<?xml version="1.0"?>
<feed xmlns="http://www.w3.org/2005/Atom" xml:lang="fr">
	<id>https://wikiold.home.tartarefr.eu/index.php?action=history&amp;feed=atom&amp;title=Security%2FAudit%2FSectool%2FBrief</id>
	<title>Security/Audit/Sectool/Brief - Historique des versions</title>
	<link rel="self" type="application/atom+xml" href="https://wikiold.home.tartarefr.eu/index.php?action=history&amp;feed=atom&amp;title=Security%2FAudit%2FSectool%2FBrief"/>
	<link rel="alternate" type="text/html" href="https://wikiold.home.tartarefr.eu/index.php?title=Security/Audit/Sectool/Brief&amp;action=history"/>
	<updated>2026-07-07T14:01:11Z</updated>
	<subtitle>Historique des versions pour cette page sur le wiki</subtitle>
	<generator>MediaWiki 1.43.8</generator>
	<entry>
		<id>https://wikiold.home.tartarefr.eu/index.php?title=Security/Audit/Sectool/Brief&amp;diff=2624&amp;oldid=prev</id>
		<title>Didier : Page créée avec « == Introduction == sectool est un logiciel de sécurité qui peut être employé comme audit de sécurité et de système de détection d&#039;intrusion. Il se compose d&#039;un ens... »</title>
		<link rel="alternate" type="text/html" href="https://wikiold.home.tartarefr.eu/index.php?title=Security/Audit/Sectool/Brief&amp;diff=2624&amp;oldid=prev"/>
		<updated>2014-03-21T07:54:15Z</updated>

		<summary type="html">&lt;p&gt;Page créée avec « == Introduction == sectool est un logiciel de sécurité qui peut être employé comme audit de sécurité et de système de détection d&amp;#039;intrusion. Il se compose d&amp;#039;un ens... »&lt;/p&gt;
&lt;p&gt;&lt;b&gt;Nouvelle page&lt;/b&gt;&lt;/p&gt;&lt;div&gt;== Introduction ==&lt;br /&gt;
sectool est un logiciel de sécurité qui peut être employé comme audit de sécurité et de système de détection d&amp;#039;intrusion. Il se compose d&amp;#039;un ensemble de tests, de bibliothèques et même d&amp;#039;une interface graphique graphique. Les tests sont classés par groupes et par niveaux de sécurité.&lt;br /&gt;
&lt;br /&gt;
Les administrateurs peuvent lancer un ou plusieurs tests, un groupe ou un niveau de sécurité entiers.&lt;br /&gt;
&lt;br /&gt;
== Configuration ==&lt;br /&gt;
&lt;br /&gt;
Le contenu du fichier de configuration &amp;lt;path&amp;gt;/etc/sectool/sectool.conf&amp;lt;/path&amp;gt; est par défaut bien renseigné.&lt;br /&gt;
&amp;lt;syntaxhighlight lang=&amp;quot;ini&amp;quot;&amp;gt;&lt;br /&gt;
[OUTPUT]&lt;br /&gt;
# number of messages per test we&amp;#039;d like to limit.&lt;br /&gt;
# Set this to 0 to have unlimited amount of messages&lt;br /&gt;
MSG_LIMIT=100&lt;br /&gt;
&lt;br /&gt;
[ACTION]&lt;br /&gt;
# which security level we run&lt;br /&gt;
# 1 - Naive - pretty basic and short set of tests, &lt;br /&gt;
# 2 - Desktop - set of tests prepared to run on box not connected to internet, &lt;br /&gt;
# 3 - Network - standard client machine connected to internet, &lt;br /&gt;
# 4 - Server - network server, &lt;br /&gt;
# 5 - Paranoid - bunch of tests for paranoid admins.&lt;br /&gt;
LEVEL=3&lt;br /&gt;
# It is also possible to include/exclude tests from their defined levels&lt;br /&gt;
# with +test or -test - semantics is the same as with --include/--exlude&lt;br /&gt;
&lt;br /&gt;
[PATHS]&lt;br /&gt;
# paths to desciption files&lt;br /&gt;
DSC_DIR=/etc/sectool/tests&lt;br /&gt;
# paths to tests&lt;br /&gt;
TESTS_DIRS=/usr/libexec/sectool/tests&lt;br /&gt;
# place for persistant data&lt;br /&gt;
TDATA_DIR_BASE=/var/lib/sectool&lt;br /&gt;
# place for temporary data&lt;br /&gt;
TEMP_DIR=/tmp&lt;br /&gt;
&lt;br /&gt;
[RESULTS]&lt;br /&gt;
# this file is usually used to generate diffs against the previous run.&lt;br /&gt;
RESULT_FILE=results.xml&lt;br /&gt;
&lt;br /&gt;
[ENVIRONMENT]&lt;br /&gt;
# this is used to pass environment variables to all tests&lt;br /&gt;
PATH=/sbin:/bin:/usr/sbin:/usr/bin&lt;br /&gt;
&lt;br /&gt;
[MAIL]&lt;br /&gt;
# what&amp;#039;s in the mail body&lt;br /&gt;
# SEND_BODY=(full | diff | none)&lt;br /&gt;
SEND_BODY=diff&lt;br /&gt;
