Divers

  • Windows 10 : activer le moteur de Spartan. Des performances en hausse (Génération NT: logiciels)
    Avec une manipulation à la Chrome, il est possible de forcer l'activation du nouveau moteur de rendu du Projet Spartan dans la nouvelle préversion de Windows 10. Il affiche déjà des performances à la hausse pour Internet Explorer.
  • ASRock VisionX 471D Review - Evolutionary Upgrades for a Powerful mini-PC (AnandTech)

    ASRock has been one of the few motherboard vendors to focus on mini-PCs targeting the HTPC and portable gaming markets. Starting from the ION-based nettop days, they have consistently refreshed the mini-PC lineup in sync with Intel's product cycle. We reviewed the Haswell-based VisionX 420D last September. Instead of waiting for Broadwell / Skylake, ASRock has taken the opportunity of falling flash memory prices to bring out a mid-generation update in the form of the VisionX 471D. With a Core i7-4712MQ and a 256 GB mSATA SSD under the hood, ASRock manages to address two important improvement aspects that we noted in our VisionX 420D review. Do the additional capabilities come with any caveats? Are there tangible improvements in real-world workloads? Read on to see how the VisionX 471D fares in our mini-PC evaluation routine.

  • Flash Player : Adobe corrige la deuxième 0-day mais… (Génération NT: logiciels)
    Adobe corrige la deuxième vulnérabilité actuellement exploitée dans des attaques et affectant Flash Player. Une mise à jour automatique mais pas encore manuelle ou pour Google Chrome et Internet Explorer 10 / 11.
  • Build Windows 10 : mise à jour directe depuis Windows 8 ou 7 (Génération NT: logiciels)
    Avec la build 9926 de la préversion de Windows 10, Microsoft propose une fonctionnalité de mise à jour directe depuis Windows 8 ou 7. Une manière de d'ores et déjà tester la procédure de mise à jour qui sera disponible au final.
  • Etats-Unis: la FCC veut revoir la définition du terme internet haut débit (MacBidouille)

    Aujourd'hui aux Etats-Unis, pour qu'une connexion internet soit qualifiée de haut débit, il faut qu'elle assure un débit minimum de 4 Mbits/s en téléchargement et 1 Mbit/s pour la voie de retour.
    La FCC (Federal Communications Commission), qui s'occupe des télécommunications, veut revoir cette définition et fixer la norme haut débit à une bande passante d'au minimum 25 Mbits/s. Il s'agirait d'une réelle révolution qui impacterait grandement les opérateurs, étant donné qu'une bonne partie du pays n'est pas couverte par de tels débits. On peut donc s'attendre à une forte opposition de ces opérateurs, qui ne voudront pas perdre le qualificatif de haut débit de leurs offres.
    En France, la seule qualification qui s'approche du terme haut débit fixe ce dernier à une vitesse de 2 Mbits/s en téléchargement, ce qui est selon les normes actuelles très lent et interdit l'accès à de nombreux services. Si notre pays suivait la voie de la FCC, pratiquement toutes les connexions ADSL, l'essentiel de nos accès internet, perdraient le qualificatif de haut débit, chose impensable pour nos opérateurs à part peut-être Numericable qui y verrait une aubaine commerciale. Toutefois cette dernière société continue à vendre des connexions essentiellement basées sur une terminaison coaxiale comme de la fibre optique...

  • Microsoft: un pas de plus vers l'abandon des tablettes ARM (MacBidouille)

    Lorsque Microsoft s'est lancé sur le marché des tablettes, la société a décidé de sortir deux gammes, une dotée de processeurs ARM, appelée RT, et l'autre de processeurs x86, appelée Pro. Visiblement les ventes des surfaces RT n'ont pas suffi à convaincre Microsoft de continuer ses développements sous ARM et dès la troisième itération, seule une Surface Pro 3 est sortie.
    Microsoft vient de faire un pas de plus vers l'abandon des tablettes ARM en annonçant que Windows 10 ne sera pas porté dessus. Elles auront quand même droit à une mise à jour leur apportant quelques nouveautés introduites par Windows 10, mais seulement quelques unes.

