diff --git a/libs/Msg.pm b/libs/Msg.pm index 3537e74..3deca86 100644 --- a/libs/Msg.pm +++ b/libs/Msg.pm @@ -168,153 +168,156 @@ use Encode qw(decode_utf8); ], [ - "
Take into account, that if some items are empty, it means that the configuration is correct.
",#fase - msg1 - "It is recommended to analyze if the users configuration is as expected
\n",#fase1 - msg8 - "\nFase 1.1 -- Users/Groups check\n",#fase1.1 - msg9 - "It is recommended to analyze the groups created and the username assigned\n
\n",#fase1.1 - msg11 - "\nFase 1.2 -- Verify there are no accounts without passwords\n",#fase1.2 - msg12 - "If any user account is detected in the last period, please verify that is referred to a service requirement
",#fase1.5 - msg20 - "\nFase 1.6 -- PAM Configuration\n",#fase1.6 - msg21 - "The MINLEN parameter does not exist
\n",#fase1.6 - msg24 - "The recommended value for the MINLEN parameter is 8
\n",#fase1.6 - msg25 - "\nThe RETRY parameter does not exist\n",#fase1.6 - msg26 - "The RETRY parameter does not exist
\n",#fase1.6 - msg27 - "The recommended value for the RETRY parameter is 3
\n",#fase1.6 - msg28 - "\nThe UCREDIT parameter does not exist\n",#fase1.6 - msg29 - "The UCREDIT parameter does not exist
\n",#fase1.6 - msg30 - "The recommended value for the UCREDIT parameter is -1
\n",#fase1.6 - msg31 - "\nThe DCREDIT parameter does not exist\n",#fase1.6 - msg32 - "The DCREDIT parameter does not exist
\n",#fase1.6 - msg33 - "The recommended value for the DCREDIT parameter is -1
\n",#fase1.6 - msg34 - "\nThe LCREDIT parameter does not exist\n",#fase1.6 - msg35 - "The LCREDIT parameter does not exist
\n",#fase1.6 - msg36 - "The recommended value for the LCREDIT parameter is -1
\n",#fase1.6 - msg37 - "\nThe OCREDIT parameter does not exist\n",#fase1.6 - msg38 - "The OCREDIT parameter does not exist
\n",#fase1.6 - msg39 - "The recommended value for the OCREDIT parameter is -1
\n",#fase1.6 - msg40 - "\nThe DIFOK parameter does not exist\n",#fase1.6 - msg41 - "The DIFOK parameter does not exist
\n",#fase1.6 - msg42 - "The recommended value for the DIFOK parameter is 2
\n",#fase1.6 - msg43 - "\nFase 1.7 -- Recent user logins\n",#fase17 - msg44 - "Verify that the IP addresses correspond to the server administrators
\n",#fase1.7 - msg46 - "\nFase 1.8 -- Recent commands executed by users\n",#fase1.8 - msg47 - "Verify that the commands listed on the report are required for the server’s administration
\n",#fase1.8 - msg49 - "\nFase 1.9 -- Trust relationships\n",#fase1.9 - msg50 - "It is recommended to analyze if the Trust relationships
\n",#fase1.9 - msg52 - "\nFase 1.10 -- Users with system access\n",#fase1.10 - msg53 - "Verify that the users listed on the report are required for the server’s administration
\n",#fase1.10 - msg55 - "\nFase 1.11 -- Verify that there are no users with Group ID 0\n",#fase1.11 - msg56 - "Negative: The OS event capture through syslog is not enabled
\n",#fase2 - msg61 - "It is recommended to capture audit events from the OS using syslog
\n",#fase2 - msg62 - "\nFase 2.1 -- Rsyslog events - AUTHPRIV\n",#fase2.1 - msg63 - "Negative: The OS event capture through Rsyslog is not enabled
\n",#fase2.1 - msg66 - "It is recommended to capture audit events from the OS using Rsyslog
\n",#fase2.1- msg67 - "\nFase 3.0 -- Verify file and directory permissions\n",#fase3 - msg68 - "Negative: The variable TMOUT is not configured in /etc/profile
\n",#fase5 - msg83 - "It is recommended to configure the TMOUT parameter in the file\n",#fase5 - msg84 - "\nFase 6.0 -- Customized banner\n",#fase6 - msg85 - "
A default banner is in place
\n",#fase6 - msg88 - "It is recommended to customize the server’s banner
\n",#fase6 - msg89 - "\nFase 7.0 -- Verify the SSH service configuration\n",#fase7 - msg90 - "SeLinux does not configurate
\n",#fase8 - msg95 - "It is recommended to configure SeLinux
\n",#fase8 - msg96 - "\nFase 9.0 -- IPTABLES\n",#fase9 - msg97 - "It is recommended to analyze the listed access
