:35:56 File permissions are OK
2017-05-17 12:35:56 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Action: Performing tests from category: SSH Support
2017-05-17 12:35:56 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Performing test ID SSH-7402 (Check for running SSH daemon)
2017-05-17 12:35:56 Test: Searching for a SSH daemon
2017-05-17 12:35:56 IsRunning: process 'sshd' found ( 3910 ? Ss 0:00 /usr/sbin/sshd
31309 ? Ss 0:00 sshd: admin@pts/0)
2017-05-17 12:35:56 Action: created temporary file /tmp/assess.C3UnHl5Pvf
2017-05-17 12:35:56 ===---------------------------------------------------------------===
2017-05-17 12:35:56 Performing test ID SSH-7404 (Check SSH daemon file location)
2017-05-17 12:35:56 Test: searching for sshd_config file
2017-05-17 12:35:56 Result: SSH option IgnoreRhosts is in a weak configuration state and should be fixed
2017-05-17 12:35:56 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:IgnoreRhosts (NO --> YES)]
[solution:-]
2017-05-17 12:35:56 Hardening: assigned partial number of hardening points (0 of 3). Currently having 134 points (out of
178)
2017-05-17 12:35:56 Test: Checking LoginGraceTime in /tmp/assess.C3UnHl5Pvf
2017-05-17 12:35:56 Result: Option LoginGraceTime found
2017-05-17 12:35:56 Result: Option LoginGraceTime value is 120
2017-05-17 12:35:56 Result: SSH option LoginGraceTime is configured very well
2017-05-17 12:35:56 Hardening: assigned maximum number of hardening points for this item (3). Currently having 137
points (out of 181)
2017-05-17 12:35:56 Test: Checking LogLevel in /tmp/assess.C3UnHl5Pvf
2017-05-17 12:35:56 Result: Option LogLevel found
2017-05-17 12:35:56 Result: Option LogLevel value is INFO
2017-05-17 12:35:56 Result: SSH option LogLevel is configured reasonably
2017-05-17 12:35:56 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:LogLevel (INFO -->
VERBOSE)] [solution:-]
2017-05-17 12:35:56 Hardening: assigned partial number of hardening points (1 of 3). Currently having 138 points (out of
184)
2017-05-17 12:35:56 Test: Checking MaxAuthTries in /tmp/assess.C3UnHl5Pvf
2017-05-17 12:35:56 Result: Option MaxAuthTries found
2017-05-17 12:35:56 Result: Option MaxAuthTries value is 6
2017-05-17 12:35:56 Result: SSH option MaxAuthTries is in a weak configuration state and should be fixed
2017-05-17 12:35:56 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:MaxAuthTries (6 --> 2)]
[solution:-]
2017-05-17 12:35:56 Hardening: assigned partial number of hardening points (0 of 3). Currently having 138 points (out of
187)
2017-05-17 12:35:56 Test: Checking MaxSessions in /tmp/assess.C3UnHl5Pvf
2017-05-17 12:35:56 Result: Option MaxSessions found
2017-05-17 12:35:56 Result: Option MaxSessions value is 10
2017-05-17 12:35:56 Result: SSH option MaxSessions is in a weak configuration state and should be fixed
2017-05-17 12:35:56 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:MaxSessions (10 --> 2)]
[solution:-]
2017-05-17 12:35:57 Hardening: assigned partial number of hardening points (0 of 3). Currently having 138 points (out of
190)
2017-05-17 12:35:57 Test: Checking PermitRootLogin in /tmp/assess.C3UnHl5Pvf
2017-05-17 12:35:57 Result: Option PermitRootLogin found
2017-05-17 12:35:57 Result: Option PermitRootLogin value is YES
2017-05-17 12:35:57 Result: SSH option PermitRootLogin is in a weak configuration state and should be fixed
2017-05-17 12:35:57 Suggestion: Consider hardening SSH configuration [test:SSH-7408] [details:PermitRootLogin (YES -->
NO)] [solution:-]
2017-05-17 12:35:57 Hardening: assigned partial number of hardening points (0 of 3). Currently having 138 points (out of
193)
2017-05-17 12:35:57 Test: Checking PermitUserEnvironment in /tmp/assess.C3UnHl5Pvf
2017-05-17 12:35:57 Result: Option PermitUserEnvironment found
2017-05-17 12:36:03 Result: Found only 0 key words (5 or more suggested), to warn unauthorized users and could be
