Lynis security controls
Anti Denial of Service (DoS) module and protects against brute force attempts. This control is advised for systems running a webserver and those in particular which are available from public networks.
Module to protect against SlowLoris attack, especially useful for webservers which are available from public networks.
Module against spammers, useful for webservers which are available from public networks.
Module for webservers to act as a web application firewall.
|HTTP-6710||Web||SSL configuration in nginx|
To protect the privacy of users, including sniffing of sensitive data on networks, enable SSL/TLS in nginx.
|HTTP-6712||Web||Log file configuration in nginx|
For auditing purposes logging should be properly configured in nginx. Missing log files or disabled entries might result in losing valuable data for analytics and accounting.
|HTTP-6714||Web||Missing error logs in nginx|
This test searches for the presence of error logs.