We are proud to announce the latest release for our flagship Atomic Secured Linux product, the latest in unified threat management systems.  Atomic Secured Linux(tm) is an out-of-the-box Unified Security Suite for Linux(tm) systems designed to protect your servers against both known and unknown threats. It is distributed through a subscription yum channel ensuring that ASL is always kept up to date. Unlike other security solultions, ASL works by combining security at all layers, from the aKernel all the way up to the application layer to provide the most complete protection available for Linux servers and helps to ensure that your system is compliant with commercial and government security standards. ASL includes the most hardened kernel on the market, automated system hardening techniques, userspace and host Intrusion Prevention Systems (IPS), malware/rootkit detection and elimination, blacklisting technologies and web application firewalling to protect multiuser and web application hosting environments like no other solution. ASL is uniquely effective at addressing emerging threats posed by vulnerabilities in todays complex systems and applications, such as web hosting environments, multiuser systems, CRM's, ERPs, forums, shopping carts, Content Management systems and custom applications.

Changelog:

• Added support for the 2.6.32.8 ASL kernel
• Added Update button to Signatures window in ASL Web
• Added Fix button to Vulnerability report in ASL Web
• Added distribution information to the -v flag
• Added browser check for old/vulnerable browsers when accessing ASL Web
• Added basic clamav configuration module
• Feature Request #261, Added Pause function to Events viewer in ASL Web
• Feature Request #297, Add support for SecRequestBodyLimit to ASL
• Feature Request #XXX, Application inventory will now run in the background on a first time install
• Back end changes to support ASL-Lite
• Started added link fields into the Vulnerability report to the documentation site.
• Added new configuration settings, APACHE_RESTART_COMMAND which is used by ASL Lite, and MODSEC_RULES_PATH to define the storage location for mod_security rules
• MODSEC_40_APACHE rule class has now been deprecated

Bugfixes:

• Bugfix #236, corrects condition where only the first page of events could be viewed.
• Bugfix #262, restored the whois lookup link for attacker IP field
• Bugfix #310, corrects condition where a blank /etc/asl/VERSION is reported as an error connecting to the update server
• Bugfix #XXX, ASL Web Event Viewer will now parse mod_security events containing the data field correctly
• Bugfix #XXX, ASL Web Event Viewer fix for condition where if not in DB mode the OSSEC event would be displayed over the mod_security ID
• Bugfix #XXX, added conditional logic for ResponseBodyLimitAction
  
  

Upgrading to 2.2.4:

1) Ensure that you allow mysql connections from localhost, and that
skip-networking is not set in /etc/my.cnf

2) yum upgrade

3) asl -s -f

4) Log in to the web interface on port 30000 with your web browser at https://<IP>:30000