increased
2017-05-17 12:36:03 Suggestion: Add a legal banner to /etc/issue, to warn unauthorized users [test:BANN-7126] [details:-
] [solution:-]
2017-05-17 12:36:03 Hardening: assigned partial number of hardening points (0 of 1). Currently having 175 points (out of
246)
2017-05-17 12:36:03 ===---------------------------------------------------------------===
2017-05-17 12:36:03 Performing test ID BANN-7128 (Check issue.net banner file)
2017-05-17 12:36:03 Test: Checking file /etc/issue.net
2017-05-17 12:36:03 Result: file /etc/issue.net exists
2017-05-17 12:36:03 ===---------------------------------------------------------------===
2017-05-17 12:36:03 Performing test ID BANN-7130 (Check issue.net banner file contents)
2017-05-17 12:36:03 Test: Checking file /etc/issue.net contents for legal key words
2017-05-17 12:36:03 Result: Found only 0 key words, to warn unauthorized users and could be increased
2017-05-17 12:36:03 Suggestion: Add legal banner to /etc/issue.net, to warn unauthorized users [test:BANN-7130]
[details:-] [solution:-]
2017-05-17 12:36:03 Hardening: assigned partial number of hardening points (0 of 1). Currently having 175 points (out of
247)
2017-05-17 12:36:03 Checking permissions of /home/admin/assess/include/tests_scheduling
2017-05-17 12:36:03 File permissions are OK
2017-05-17 12:36:03 ===---------------------------------------------------------------===
2017-05-17 12:36:03 Action: Performing tests from category: Scheduled tasks
2017-05-17 12:36:03 ===---------------------------------------------------------------===
2017-05-17 12:36:03 Performing test ID SCHD-7702 (Check status of cron daemon)
2017-05-17 12:36:03 Result: no cron daemon found
2017-05-17 12:36:03 Hardening: assigned maximum number of hardening points for this item (3). Currently having 178
points (out of 250)
2017-05-17 12:36:03 ===---------------------------------------------------------------===
2017-05-17 12:36:03 Performing test ID SCHD-7704 (Check crontab/cronjobs)
2017-05-17 12:36:03 Test: checking directory /etc/cron.d
2017-05-17 12:36:03 Test: check if we can access /etc/cron.d (escaped: /etc/cron.d)
2017-05-17 12:36:03 Result: file is owned by our current user ID (0), checking if it is readable
2017-05-17 12:36:03 Result: file /etc/cron.d is readable (or directory accessible).
2017-05-17 12:36:03 Result: found directory /etc/cron.d
2017-05-17 12:36:03 Test: searching files in /etc/cron.d
2017-05-17 12:36:03 Result: found one or more files in /etc/cron.d. Analyzing files..
2017-05-17 12:36:03 Result: Found cronjob (/etc/cron.d/adm_logrotate): */5,*,*,*,*,root,nice,-n,19,ionice,-
c,3,/usr/sbin/logrotate,-s,/var/lib/logrotate-adm.status,/etc/adm/adm_logrotate.conf
2017-05-17 12:36:03 Result: Found cronjob (/etc/cron.d/asm_logrotate.cron): */5,*,*,*,*,root,nice,-n,19,ionice,-
c,3,/usr/share/ts/bin/asm_logrotate
2017-05-17 12:36:04 Result: Found cronjob (/etc/cron.d/sysstat): */5,*,*,*,*,root,/usr/lib64/sa/sa1,1,1
2017-05-17 12:36:04 Result: Found cronjob (/etc/cron.d/monitors_logrotate): */5,*,*,*,*,root,nice,-n,19,ionice,-
c,3,/usr/sbin/logrotate,-s,/var/lib/logrotate-monitors.status,/etc/monitors/monitors_logrotate.conf
2017-05-17 12:36:04 Result: Found cronjob (/etc/cron.d/0hourly): 01,*,*,*,*,root,run-parts,/etc/cron.hourly
2017-05-17 12:36:04 Result: done with analyzing files in /etc/cron.d
2017-05-17 12:36:04 Remark: Possibly there is another location where the accounting data is stored
2017-05-17 12:36:04 Suggestion: Enable process accounting [test:ACCT-9622] [details:-] [solution:-]
2017-05-17 12:36:04 Hardening: assigned partial number of hardening points (2 of 3). Currently having 180 points (out of
253)
2017-05-17 12:36:04 ===---------------------------------------------------------------===
2017-05-17 12:36:04 Performing test ID ACCT-9626 (Check for sysstat accounting data)
