this post was submitted on 25 May 2026
26 points (96.4% liked)

Linux

13829 readers
357 users here now

A community for everything relating to the GNU/Linux operating system (except the memes!)

Also, check out:

Original icon base courtesy of lewing@isc.tamu.edu and The GIMP

founded 3 years ago
MODERATORS
Ategon@programming.dev
anzo@programming.dev
dwraf_of_ignorance@programming.dev
26
Tool to check Linux services configuration files compliance (programming.dev)
submitted 1 week ago* (last edited 1 week ago) by melezhik@programming.dev to c/linux@programming.dev
3 comments fedilink hide all child comments
 

Scc is a sparrow plugin that could be run over terminal to check security best practice of your Linux conf files :

  • sshd
  • sudoers
  • bind
  • redis
  • sysctl

more services are coming , check it out and let me know what you think https://github.com/melezhik/sparrow-plugins/tree/master/scc

top 3 comments
sorted by: hot top controversial new old
[–] naeap@sopuli.xyz 3 points 1 week ago (1 children)

Is it just me or is the results output kinda spammy?

I mean, I'm all for information and stuff, but do I really need to know the regex?
I'd love to have this as an option, when I think, that the tool provided a false positive, but for routine checks, I'm feeling a bit overwhelmed

More interesting it would be, to just show me the parts, that are seemingly an issue and some description, why it is an issue.

With that output, I'll probably have an easier time just checking the config file myself

But maybe, that's just me...

[–] melezhik@programming.dev 5 points 1 week ago

Thanks. This is going to be addressed here - https://github.com/melezhik/Sparrow6/issues/13

[–] melezhik@programming.dev 2 points 1 week ago* (last edited 1 week ago)

I probably need to add report example here …

Update - done in readme