.\" Automatically generated by Pod::Man 4.07 (Pod::Simple 3.32)
.\"
.\" Standard preamble:
.\" ========================================================================
.de Sp \" Vertical space (when we can't use .PP)
.if t .sp .5v
.if n .sp
..
.de Vb \" Begin verbatim text
.ft CW
.nf
.ne \\$1
..
.de Ve \" End verbatim text
.ft R
.fi
..
.\" Set up some character translations and predefined strings.  \*(-- will
.\" give an unbreakable dash, \*(PI will give pi, \*(L" will give a left
.\" double quote, and \*(R" will give a right double quote.  \*(C+ will
.\" give a nicer C++.  Capital omega is used to do unbreakable dashes and
.\" therefore won't be available.  \*(C` and \*(C' expand to `' in nroff,
.\" nothing in troff, for use with C<>.
.tr \(*W-
.ds C+ C\v'-.1v'\h'-1p'\s-2+\h'-1p'+\s0\v'.1v'\h'-1p'
.ie n \{\
.    ds -- \(*W-
.    ds PI pi
.    if (\n(.H=4u)&(1m=24u) .ds -- \(*W\h'-12u'\(*W\h'-12u'-\" diablo 10 pitch
.    if (\n(.H=4u)&(1m=20u) .ds -- \(*W\h'-12u'\(*W\h'-8u'-\"  diablo 12 pitch
.    ds L" ""
.    ds R" ""
.    ds C` ""
.    ds C' ""
'br\}
.el\{\
.    ds -- \|\(em\|
.    ds PI \(*p
.    ds L" ``
.    ds R" ''
.    ds C`
.    ds C'
'br\}
.\"
.\" Escape single quotes in literal strings from groff's Unicode transform.
.ie \n(.g .ds Aq \(aq
.el       .ds Aq '
.\"
.\" If the F register is >0, we'll generate index entries on stderr for
.\" titles (.TH), headers (.SH), subsections (.SS), items (.Ip), and index
.\" entries marked with X<> in POD.  Of course, you'll have to process the
.\" output yourself in some meaningful fashion.
.\"
.\" Avoid warning from groff about undefined register 'F'.
.de IX
..
.if !\nF .nr F 0
.if \nF>0 \{\
.    de IX
.    tm Index:\\$1\t\\n%\t"\\$2"
..
.    if !\nF==2 \{\
.        nr % 0
.        nr F 2
.    \}
.\}
.\"
.\" Accent mark definitions (@(#)ms.acc 1.5 88/02/08 SMI; from UCB 4.2).
.\" Fear.  Run.  Save yourself.  No user-serviceable parts.
.    \" fudge factors for nroff and troff
.if n \{\
.    ds #H 0
.    ds #V .8m
.    ds #F .3m
.    ds #[ \f1
.    ds #] \fP
.\}
.if t \{\
.    ds #H ((1u-(\\\\n(.fu%2u))*.13m)
.    ds #V .6m
.    ds #F 0
.    ds #[ \&
.    ds #] \&
.\}
.    \" simple accents for nroff and troff
.if n \{\
.    ds ' \&
.    ds ` \&
.    ds ^ \&
.    ds , \&
.    ds ~ ~
.    ds /
.\}
.if t \{\
.    ds ' \\k:\h'-(\\n(.wu*8/10-\*(#H)'\'\h"|\\n:u"
.    ds ` \\k:\h'-(\\n(.wu*8/10-\*(#H)'\`\h'|\\n:u'
.    ds ^ \\k:\h'-(\\n(.wu*10/11-\*(#H)'^\h'|\\n:u'
.    ds , \\k:\h'-(\\n(.wu*8/10)',\h'|\\n:u'
.    ds ~ \\k:\h'-(\\n(.wu-\*(#H-.1m)'~\h'|\\n:u'
.    ds / \\k:\h'-(\\n(.wu*8/10-\*(#H)'\z\(sl\h'|\\n:u'
.\}
.    \" troff and (daisy-wheel) nroff accents
.ds : \\k:\h'-(\\n(.wu*8/10-\*(#H+.1m+\*(#F)'\v'-\*(#V'\z.\h'.2m+\*(#F'.\h'|\\n:u'\v'\*(#V'
.ds 8 \h'\*(#H'\(*b\h'-\*(#H'
.ds o \\k:\h'-(\\n(.wu+\w'\(de'u-\*(#H)/2u'\v'-.3n'\*(#[\z\(de\v'.3n'\h'|\\n:u'\*(#]
.ds d- \h'\*(#H'\(pd\h'-\w'~'u'\v'-.25m'\f2\(hy\fP\v'.25m'\h'-\*(#H'
.ds D- D\\k:\h'-\w'D'u'\v'-.11m'\z\(hy\v'.11m'\h'|\\n:u'
.ds th \*(#[\v'.3m'\s+1I\s-1\v'-.3m'\h'-(\w'I'u*2/3)'\s-1o\s+1\*(#]
.ds Th \*(#[\s+2I\s-2\h'-\w'I'u*3/5'\v'-.3m'o\v'.3m'\*(#]
.ds ae a\h'-(\w'a'u*4/10)'e
.ds Ae A\h'-(\w'A'u*4/10)'E
.    \" corrections for vroff
.if v .ds ~ \\k:\h'-(\\n(.wu*9/10-\*(#H)'\s-2\u~\d\s+2\h'|\\n:u'
.if v .ds ^ \\k:\h'-(\\n(.wu*10/11-\*(#H)'\v'-.4m'^\v'.4m'\h'|\\n:u'
.    \" for low resolution devices (crt and lpr)
.if \n(.H>23 .if \n(.V>19 \
\{\
.    ds : e
.    ds 8 ss
.    ds o a
.    ds d- d\h'-1'\(ga
.    ds D- D\h'-1'\(hy
.    ds th \o'bp'
.    ds Th \o'LP'
.    ds ae ae
.    ds Ae AE
.\}
.rm #[ #] #H #V #F C
.\" ========================================================================
.\"
.IX Title "LSAT 1"
.TH LSAT 1 "2015-12-25" "perl v5.24.1" "User Contributed LSAT Documentation"
.\" For nroff, turn off justification.  Always turn off hyphenation; it makes
.\" way too many mistakes in technical documents.
