|
Release notes
This update contains the first phase for the AUM (Atomic Updater Modified) branch that acts as a standalone updater for ASL components. At this time it is identical to running the asl -u command. In the future we will be field-testng new update infrastructure through AUM.
Changelog
- - Added aum, the Atomic Updater Modified
- - Added permissions check to /var/asl/data
- - Removed IP fowarding requirement in the T-WAF
- - Bugfix #XXX, add phase: element to vhost WAF rule management
To Upgrade:
asl -u
or
yum upgrade asl asl-web asl-waf-module
|
|
|
Changelog
- - Add support for dynamic /etc/asl/config updates
- - Add support for dymamic template updates
- - Merge Anti-Evasion WAF groups into a single group
- - Deprecated ip_forward requirement in T-WAF
- - Deprecate WAF_ENABLE setting, this is no longer necessary
- - Deprecate recursive setfacl, this could take a very very long time. New behavior is just to do the top level audit
- - Feature Request #721, Add ossec signatures as asl -u updates
- - Feature request #864, catch the tortix database already exists error database-setup will now prompt to re-install the database if it detects that it exists
- - Feature Request #877, disable SafeBrowsing in freshclam by default
- - Add function to create waf-config if it does not exist
- - Bugfix #XXX, check for existance of /proc/sys/net/ipv6/conf/all/accept_source_route (needed for older kernels)
- - Bugfix #XXX, Fixes for removing old asl_waf.conf files, updates for newlines in proxy statements
- - Bugfix #XXX, add Listen directive and trailing slash on proxy directives
- - Bugfix #XXX, correct order of asl_waf output for plesk configs
To Upgrade:
asl -u
or
yum upgrade asl asl-web asl-waf-module
|
Release NotesMore elements of dynamic content (rootkit databases, detection tools, configs) have moved from the package bundled elements to the dynamic rule update system we use for the WAF, HIDS and malware detection system. This should be a transparent update to existing users, its primarily a method for streamlining distribution of frequently updated components of ASL.
Changelog
- - Add asl-port-check to dynamic updates
- - Add dynamic updates for base config
- - Add dynamic updates for firewall modules
- - Add dynamic updates for templates
- - Deprecate PSA_WAF_ENABLE (now part of T-WAF)
- - Deprecate internally distributed asl-port-check
- - Feature Request #721, add ossec signatures to update event
- - Bugfix #XXX, ASL Web, Fixes disabling a rule for multiple vhosts
- - Bugfix #XXX, add output rule to accept all from localhost
To Upgrade:
asl -u
or
yum upgrade asl asl-web asl-waf-module
|
|
Changelog
- Update to ASL Web, add HIDS rules to fp handling
- Bugfix #XXX, change permissions-check to not do a generic chmod in the /var/asl/data directory
- Bugfix #XXX, only reload firewall rules via fix mode
- Bugfix #XXX, correct condition where clamav would not be disabled in psa-proftpd when clamav was set to no
- Bugfix #XXX, add reject to output policy
- Bugfix #867, suppress output from HIDS cleanup event
To Upgrade:
asl -u
or
yum upgrade asl asl-web asl-waf-module
|
|
Release Notes:
This release is mainly about adding in the release field to package update checking. The release field is the -<number> following the version field. Previous releases only looked at the version field when determining an update.
Changelog
- - Updates will now track the release field as part of the version and in the -v output
- - Update to open port tracking system
- - Bugfix #XXX, ASL Web, Fixes scrollbar in connections window; removes presence check for stateful rule in firewall rules
- - Bugfix #XXX, disable --noflush on the running.fw settings
- - Feature request #853, return error if DAZUKO use is detected, and ASL kernel / modules are not present
- - Feature Request #857: Extend --permissions-check to all ASL config files and session dirs
To upgrade:
asl -u
or
yum upgrade asl asl-web asl-waf-module
|
|
|
|
|
<< Start < Prev 1 2 3 4 5 6 7 8 9 10 Next > End >>
|
|
Page 4 of 11 |
