Lynis security controls
Controls
| Control | Category | Description |
|---|---|---|
| HTTP-6640 | Web | mod_evasive module Anti Denial of Service (DoS) module and protects against brute force attempts. This control is advised for systems running a webserver and those in particular which are available from public networks. |
| HTTP-6641 | Web | mod_qos module Module to protect against SlowLoris attack, especially useful for webservers which are available from public networks. |
| HTTP-6642 | Web | mod_spamhaus module Module against spammers, useful for webservers which are available from public networks. |
| HTTP-6643 | Web | mod_security module Module for webservers to act as a web application firewall. |
| HTTP-6710 | Web | SSL configuration in nginx To protect the privacy of users, including sniffing of sensitive data on networks, enable SSL/TLS in nginx. |
| HTTP-6712 | Web | Log file configuration in nginx For auditing purposes logging should be properly configured in nginx. Missing log files or disabled entries might result in losing valuable data for analytics and accounting. |
| HTTP-6714 | Web | Missing error logs in nginx This test searches for the presence of error logs. |