\n",#fase9 - msg99 - "\nFase 10.0 -- Services\n",#fase10 - msg100 - "It is recommended to analyze the active services
\n",#fase10 - msg102 - "\nFase 11.0 -- Processes\n",#fase11- msg103 - "It is recommended to analyze the active processes
\n",#fase11 - msg105 - "\nFase 12.0 -- Connections\n",#fase12 - msg106 - "It is recommended to analyze if the files in crond.daily are as expected
\n",#fase12 - msg108 - "\nFase 13.0 -- Hash de binarios\n",#fase13 - msg109 - "It is recommended to analyze the listed hashes with the Virus Total website
\n",#fase13 - msg111 - "\nFase 14.0 -- Sudoers configuration\n",#fase14 - msg112 - "It is recommended to analyze the listed sudoers configuration
\n",#fase14 - msg114 - "\nFase 15.0 -- Cron.Daily\n",#fase15 - msg115 - "It is recommended to analyze if the files in crond.daily are as expected
\n",#fase15 - msg117 - "\nFase 16.0 -- Software versions\n",#fase16 - msg118 - "It is recommended to analyze if the listed software versions are the latest available branches and if no security issues have been reported for them
",#fase16 - msg120 - "\nFase 17.0 -- Network configuration\n",#fase17 - msg121 - "It is recommended to analyze if the network configuration is as expected
\n",#fase17 - msg123 - "\nFase 17.1 -- Route verification\n",#fase17.1 - msg124 - "It is recommended to analyze the listed routes
\n",#fase17.1 - msg126 - "\nFase 17.2 -- Verify the Sysctl configuration\n",#fase17.2 - msg127 - "It is recommended to analyze if the samba configuration is as expected
\n",#fase19 - msg135 - "Samba does not configurate
\n",#fase19 - msg136 - "\nFase 20.0 -- NTP sincronization\n",#fase20 - msg137 - "Take into account, that if some items are empty, it means that the configuration is correct.
",#Phase - msg1 + "It is recommended to analyze if the users configuration is as expected
\n",#Phase1 - msg8 + "\nPhase 1.1 -- Users/Groups check\n",#Phase1.1 - msg9 + "It is recommended to analyze the groups created and the username assigned\n
\n",#Phase1.1 - msg11 + "\nPhase 1.2 -- Verify there are no accounts without passwords\n",#Phase1.2 - msg12 + "If any user account is detected in the last period, please verify that is referred to a service requirement
",#Phase1.5 - msg20 + "\nPhase 1.6 -- PAM Configuration\n",#Phase1.6 - msg21 + "The MINLEN parameter does not exist
\n",#Phase1.6 - msg24 + "The recommended value for the MINLEN parameter is 8
\n",#Phase1.6 - msg25 + "\nThe RETRY parameter does not exist\n",#Phase1.6 - msg26 + "The RETRY parameter does not exist
\n",#Phase1.6 - msg27 + "The recommended value for the RETRY parameter is 3
\n",#Phase1.6 - msg28 + "\nThe UCREDIT parameter does not exist\n",#Phase1.6 - msg29 + "The UCREDIT parameter does not exist
\n",#Phase1.6 - msg30 + "The recommended value for the UCREDIT parameter is -1
\n",#Phase1.6 - msg31 + "\nThe DCREDIT parameter does not exist\n",#Phase1.6 - msg32 + "The DCREDIT parameter does not exist
\n",#Phase1.6 - msg33 + "The recommended value for the DCREDIT parameter is -1
\n",#Phase1.6 - msg34 + "\nThe LCREDIT parameter does not exist\n",#Phase1.6 - msg35 + "The LCREDIT parameter does not exist
\n",#Phase1.6 - msg36 + "The recommended value for the LCREDIT parameter is -1
\n",#Phase1.6 - msg37 + "\nThe OCREDIT parameter does not exist\n",#Phase1.6 - msg38 + "The OCREDIT parameter does not exist
\n",#Phase1.6 - msg39 + "The recommended value for the OCREDIT parameter is -1
\n",#Phase1.6 - msg40 + "\nThe DIFOK parameter does not exist\n",#Phase1.6 - msg41 + "The DIFOK parameter does not exist
\n",#Phase1.6 - msg42 + "The recommended value for the DIFOK parameter is 2
\n",#Phase1.6 - msg43 + "\nPhase 1.7 -- Recent user logins\n",#Phase17 - msg44 + "Verify that the IP addresses correspond to the server administrators
\n",#Phase1.7 - msg46 + "\nPhase 1.8 -- Recent commands executed by users\n",#Phase1.8 - msg47 + "Verify that the commands listed on the report are required for the server’s administration
\n",#Phase1.8 - msg49 + "\nPhase 1.9 -- Trust relationships\n",#Phase1.9 - msg50 + "It is recommended to analyze if the Trust relationships
