This is the README file for LSAT (Linux Security Auditing Tool)

NOTE: This is still BETA software and should be treated as such.
--------------------------------------------------------------------------------
Hoempage:

The homepage for lsat is http://usat.sourceforge.net
The backup homepage is http://www.dimlight.org/lsat
The homepage for lsat used to be http://www.dimlight.org/~number9/lsat

--------------------------------------------------------------------------------
About: 

Linux Security Auditing Tool (LSAT) is a post install security 
auditing tool. It is modular in design, so new features can be added 
quickly. It checks inetd entries and scans for unneeded RPM packages. 
It is being expanded to work with Linux distributions other than Red Hat, 
and checks for kernel versions. 
--------------------------------------------------------------------------------
Changes:

See changelog/changelog.html for changes.
--------------------------------------------------------------------------------
Current working systems:

LSAT currently compiles and works under RedHat 6.x systems. It should
compile and run under RedHat 7.x, 8.x systems. 

The goal is to have it work under many *NIX systems, including but not
limited to Solaris, Debian, RedHat (and derivatives), FreeBSD etc.
--------------------------------------------------------------------------------
Compilation: 

LSAT now has autoconf: building should just be:

./configure
make

in the lsat-<version> directory.
--------------------------------------------------------------------------------
Running:

To run the program:

./lsat

Options: 

-f <distribution> 	Force a specific distribution test.
	Distro names are: 
    			redhat
    			debian
    			mandrake
    			solaris
    			gentoo
    	If no -f option, lsat will guess. If lsat can
    	not guess the distribution, default is redhat.
-h	Show this help page
-l	exclude open file check
-m	exclude md5sum file check
-o <filename>	Output file name -- default is lsat.out
-r	Check rpm integrity -- redhat or mandrake only
-s	Silent mode
-v	Verbose output
-w	Output file in html format
-x	eXclude set UID/GID file check,
    	and group/world read/write file check.


Any number of options can be specified on the command line.

This may take some time on older systems as it (at some point in time) does
an rpm -qa while checking installed packages. It also checks all SETUID and
SETGID files on the system. On a system more "modern" than mine (30Mhz) it
should not take long.

The output is in the file in the directory where lsatmain was run and 
should be called lsat.out. If you have previously run lsatmain then the
previous output will be moved to lsat.old. This is so that you may check
your imcremental security improvements to the system.

--------------------------------------------------------------------------------
Modules:

Please see modules.html for info on modules or 
writing modules.
Plain text version is README.modules
--------------------------------------------------------------------------------
License:

This software is licensed under the GNU/GPL, please see http://www.gnu.org
for more detals.
--------------------------------------------------------------------------------
Contact:

I am number9. Sometimes known as Triode. You may reach me at

triode@users.sourceforge.net or number9@dimlight.org if its up :)
--------------------------------------------------------------------------------
