Atomicorp

The QA build may be installed with the following command:
This update will be in the normal release channel on Monday.

They're actually distinct issues, and neither of them are cause for concern. The file/directory not found messages will be addressed in a future update to Ossec. For the events being generated for /etc/asl/whitelist, adding an ignore rule for this file in the file integrity settings is suggested. Th...

What are the contents of any of these files that you have present on your system:

/etc/centos-release
/etc/redhat-release
/etc/os-release

Does this still occur today running /var/asl/bin/aum -uf

A fix for this will be in an update Monday. The emails may be ignored, there's just something in the cron outputting a blank line.

A fix for this will be available in our next release.

You may set this in ASL Web in the options tab of the File Integrity window.

Files in /var/asl/data should not be manipulated.

Atomic Secured Linux™ 4.0.14 (Johnny Cab) now available! Release Notes This is a maintenance update to ASL 4.0.14 Changelog - Enhanced IPS reporting for CVE-2015-5477 - Bugfix #1873 - Adds SSLProxyEngine setting to twaf when end point is https - Bugfix #1872 - changing tlsserverciphers and tlsclient...

There shouldn't be any action required. Upgrading via their store should result in an updated license for you, which AUM would notice the next time it was run.

Release Notes This is a mainteance update to ASL 4.0.13 Changelog - Added ip_set_hash_ip to forced module load - Updated low level portscan detection to automatically exclude localhost - Modified syn scan engine to ignore half open requests on loopback - Updated ASL to support new fuzzy malware det...

Don't see anything odd in the my.cnf, and 70m isn't much for mysql to be dealing with. The alert and aslw_archive_tmp tables are cleaned automatically and don't have much in them, 3 days and the current calendar month respectively. Is this load constant or only happens when you try to load ASL Web? ...

Couple of questions:

What does your mysql config look like?
What does your system load look like when no ASL Web is open?

If it is not corrected by running ' /var/asl/bin/aum -uf ', please open a case in the support portal.

The issue will be with the creation of triggers in the database, but cause and solution can vary.

Ah, thats happening because some browsers dont expand your custom reports name in the menu. Corrected css will be in our next update.

For now, just make the report names shorter if you are using an effected browser. Chrome seems to have this issue.

UPDATE_TYPE needs to be set to one of the listed allowed values. Disabling should be done by setting AUTOMATIC_UPDATES to "none" CLAMAV_LogFileMaxSize - fix for this erroring when set to its default value has been committed and will be in our next release CLAMAV_MaxFileSize - case matters,...