The Internet Systems Consortium (ISC) recently released a security patch for Bind, a domain name system (DNS) server used by websites and hosting services.<\/p>\n
It fixed an issue in Bind which allowed attackers to crash it, which could make a website unreachable to visitors.<\/p>\n
DNS resolves a domain name, such as mybroadband.co.za, into the IP address of the server where the associated website or service is located.<\/p>\n
Security vendor Sucuri explained that DNS is a\u00a0critical part of Internet infrastructure<\/a><\/strong>. If you knock the name servers of a domain offline, e-mail, HTTP, and other services linked to that domain will be unavailable.<\/p>\n The vulnerability exists because of the way Bind handles TKEY queries. According to Sucuri, a single UDP packet can trigger an assertion failure, causing the DNS daemon to exit.<\/p>\n Although the ISC released a patch along with security advisory CVE\u20132015\u20135477<\/a><\/strong>, sites remain unpatched.<\/p>\n It said patches are available for all major Linux distributions, and can be installed with commands (\u201cyum update\u201d on Red Hat\/Centos and \u201capt-get update\u201d on Debian-based systems).<\/p>\n Sucuri said those who run their own DNS servers must look for any type of TKEY request in their\u00a0DNS logs to see if they are being targeted.<\/p>\n Hackers are costing South Africa millions<\/strong><\/a><\/p>\n Apple OS X vulnerable to big 0-day security flaw<\/strong><\/a><\/p>\n Trust in government departments, private companies leads to identity theft<\/strong><\/a><\/p>\nMore security news<\/h3>\n