Atomic Secured Linux (2.2.2) for Plesk 9.2

[atomicturtle]

We are proud to announce the latest release for our flagship Atomic Secured Linux product, the latest in unified threat management systems. Atomic Secured Linux(tm) is an out-of-the-box Unified Security Suite for Linux(tm) systems designed to protect your servers against both known and unknown threats. It is distributed through a subscription yum channel ensuring that ASL is always kept up to date. Unlike other security solultions, ASL works by combining security at all layers, from the Kernel all the way up to the application layer to provide the most complete protection available for Linux servers and helps to ensure that your system is compliant with commercial and government security standards. ASL includes the most hardened kernel on the market, automated system hardening techniques, userspace and host Intrusion Prevention Systems (IPS), malware/rootkit detection and elimination, blacklisting technologies and web application firewalling to protect multiuser and web application hosting environments like no other solution. ASL is uniquely effective at addressing emerging threats posed by vulnerabilities in todays complex systems and applications, such as web hosting environments, multiuser systems, CRM's, ERPs, forums, shopping carts, Content Management systems and custom applications.

Changelog:

• Feature Request #285, Added vulnerability check for php function pcntl_exec()
• Feature Request #XXX, added vulnerability check for Plesk XSS vulnerability
• Feature Request #XXX, added db rotate event for storing alert events in mysql
• Feature Request #XXX, ossec_database_setup.sh is now safe to run multiple times. It will reset passwords to the default in /etc/asl/config
• Feature Request #XXX, add SSL checks for courier imap
• Changed support link in GUI to https://www.atomicorp.com/portal (was http://support.prometheus-group.com)
• Added more debug routines for update events.

Bugfixes:

• Bugfix #XXX, Corrected js errors in IE, corrected tag mismatch in /etc/asl-config.xml
• Bugfix #XXX, to set the mod_security debug log to on / off. The default is to disable the debug log unless we're actually debugging. This is also a performance change.
• Bugfix #XXX, mod_security check will automatically populate the config file with the configuration token if it does not otherwise exist.
• Bugfix #XXX, added vulnerability details for the Plesk @Mail exploit
• Bugfix #XXX, fixed incorrect mod_security vulnerability detail references
• BugFix #XXX, corrected the filename for mod_security_serversignature
• Bugfix #XXX, Added missing data for Case #1537, vulnerability info for SA33842
• Bugfix #XXX, Fix to identify fc11
• Bugfix #XXX, corrects XSS issue in ASL Web with False Positive feedback
• Bugfix #XXX, forced LANG=C for password generation events
• Bugfix #XXX, Case #1258, fix for adding rules for non-localhost database cases
• Bugfix #XXX, corrected issue with single alert log entry display
• Bugfix #XXX, adding in more redundancy for other ASL-Web configuration scenarios. This adds in a basic alpha/numeric check.
• Bugfix #XXX, asl-web-setup will now check for the asl_user table, and will inform the user to run asl -c and/or ossec_database_setup.sh
• Bugfix #XXX, asl -u 'full debug' mode wasnt working
• Bugfix #XXX, Added kernel_randshlib to vulnerability report

ASL is available for CentOS 4/5, Fedora 4/6/7/8/9/10, and RHEL 4/5 for a limited time price of $158/year per server. Not running one of these Operating Systems? Try our rules-only channel for mod_security and clamav updates here.