Recherche : [sécu]

Products & Services - End-of-Life Policy - Cisco

http://www.cisco.com/c/en/us/products/ios-nx-os-software/eos-eol-listing.html

? IOS 12.2 http://www.cisco.com/c/en/us/products/collateral/ios-nx-os-software/ios-software-release-12-2/prod_end-of-life_notice0900aecd80330813.html
-> IOS 12.2.33 SXJ http://www.cisco.com/c/en/us/products/collateral/switches/mgx-8800-series-switches/end-of-life-notice-c51-729742.html
? IOS 12.3 http://www.cisco.com/c/en/us/products/collateral/ios-nx-os-software/ios-software-releases-12-3-mainline/prod_end-of-life_notice0900aecd8052e110.html
? IOS 12.4 http://www.cisco.com/c/en/us/products/collateral/ios-nx-os-software/ios-software-releases-12-4-mainline/end_of_life_notice_c51-574251.html
? IOS 15.x http://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-15-1m-t/eos-eol-notice-listing.html
and browse here: http://www.cisco.com/cisco/web/psa/default.html?mode=prod&level0=268438303

ex:

3548 XL http://www.cisco.com/c/en/us/support/switches/catalyst-3548-xl-switch/model.html IOS 12.0(5)WC17 http://www.cisco.com/c/en/us/products/collateral/switches/catalyst-3500-xl-series-switches/prod_end-of-life_notice0900aecd8021a948.html

? PANOS https://www.paloaltonetworks.com/support/end-of-life-announcements/end-of-life-summary.html

? ScreenOS http://www.juniper.net/support/eol/screenos.html

? TMOS F5 / BIGIP https://support.f5.com/kb/en-us/solutions/public/3000/200/sol3225.html

network · sécu · eos

April 28, 2015 12:27:59 AM GMT+02:00 * · permalien

·

http://www.cisco.com/c/en/us/products/eos-eol-policy.html

Sécurité numérique et risques: enjeux et chances pour les entreprises

http://www.nosdeputes.fr/anne-yvonne-le-dain http://www.assemblee-nationale.fr/presse/communiques/20150409-11.asp

voir portail de L'office parlementaire d'évaluation des choix scientifiques et technologiques http://www.assemblee-nationale.fr/commissions/opecst-index.asp

sénat, http://www.senat.fr/opecst/index.html
auditions http://www.senat.fr/rap/r14-271-2/r14-271-2.html

sécu · anssi · gouv

April 23, 2015 12:48:09 PM GMT+02:00 * · permalien

·

http://www.assemblee-nationale.fr/14/dossiers/securite_numerique_enjeux_chances_entreprises.asp

Netflix/SimianArmy consists of services (Monkeys) in the cloud for generating various kinds of failures,

Simian Army consists of services (Monkeys) in the cloud for generating various kinds of failures, detecting abnormal conditions, and testing our ability to survive them. The goal is to keep our cloud safe, secure, and highly available. More details can be found at this blog.
http://techblog.netflix.com/2011/07/netflix-simian-army.html

cloud · sécu

March 18, 2015 12:53:37 PM GMT+01:00 * · permalien

·

https://github.com/Netflix/SimianArmy/wiki

VMware finds new post-paranoia RAM-saving tricks • The Register

VMware is rejigging the way it shares memory among virtual machines, after turning off Transparent Page Sharing (TPS) because academics identified insecurities in the technology.

The academic paper is entitled “Wait a minute! A fast, Cross-VM attack on AES”
https://eprint.iacr.org/2014/435.pdf

slightly different opinions
http://vsphere-land.com/news/why-the-vmware-vsphere-tps-vulnerability-is-a-big-deal.html
http://wahlnetwork.com/2014/10/20/tps-vulnerability/

sécu · vmware

January 16, 2015 12:22:16 AM GMT+01:00 * · permalien

·

http://www.theregister.co.uk/2015/01/15/vmware_finds_new_postparanoia_ramsaving_tricks/

Got a GE industrial Ethernet switch? Get patching • The Register

Hard-coded RSA keys found in firmware
(－‸ლ)

sécu · network

January 16, 2015 12:17:29 AM GMT+01:00 * · permalien

·

http://www.theregister.co.uk/2015/01/15/got_a_ge_industrial_ethernet_switch_get_patching/

The Ultimate List of Open Source Static Code Analysis Security Tools - Checkmarx.com

liste à voir - mais site à pub/popups, gaffe

source · sécu

November 24, 2014 11:44:50 AM GMT+01:00 * · permalien

·

https://www.checkmarx.com/2014/11/13/the-ultimate-list-of-open-source-static-code-analysis-security-tools/

Stop doing, Restart thinking

Vito Rallo blog :)

sécu · ibm

November 21, 2014 07:09:36 PM GMT+01:00 * · permalien

·

http://restart-thinking.vitorallo.com/

DAY ZERO: EVIL 'UNICORN' Windows vuln you've had since 1995: PATCH IT NOW! • The Register

http://securityintelligence.com/ibm-x-force-researcher-finds-significant-vulnerability-in-microsoft-windows/

sécu · windows

November 12, 2014 04:29:37 PM GMT+01:00 * · permalien

·

http://www.theregister.co.uk/2014/11/12/driveby_unicorn_0day_beats_emet_affects_all_windows_versions/

Google puts down POODLE, now wants to eradicate breed • The Register

https://github.com/google/nogotofail
Nogotofail is a network security testing tool designed to help developers and security researchers spot and fix weak TLS/SSL connections and sensitive cleartext traffic on devices and applications in a flexible, scalable, powerful way. It includes testing for common SSL certificate verification issues, HTTPS and TLS/SSL library bugs, SSL and STARTTLS stripping issues, cleartext issues, and more

openssl · sécu

November 5, 2014 09:19:47 AM GMT+01:00 * · permalien

·

http://www.theregister.co.uk/2014/11/05/google_putdown_poodle_now_wants_to_eradicates_breed/