    L'avenir de Microsoft semble donc repartir dans le couple Wintel. Ce n'est pas surprenant. Bien que largement bénéficiaires, Microsoft et Intel souffrent toutes deux de leur manque de succès dans les appareils mobiles. En se serrant les coudes les sociétés peuvent espérer profiter d'une synergie qui leur a permis si longtemps de dominer le monde.
    Les choses sont d'autant plus faciles qu'Intel a mis en priorité la plus haute le développement de processeurs x86 à la consommation aussi mesurée que possible. Dans ce domaine les Core M, des puces Broadwell ne consommant que 4,5W, sont très intéressantes pour ce type d'application.
    De l'autre côté on a Microsoft qui continue à marche forcée à optimiser son Windows pour les tablettes. Si tout n'est pas aussi parfait que sous iOS, il a le mérite de pouvoir faire tourner une logithèque monstrueusement étendue sans changements dans son code et ses compatibilités, un plus certain.

  • Apple Pay: L'état du Missouri veut plus d'authentification (MacBidouille)

    Aux Etats-Unis, le nouveau système de paiement d'Apple, Apple Pay, cartonne. De très nombreuses petites transactions sont réalisées via un iPhone et Apple peut se féliciter de la croissance rapide de son sytème dont la croissance est impressionnante.
    Hélas, un député de l'état du Missouri vient de mettre son grain de sel dans cette mécanique fort bien huilée et risque d'en perturber le bon fonctionnement basé surtout sur la simplicité et la rapidité des transactions.
    Craignant une rapide augmentation des fraudes liées à ce système, il a déposé un projet de loi visant à ce que les commerçants aient l'obligation de vérifier et de relever l'identité des utilisateurs du système. En substance, toute personne souhaitant utiliser un système comme Apple Pay ou un autre du genre devra montrer une pièce d'identité et le commerçant noter ses références avant d'accepter la transaction. Dans le cas contraire, le commerçant sera, en cas de fraude, considéré comme responsable de cette dernière.

    Visiblement ce député ne semble pas très au fait (comme nombre de politiques décidant des lois partout dans le monde) du fonctionnement d'Apple Pay et de ses systèmes de sécurité. Apple va donc certainement envoyer ses lobbyistes pour lui expliquer avec force détails que son projet de loi n'est pas bon. Etant donné les sommes colossales qu'Apple consacre à son lobbying, la société devrait arriver à éviter que ce système ne passe, et surtout ne se généralise.

  • Samsung veut anticiper l'arrivée des AVC (MacBidouille)

    Vous le savez maintenant, tous les géants de l'industrie électronique se lancent sur deux voies de croissance, la domotique et la médicalisation massive de leurs produits, qui vont devenir capables de fournir de plus en plus d'informations sur l'état de santé de leurs porteurs. Cela va du rythme cardiaque à la glycémie en passant par tout un tas d'autres constantes surveillées.
    Samsung a dans ce domaine annoncé avoir franchi un nouveau cap avec un système capable de détection précoce des AVC, accidents vasculaires cérébraux.
    Pour rappel ou pour information, ces derniers prennent deux formes. La première est liée à une hémorragie suite à la rupture d'un vaisseau sanguin dans le cerveau, qui va provoquer une mauvaise vascularisation d'une zone en plus d'une augmentation de la pression liée au sang qui se déverse directement entre les neurones. La seconde est liée à l'arrivée d'un caillot dans un vaisseau, qui va bloquer le cheminement du sang dans une zone plus ou moins vaste du cerveau qui sans traitement peut rapidement mourir, et entraîner là aussi de graves séquelles.
    Plus la prise en charge, le diagnostic de la forme d'AVC et la mise en place du traitement sont rapides et plus les chances de s'en sortir sans séquelles sont importants.

    Samsung veut intervenir au premier niveau en détectant de manière très précoce le début de la souffrance cérébrale. Son système passe par une résille placée sur la tête des personnes les plus à risque, qui va enregistrer les courants cérébraux en continu et ainsi détecter toute anomalie. Il s'agit donc d'une sorte d'électroencéphalogramme réalisé toutes les 60 secondes. La résille ou le casque est connecté directement à un smartphone ou une tablette qui sont dotés d'un logiciel contenant un algorithme spécifique qui est chargé de détecter plus vite que les systèmes hospitaliers, moins de 15 minutes, ces anomalies qui surviennent avant même l'arrivée des premiers symptômes.

