In case you haven't already seen it elsewhere, there is a BIND (DNS server) update available which fixes a remotely exploitable issue that will kill the DNS server. It's apparently not going to allow remote access to the system or privilege escalation, but because of the denial of service it's fairly critical.

For almost all of our hosted clients, this isn't a big deal because we just slave our servers off theirs, and block their servers from public access -- for exactly this sort of reason. Our primary server has been updated, and had a "check and restart" script running against it anyway.

If you run a publicly available BIND server, be sure to do the update. Of course, if you need any help, that's what we're here for. :-)
(Post Reply)