Software Repository (Customers)



Difference with Community version

The software packages in this repository consists of stable releases of Lynis. Customers of Lynis Enterprise also have the following packages available:



Requirements

The customer repository is not enabled for your license key(s) by default. If you like to use the packages from our software repository, contact support@cisofy.com. This is also useful if you like to add our packages into your own internal software repository.



Installation


CentOS, Fedora, and RHEL

Update prerequisites

  • Have your license key enabled by CISOfy support
  • Use up-to-date versions of cURL, NSS, OpenSSL, and CA certificates
yum update ca-certificates curl nss openssl

Create repository

Create /etc/yum.repos.d/cisofy-lynis.repo

[lynis]
name=CISOfy Software - Lynis package
baseurl=https://packages.cisofy.com/customers/LICENSE-KEY/lynis/rpm/
enabled=1
gpgkey=https://packages.cisofy.com/keys/cisofy-software-rpms-public.key
gpgcheck=1

Install Lynis and Lynis plugins

yum makecache fast

yum install lynis lynis-plugins

After installation, configure Lynis with the configure settings command.




Debian and Ubuntu

Update prerequisites

Have your license key enabled by CISOfy support

Import key

Download the key from a central keyserver:

apt-key adv --keyserver keyserver.ubuntu.com --recv-keys C80E383C3DE9F082E01391A0366C67DE91CA5D5F

Add software repository

echo "deb https://packages.cisofy.com/customers/LICENSE-KEY/lynis/deb/ stable main" > /etc/apt/sources.list.d/cisofy-lynis.list

Note: make sure your license key is configured (and enabled), otherwise a 404 will be returned

Our software repository uses preferably HTTPS, so the 'https' method for APT might need to be installed first.

apt install apt-transport-https

Install Lynis and Lynis Plugins

apt update

apt install lynis lynis-plugins

(or apt-get with older Debian/Ubuntu versions)

After installation, configure Lynis with the configure settings command.




openSUSE, SUSE

Update prerequisites

Have your license key enabled by CISOfy support

Import GPG key and add repository

First import the GPG key. This ensures the signed repository can be checked.

rpm --import https://packages.cisofy.com/keys/cisofy-software-rpms-public.key
zypper addrepo --gpgcheck --name "CISOfy Lynis repository" --priority 1 --refresh --type rpm-md https://packages.cisofy.com/customers/<YOUR LICENSE KEY>/lynis/rpm/ lynis

Check if the repository is added:

zypper repos

Install Lynis

If the repository is available, Lynis can be installed from it. As it is marked with a high priority, the Lynis package will be installed from the new repository.

zypper refresh
zypper install lynis lynis-plugins

After installation, configure Lynis with the configure settings command.



Configure Lynis client

The client configuration can be scripted, for easy deployment. Use the configure settings command for this and run Lynis.

touch /etc/lynis/custom.prf

lynis configure settings license-key=YOUR-LICENSE-KEY:upload-server=portal.cisofy.com

lynis audit system --quick --upload



Having issues? Look in our troubleshoot guide for issues installation or updating Lynis.