Tiger

Instal·lació

$ sudo apt-get install tiger

Funcionament

$ sudo tiger
Tiger UN*X security checking system
  Developed by Texas A&M University, 1994
  Updated by the Advanced Research Corporation, 1999-2002
  Further updated by Javier Fernandez-Sanguino, 2001-2010
  Contributions by Francisco Manuel Garcia Claramonte, 2009-2010
  Covered by the GNU General Public License (GPL)

Configuring...
 
Will try to check using config for 'x86_64' running Linux 2.6.32-17-pve...
--CONFIG-- [con005c] Using configuration files for Linux 2.6.32-17-pve. Using
           configuration files for generic Linux 2.
Tiger security scripts *** 3.2.3, 2008.09.10.09.30 ***
05:34> Beginning security report for virt02.ebretic.com.
05:34> Starting file systems scans in background...
05:34> Checking password files...
05:34> Checking group files...
05:34> Checking user accounts...
05:34> Checking .rhosts files...
05:34> Checking .netrc files...
05:34> Checking ttytab, securetty, and login configuration files...
05:34> Checking PATH settings...
05:34> Checking anonymous ftp setup...
05:34> Checking mail aliases...
05:34> Checking cron entries...
05:34> Checking 'services' configuration...
05:34> Checking NFS export entries...
05:34> Checking permissions and ownership of system files...
--CONFIG-- [con010c] Filesystem 'cgroup' used by 'beancounter' is not recognised as a valid filesystem
--CONFIG-- [con010c] Filesystem 'cgroup' used by 'container' is not recognised as a valid filesystem
--CONFIG-- [con010c] Filesystem 'cgroup' used by 'fairsched' is not recognised as a valid filesystem
05:34> Checking for indications of break-in...
--CONFIG-- [con010c] Filesystem 'cgroup' used by 'beancounter' is not recognised as a valid filesystem
--CONFIG-- [con010c] Filesystem 'cgroup' used by 'container' is not recognised as a valid filesystem
--CONFIG-- [con010c] Filesystem 'cgroup' used by 'fairsched' is not recognised as a valid filesystem
05:34> Performing rootkit checks...
05:34> Performing system specific checks...
05:34> Performing root directory checks...
05:34> Checking for secure backup devices...
05:34> Checking for the presence of log files...
05:34> Checking for the setting of user's umask...
05:34> Checking for listening processes...
05:34> Checking SSHD's configuration...
05:34> Checking the printers control file...
05:34> Checking ftpusers configuration...
05:34> Checking NTP configuration...
05:34> Waiting for filesystems scans to complete...
05:34> Filesystems scans completed...
05:34> Performing check of embedded pathnames...
05:34> Security report completed for virt02.ebretic.com.
Security report is in `/var/log/tiger/security.report.virt02.ebretic.com.121228-05:34'.  

Com podeu veure es genera un informe a la carpeta:

/var/log/tiger/

Vegeu també

• Seguretat
• pwck
• suid/setuid
• chkrootkit
• ICMP redirection messages
• Syn flooding attacks
• Source routing from incoming packets
• Martian packets

Enllaços externs

• http://www.thefanclub.co.za/how-to/how-secure-ubuntu-1204-lts-server-part-1-basics