Lynis security controls


SHLL-6202ShellInsecure console

Consoles should be protected by only allowing access to single user mode by means of password authentication. Check consoles in /etc/ttys and adjust the related console with parameter 'secure' and mark them as 'insecure'.

SHLL-6220ShellIdle session handling

Depending on security requirements, idle sessions should be appropriately checked and dealt with.

SHLL-6290ShellShellshock vulnerability in Bash

When this control shows up, Bash is vulnerable for one or more Shellshock related issues.