{"id":99,"date":"2008-11-08T17:31:02","date_gmt":"2008-11-08T15:31:02","guid":{"rendered":"http:\/\/gcolpart.evolix.net\/blog21\/?p=99"},"modified":"2009-01-19T00:31:07","modified_gmt":"2009-01-18T22:31:07","slug":"conference-sur-la-securite-et-lopen-source","status":"publish","type":"post","link":"https:\/\/gcolpart.evolix.net\/blog21\/conference-sur-la-securite-et-lopen-source\/","title":{"rendered":"Conf\u00e9rence sur la s\u00e9curit\u00e9 et l&#8217;Open Source"},"content":{"rendered":"<p>\u00c0 l&#8217;occasion du salon <a href=\"http:\/\/www.synergie-ntic.org\/\">Synergie NTIC<\/a> \u00e0 Marseille, je suis intervenu environ 20 minutes dans une conf\u00e9rence \u00e0 propos de la s\u00e9curit\u00e9 et l&#8217;Open Source. En r\u00e9sum\u00e9, j&#8217;ai parl\u00e9 de la fa\u00e7on dont on doit se pr\u00e9occuper de la s\u00e9curit\u00e9 quand on travaille avec des distributions ou logiciels Open Source. Notamment, j&#8217;ai parl\u00e9 :<\/p>\n<ul>\n<li>Du c\u00e9l\u00e8bre principe de <a href=\"http:\/\/en.wikipedia.org\/wiki\/Full_disclosure\">Full Disclosure<\/a> et de ses limites pratiques (p\u00e9riode d&#8217;<em>embargo<\/em>),<\/li>\n<li>Des moyens de faire une veille s\u00e9curit\u00e9 \u00e0 propos de logiciels Open Source (listes de diffusion \u00e0 suivre, etc.),<\/li>\n<li>De la fa\u00e7on dont les distributions et logiciels Open Source s&#8217;organisent face aux probl\u00e8me de s\u00e9curit\u00e9, en prenant l&#8217;exemple de <a href=\"http:\/\/www.debian.org\/\">Debian<\/a>,<\/li>\n<li>Du choix entre l&#8217;installation par paquets ou ports et l&#8217;installation via des sources <em>vanilla,<\/em><\/li>\n<li>D&#8217;exemples concrets de probl\u00e8mes de s\u00e9curit\u00e9 r\u00e9cents : la faille concernant <em>vmsplice<\/em> dans le noyau Linux et du g\u00e9n\u00e9rateur de nombre al\u00e9atoire pr\u00e9visible dans le paquet Debian <em>openssl<\/em>.<\/li>\n<\/ul>\n<p>Vous pouvez <a href=\"http:\/\/gcolpart.evolix.net\/docs\/synergie-ntic-oss-security.pdf\">t\u00e9l\u00e9charger les slides utilis\u00e9s pour cette pr\u00e9sentation<\/a> (soyez indulgent, je les ai fait rapidement).<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u00c0 l&#8217;occasion du salon Synergie NTIC \u00e0 Marseille, je suis intervenu environ 20 minutes dans une conf\u00e9rence \u00e0 propos de la s\u00e9curit\u00e9 et l&#8217;Open Source. En r\u00e9sum\u00e9, j&#8217;ai parl\u00e9 de la fa\u00e7on dont on doit se pr\u00e9occuper de la s\u00e9curit\u00e9 quand on travaille avec des distributions ou logiciels Open Source. Notamment, j&#8217;ai parl\u00e9 : Du [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[9,5,72,1,7,8],"tags":[148,55,54,53],"class_list":["post-99","post","type-post","status-publish","format-standard","hentry","category-debian-fr","category-evolix","category-french","category-hardware","category-network","category-plug","tag-debian","tag-marseille","tag-open-source","tag-securite"],"_links":{"self":[{"href":"https:\/\/gcolpart.evolix.net\/blog21\/wp-json\/wp\/v2\/posts\/99","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/gcolpart.evolix.net\/blog21\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/gcolpart.evolix.net\/blog21\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/gcolpart.evolix.net\/blog21\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/gcolpart.evolix.net\/blog21\/wp-json\/wp\/v2\/comments?post=99"}],"version-history":[{"count":6,"href":"https:\/\/gcolpart.evolix.net\/blog21\/wp-json\/wp\/v2\/posts\/99\/revisions"}],"predecessor-version":[{"id":162,"href":"https:\/\/gcolpart.evolix.net\/blog21\/wp-json\/wp\/v2\/posts\/99\/revisions\/162"}],"wp:attachment":[{"href":"https:\/\/gcolpart.evolix.net\/blog21\/wp-json\/wp\/v2\/media?parent=99"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/gcolpart.evolix.net\/blog21\/wp-json\/wp\/v2\/categories?post=99"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/gcolpart.evolix.net\/blog21\/wp-json\/wp\/v2\/tags?post=99"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}