Ubuntu Geek

Ubuntu Linux Tutorials,Howtos,Tips & News | Lunar Lobster , Mantic Minotaur

Buck-security – Security scanner for Ubuntu Servers

by · Published · Updated

Sponsored Link
Buck-Security is a security scanner for Debian and Ubuntu Linux. It helps you to harden your system by running some important security checks. For example, it finds world-writable files and directories, setuid and setgid programs, superuser accounts, and installed attack tool packages. It also checks your umask and checks if the sticky bit is set for /tmp, among other checks.It was designed for Debian and Ubuntu servers, but can be useful for any Linux system.
By now the following tests are implemented:

* Searching for worldwriteable files
* Searching for worldwriteable directories
* Searching for programs where the setuid is set
* Searching for programs where the setgid is set
* Checking your umask
* Checking if the sticky-bit is set for /tmp
* Searching for superusers
* Checking firewall policies
* Checking if sshd is secured
* Creating and checking checksums of system programs
* Searching for installed attack tools packages

How to run Buck-security in Ubuntu servers

First you need to download latest version from here

unzip the the zip-file.

unzip buck-security_0.5.zip

To start the checks run the buck program (type ./buck while in the buck-security directory).

cd buck-security_0.5

sudo ./buck

For more information check buck security documentation

Sponsored Link

Tags:

You may also like...

11 Responses

  1. Eli says:
    March 31, 2010 at 3:36 pm

    Very cool, thanks.

  2. Raymond says:
    March 31, 2010 at 3:40 pm

    You need to use:
    sudo ./buck

  3. admin says:
    March 31, 2010 at 3:46 pm

    Thank you and i have updated the article

  4. xeros says:
    March 31, 2010 at 4:00 pm

    Great!
    I’ve missed something like that after I’ve migrated few years ago from Mandrake Linux (not Mandriva yet) to Ubuntu. There was something simmilar called msec. I’ve had to use few other applications which didn’t met my needs in 100%.

  5. Raymond says:
    March 31, 2010 at 4:01 pm

    Your welcome ubuntugeek. ^_^

  6. xeros says:
    April 1, 2010 at 6:44 am

    Is there any plan in near future for repository with deb packages for Debian and Ubuntu?

  7. uteck says:
    April 2, 2010 at 12:27 pm

    Does not seem to have as many features as Bastille which is in many repositories already.

    http://www.bastille-unix.org/

  8. firefly says:
    April 5, 2010 at 11:08 am

    Bastille is a complete different kind of program, you cant compare it to buck-security.

    Bastille is a great tool, but an automated hardening tool which changes your system settings. On the other side buck-security seems to be a very useful security scanner which scans for important things like worldwriteable files, dirs, suids, …

    Probably you should use both

  9. maba4891 (buck-security developer) says:
    April 5, 2010 at 6:27 pm

    @xeros:
    Yes there are plans to build a Debian package and put it in some Debian/Ubuntu repository. I hope to do this during the next months for the upcoming release 0.6.

    Will be announced on Twitter: http://twitter.com/bucksecurity

  10. Slater86 says:
    April 7, 2010 at 5:04 am

    Also sounds very similar to Tiger which is in the repository as well

    https://launchpad.net/ubuntu/+source/tiger

  11. maba4891 (buck-security developer) says:
    April 13, 2010 at 9:38 am

    For differences between buck-security and other already existing security programs for linux (bastille, tiger, lynis, checksecurity, rkhunter, chkrootkit) please see

    http://www.buck-security.org/faq.html#diff

Leave a Reply

Your email address will not be published. Required fields are marked *