DNS Error Causes Sweden To Go Offline – Dark Reading

Failed software update causes ".se" domain to temporarily disappear from Web
October 15, 2009
An incorrect software update caused more than 1 million Websites in Sweden to go offline for more than an hour Monday night.
According to a news report, programmers forgot to add a crucial period when configuring a script upgrade, breaking the DNS lookup chain and leaving all of Sweden's domains off the grid until the problem could be located and fixed.
The Swedish Internet Infrastructure Foundation issued the following statement:
".SE (The Internet Infrastructure Foundation) sent out an incorrect zone file Monday October 12 at 21.45, in connection with a planned maintenance work. The cause was an incorrect software update, which, despite our testing procedures were not detected. Thanks to well-functioning surveillance system .SE discovered the error immediately and a new file with the DNS data (zone file) was produced and distributed within one hour.
"To minimize the impact on the availability of .se domains, we chose to produce and distribute a zone file that lacked proper signatures for DNSSEC to quickly come out with the correct DNS information. Subsequently, we generated immediately initiated a zone file according to normal procedures. It was fully distributed 01:00 am.
"The false information that was sent out affected accessibility to all .se domains for a short time. However, there may still be some name servers that have not changed out of misinformation against the real. BIND resolver can be forced to refresh the .SE-zone by issuing the command "rndc flush" or by doing a restart. Similar commands exist for other resolver softwares.
"Right now is an ongoing internal investigation to find out the cause of the faulty software update so that we can improve our procedures further."
Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.
Dark Reading Staff
Dark Reading
Dark Reading is a leading cybersecurity media site.
You May Also Like
Preventing Attackers From Wandering Through Your Enterprise Infrastructure
Empowering Developers, Automating Security: The Future of AppSec
Black Hat USA – August 3-8 – Learn More
Elastic named a Leader in The Forrester Wave™: Security Analytics Platforms, Q4 2022
2023 Global Threat Report
EMA: AI at your fingertips: How Elastic AI Assistant simplifies cybersecurity
Industrial Networks in the Age of Digitalization
How Enterprises Assess Their Cyber-Risk
A Year in Review of Zero-Days Exploited In-the-Wild in 2023
Leveling Up Cyber-Threat Intelligence Maturity for More Value and Better Insights
Elastic named a Leader in The Forrester Wave™: Security Analytics Platforms, Q4 2022
Shining a light in the dark: observability and security, a SANS profile
The Cloud Threat Landscape: Security learnings from analyzing 500+ cloud environments
Black Hat USA – August 3-8 – Learn More
Copyright © 2024 Informa PLC Informa UK Limited is a company registered in England and Wales with company number 1072954 whose registered office is 5 Howick Place, London, SW1P 1WG.

source

About The Author

admin

See author's posts