ASL Lite is a new lightweight rule updater project designed specifically as an ASL rule downloader for custom apache environments, control panel software like cpanel and directadmin, or non-apache/mixed web server implementations. ASL Lite supports a guided dialog similar to the standard asl configuration, that allows for the definition of custom commands for restarting web services, location of configuration files, and use via cron.

ASL Lite is available in the Atomic channel, and will ultimately replace the "Rules-Only" subscription. It is currently available for RHEL 4/5, CentOS 4/5, and Fedora 6-12. Other operating systems can be added upon request.

To install ASL Lite:
1) Add the atomic repository
wget -q -O - http://www.atomicorp.com/installers/atomic |sh

2) Install asl-lite and its support packages
yum install asl-lite

3) Configure ASL lite with your username/password, set path information,
configured rules, and restart commands
asl-lite -c

4) Update your ruleset:
asl -u

We are proud to announce the latest release for our flagship Atomic Secured Linux product, the latest in unified threat management systems.  Atomic Secured Linux(tm) is an out-of-the-box Unified Security Suite for Linux(tm) systems designed to protect your servers against both known and unknown threats. It is distributed through a subscription yum channel ensuring that ASL is always kept up to date. Unlike other security solultions, ASL works by combining security at all layers, from the aKernel all the way up to the application layer to provide the most complete protection available for Linux servers and helps to ensure that your system is compliant with commercial and government security standards. ASL includes the most hardened kernel on the market, automated system hardening techniques, userspace and host Intrusion Prevention Systems (IPS), malware/rootkit detection and elimination, blacklisting technologies and web application firewalling to protect multiuser and web application hosting environments like no other solution. ASL is uniquely effective at addressing emerging threats posed by vulnerabilities in todays complex systems and applications, such as web hosting environments, multiuser systems, CRM's, ERPs, forums, shopping carts, Content Management systems and custom applications.

Changelog:

• Support for Fedora 12
• Support for Fedora 11
• Support for Mysql 5.1

Bugfixes:

• Bugfix #XXX, correct an imaging rendering issue in ASL-Web for IE8
• Bugfix #XXX, detects and corrects the condition where the VERSION would sometimes be created as a directory
• Bugfix #XXX, added mod_evasive vulnerability data
  
  

Upgrading to 2.2.3:

1) Ensure that you allow mysql connections from localhost, and that
skip-networking is not set in /etc/my.cnf

2) yum upgrade

3) asl -s -f

4) Log in to the web interface on port 30000 with your web browser at https://<IP>:30000

We are proud to announce the latest release for our flagship Atomic Secured Linux product, the latest in unified threat management systems.  Atomic Secured Linux(tm) is an out-of-the-box Unified Security Suite for Linux(tm) systems designed to protect your servers against both known and unknown threats. It is distributed through a subscription yum channel ensuring that ASL is always kept up to date. Unlike other security solultions, ASL works by combining security at all layers, from the aKernel all the way up to the application layer to provide the most complete protection available for Linux servers and helps to ensure that your system is compliant with commercial and government security standards. ASL includes the most hardened kernel on the market, automated system hardening techniques, userspace and host Intrusion Prevention Systems (IPS), malware/rootkit detection and elimination, blacklisting technologies and web application firewalling to protect multiuser and web application hosting environments like no other solution. ASL is uniquely effective at addressing emerging threats posed by vulnerabilities in todays complex systems and applications, such as web hosting environments, multiuser systems, CRM's, ERPs, forums, shopping carts, Content Management systems and custom applications.

Changelog:

• Feature Request #285, Added vulnerability check for php function pcntl_exec()
• Feature Request #XXX, added vulnerability check for Plesk XSS vulnerability
• Feature Request #XXX, added db rotate event for storing alert events in mysql
• Feature Request #XXX, ossec_database_setup.sh is now safe to run multiple times. It will reset passwords to the default in /etc/asl/config
• Feature Request #XXX, add SSL checks for courier imap
• Changed support link in GUI to https://www.atomicorp.com/portal (was http://support.prometheus-group.com)
• Added more debug routines for update events.

Bugfixes:

• Bugfix #XXX, Corrected js errors in IE, corrected tag mismatch in /etc/asl-config.xml
• Bugfix #XXX, to set the mod_security debug log to on / off. The default is to disable the debug log unless we're actually debugging. This is also a performance change.
• Bugfix #XXX, mod_security check will automatically populate the config file with the configuration token if it does not otherwise exist.
• Bugfix #XXX, added vulnerability details for the Plesk @Mail exploit
• Bugfix #XXX, fixed incorrect mod_security vulnerability detail references
• BugFix #XXX, corrected the filename for mod_security_serversignature
• Bugfix #XXX, Added missing data for Case #1537, vulnerability info for SA33842
• Bugfix #XXX, Fix to identify fc11
• Bugfix #XXX, corrects XSS issue in ASL Web with False Positive feedback
• Bugfix #XXX, forced LANG=C for password generation events
• Bugfix #XXX, Case #1258, fix for adding rules for non-localhost database cases
• Bugfix #XXX, corrected issue with single alert log entry display
• Bugfix #XXX, adding in more redundancy for other ASL-Web configuration scenarios. This adds in a basic alpha/numeric check.
• Bugfix #XXX, asl-web-setup will now check for the asl_user table, and will inform the user to run asl -c and/or ossec_database_setup.sh
• Bugfix #XXX, asl -u 'full debug' mode wasnt working
• Bugfix #XXX, Added kernel_randshlib to vulnerability report

Upgrading to 2.2.2:

1) Ensure that you allow mysql connections from localhost, and that
skip-networking is not set in /etc/my.cnf

2) yum upgrade

3) asl -s -f

4) Log in to the web interface on port 30000 with your web browser at https://<IP>:30000



Installing on a clean system:
1) wget -q -O - http://www.atomicorp.com/installers/asl |sh

2) Log in to the web interface on port 30000 with https://<IP>:30000