Long-form thinking on cyber defence, detection, and resilience — from Slackware-era honeypots through to AI-driven SOC analytics.
Showing posts tagged patching — 3 results.
ISC has released BIND 8.2.3 with another set of security fixes. The catalogue of BIND advisories now reads as its own small genre. A short note on what is new and on what the steady drumbeat of advisories implies.
After a year of advisories and patches, the gap between 'we patched the bug' and 'we are not vulnerable' is wider than I had appreciated. A walk through the failure modes that survive any patching regime.
Another major BIND advisory in three months. The NXT-record buffer overflow is being exploited in the wild before most operators have patched. A reflection on how 'patched' is not the boolean condition we treat it as.