Securix monitor

1. Weekly

1.1. Check NTP, DNS, mail forwarding,... Servers availability

1.2. Rkhunter

1.3. Install security updates

1.4. rkhunter update

1.5. Compare running and latest emerged kernel version

1.6. Check disk/FS errors

1.7. Checksec.sh

2. Hourly

2.1. Disk space

2.2. Disk inodes

2.3. Syslog running

2.4. Bonding state

2.5. netstat problems (RX-DRP)

2.6. Processes hidden in system

2.7. New users, membership, assigned shell

2.8. Check available entropy for /dev/random

2.9. Firewall rules saved?

2.10. Routing or network setup saved?

2.11. System (cpu, motherboard, etc) temperature

3. One time tasks

4. Daily

4.1. Emerge-webrsync (GPG signed)

4.2. GLSA check (security advisories)

4.3. Check system binary consistency

4.4. Check Rkhunter warnings

4.5. Check Securix update

4.6. Check services running state

4.7. Check unsecure process on ports (telnet, ftp, ...)

4.8. Check files permissions

4.9. Find files or directories which have: world writeable permissions, suid or sgid bits, no user or no existing group

4.10. Is there new version of service daemon?

4.11. Services check by checksec.sh

5. Monthly

5.1. gpg check trustdb

6. Role specific tests