[#VAL-80] Integrate security scan tool Lynis with validation framework

[VAL-80] Integrate security scan tool Lynis with validation framework Created: 30/Oct/19 Updated: 31/Dec/19 Resolved: 17/Dec/19
Status:	Done
Project:	Validation
Component/s:	None
Affects Version/s:	None
Fix Version/s:	None

Type:

Task

Priority:

Medium

Reporter:

Ken Yi

Assignee:

Naga Sugguna

Resolution:

Done

Votes:

Labels:

None

Remaining Estimate:

Not Specified

Time Spent:

Not Specified

Original Estimate:

Not Specified

Issue Links:

Relates
relates to	~~VAL-97~~	Create Security Tests and integrate t...	Done

Description

Lynis is one of the mandatory security scan tools required for Akraino projects. The goal of this task is to integrate Lynis into validation framework so Akraino projects can run as part of the project validation process.

Here is the link to the details about how to install/setup/run Lynis.

https://wiki.akraino.org/display/AK/Steps+To+Implement+Security+Requirements#StepsToImplementSecurityRequirements-Lynis

Comments

Comment by Cristina Pauna [ 12/Dec/19 ]

I agree with you to add the tests to the OS layer. In terms of where to run the tests, let's do just master node for now.

Comment by Naga Sugguna [ 11/Dec/19 ]

https://gerrit.akraino.org/r/c/validation/+/2119

Comment by Naga Sugguna [ 11/Dec/19 ]

Which layer do we keep this?
Do we execute these testcases on all the nodes of cluster or only master node?

Generated at Sat Feb 10 06:07:09 UTC 2024 using Jira 9.4.5#940005-sha1:e3094934eac4fd8653cf39da58f39364fb9cc7c1.

[VAL-80] Integrate security scan tool Lynis with validation framework Created: 30/Oct/19 Updated: 31/Dec/19 Resolved: 17/Dec/19