Whats new in 2.0.7 Release Candidate 3:

Added support for Plesk 9 Updated ASL installer to 2.0.2, this supports the new firstboot architecture. New installs will now trigger a test-mode event that will set the ASL kernel to boot only once, and if it is successful make that kernel the new default. Previous behavior was to always make the kernel the default.Note, this does not apply to upgrade events yet. Feature #xxx - added detection for php functions: escapeshellcmd

Bugfixes:

•  bugfix #172, ossec mysql changed default to use the TCP socket, rather than the local socket. Local sockets cannot survive a mysql restart without a dbd restart.
•  bugfix #193 - added /var/asl/data/templates/general_updates_pending
•  bugfix #xxx - Bugfix for condition where mysql is not installed, and the user selects No. This was reporting that mysql was installed even if the user chose not to use it.
•  bugfix #xxx - changed proftpd.conf-tls-template to only allow SSLv3 (was SSLv23)
•  bugfix #xxx - proftp.conf-tls include is now written to proftpd.conf, rather than proftpd.include
•  bugfix #xxx - ossec_check now removes mysql settings correctly when mysqlsupport is disabled after it has been enabled.
•  bugfix #xxx - improved version detection, -testing builds will now reflect they are newer correctly
•  bugfix #xxx - added vulnerability information for psmon_installed/not installed check
•  bugfix #xxx - lowered psmon vulnerability severity from critical to moderate

To Install asl-2.0.7-3, and asl-web-gui 1.0.4-2  (with Plesk 9 support):

yum --enablerepo=asl-2.0-testing upgrade asl asl-web-gui

We've talked about this a lot over the last year or so, Atomic-Scanner is a web-based front end on qmail-scanner to implement anti-spam and anti-virus capabilities in Plesk. Last month we asked you the users what you'd like to see in ASL, and by overwhelming majority (I think it was 4:1 over the 2nd place) this was what people asked for. But before I go any further, the eye candy

We've got big plans for Atomic Scanner,  since this is much more deeply integrated into Plesk we can do some much more interesting things with it. Lets go over the basic features in Atomic Scanner first:

• Supports every A/V scanner we could find (nearly 20!), and comes with ClamAV by default 
• Support Spamassassin, enabled by default
• Allows you to escrow mail, this means you can archive mail to, or from a user/domain/regex. Lots of potential here for compliance reasons, or general anti-spam debugging.
• Delete/Reject/Quarantine mail based on Spamassassin score
• Add disclaimer to mail going through the server
• Extensive statistics, spam, total mail, viruses, etc.

Going forward I can see us being able to implement all sorts of other interesting things, like quarantine folders, automatic bayes training, spam traps, etc. Personally the statistics package is the most interesting to me,  and I'd like to get more features on that front into the schedule (per-user stats maybe?).  If that interests you, or you have any other ideas vote for it here .

Whats new in ASL 2.0 

Support for Fedora 9 Update Kernel to 2.6.25.4 Update OSSEC to 1.5 Added perl-DBD-SQLite Active Response system is now SQL driven

  Bugfixes:

• Bugfix, performance improvements for large shun rule lists
• Bugfix, psmon monitoring OSSEC in non-response mode will no longer try to start execd
  
• Bugfix, Interface fixed typo in Logfile: path that would not report the full path correctly
• Bugfix #59, non-clearing block list bug. Shuns that were expired were being reported as active.
  
• Bugfix #104, register_globals, and safe_mode on/off suppor
• Bugfix #138, Interface, HTML rendering in alerts page in the body-capture section of the alert.