# what&amp;#039;s in the mail attachment&lt;br /&gt;
# SEND_ATTACHMENT =  (full | diff | none)&lt;br /&gt;
SEND_ATTACHMENT = full&lt;br /&gt;
# do we use smtp or local sendmail for sending the mail&lt;br /&gt;
# TARGET=(local | smtp)&lt;br /&gt;
TARGET=local&lt;br /&gt;
# username or None for no authentication&lt;br /&gt;
# SMTP_USER = (username | None) &lt;br /&gt;
# password or None for no authentication&lt;br /&gt;
# SMTP_PASSWD = ( password | None )  &lt;br /&gt;
# smtp server to send emails via&lt;br /&gt;
# SMTP_SERVER = localhost&lt;br /&gt;
&amp;lt;/syntaxhighlight&amp;gt;&lt;br /&gt;
&lt;br /&gt;
== Exemple d’exécution ==&lt;br /&gt;
* niveau paranoïaque&lt;br /&gt;
* demande de rapport final&lt;br /&gt;
&amp;lt;pre&amp;gt;&lt;br /&gt;
sectool -L 5 --report&lt;br /&gt;
group -&amp;gt;&lt;br /&gt;
    group: REUSSIR&lt;br /&gt;
&lt;br /&gt;
passwd -&amp;gt;&lt;br /&gt;
    passwd: REUSSIR&lt;br /&gt;
&lt;br /&gt;
shadow -&amp;gt;&lt;br /&gt;
    shadow: REUSSIR&lt;br /&gt;
&lt;br /&gt;
home_dirs -&amp;gt;&lt;br /&gt;
    home_dirs: REUSSIR&lt;br /&gt;
&lt;br /&gt;
home_files -&amp;gt;&lt;br /&gt;
    home_files: REUSSIR&lt;br /&gt;
&lt;br /&gt;
root_dirs -&amp;gt;&lt;br /&gt;
    root_dirs: REUSSIR&lt;br /&gt;
&lt;br /&gt;
filesystem -&amp;gt;&lt;br /&gt;
    filesystem: REUSSIR&lt;br /&gt;
&lt;br /&gt;
path -&amp;gt;&lt;br /&gt;
    path: REUSSIR&lt;br /&gt;
&lt;br /&gt;
firewall -&amp;gt;&lt;br /&gt;
    firewall: REUSSIR&lt;br /&gt;
&lt;br /&gt;
netserv -&amp;gt;&lt;br /&gt;
    netserv: REUSSIR&lt;br /&gt;
&lt;br /&gt;
openssh -&amp;gt;&lt;br /&gt;
    Attention: ClientAliveCountMax is set to 0 (no limit)&lt;br /&gt;
    openssh: ATTENTION&lt;br /&gt;
&lt;br /&gt;
openvpn -&amp;gt;&lt;br /&gt;
    Attention: Test openvpn tests package openvpn which is not installed, cannot run the test&lt;br /&gt;
    openvpn: INVALIDE&lt;br /&gt;
&lt;br /&gt;
removedlibs -&amp;gt;&lt;br /&gt;
    removedlibs: REUSSIR&lt;br /&gt;
&lt;br /&gt;
xinetd -&amp;gt;&lt;br /&gt;
    Attention: Test xinetd tests package xinetd which is not installed, cannot run the test&lt;br /&gt;
    xinetd: INVALIDE&lt;br /&gt;
&lt;br /&gt;
suid -&amp;gt;&lt;br /&gt;
    suid: REUSSIR&lt;br /&gt;
&lt;br /&gt;
logfiles -&amp;gt;&lt;br /&gt;
    logfiles: REUSSIR&lt;br /&gt;
&lt;br /&gt;
pam -&amp;gt;&lt;br /&gt;
    Attention: Account lockout after repetitive failed login attempts is not configured.&lt;br /&gt;
    pam: ATTENTION&lt;br /&gt;
&lt;br /&gt;
permissions -&amp;gt;&lt;br /&gt;
    permissions: REUSSIR&lt;br /&gt;
&lt;br /&gt;
exec-shield -&amp;gt;&lt;br /&gt;
    exec-shield: REUSSIR&lt;br /&gt;
&lt;br /&gt;
selinux -&amp;gt;&lt;br /&gt;
    selinux: REUSSIR&lt;br /&gt;
&lt;br /&gt;
mountopt -&amp;gt;&lt;br /&gt;
    mountopt: REUSSIR&lt;br /&gt;
&lt;br /&gt;
aliases -&amp;gt;&lt;br /&gt;
    aliases: REUSSIR&lt;br /&gt;
&lt;br /&gt;
cron -&amp;gt;&lt;br /&gt;
    cron: REUSSIR&lt;br /&gt;
&lt;br /&gt;
vsftpd -&amp;gt;&lt;br /&gt;
    Attention: Test vsftpd tests package vsftpd which is not installed, cannot run the test&lt;br /&gt;
    vsftpd: INVALIDE&lt;br /&gt;
&lt;br /&gt;
nfs -&amp;gt;&lt;br /&gt;
    Attention: Test nfs tests package nfs-utils which is not installed, cannot run the test&lt;br /&gt;
    nfs: INVALIDE&lt;br /&gt;
&lt;br /&gt;
tcp_wrappers -&amp;gt;&lt;br /&gt;
    tcp_wrappers: REUSSIR&lt;br /&gt;
&lt;br /&gt;
routing -&amp;gt;&lt;br /&gt;
    routing: REUSSIR&lt;br /&gt;
&lt;br /&gt;
&lt;br /&gt;
&lt;br /&gt;
----- Lancer un rapport -----&lt;br /&gt;
Total des tests lancés : 27&lt;br /&gt;
Réussi         : 21&lt;br /&gt;
Avertissements  : 2&lt;br /&gt;
Erreurs         : 0&lt;br /&gt;
Invalid runs    : 4&lt;br /&gt;
Echecs          : 0&lt;br /&gt;
Erreurs fatales : 0&lt;br /&gt;
&amp;lt;/pre&amp;gt;&lt;/div&gt;</summary>
		<author><name>Didier</name></author>
	</entry>
</feed>