Buck-security – Security scanner for Ubuntu Servers
Sponsored Link
By now the following tests are implemented:
* Searching for worldwriteable files
* Searching for worldwriteable directories
* Searching for programs where the setuid is set
* Searching for programs where the setgid is set
* Checking your umask
* Checking if the sticky-bit is set for /tmp
* Searching for superusers
* Checking firewall policies
* Checking if sshd is secured
* Creating and checking checksums of system programs
* Searching for installed attack tools packages
How to run Buck-security in Ubuntu servers
First you need to download latest version from here
unzip the the zip-file.
unzip buck-security_0.5.zip
To start the checks run the buck program (type ./buck while in the buck-security directory).
cd buck-security_0.5
sudo ./buck
For more information check buck security documentation
Very cool, thanks.
You need to use:
sudo ./buck
Thank you and i have updated the article
Great!
I’ve missed something like that after I’ve migrated few years ago from Mandrake Linux (not Mandriva yet) to Ubuntu. There was something simmilar called msec. I’ve had to use few other applications which didn’t met my needs in 100%.
Your welcome ubuntugeek. ^_^
Is there any plan in near future for repository with deb packages for Debian and Ubuntu?
Does not seem to have as many features as Bastille which is in many repositories already.
http://www.bastille-unix.org/
Bastille is a complete different kind of program, you cant compare it to buck-security.
Bastille is a great tool, but an automated hardening tool which changes your system settings. On the other side buck-security seems to be a very useful security scanner which scans for important things like worldwriteable files, dirs, suids, …
Probably you should use both
@xeros:
Yes there are plans to build a Debian package and put it in some Debian/Ubuntu repository. I hope to do this during the next months for the upcoming release 0.6.
Will be announced on Twitter: http://twitter.com/bucksecurity
Also sounds very similar to Tiger which is in the repository as well
https://launchpad.net/ubuntu/+source/tiger
For differences between buck-security and other already existing security programs for linux (bastille, tiger, lynis, checksecurity, rkhunter, chkrootkit) please see
http://www.buck-security.org/faq.html#diff