They're actually distinct issues, and neither of them are cause for concern. The file/directory not found messages will be addressed in a future update to Ossec. For the events being generated for /etc/asl/whitelist, adding an ignore rule for this file in the file integrity settings is suggested. Th...
Atomic Secured Linux™ 4.0.14 (Johnny Cab) now available! Release Notes This is a maintenance update to ASL 4.0.14 Changelog - Enhanced IPS reporting for CVE-2015-5477 - Bugfix #1873 - Adds SSLProxyEngine setting to twaf when end point is https - Bugfix #1872 - changing tlsserverciphers and tlsclient...
There shouldn't be any action required. Upgrading via their store should result in an updated license for you, which AUM would notice the next time it was run.
Release Notes This is a mainteance update to ASL 4.0.13 Changelog - Added ip_set_hash_ip to forced module load - Updated low level portscan detection to automatically exclude localhost - Modified syn scan engine to ignore half open requests on loopback - Updated ASL to support new fuzzy malware det...
Don't see anything odd in the my.cnf, and 70m isn't much for mysql to be dealing with. The alert and aslw_archive_tmp tables are cleaned automatically and don't have much in them, 3 days and the current calendar month respectively. Is this load constant or only happens when you try to load ASL Web? ...
UPDATE_TYPE needs to be set to one of the listed allowed values. Disabling should be done by setting AUTOMATIC_UPDATES to "none" CLAMAV_LogFileMaxSize - fix for this erroring when set to its default value has been committed and will be in our next release CLAMAV_MaxFileSize - case matters,...