2017-05-17 12:36:04 Test: check /etc/default/sysstat presence
2017-05-17 12:36:04 Result: sysstat enabled via /etc/cron.d/sysstat
2017-05-17 12:36:04 ===---------------------------------------------------------------===
2017-05-17 12:36:04 Performing test ID ACCT-9628 (Check for auditd)
2017-05-17 12:36:04 Test: Check auditd status
2017-05-17 12:36:04 IsRunning: process 'auditd' found ( 3617 ? S<sl 0:21 auditd)
2017-05-17 12:36:04 Result: auditd running
2017-05-17 12:36:04 Hardening: assigned maximum number of hardening points for this item (4). Currently having 184
points (out of 257)
2017-05-17 12:36:04 ===---------------------------------------------------------------===
2017-05-17 12:36:04 Performing test ID ACCT-9630 (Check for auditd rules)
2017-05-17 12:36:04 Test: Checking auditd rules
2017-05-17 12:36:05 Result: auditd rules empty
2017-05-17 12:36:05 Hardening: assigned partial number of hardening points (0 of 2). Currently having 184 points (out of
259)
2017-05-17 12:36:05 Suggestion: Audit daemon is enabled with an empty ruleset. Disable the daemon or define rules
[test:ACCT-9630] [details:-] [solution:-]
2017-05-17 12:36:05 ===---------------------------------------------------------------===
2017-05-17 12:36:05 Performing test ID ACCT-9632 (Check for auditd configuration file)
2017-05-17 12:36:05 Test: Checking auditd configuration file
2017-05-17 12:36:05 Result: /etc/auditd.conf not found
2017-05-17 12:36:05 Result: Found /etc/audit/auditd.conf
2017-05-17 12:36:05 ===---------------------------------------------------------------===
2017-05-17 12:36:05 Performing test ID ACCT-9634 (Check for auditd log file)
2017-05-17 12:36:05 Test: Checking auditd log file
2017-05-17 12:36:05 Result: log file is defined
2017-05-17 12:36:05 Defined value: /var/log/auditd/audit.log
2017-05-17 12:36:05 Result: log file /var/log/auditd/audit.log exists on disk
2017-05-17 12:36:05 ===---------------------------------------------------------------===
2017-05-17 12:36:05 Performing test ID ACCT-9636 (Check for Snoopy wrapper and logger)
2017-05-17 12:36:05 ===---------------------------------------------------------------===
2017-05-17 12:36:05 Skipped test ACCT-9650 (Check Solaris audit daemon)
2017-05-17 12:36:05 Reason to skip: Incorrect guest OS (Solaris only)
2017-05-17 12:36:05 ===---------------------------------------------------------------===
2017-05-17 12:36:05 Skipped test ACCT-9652 (Check auditd SMF status)
2017-05-17 12:36:05 Reason to skip: Incorrect guest OS (Solaris only)
2017-05-17 12:36:05 ===---------------------------------------------------------------===
2017-05-17 12:36:05 Skipped test ACCT-9654 (Check BSM auditing in /etc/system)
2017-05-17 12:36:05 Reason to skip: Incorrect guest OS (Solaris only)
2017-05-17 12:36:06 Performing test ID TIME-3116 (Check peers with stratum value of 16)
2017-05-17 12:36:06 Test: Checking stratum 16 sources from ntpq peers list
2017-05-17 12:36:06 Result: All peers are lower than stratum 16
2017-05-17 12:36:06 ===---------------------------------------------------------------===
2017-05-17 12:36:06 Performing test ID TIME-3120 (Check unreliable NTP peers)
2017-05-17 12:36:06 Test: Checking unreliable ntp peers
2017-05-17 12:36:06 Result: No unreliable peers found
2017-05-17 12:36:06 ===---------------------------------------------------------------===
2017-05-17 12:36:06 Performing test ID TIME-3124 (Check selected time source)
2017-05-17 12:36:06 Test: Checking selected time source
2017-05-17 12:36:06 Result: Found selected time source (value: 172.16.100.81)
2017-05-17 12:36:06 ===---------------------------------------------------------------===
2017-05-17 12:36:06 Performing test ID TIME-3128 (Check preferred time source)
2017-05-17 12:36:06 Test: Checking preferred time source
2017-05-17 12:36:06 Result: Found one or more candidates to synchronize time with.