    Bien entendu il n'est pas question ici de proposer ce système aux masses mais Samsung démontre son savoir-faire dans les systèmes médicalisés, ce qui lui permettra de s'ouvrir en grand les voies hospitalières et gagner en légitimité dans sa future activité de monitoring santé embarqué destinée au grand public.

  • Sony retarde l'annonce de ses prochains résultats (MacBidouille)

    Dans un rapport déposé aux autorités financières japonaises, Sony a annoncé qu'elle aurait du retard dans la publication de ses résultats arrêtés au 31 décembre 2014.
    La société aura besoin de quelques semaines de plus à cause du piratage massif dont sa filiale Sony Pictures a été victime en novembre et qui provoque encore des dysfonctionnements dans ses systèmes, ne lui permettant pas d'obtenir des résultats fiables sur les revenus de cette branche de son activité. Elle espère un retour à la normale d'ici la fin du mois.
    Elle a prévu une annonce pour le 4 février seulement. L'effet de ce piratage et des vols de données a eu un impact sur ses revenus de 2014 mais en aura également sur l'année 2015 et même au-delà, étant donné que des informations capitales ont été dérobées et vont lui coûter de l'argent ou minimiser certains revenus.

  • Analyse de la salve inédite de défacements (Génération NT: logiciels)
    L'avis d'expert Tanguy de Coatpont, directeur général de Kaspersky Lab France, au sujet des milliers de sites Web français victimes de défacements depuis le début de l'année.
  • Apple veut légaliser les échanges en P2P (MacBidouille)

    Le protocole P2P permet le partage et l'échange de fichiers entre machines sans serveurs centraux. Si cette technologie n'est en soi en aucun cas illégale, ses usages via des services comme les Torrent en ont fait une cible de choix pour les ayants-droit qui y voient passer des millions de fichiers piratés à chaque instant.
    TorrentFreak (merci codeX) rapporte qu'Apple s'intéresse à ce protocole et a déposé un brevet décrivant des moyens de partager légalement avec des amis des contenus sous copyright.
    Le système fonctionne via une licence qui affranchira ceux qui l'utilisent de devoir acheter les produits à l'unité. On peut donc parler d'une forme de licence globale et Apple met en avant les avantages des systèmes P2P, qui ont un coût de fonctionnement négligeable pour la société puisque ses serveurs ne sont pas centralisés.

    Bien entendu pour convaincre ses partenaires majors de se lancer dans l'aventure, Apple devra leur donner des gages de sécurité et cela passera par la réintroduction de DRM, au moins sous forme de marquages forts des fichiers qui seront ainsi échangés.

    L'arrivée de ce brevet ne nous surprend pas. Cela fait longtemps que nous considérons que le fonctionnement de l'écosystème Apple tirerait avantage d'une couche P2P. Il permettrait à la société de soulager ses serveurs et centres de données tout en gardant un contrôle poussé de ce qui transitera, étant donné que ce ne sera qu'une couche (de plus) ajoutée à iTunes.

  • Google révèle deux failles d'OS X non encore comblées (MacBidouille)

    On avait l'habitude que des pirates ou des chercheurs en sécurité lassés de ne pas être pris au sérieux révèlent une faille de sécurité avant d'avoir été comblée, maintenant même Google se laisse aller à ces pratiques.
    Son laboratoire de sécurité a dévoilé deux failles d'OS X qu'Apple n'a pas comblé 90 jours après en avoir été informé.
    La première est appelée "effective_audit_token" et se cache dans le process "networkd". Elle permet d'exécuter du code en dehors de la SandBox et donc de prendre le contrôle d'une machine sans coup férir.
    La seconde est liée au fait que l'on puisse provoquer une erreur de pointage mémoire via l'extension "IntelAccelerator" et permet aussi l'exécution de code arbitraire une fois que l'on a fait planter le process.