\n",#Phase1.9 - msg52 + "\nPhase 1.10 -- Users with system access\n",#Phase1.10 - msg53 + "Verify that the users listed on the report are required for the server’s administration
\n",#Phase1.10 - msg55 + "\nPhase 1.11 -- Verify that there are no users with Group ID 0\n",#Phase1.11 - msg56 + "Negative: The OS event capture through syslog is not enabled
\n",#Phase2 - msg61 + "It is recommended to capture audit events from the OS using syslog
\n",#Phase2 - msg62 + "\nPhase 2.1 -- Rsyslog events - AUTHPRIV\n",#Phase2.1 - msg63 + "Negative: The OS event capture through Rsyslog is not enabled
\n",#Phase2.1 - msg66 + "It is recommended to capture audit events from the OS using Rsyslog
\n",#Phase2.1- msg67 + "\nPhase 3.0 -- Verify file and directory permissions\n",#Phase3 - msg68 + "Negative: The variable TMOUT is not configured in /etc/profile
\n",#Phase5 - msg83 + "It is recommended to configure the TMOUT parameter in the file\n",#Phase5 - msg84 + "\nPhase 6.0 -- Customized banner\n",#Phase6 - msg85 + "
A default banner is in place
\n",#Phase6 - msg88 + "It is recommended to customize the server’s banner
\n",#Phase6 - msg89 + "\nPhase 7.0 -- Verify the SSH service configuration\n",#Phase7 - msg90 + "SeLinux does not configurate
\n",#Phase8 - msg95 + "It is recommended to configure SeLinux
\n",#Phase8 - msg96 + "\nPhase 9.0 -- IPTABLES\n",#Phase9 - msg97 + "It is recommended to analyze the listed access
\n",#Phase9 - msg99 + "\nPhase 10.0 -- Services\n",#Phase10 - msg100 + "It is recommended to analyze the active services
\n",#Phase10 - msg102 + "\nPhase 11.0 -- Processes\n",#Phase11- msg103 + "It is recommended to analyze the active processes
\n",#Phase11 - msg105 + "\nPhase 12.0 -- Connections\n",#Phase12 - msg106 + "It is recommended to analyze if the files in crond.daily are as expected
\n",#Phase12 - msg108 + "\nPhase 13.0 -- Hash de binarios\n",#Phase13 - msg109 + "It is recommended to analyze the listed hashes with the Virus Total website
\n",#Phase13 - msg111 + "\nPhase 14.0 -- Sudoers configuration\n",#Phase14 - msg112 + "It is recommended to analyze the listed sudoers configuration
\n",#Phase14 - msg114 + "\nPhase 15.0 -- Cron.Daily\n",#Phase15 - msg115 + "It is recommended to analyze if the files in crond.daily are as expected
\n",#Phase15 - msg117 + "\nPhase 16.0 -- Software versions\n",#Phase16 - msg118 + "It is recommended to analyze if the listed software versions are the latest available branches and if no security issues have been reported for them
",#Phase16 - msg120 + "\nPhase 17.0 -- Network configuration\n",#Phase17 - msg121 + "It is recommended to analyze if the network configuration is as expected
\n",#Phase17 - msg123 + "\nPhase 17.1 -- Route verification\n",#Phase17.1 - msg124 + "It is recommended to analyze the listed routes
\n",#Phase17.1 - msg126 + "\nPhase 17.2 -- Verify the Sysctl configuration\n",#Phase17.2 - msg127 + "It is recommended to analyze if the samba configuration is as expected
\n",#Phase19 - msg135 + "Samba does not configurate
\n",#Phase19 - msg136 + "\nPhase 20.0 -- NTP sincronization\n",#Phase20 - msg137 + "The Server is locally Syncronized
",#fase20 - msg140 - "\nThe Server is syncronized by Remote Server\n",#fase20 - msg141 - "The Server is syncronized by Remote Server
",#fase20 - msg142 - "\nThe Server is not syncronized\n",#fase20 - msg143 - "Negative: The Server is not syncronized
\n",#fase20 - msg144 - "It is recommended to synchronize the analyzed server with the companies NTP server
\n",#fase20 - msg145 + "\nThe Server is locally Syncronized\n",#Phase20 - msg139 + "The Server is locally Syncronized
",#Phase20 - msg140 + "\nThe Server is syncronized by Remote Server\n",#Phase20 - msg141 + "The Server is syncronized by Remote Server
",#Phase20 - msg142 + "\nThe Server is not syncronized\n",#Phase20 - msg143 + "Negative: The Server is not syncronized
\n",#Phase20 - msg144 + "It is recommended to synchronize the analyzed server with the companies NTP server
\n",#Phase20 - msg145 + + ], );