Lynis stuck during testing

Normal Lynis scans take a few minutes to complete, therefore any test taking more than 1 minute, might be stuck during its test. Within this article we have a look at a few things you can do.

When a particular test is taking a long time, the test might be stuck. However, that’s not always the case. To determine what Lynis is doing, open up a second terminal and start with running ps aux to see what processes are active.

Network utility

If host, dig or any other network utility is displayed, the particular test might be waiting for a reply. Especially if the other host is very slow or not reachable, a timeout could be 30 seconds or more, looking like Lynis is stuck. In this case waiting for a little bit more, or testing the host manually to confirm, is the best next step.

Filesystem

Another possibility is that the filesystem has many files, redirects (symbolic links) or other quirks which results in Lynis getting stuck on a file or directory listing. Most often this is seen when find or grep are visible in the process listing and stay there for some time. An additional hint can be found in the log file (/var/log/lynis.log), by using the tail command and see if it moves on, or keeps listing the same line.

Reporting issues

In case the underlying file, process or network system has been found, it might be a quick fix to solve. If you believe that it’s a returning issue and not limited to your system only, then you are advised to report the issue.

Feedback

Small picture of Michael Boelen

This article has been written by our Linux security expert Michael Boelen. With focus on creating high-quality articles and relevant examples, he wants to improve the field of Linux security. No more web full of copy-pasted blog posts.

Discovered outdated information or have a question? Share your thoughts. Thanks for your contribution!

Mastodon icon