DNS Security Extensions is supposed to be the technology that helps to secure the Domain Name System, or DNS , against attack. Yet DNSSEC servers aren't always infallible, as a pair of vulnerabilities proved this week.

This guide explains how you can configure DNSSEC on BIND9 on Debian Squeeze and Ubuntu 11.10.

"...The DNS is vitally important to the proper operation of almost all services on the Internet, and the deployment of DNSSEC in the root zone is the biggest structural improvement to the DNS to happen in twenty years.

The march to secure the Internet's core DNS infrastructure with DNSSEC is moving forward

The Java vulnerability disclosed at the weekend is already being actively exploited to spread malware. A web site for downloading song lyrics is among the sites infected. A Java update which fixes the vulnerability is available

This tutorial shows how you can run your own DNS servers (primary and secondary) with ISPConfig 3. To do this, you need two servers with two different public IP addresses and with ISPConfig 3 installed.

US-CERT is aware of active attacks against linux-based computing infrastructures using compromised SSH keys. The attack appears to initially use stolen SSH keys to gain access to a system, and then uses local kernel exploits to gain root access. Once root access has been obtained, a rootkit known as "phalanx2" is installed.

A nest of poisoned Web sites has been quietly attacking unsuspecting visitors using an arsenal of thirteen different exploits...The infected groups of servers are running various different flavours of Linux, hosting many different versions of Apache. This means it’s unlikely that the root vulnerability is in Apache.

A mass attack ongoing for the past month against Linux Apache Web servers has become increasingly successful because its break-in method makes use of an automated password and installation process, according to a security researcher monitoring its progress.