this post was submitted on 25 May 2026
23 points (96.0% liked)

Linux

13785 readers
526 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 2 years ago
MODERATORS
Ategon@programming.dev
anzo@programming.dev
dwraf_of_ignorance@programming.dev
23
Tool to check Linux services configuration files compliance (programming.dev)
submitted 1 day ago* (last edited 1 day ago) by melezhik@programming.dev to c/linux@programming.dev
3 comments fedilink hide all child comments
 

Scc is a sparrow plugin that could be run over terminal to check security best practice of your Linux conf files :

  • sshd
  • sudoers
  • bind
  • redis
  • sysctl

more services are coming , check it out and let me know what you think https://github.com/melezhik/sparrow-plugins/tree/master/scc

top 3 comments
sorted by: hot top controversial new old
[–] naeap@sopuli.xyz 3 points 1 day ago (1 children)

Is it just me or is the results output kinda spammy?

I mean, I'm all for information and stuff, but do I really need to know the regex?
I'd love to have this as an option, when I think, that the tool provided a false positive, but for routine checks, I'm feeling a bit overwhelmed

More interesting it would be, to just show me the parts, that are seemingly an issue and some description, why it is an issue.

With that output, I'll probably have an easier time just checking the config file myself

But maybe, that's just me...

[–] melezhik@programming.dev 5 points 1 day ago

Thanks. This is going to be addressed here - https://github.com/melezhik/Sparrow6/issues/13

[–] melezhik@programming.dev 2 points 1 day ago* (last edited 1 day ago)

I probably need to add report example here …

Update - done in readme