Thanks for the feedback.
A great addition was the firewall in the gui. But there are no sample-suggested rulesets on your wiki...
We're going to be including sample rulesets in ASL in the very near future. We're looking at adding in a wizard too that will make it easy to setup "canned" rulesets.
kill proccesses that seem suspicious or are jammed.
Great idea. ASL can actually do that now, we just havent pushed out any rules to do this because we aren't completely comfortable with ASL doing that yet. We want to do some more testing before we turn that on. I've definitely seen CSF kill things it shouldnt (like it used to kill ossec processes). No one wants that to happen. We will add this in, we just want to be careful about how we do it.
Another issue that has been troubling me is the following. ASL kernel seems to use up all memory resources
Could you elaborate on that? The kernel itself can't do that, so did you mean that your applications are using up all your memory on your Plesk server? And if so, what applications on your system were using up all your memory? It sounds like from your previous comments that the Parallels Plesk backup tool is using up all your memory, is that correct? If so, have you opened a case to report this problem to Parallels? And what did they say the cause was?
Also, regarding cpanel, did you know that ASL works with cpanel? Are you using ASL with cpanel?
Thank you for your time guys and keep up the great job you do there at the ASL labs
Our pleasure and thank you for the feedback and thanks! You are most welcome!
Hello Mike !
That would be great. And its also very logical and correct to test the software before it starts killing processes.
Plesk has one of the worst backup utilities ever ...
Sorry my bad, its not the kernel itself. Generally when you run asl you also run clamav (very consuming in memory...) and ossec some times uses a lot of resources plus the kernel doesn't seem to "release" ram to "free" state as the default kernel does.
I will soon try out on a test install Cpanel with ASL to see how they respond. This is something i've wanted to do for a long time but there was no free time to do exaustive testing.
CSF looks like a toy in comparison to ASL. Basically there can't even be a comparison of ASL and CSF according to my opinion. Sorry CSF guys
But to be honest, on the plesk + asl box I have most of the eshops or mission critical websites where in the cpanel box there are mostly "cheap" clients and ressellers that I don't want to waste excessive system resources to protect and I don't want to waste time with them complaining about false positives from mod security.
Generally I think in order you can retain profit, shared hosting and managed hosting should be treated in a dfferent manner.
Personally on my www1 server I don't have a control panel at all. I do all configuration by hand. I do the backup with my own scripts and it has never crashed !