DNS (bind) issues and… (missing) security policies

Yesterday morning I’ve been notified, by the monitoring platform running at a customer site (NAGIOS, actually), that two distinct DNS services (two BIND instances running on two different Linux hosts – different distributions and different bind versions) gone down at mostly the same time: [08-05-2015 02:09:33] SERVICE ALERT: srv-*****;dns;CRITICAL;HARD;3;CRITICAL – Plugin timed out while executing … [Read more…]