套件:tiger(1:3.2.4~rc1-3.2) [debports]
security auditing and intrusion detection tools for Linux
TIGER, or the 'tiger' scripts, is a set of tools (Bourne shell scripts and C programs) which are used to perform a security audit of different operating systems components. The tools can be both run all at once to generate an audit report of the system and to detect elements that could be fixed when hardening it.
TIGER has one primary goal: report ways the system's security can be compromised.
Most of the tools are independent, but some of them rely on specialised external security tools such as John the Ripper, Chkroot and integrity check tools (like Tripwire, Integrit or Aide) to execute some tasks.
The same checks are also configured by default to run periodically and detect deviations or unauthorised changes. This makes it possible to used them also as a host intrusion detection mechanism. This review mechanism relies on the use of the cron task scheduler and an email delivery system to report errors and deviations.
This package provides all the security scripts and data files for Linux. A separate package is available providing the scripts for other operating systems so they can be run from a centralised repository.
The Linux scripts incorporate specific checks targetting the Debian OS including: md5sums checks of installed files, location of files not belonging to packages, and analysis of local listening processes.
Alternatives to TIGER available in Debian include lynis and ossec. If you are aiming for a small set of checks, try checksecurity, lsat or yasat.
其他與 tiger 有關的套件
|
|
|
|
-
- dep: binutils
- GNU assembler, linker and binary utilities
-
- dep: bsdutils (>= 3.0-0)
- basic utilities from 4.4BSD-Lite
-
- dep: debconf (>= 0.5)
- Debian 設定管理系統
- 或者 debconf-2.0
- 本虛擬套件由這些套件填實: cdebconf, cdebconf-udeb, debconf
-
- dep: debianutils (>= 1.8)
- Miscellaneous utilities specific to Debian
-
- dep: libc6.1 (>= 2.35)
- GNU C 函式庫:共用函式庫
同時作為一個虛擬套件由這些套件填實: libc6.1-udeb
-
- dep: lsb-release
- Linux Standard Base version reporting utility (minimal implementation)
-
- dep: net-tools
- NET-3 networking toolkit
-
- dep: ucf
- Update Configuration File(s): preserve user changes to config files
-
- rec: chkrootkit
- rootkit detector
-
- rec: default-mta
- 本虛擬套件由這些套件填實: exim4-daemon-light
- 或者 mail-transport-agent
- 本虛擬套件由這些套件填實: courier-mta, dma, esmtp-run, exim4-daemon-heavy, exim4-daemon-light, msmtp-mta, nullmailer, opensmtpd, postfix, sendmail-bin, ssmtp
-
- rec: john
- active password cracking tool