Kernel linux-gnu port have apparmor default options. AppArmor enforce rules on applications based on security policies. User space tools are provided by apparmor port and its dependencies, install them;
$ sudo prt-get depinst checksec lynis apparmor
Lynis gives a view of system overall configuration, without changing default profile it runs irrelevant tests. Create a lynis profile by coping default one and run lynis;
$ sudo cp /etc/lynis/default.prf /etc/lynis/custom.prf
$ sudo lynis configure settings color=yes
$ sudo lynis show settings
$ sudo lynis show profile
$ lynis audit system > lynis_report
$ mv /tmp/lynis.log .
$ mv /tmp/lynis-report.dat .
Add unnecessary tests to profile to have less noise.
Core OS IndexThis is part of the c9 Manual. Copyright (C) 2017 c9 team. See the file Gnu Free Documentation License for copying conditions.