.if n .ad l
.nh
.SH "NAME"
lsat \- a security auditing tool
.SH "SYNOPSIS"
.IX Header "SYNOPSIS"
\&\fBlsat\fR  [\s-1OPTION\s0]
.SH "DESCRIPTION"
.IX Header "DESCRIPTION"
Linux Security Auditing Tool (\s-1LSAT\s0) is a post install security
auditing tool. It is modular in design, so new features can be 
added quickly. It checks inetd entries and scans for unneeded 
\&\s-1RPM\s0 packages. It is being expanded to work with Linux 
distributions other than Red Hat, and checks for kernel versions.
.PP
Output is in lsat.out.
On subsequent runs, previous output is in lsat.old.
.SH "OPTIONS"
.IX Header "OPTIONS"
\&\-d 
        diff current and old md5 runs, output in lsatmd5.diff
.PP
\&\-m <distribution>
	Force a specific distribution test
	Names are: redhat, debian, mandrake, solaris, gentoo
.PP
\&\-h
	Show \s-1LSAT\s0 help
.PP
\&\-a
        Show \s-1LSAT\s0 advanced help
.PP
\&\-o <filename>
	Output filename, default is last.out
.PP
\&\-r
	Check rpm integrity. RedHat or Mandrake only.
.PP
\&\-s
	Be silent. No output at all.
.PP
\&\-x <filename>
        Filename is a text file consisting of modules to
        exclude from being run. This should be a comma,
        tab or newline delimited file, with just the name(s)
        below one wishes to exclude.
        Module names (with a small description) are:
.PP
.Vb 10
\&        bpass           check for bootloader passwd
\&        cfg             check runlevel daemons (redhat) 
\&        dotfiles        check for dotfiles
\&        files           check for sticky bits, etc
\&        forward         check for network forwarding
\&        ftpusers        check ftpusers file for bad entries
\&        inetd           check for unneeded services
\&        inittab         check runlevel, etc.
\&        ipv4            check for other things in ipv4
\&        issue           check issue banner
\&        kbd             check kbd/login perms
\&        limits          check limits file
\&        logging         check for enough logging
\&        md5             perform md5 of all files on sys
\&        modules         check for loadable kern mod.
\&        net             check network
\&        open            check open files
\&        passwd          check passwd file for bad entries
\&        perms           check permissions on files
\&        pkgs            check for unwanted packages
\&        promisc         are we in promisc mode?
\&        rc              check for unwanted rc files
\&        rpm             perform rpm integrity check
\&        securetty       check secure tty
\&        set             check for SUID files
\&        ssh             check ssh config
\&        startx          check for tcp listening in X
\&        umask           check default umask
\&        write           check world read/write files
\&        www             output in html
.Ve
.PP
\&\-v
	Be verbose about it.
.PP
\&\-w
        Output file is in html format.
.SH "MODULES"
.IX Header "MODULES"
Current modules are checkbpass, checkdotfiles, checkfiles, 
checkftpusers, checkhostsfiles, checkinetd, checkipv4, 
checkissue, checkkbd, checklimits, checkmodule, checkmd5, 
checknet, checknetforward, checknetp,  checkopenfiles,
checkpasswd, checkperms, checkpkgs, checkrc, checkrpm, 
checksecuretty, checkset, checkssh, checkumask, checkwrite 
and checkwww. A breif description is included in each module. 
Writing a module is fairly easy and straightforward. 
See \s-1README\s0.modules for more information.
.SH "LICENSE"
.IX Header "LICENSE"
This software is licensed under the \s-1GNU/GPL,\s0 please see 
http://www.gnu.org for more details.
.SH "BUGS"
.IX Header "BUGS"
Doesn't correct the problems that it discovers (yet).
Running on Solaris is not fully functional.
.SH "AUTHOR"
.IX Header "AUTHOR"
Robert Minvielle <number9 at www dot dimlight dot org>
If that fails, <triode at users dot sourceforge dot net>