Security audit
security_auditAudit a remote server's security: inspect listening ports, firewall rules, fail2ban jails, SSH hardening, pending updates, and recent logins. Checks requiring sudo degrade gracefully.
Instructions
Read-only security posture check: listening ports, UFW firewall rules, fail2ban jails, sshd hardening flags (root login / password auth), pending security updates, recent logins. Sub-checks that need passwordless sudo degrade gracefully with a note.
Input Schema
| Name | Required | Description | Default |
|---|---|---|---|
| host | Yes | SSH host alias from ~/.ssh/config, or user@hostname |