If modsecurity is configured with this directive:
SecAuditLogRelevantStatus "^(?:5|4(?!04))"
It will log all 4xx and 5xx events for apache (except 404 events, as in the example above). We recommend...
View More
Question:
I am in the processing of changing servers and have built the new server and installed ASL, but wondering if I can copy the config from one server to another?
Answer:
The supported way...
View More
There are ways to reduce some of the CPU load from services such as analysisd, syscheckd, mysql and the openscap scan in OSSEC. Analysisd receives the log messages and compares them to the rules. I...
View More
If you are seeing errors like this with PHP 7.x:
Dec 21 14:53:18 web kernel: PAX: terminating task: /opt/plesk/php/7.2/sbin/php-fpm(php-fpm):63667, uid/euid: 10000/10000, PC: 00000349116fc010, SP...
View More
Introduction
Atomic Secured Linux, or ASL for short, is a powerful security suite that will be analyzing actions of your system in real time. For it to work correctly it will need a properly tuned...
View More