Software Update: EnGarde Secure Linux 3.0.14

EnGarde Secure Linux is a Linux distribution aimed at serving servers with a high level of security. It contains a number of standard applications that allow you to perform various server tasks without any problems, such as serving dynamic websites, mail and performing network intrusion detection. For more information, we refer you to this page† Version 3.0.14 has recently been released and includes the following announcement:

EnGarde Secure Community 3.0.14:

Guardian Digital is happy to announce the release of EnGarde Secure Community 3.0.14 (Version 3.0, Release 14). This release includes many updated packages and bug fixes, some feature enhancements to Guardian Digital WebTool and the SELinux policy, and a few new features.

The following reported bugs from bugs.engardelinux.org are fixed in this release:

• #0000130 Want to delete a previously run backup from the webtool
• #0000136 Can’t upload files in website with php.
• #0000138 certificate signing request returns blank
• #0000144 subfolder for mails in homedir
• #0000145 Feature request for Gopher
• #0000147 sa update error
• #0000148 Could you please add bz2.so mycript.so and mhash.so to PHP…
• #0000149 Feature Request: OpenVPN Package

Several other bugs are fixed in this release as well.

New features include:

• Major feature enhancements to Network Intrusion Detection System. The Attack Monitor now shows much greater detail on each attack (including links to packet dumps and CVE information) and refreshes automatically using AJAX. Also, the graphs are now much easier to read and are generated faster.
• There is now a link to the Network Attack Monitor directly from the main WebTool Auditing menu. This makes monitoring the Network IDS much easier.
• There were several improvements made to the hardware detection subsystem of einstall, the EnGarde Secure Linux Installer, which makes installing on newer hardware more reliable.
• Several new packages such as gopher (3.0.13), libmcrypt (2.5.8), lua (5.1.2), openvpn (2.0.9), perl-Crypt-Cracklib (1.1), and perl-IO-Zlib (1.05 ).
• The latest stable versions of asterisk (1.4.4), bacula (2.0.3), bind (9.4.1), clamav (0.90.2), curl (7.16.2), engarde-policy (3.14), fetchmail (6.3 .8), freetype (2.3.4), gnupg (1.4.7), imap (2006g), krb5 (1.6.1), m4 (1.4.9), memtest86+ (1.70), mrtg (2.15.2), nagios plugins (1.4.8), ntp (4.2.4p0), openssh (4.6p1), php (4.4.7), php5 (5.2.2), postfix (2.4.1), squid (2.6.STABLE12), syslog -ng (1.6.12), webtool (3.14), and zaptel (1.4.2.1).

All new users downloading EnGarde Secure Linux for the first time or users who use the LiveCD environment should download this release.

Users who are currently using EnGarde Secure Linux do not need to download this release — they can update their machines via the Guardian Digital Secure Network WebTool module.

EnGarde Secure Community 3.0.13:

Guardian Digital is happy to announce the release of EnGarde Secure Community 3.0.13 (Version 3.0, Release 13). This release includes many updated packages and bug fixes, some feature enhancements to Guardian Digital WebTool and the EnGarde Secure Linux Installer, and a few new features.

The following reported bugs from bugs.engardelinux.org are fixed in this release:

• #0000137 Reference to /usr/lib in php.ini on x86_64
• #0000135 AUTHENTICATION FEATURE : Kerberos
• #0000134 PHP5 built with cURL support.
• #0000133 Duplicate packages
• #0000106 Pyzor for Engarde
• #0000094 phpMyAdmin HTTP/Cookie login doesn’t work

Several other bugs are fixed in this release as well.

New features include:

• A new document on engardelinux.org, “A Guided Tour of EnGarde Secure Linux”, which takes through installing and configuring some of EnGarde’s essential services, including Web, mail and FTP, pausing occasionally to point out how EnGarde helps you maintain a secure environment .
• There is now a link to the SELinux Audit Monitor directly from the main WebTool Auditing menu. This makes debugging SELinux policy violations much easier.
• There were several improvements made to the hardware detection subsystem of einstall, the EnGarde Secure Linux Installer, which makes installing on MegaRAID and SATA more reliable.
• We trimmed the list of packages which are installed by default and made some changes to the LiveCD filesystem to make the EnGarde Secure Linux ISO image smaller.
• Some aesthetic improvements were made to the Guardian Digital Secure Network Update Agent.
• A few new packages such as krb5 (1.6) and pyzor (0.4.0).
• The latest stable versions of clamav (0.90), dmidecode (2.9), fetchmail (6.3.7), openssl (0.9.8e), php (4.4.6), php5 (5.2.1), snort (2.6.1.3), and spamassassin (3.1.8).