2017-05-17 12:36:06 Candidate found: 172.16.100.82
2017-05-17 12:36:06 ===---------------------------------------------------------------===
2017-05-17 12:36:06 Performing test ID TIME-3132 (Check NTP falsetickers)
2017-05-17 12:36:06 Test: Checking preferred time source
2017-05-17 12:36:06 Result: No falsetickers found (items preceeding with an 'x')
2017-05-17 12:36:06 ===---------------------------------------------------------------===
2017-05-17 12:36:06 Performing test ID TIME-3136 (Check NTP protocol version)
2017-05-17 12:36:06 Test: Checking NTP protocol version (ntpq -c ntpversion)
2017-05-17 12:36:06 Result: Found NTP version 2
2017-05-17 12:36:06 ===---------------------------------------------------------------===
2017-05-17 12:36:06 Performing test ID TIME-3148 (Check TZ variable)
2017-05-17 12:36:06 Test: testing for TZ variable
2017-05-17 12:36:06 Result: found TZ variable with value notset
2017-05-17 12:36:06 ===---------------------------------------------------------------===
2017-05-17 12:36:06 Performing test ID TIME-3160 (Check empty NTP step-tickers)
2017-05-17 12:36:06 Result: /etc/ntp/step-tickers is not empty, which is fine
2017-05-17 12:36:06 Result: 172.16.100.81 does NOT exist in /etc/ntp/step-tickers
2017-05-17 12:36:06 Result: 172.16.100.82 does NOT exist in /etc/ntp/step-tickers
2017-05-17 12:36:06 Suggestion: Some time servers missing in step-tickers file [test:TIME-3160] [details:-] [solution:-]
2017-05-17 12:36:06 Hardening: assigned partial number of hardening points (3 of 4). Currently having 190 points (out of
266)
2017-05-17 12:36:06 Information: step-tickers is used by ntpdate where as ntp.conf is the configuration file for the
ntpd daemon. ntpdate is initially run to set the clock before ntpd to make sure time is within 1000 sec.
2017-05-17 12:36:06 Risk: ntp will not run at boot if the time difference between the server and client by more then
1000 sec.
2017-05-17 12:36:06 ===---------------------------------------------------------------===
2017-05-17 12:36:06 Performing test ID TIME-3170 (Check configuration files)
2017-05-17 12:36:06 Result: found /etc/ntp.conf
2017-05-17 12:36:06 Warning: Found world writable configuration file [test:TIME-3170] [details:/etc/ntp.conf]
[solution:]
2017-05-17 12:36:10 Hardening: assigned partial number of hardening points (0 of 1). Currently having 193 points (out of
280)
2017-05-17 12:36:10 Result: sysctl key fs.protected_symlinks has a different value than expected in scan profile.
Expected=1, Real=0
2017-05-17 12:36:10 Hardening: assigned partial number of hardening points (0 of 1). Currently having 193 points (out of
281)
2017-05-17 12:36:10 Result: sysctl key fs.suid_dumpable contains equal expected and current value (0)
2017-05-17 12:36:10 Hardening: assigned maximum number of hardening points for this item (1). Currently having 194
points (out of 282)
2017-05-17 12:36:10 Result: key hw.kbd.keymap_restrict_change does not exist on this machine
2017-05-17 12:36:10 Result: key kern.sugid_coredump does not exist on this machine
2017-05-17 12:36:11 Result: key kernel.core_setuid_ok does not exist on this machine
2017-05-17 12:36:11 Result: sysctl key kernel.core_uses_pid has a different value than expected in scan profile.
Expected=1, Real=0
2017-05-17 12:36:11 Hardening: assigned partial number of hardening points (0 of 1). Currently having 194 points (out of
283)
2017-05-17 12:36:11 Result: sysctl key kernel.ctrl-alt-del contains equal expected and current value (0)
2017-05-17 12:36:11 Hardening: assigned maximum number of hardening points for this item (1). Currently having 195
points (out of 284)
2017-05-17 12:36:11 Result: key kernel.exec-shield-randomize does not exist on this machine
2017-05-17 12:36:11 Result: key kernel.exec-shield does not exist on this machine
2017-05-17 12:36:11 Result: sysctl key kernel.kptr_restrict has a different value than expected in scan profile.
