The software packages in this repository consists of stable releases of Lynis. Customers of Lynis Enterprise also have the following packages available:
The customer repository is not enabled for your license key(s) by default. If you like to use the packages from our software repository, contact support@cisofy.com. This is also useful if you like to add our packages into your own internal software repository.
CentOS, Fedora, and RHEL
Update prerequisites
- Have your license key enabled by CISOfy support
- Use up-to-date versions of cURL, NSS, OpenSSL, and CA certificates
yum update ca-certificates curl nss opensslCreate repository
Create /etc/yum.repos.d/cisofy-lynis.repo
[lynis] name=CISOfy Software - Lynis package baseurl=https://packages.cisofy.com/customers/LICENSE-KEY/lynis/rpm/ enabled=1 gpgkey=https://packages.cisofy.com/keys/cisofy-software-rpms-public.key gpgcheck=1
Note: using a self-hosted installation of Lynis Enterprise? Use your sublicense key (not the master key).
Install Lynis and Lynis plugins
yum makecache fast
yum install lynis lynis-plugins
After installation, configure Lynis with the configure settings command.
Debian and Ubuntu
Update prerequisites
Have your license key enabled by CISOfy support, otherwise you get a 404 error.
Import key
Download the key from a central keyserver:
sudo apt-key adv --keyserver keyserver.ubuntu.com --recv-keys C80E383C3DE9F082E01391A0366C67DE91CA5D5FAdd software repository
echo "deb https://packages.cisofy.com/customers/LICENSE-KEY/lynis/deb/ stable main" | sudo tee /etc/apt/sources.list.d/cisofy-lynis.list
Note: using a self-hosted installation of Lynis Enterprise? Use your sublicense key (not the master key).
Our software repository uses preferably HTTPS, so the 'https' method for APT might need to be installed first.
sudo apt install apt-transport-httpsInstall Lynis and Lynis Plugins
sudo apt update
sudo apt install lynis lynis-plugins
(or apt-get with older Debian/Ubuntu versions)
After installation, configure Lynis with the configure settings command.
openSUSE, SUSE
Update prerequisites
Have your license key enabled by CISOfy support
Import GPG key and add repository
First import the GPG key. This ensures the signed repository can be checked.
rpm --import https://packages.cisofy.com/keys/cisofy-software-rpms-public.keyzypper addrepo --gpgcheck --name "CISOfy Lynis repository" --priority 1 --refresh --type rpm-md https://packages.cisofy.com/customers/<YOUR LICENSE KEY>/lynis/rpm/ lynisCheck if the repository is added:
zypper reposInstall Lynis
If the repository is available, Lynis can be installed from it. As it is marked with a high priority, the Lynis package will be installed from the new repository.
zypper refresh zypper install lynis lynis-pluginsAfter installation, configure Lynis with the configure settings command.
The client configuration can be scripted, for easy deployment. Use the configure settings command for this and run Lynis.
touch /etc/lynis/custom.prf
lynis configure settings license-key=YOUR-LICENSE-KEY:upload-server=portal.cisofy.com
lynis audit system --quick --upload