Adeos (named after the obscure Roman goddess of modesty) is an automated filesystem security scanner. It recursively walks all mounted filesystems on the local system and attempts to identify common security concerns such as SUID and world-writeable files.
The output is available as text or html, with either output type formatted in either report or list style. Text is written to stdout and is redirected to a file, while HTML is written to a file named results.html in the local directory.
Adeos should compile and run on almost any UNIX-type system. It has been tested on Sun Solaris and Linux 2.x.
Adeos must be run from a non-priveleged user account on the system. Since a priveleged account, such as root has much greater priveleges than a standard user, the results would be meaningless.
Adeos supports three scan modes: normal, verbose, and paranoid. A brief description of what each looks for is below.
normal: Set-User-ID (SUID) files, Set-Group-ID (SGID) files, world-writeable files, and world-writeable directories. (Default mode)
verbose: Everything that a Normal scan looks for, "Sticky" files, unreadable directories, and inaccessible files.
paranoid: Everything Normal and Verbose scans look for, world-readable files, world-executable files, world-readable directories, and world-executable directories.
Adeos supports the following command-line options. Note that if you want to use multiple options you must specify each one individually.
-d Include dynamic directories (/dev /devices /proc /tmp) in the scan.
-h Place output in an HTML file named results.html
-r Format output as a collated report.
--help Display usage and help information.
A default Adeos run performs a Normal mode scan with list-formatted text output.