Expected=2, Real=0
2017-05-17 12:36:11 Hardening: assigned partial number of hardening points (0 of 1). Currently having 195 points (out of
285)
2017-05-17 12:36:11 Result: key kernel.maps_protect does not exist on this machine
2017-05-17 12:36:11 Result: sysctl key kernel.randomize_va_space contains equal expected and current value (2)
2017-05-17 12:36:11 Hardening: assigned maximum number of hardening points for this item (1). Currently having 196
points (out of 286)
2017-05-17 12:36:11 Result: key kernel.suid_dumpable does not exist on this machine
2017-05-17 12:36:11 Result: sysctl key kernel.sysrq contains equal expected and current value (0)
2017-05-17 12:36:11 Hardening: assigned maximum number of hardening points for this item (1). Currently having 197
points (out of 287)
2017-05-17 12:36:11 Result: key kernel.use-nx does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.icmp.bmcastecho does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.icmp.drop_redirect does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.icmp.rediraccept does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.icmp.timestamp does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.ip.accept_sourceroute does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.ip.check_interface does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.ip.forwarding does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.ip.linklocal.in.allowbadttl does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.ip.process_options does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.ip.random_id does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.ip.redirect does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.ip.sourceroute does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.ip6.redirect does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.tcp.always_keepalive does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.tcp.blackhole does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.tcp.drop_synfin does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.tcp.icmp_may_rst does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.tcp.nolocaltimewait does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.tcp.path_mtu_discovery does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet.udp.blackhole does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet6.icmp6.rediraccept does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet6.ip6.forwarding does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet6.ip6.fw.enable does not exist on this machine
2017-05-17 12:36:11 Result: key net.inet6.ip6.redirect does not exist on this machine
2017-05-17 12:36:11 Result: sysctl key net.ipv4.conf.all.accept_redirects has a different value than expected in scan
profile. Expected=0, Real=1
2017-05-17 12:36:11 Hardening: assigned partial number of hardening points (0 of 1). Currently having 197 points (out of
288)
2017-05-17 12:36:11 Result: sysctl key net.ipv4.conf.all.accept_source_route contains equal expected and current value
(0)
2017-05-17 12:36:11 Hardening: assigned maximum number of hardening points for this item (1). Currently having 198
points (out of 289)
2017-05-17 12:36:11 Result: sysctl key net.ipv4.conf.all.bootp_relay contains equal expected and current value (0)
2017-05-17 12:36:11 Hardening: assigned maximum number of hardening points for this item (1). Currently having 199
points (out of 290)
2017-05-17 12:36:11 Result: sysctl key net.ipv4.conf.all.forwarding contains equal expected and current value (0)
2017-05-17 12:36:11 Hardening: assigned maximum number of hardening points for this item (1). Currently having 200
points (out of 291)
2017-05-17 12:36:11 Result: sysctl key net.ipv4.conf.all.log_martians has a different value than expected in scan
profile. Expected=1, Real=0
2017-05-17 12:36:11 Hardening: assigned partial number of hardening points (0 of 1). Currently having 200 points (out of
292)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.conf.all.mc_forwarding contains equal expected and current value (0)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 201
points (out of 293)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.conf.all.proxy_arp contains equal expected and current value (0)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 202
points (out of 294)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.conf.all.rp_filter contains equal expected and current value (1)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 203
points (out of 295)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.conf.all.send_redirects has a different value than expected in scan
profile. Expected=0, Real=1
2017-05-17 12:36:12 Hardening: assigned partial number of hardening points (0 of 1). Currently having 203 points (out of
296)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.conf.default.accept_redirects has a different value than expected in
scan profile. Expected=0, Real=1
2017-05-17 12:36:12 Hardening: assigned partial number of hardening points (0 of 1). Currently having 203 points (out of
297)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.conf.default.accept_source_route contains equal expected and current
value (0)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 204
points (out of 298)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.conf.default.log_martians has a different value than expected in scan
profile. Expected=1, Real=0
2017-05-17 12:36:12 Hardening: assigned partial number of hardening points (0 of 1). Currently having 204 points (out of
299)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.icmp_echo_ignore_broadcasts contains equal expected and current value
(1)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 205
points (out of 300)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.icmp_ignore_bogus_error_responses contains equal expected and current
value (1)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 206
points (out of 301)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.tcp_syncookies contains equal expected and current value (1)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 207
points (out of 302)
2017-05-17 12:36:12 Result: sysctl key net.ipv4.tcp_timestamps has a different value than expected in scan profile.
