Difference between revisions of "ASL Release Schedule"

From Atomicorp Wiki
Jump to: navigation, search
(Tasks in progress)
(Next Release is: 2.0.1)
Line 3: Line 3:
  
  
== Next Release is: 2.0.1 ==
+
== Next Release is: 2.0.4 ==
  
  

Revision as of 10:41, 22 July 2008

Contents

Current Release is: 2.0

Next Release is: 2.0.4

Target Date: 23JUN08 <- Which we missed, really really badly. New Target date is: 18JUL08

Tasks in progress

1) Mysql support for the alert engine (This is now Complete, and available in asl-2.0-testing):

 - Get mysql configuration Logic into the ossec and configuration modules
 - Web interface chages
   - Support Mysql
   - Also support reading files (current system)
   - Add in basic search capabilities
   - (option) Add in archiving events (for mass storage)

2) Update to mod_security 2.5.5 (Completed, available in asl-2.0-testing)

3) Extend clamav support to cover email (This is now Complete, and available in asl-2.0-testing)

 - Create basic configuration interface for Plesk (PSA will be a dependency)

Screenshots of what we now call "Atomic-Scanner"

Atomic Scanner showing individual user settings

Atomic Scanner stats page

Atomic Scanner stats page part 2

2.0RC3 Tasks (Completed)

The following lists the targets for the next release date. This does list does not always indicate bug fixes.

1) OSSEC 1.5 integration:

 - Integrating its new features (asterisk support, client management, etc)
 - Optimizing the whitelist/blacklist/geoblocking
 - Optimizing the blocklist displays

2) Kernel update to 2.6.24.7 (Note: 2.6.25.4 was the final version)

 - Investigating SMP, and Cisco PIX bugs
 - OpenVZ / Virtuozzo support (Note: This was bumped to a later date. It could not be done with 2.6.25.4)


Feature Candidates

AtomiCommunity - RBL/Reputation based system to share/use attack/spammer data with ASL community.

AtomiRBL - Local RBL functionality - to share attack data with trusted nodes (Your boxes basically)

suphp support, this would include some kind of graphical integration with plesk

Add vendor updates to vulnerability checks (ie, did you update your box?). This is a major expansion to the vulnerability checks on the system. Orders of magnitude larger

Enterprise Auditing Shell support. This tracks commands from shell accounts and allows you to replay what happened. Kind of like a tivo.

Expand Active Response blocklist to collect the specific attack event, instead of just the OSSEC rule ID.

Standalone ASL web interface, that does not require plesk. As a bonus, this feature would allow us to password protect the ASL gui in plesk as well.

Firewall gui

Personal tools