March 31, 2010 · Security, Server · Email This Post

Sponsored Link
Buck-Security is a security scanner for Debian and Ubuntu Linux. It helps you to harden your system by running some important security checks. For example, it finds world-writable files and directories, setuid and setgid programs, superuser accounts, and installed attack tool packages. It also checks your umask and checks if the sticky bit is set for /tmp, among other checks.It was designed for Debian and Ubuntu servers, but can be useful for any Linux system.
By now the following tests are implemented:

* Searching for worldwriteable files
* Searching for worldwriteable directories
* Searching for programs where the setuid is set
* Searching for programs where the setgid is set
* Checking your umask
* Checking if the sticky-bit is set for /tmp
* Searching for superusers
* Checking firewall policies
* Checking if sshd is secured
* Creating and checking checksums of system programs
* Searching for installed attack tools packages

How to run Buck-security in Ubuntu servers

First you need to download latest version from here

unzip the the zip-file.

unzip buck-security_0.5.zip

To start the checks run the buck program (type ./buck while in the buck-security directory).

cd buck-security_0.5

sudo ./buck

For more information check buck security documentation

Sponsored Link

Incoming search terms:

Related posts

11 Comments to “Buck-security – Security scanner for Ubuntu Servers”

  1. Eli says:

    Very cool, thanks.

    [Reply]

  2. Raymond says:

    You need to use:
    sudo ./buck

    [Reply]

    admin Reply:

    Thank you and i have updated the article

    [Reply]

  3. xeros says:

    Great!
    I’ve missed something like that after I’ve migrated few years ago from Mandrake Linux (not Mandriva yet) to Ubuntu. There was something simmilar called msec. I’ve had to use few other applications which didn’t met my needs in 100%.

    [Reply]

  4. Raymond says:

    Your welcome ubuntugeek. ^_^

    [Reply]

  5. xeros says:

    Is there any plan in near future for repository with deb packages for Debian and Ubuntu?

    [Reply]

  6. uteck says:

    Does not seem to have as many features as Bastille which is in many repositories already.

    http://www.bastille-unix.org/

    [Reply]

  7. firefly says:

    Bastille is a complete different kind of program, you cant compare it to buck-security.

    Bastille is a great tool, but an automated hardening tool which changes your system settings. On the other side buck-security seems to be a very useful security scanner which scans for important things like worldwriteable files, dirs, suids, …

    Probably you should use both

    [Reply]

  8. @xeros:
    Yes there are plans to build a Debian package and put it in some Debian/Ubuntu repository. I hope to do this during the next months for the upcoming release 0.6.

    Will be announced on Twitter: http://twitter.com/bucksecurity

    [Reply]

  9. Slater86 says:

    Also sounds very similar to Tiger which is in the repository as well

    https://launchpad.net/ubuntu/+source/tiger

    [Reply]

  10. For differences between buck-security and other already existing security programs for linux (bastille, tiger, lynis, checksecurity, rkhunter, chkrootkit) please see

    http://www.buck-security.org/faq.html#diff

    [Reply]

Leave a Reply