Difference between revisions of "ASL Release Schedule"
(→Tasks in progress) |
(→Tasks in progress) |
||
Line 22: | Line 22: | ||
2) Update to mod_security 2.5.5 (Completed, available in asl-2.0-testing) | 2) Update to mod_security 2.5.5 (Completed, available in asl-2.0-testing) | ||
− | 3) Extend clamav support to cover email ( | + | 3) Extend clamav support to cover email (This is now Complete, and available in asl-2.0-testing) |
- Create basic configuration interface for Plesk (PSA will be a dependency) | - Create basic configuration interface for Plesk (PSA will be a dependency) |
Revision as of 15:50, 16 July 2008
Contents |
Current Release is: 2.0
Next Release is: 2.0.1
Target Date: 23JUN08 <- Which we missed, really really badly. New Target date is: 18JUL08
Tasks in progress
1) Mysql support for the alert engine (This is now Complete, and available in asl-2.0-testing):
- Get mysql configuration Logic into the ossec and configuration modules - Web interface chages - Support Mysql - Also support reading files (current system) - Add in basic search capabilities - (option) Add in archiving events (for mass storage)
2) Update to mod_security 2.5.5 (Completed, available in asl-2.0-testing)
3) Extend clamav support to cover email (This is now Complete, and available in asl-2.0-testing)
- Create basic configuration interface for Plesk (PSA will be a dependency)
Screenshots of what we now call "Atomic-Scanner"
Atomic Scanner showing individual user settings
Atomic Scanner stats page part 2
2.0RC3 Tasks (Completed)
The following lists the targets for the next release date. This does list does not always indicate bug fixes.
1) OSSEC 1.5 integration:
- Integrating its new features (asterisk support, client management, etc) - Optimizing the whitelist/blacklist/geoblocking - Optimizing the blocklist displays
2) Kernel update to 2.6.24.7 (Note: 2.6.25.4 was the final version)
- Investigating SMP, and Cisco PIX bugs - OpenVZ / Virtuozzo support (Note: This was bumped to a later date. It could not be done with 2.6.25.4)
Feature Candidates
AtomiCommunity - RBL/Reputation based system to share/use attack/spammer data with ASL community.
AtomiRBL - Local RBL functionality - to share attack data with trusted nodes (Your boxes basically)
suphp support, this would include some kind of graphical integration with plesk
Add vendor updates to vulnerability checks (ie, did you update your box?). This is a major expansion to the vulnerability checks on the system. Orders of magnitude larger
Enterprise Auditing Shell support. This tracks commands from shell accounts and allows you to replay what happened. Kind of like a tivo.
Expand Active Response blocklist to collect the specific attack event, instead of just the OSSEC rule ID.
Standalone ASL web interface, that does not require plesk. As a bonus, this feature would allow us to password protect the ASL gui in plesk as well.
Firewall gui