• Our team is looking to connect with folks who use email services provided by Plesk, or a premium service. If you'd like to be part of the discovery process and share your experiences, we invite you to complete this short screening survey. If your responses match the persona we are looking for, you'll receive a link to schedule a call at your convenience. We look forward to hearing from you!
  • We are looking for U.S.-based freelancer or agency working with SEO or WordPress for a quick 30-min interviews to gather feedback on XOVI, a successful German SEO tool we’re looking to launch in the U.S.
    If you qualify and participate, you’ll receive a $30 Amazon gift card as a thank-you. Please apply here. Thanks for helping shape a better SEO product for agencies!
  • The BIND DNS server has already been deprecated and removed from Plesk for Windows.
    If a Plesk for Windows server is still using BIND, the upgrade to Plesk Obsidian 18.0.70 will be unavailable until the administrator switches the DNS server to Microsoft DNS. We strongly recommend transitioning to Microsoft DNS within the next 6 weeks, before the Plesk 18.0.70 release.
  • The Horde component is removed from Plesk Installer. We recommend switching to another webmail software supported in Plesk.

Atomic Secured Linux (2.2.2) for Plesk 9.2

A

atomicturtle

Golden Pleskian
We are proud to announce the latest release for our flagship Atomic Secured Linux product, the latest in unified threat management systems. Atomic Secured Linux(tm) is an out-of-the-box Unified Security Suite for Linux(tm) systems designed to protect your servers against both known and unknown threats. It is distributed through a subscription yum channel ensuring that ASL is always kept up to date. Unlike other security solultions, ASL works by combining security at all layers, from the Kernel all the way up to the application layer to provide the most complete protection available for Linux servers and helps to ensure that your system is compliant with commercial and government security standards. ASL includes the most hardened kernel on the market, automated system hardening techniques, userspace and host Intrusion Prevention Systems (IPS), malware/rootkit detection and elimination, blacklisting technologies and web application firewalling to protect multiuser and web application hosting environments like no other solution. ASL is uniquely effective at addressing emerging threats posed by vulnerabilities in todays complex systems and applications, such as web hosting environments, multiuser systems, CRM's, ERPs, forums, shopping carts, Content Management systems and custom applications.

Changelog:

  • Feature Request #285, Added vulnerability check for php function pcntl_exec()
  • Feature Request #XXX, added vulnerability check for Plesk XSS vulnerability
  • Feature Request #XXX, added db rotate event for storing alert events in mysql
  • Feature Request #XXX, ossec_database_setup.sh is now safe to run multiple times. It will reset passwords to the default in /etc/asl/config
  • Feature Request #XXX, add SSL checks for courier imap
  • Changed support link in GUI to https://www.atomicorp.com/portal (was http://support.prometheus-group.com)
  • Added more debug routines for update events.
Bugfixes:

  • Bugfix #XXX, Corrected js errors in IE, corrected tag mismatch in /etc/asl-config.xml
  • Bugfix #XXX, to set the mod_security debug log to on / off. The default is to disable the debug log unless we're actually debugging. This is also a performance change.
  • Bugfix #XXX, mod_security check will automatically populate the config file with the configuration token if it does not otherwise exist.
  • Bugfix #XXX, added vulnerability details for the Plesk @Mail exploit
  • Bugfix #XXX, fixed incorrect mod_security vulnerability detail references
  • BugFix #XXX, corrected the filename for mod_security_serversignature
  • Bugfix #XXX, Added missing data for Case #1537, vulnerability info for SA33842
  • Bugfix #XXX, Fix to identify fc11
  • Bugfix #XXX, corrects XSS issue in ASL Web with False Positive feedback
  • Bugfix #XXX, forced LANG=C for password generation events
  • Bugfix #XXX, Case #1258, fix for adding rules for non-localhost database cases
  • Bugfix #XXX, corrected issue with single alert log entry display
  • Bugfix #XXX, adding in more redundancy for other ASL-Web configuration scenarios. This adds in a basic alpha/numeric check.
  • Bugfix #XXX, asl-web-setup will now check for the asl_user table, and will inform the user to run asl -c and/or ossec_database_setup.sh
  • Bugfix #XXX, asl -u 'full debug' mode wasnt working
  • Bugfix #XXX, Added kernel_randshlib to vulnerability report
ASL is available for CentOS 4/5, Fedora 4/6/7/8/9/10, and RHEL 4/5 for a limited time price of $158/year per server. Not running one of these Operating Systems? Try our rules-only channel for mod_security and clamav updates here.
 
You must log in or register to reply here.

Similar threads

afuego
Question Best linux for Plesk?
Replies
2
Views
2K
afuego
afuego
michaeljoseph01
Question Imunify360 or fail2ban PLEASE give me your input
Replies
6
Views
4K
The 8th
The 8th
duy13
[AntiDDoS] for Plesk Panel with vDDoS Proxy Protection
Replies
0
Views
4K
duy13
duy13
F
Resolved Trying to Install Ghost CMS as a Node.js app isn't working
Replies
4
Views
5K
FifthRateIntellectual
F
K
Issue Any known issues | Plesk Email Security with Plesk Premium Email
Replies
5
Views
2K
karam
K
Back
Top