Lynis security controls
Controls
| Control | Category | Description |
|---|---|---|
| SQD-3602 | Squid | Determine Squid process status Lynis tests if Squid is running |
| SQD-3604 | Squid | Squid configuration file location This test determines where Squid has its configuration stored. |
| SQD-3606 | Squid | Squid version This test determines what version of Squid is available on the system. |
| SQD-3610 | Squid | Squid configuration options - |
| SQD-3613 | Squid | Squid configuration file permissions The configuration permissions of the Squid configuration file should be as strict as possible. By default it may be world readable, or worse. |
| SQD-3614 | Squid | Squid authentication Lynis retrieves the authentication methods that are configured within Squid. If none are found, the proxy may allow access from untrusted or unknown users. |
| SQD-3630 | Squid | Squid reply_body_max_size option Limit the upper size of replies within the Squid proxy configuration. This helps to protect resource exhaustion within Squid and thwart malicious attempts. |
| SQD-3680 | Squid | Squid version suppression This Lynis test determines if Squid may reveal its version |