Fighting Spam with ASL
Spam is a complex topic. It can be in your mailbox, your browser, your mobile device. It can be blatant and obvious like a flashing popup, or silent and nefarious, hijacking banner [...]
Atomic reaches 1 million servers and counting…
Some time back in january the Atomic repo for the first time hit 1 million active servers in a single month. These stats dont count devices behind nat, or private repo users so it [...]
Blocking outbound spam and viruses with ASL
How do you prevent outbound spam and viruses from being sent from your server? Just enable the FW_OUTPUT_MTA feature in ASL. This feature will block all outgoing email thats [...]
Zero Days: Hype or Reality?
While participating in a security conference, I was asked a very important question: "How do we protect ourselves from Zero Days?". My answer: "There is no such t [...]
XMLRPC vulnerability: An oldie but a goodie
And oldie but a goodie: we run a number of honeypots as part of our ongoing efforts to learn what attackers are doing and how to best protect customers and users of our produ [...]
Are firewalls and patching enough?
We got an interesting question from a potential customer recently that I'd like to answer here. Our customer asked: "I recently purchased a new dedicated server. I was told t [...]
Why does use so much memory?
Note: This article is not about Atomic Secured Linux (ASL), it is about all modern Linux based systems. This characteristic of modern Linux based systems is universal to all mo [...]
ASL Kernel 2.6.32.41 updates
Now that we're nearing the finish line for the 3.0 ASL release, there has been some time for those of us that are not gifted with user interface design skills to focus on some much [...]
Detection and Tripwires
Recently we had a customer ask a great question if the WAF could be configured to only inspect attacks if the file existed. In other words, to only look at an action if the U [...]
Virtual Patching
Virtual patching is an invaluable tool for immediate remediation to fix vulnerabilities in web applications. Atomic Secured Linux and the Atomicorp.com modsecurity rules contain th [...]