Expected=0, Real=1
2017-05-17 12:36:12 Hardening: assigned partial number of hardening points (0 of 1). Currently having 207 points (out of
303)
2017-05-17 12:36:12 Result: sysctl key net.ipv6.conf.all.accept_redirects contains equal expected and current value (0)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 208
points (out of 304)
2017-05-17 12:36:12 Result: sysctl key net.ipv6.conf.all.accept_source_route contains equal expected and current value
(0)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 209
points (out of 305)
2017-05-17 12:36:12 Result: key net.ipv6.conf.all.send_redirects does not exist on this machine
2017-05-17 12:36:12 Result: sysctl key net.ipv6.conf.default.accept_redirects contains equal expected and current value
(0)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 210
points (out of 306)
2017-05-17 12:36:12 Result: sysctl key net.ipv6.conf.default.accept_source_route contains equal expected and current
value (0)
2017-05-17 12:36:12 Hardening: assigned maximum number of hardening points for this item (1). Currently having 211
points (out of 307)
2017-05-17 12:36:12 Result: key security.bsd.hardlink_check_gid does not exist on this machine
2017-05-17 12:36:12 Result: key security.bsd.hardlink_check_uid does not exist on this machine
2017-05-17 12:36:12 Result: key security.bsd.see_other_gids does not exist on this machine
2017-05-17 12:36:12 Result: key security.bsd.see_other_uids does not exist on this machine
2017-05-17 12:36:12 Result: key security.bsd.stack_guard_page does not exist on this machine
2017-05-17 12:36:12 Result: key security.bsd.unprivileged_proc_debug does not exist on this machine
2017-05-17 12:36:12 Result: key security.bsd.unprivileged_read_msgbuf does not exist on this machine
2017-05-17 12:36:12 Result: found 10 keys that can use tuning, according scan profile
2017-05-17 12:36:12 Suggestion: One or more sysctl values differ from the scan profile and could be tweaked [test:KRNL-
6000] [details:-] [solution:-]
2017-05-17 12:36:12 Checking permissions of /home/admin/assess/include/tests_hardening
2017-05-17 12:36:12 File permissions are OK
2017-05-17 12:36:12 ===---------------------------------------------------------------===
2017-05-17 12:36:12 Action: Performing tests from category: Hardening
2017-05-17 12:36:12 ===---------------------------------------------------------------===
2017-05-17 12:36:12 Performing test ID HRDN-7220 (Check if one or more compilers are installed)
2017-05-17 12:36:12 Test: Check if one or more compilers can be found on the system
2017-05-17 12:36:12 Result: found installed compiler. See top of logfile which compilers have been found or use
/bin/grep to filter on 'compiler'
2017-05-17 12:36:12 Hardening: assigned partial number of hardening points (1 of 3). Currently having 212 points (out of
310)
2017-05-17 12:36:12 ===---------------------------------------------------------------===
2017-05-17 12:36:12 Performing test ID HRDN-7222 (Check compiler permissions)
2017-05-17 12:36:12 Test: Check if one or more compilers can be found on the system
2017-05-17 12:36:12 Test: Check file permissions for as (Assembler)
2017-05-17 12:36:12 Binary: found /usr/bin/as (world executable)
2017-05-17 12:36:12 Hardening: assigned partial number of hardening points (2 of 3). Currently having 214 points (out of
313)
2017-05-17 12:36:12 Result: at least one compiler could be better hardened by restricting executable access to root or
group only
2017-05-17 12:36:12 Suggestion: Harden compilers like restricting access to root user only [test:HRDN-7222] [details:-]
[solution:-]
2017-05-17 12:36:12 ===---------------------------------------------------------------===
2017-05-17 12:36:12 Performing test ID HRDN-7230 (Check for malware scanner)
2017-05-17 12:36:12 Test: Check if a malware scanner is installed
2017-05-17 12:36:12 Result: no malware scanner found
2017-05-17 12:36:12 Suggestion: Harden the system by installing at least one malware scanner, to perform periodic file Comment [25]: Easy fix, no reason not to do
system scans [test:HRDN-7230] [details:-] [solution:Install a tool like rkhunter, chkrootkit, OSSEC] it.
2017-05-17 12:36:12 Hardening: assigned partial number of hardening points (1 of 3). Currently having 215 points (out of
316)
2017-05-17 12:36:12 Result: no malware scanner found
2017-05-17 12:36:12 ===---------------------------------------------------------------===
2017-05-17 12:36:12 Action: Performing tests from category: Custom Tests
2017-05-17 12:36:12 Test: Checking for tests_custom file
2017-05-17 12:36:12 ===---------------------------------------------------------------===
2017-05-17 12:36:12 Action: Performing plugin tests
2017-05-17 12:36:12 Result: Found 0 plugins of which 0 are enabled