Bienvenue sur Lilotux !
Webmail Galerie MiKael Xavier Stephane


Le Monde

Une élection à 100 millions de dollars en Caroline du Nord
La bataille politique qui se joue pour l'élection sénatoriale dans cet Etat américain pourrait devenir la campagne électorale la plus coûteuse de l'Histoire.
Quinze Argentins condamnés pour des actes de torture sous la dictature
Ils ont été condamnés à la prison à perpétuité pour avoir torturé et assassiné des détenus dans un centre clandestin.
Un « loup solitaire » attaque des policiers à la hachette à New York
La police new-yorkaise a indiqué, vendredi, que l'homme qui s'en était pris à des agents des forces de l'ordre, jeudi, était converti à l'islam.
Ligue 1 : Lens bat Toulouse et n'est plus dernier
Les Sang et Or sont allés chercher à Toulouse leur première victoire depuis fin août (2-0), vendredi en ouverture de la 11e journée de Ligue 1.
Deux morts dans un lycée près de Seattle après des tirs de coups de feu
Un tireur aurait blessé au moins six personnes et tué une personne avant de se suicider avec son arme.
Combats de rue et tension à Jérusalem et en Cisjordanie
Deux jours après un attentat ayant causé la mort d'un bébé à Jérusalem, un adolescent palestinien a été tué par balle par l'armée israélienne près de Ramallah.
Ligue 1 : victoire de Lens sur Toulouse (0-2)
La lanterne rouge se déplaçait à Toulouse (9e) en ouverture de la 11e journée du championnat de France.
Tournoi de Bercy : tirage difficile pour Djokovic, Nadal absent
Le Serbe défend son titre, lors d'un tournoi où l'on surveillera Suisses et Français, un mois avant leur finale de la Coupe Davis, et où Federer pourrait poursuivre l'opération reconquête de la place de n°1 mondial.
La justice française autorise l'extradition du Kazakh Moukhtar Abliazov
Détenu en France depuis son arrestation en juillet 2013, cet ancien banquier et ministre est accusé de « détournement » en Russie et en Ukraine.
L'Iran veut une enquête dans l’affaire des attaques à l’acide
Le président iranien a exprimé sa « profonde désolation » pour les victimes et demandé aux services de police d'accélérer l'enquête pour identifier rapidement les coupables.

Linux Weekly News

Taiga, a new open source project management tool with focus on usability (Opensource.com)
Opensource.com takes a look at the Taiga project management tool. "It started with the team at Kaleidos, a Madrid-based company that builds software for both large corporations and startups. Though much of their time is spent working for clients, several times a year they break off for their own Personal Innovation Weeks (ΠWEEK). These are weeklong hack-a-thons dedicated to personal improvement and prototyping internal ideas of all sorts. While there, they unanimously decided to solve the biggest of their own problems: project management.
Taiga was born, and by early 2014, the team at Kaleidos was already using Taiga for all their internal projects. Taiga Agile, LLC was formed in February 2014 to give the project a formal structure, and the source code was made available at GitHub."
Friday's security advisories
Debian has updated pidgin (multiple vulnerabilities).
Mageia has updated ctags (denial of service), ejabberd (incorrectly allows unencrypted connections), iceape (multiple vulnerabilities), libxml2 (denial of service), lua (code execution), openssl (multiple vulnerabilities), and phpmyadmin (cross-site scripting).
Mandriva has updated ctags (denial of service), ejabberd (incorrectly allows unencrypted connections), java-1.7.0-openjdk (multiple vulnerabilities), libxml2 (denial of service), lua (code execution), openssl (multiple vulnerabilities), and phpmyadmin (cross-site scripting).
Red Hat has updated kernel (RHEL6.5: denial of service).
Ubuntu has updated openjdk-7 (14.10: multiple vulnerabilities).
openSUSE Factory and Tumbleweed to merge
The openSUSE project has announced that the "Factory" and "Tumbleweed" distributions will merge into a single rolling distribution (called "Tumbleweed"). There is also an FAQ posting about the merger. "With the vast improvements to the Factory development process over the last 2 years, we effectively found ourselves as a project with not one, but two rolling release distributions in addition to our main regular release distribution. GregKH signalled his intention to stop maintaining Tumbleweed as a 'rolling-released based on the current release'. It seemed a natural decision then to bring both the Factory rolling release and Tumbleweed rolling release together, so we can consolidate our efforts and make openSUSE's single rolling release as stable and effective as possible."
Garrett: Linux Container Security
Matthew Garrett considers the security of Linux containers on his blog. While the attack surface of containers is likely to always be larger than that of hypervisors, that difference may not matter in practice, but it's going to take some work to get there: I suspect containers can be made sufficiently secure that the attack surface size doesn't matter. But who's going to do that work? As mentioned, modern container deployment tools make use of a number of kernel security features. But there's been something of a dearth of contributions from the companies who sell container-based services. Meaningful work here would include things like: Strong auditing and aggressive fuzzing of containers under realistic configurations Support for meaningful nesting of Linux Security Modules in namespaces Introspection of container state and (more difficult) the host OS itself in order to identify compromises These aren't easy jobs, but they're important, and I'm hoping that the lack of obvious development in areas like this is merely a symptom of the youth of the technology rather than a lack of meaningful desire to make things better. But until things improve, it's going to be far too easy to write containers off as a "convenient, cheap, secure: choose two" tradeoff. That's not a winning strategy.
Schaller: GStreamer Conference 2014 talks online
On his blog, Christian Schaller announced the availability of videos from the recently completed GStreamer Conference. "For those of you who like me missed this years GStreamer Conference the recorded talks are now available online thanks to Ubicast. Ubicast has been a tremendous partner for GStreamer over the years making sure we have high quality talk recordings online shortly after the conference ends. So be sure to check out this years batch of great GStreamer talks."
Valid CSS! Valid HTML 4.01!