    On pourrait en vouloir à Google d'agir ainsi mais Apple n'a pas bougé en 90 jours. Or, rien ne dit que de telles failles ne sont pas connues par d'autres, pirates ou administrations du type NSA et utilisées de manière ciblée ou massive en toute impunité.

    Il y a peu Tim Cook a déclaré que sa société était très préoccupée par la sécurité des données de ses clients. Elle va devoir maintenant le prouver en étant plus prompte à combler les failles de sécurité que l'on lui met sous le nez. 

    [MàJ] Apple aurait comblé ces failles dans la dernière bêta de la 10.10.2. Il ne reste donc qu'à la rendre publique.

    [MàJ 2] Il y a en fait un total de trois failles considérées comme exploitables pour prendre le contrôle du Mac, la troisième consernant les couches Bluetooth.

  • Internet Explorer Project Spartan Shows Large Performance Gains (AnandTech)

    With the release of build 9926 of Windows 10, I have had some time to get to know the new build. One of the things discussed at the Windows 10 event in Redmond was an update to the browser, codenamed Project Spartan, which is a new fork of Microsoft’s browser. There will be a lot of features coming to Spartan, such as the ability to annotate web pages with digital ink or keyboard text input, a new reading experience, and Cortana integration. It will be available on all Windows 10 devices – PCs, tablets, phones, and even Xbox. Internet Explorer has never been on the fast update cycle that other browsers are on – namely Google’s Chome browser and Mozilla’s Firefox.

    As a brief history, there are of course several major browsers and many smaller ones. Webkit has become one of the dominant rendering (also called layout) engines, and powers Apple’s Safari browser on both OS X and iOS. Chrome used to be based on Webkit, but in 2013, Google forked WebCore from the WebKit project and created Blink, which is also now used by the Opera browser. Firefox has their own rendering engine, called Gecko, and Internet Explorer has used a closed source rendering engine called Trident since version 4.0.

    In addition to the rendering engine, each browser also has an ECMA Script engine for executing JavaScript. JavaScript has become very important on the web, so JavaScript performance of the engine is important for how fast web pages feel. Safari’s engine is branded as Nitro, Chrome has V8, Firefox has SpiderMonkey, and Internet Explorer uses Chakra. This means that even though Chrome and Safari were both based on Webkit, performance can be very different because of the different script engines in each browser.

    Previous to Internet Explorer 9, IE used a script interpreter for JavaScript, which was fine back when the web was mostly static content, but not good enough with the move to dynamic webpages. Chakra was created for IE9, and it gave a large jump in performance for IE 9 over IE 8. It was certainly an improvement, but quickly fell behind in terms of performance against the other competitors. IE 10, and IE 11, both improved somewhat over the competition, but still the performance of Javascript was poor.

    With Windows 10, Microsoft is finally talking about performance again, but also compatibility. For legacy sites, Spartan can load the IE 11 engine as needed, but most of the time they will be able to avoid the legacy code and use a much leaner, faster engine, along with a revamped Javascript engine which offers much greater performance.

    Spartan will not be Internet Explorer. This will be a completely new browser, with a new name. Spartan will however be able to load the IE 11 engine if and when needed to maintain compatibility with older sites. For enterprises which still rely on older technologies such as ActiveX controls and Browser Helper Objects, Internet Explorer will still be available in Windows 10 for those use cases, however it will have the same dual rendering engine as Spartan, allowing modern sites to be rendered with the new rendering engine, and older sites to be rendered with IE 11.

    For the Windows 10 build 9926 which was released on January 23rd, Spartan is not yet available, and will show up at a later date. However Internet Explorer does have the new Edge document mode. A small number of testers will have this mode enabled by default, and anyone who wants to test against it can manually enable it by going to about:flags in the address bar. Switch Enable Experimental Web Platform Features to Enabled, and you will be using the latest rendering engine. This is still pre-release software, so enable at your own risk of course. Also in the experimental features is the ability to set a custom user agent string, and Microsoft has continued the successful strategy that they brought forward in Windows Phone 8.1 Update 1 of having a user agent string say that it is not Internet Explorer to avoid old IE-only content.

    The performance increase of the new Javascript engine is massive, and brings Internet Explorer basically up to par with Google Chome for Javascript performance. WebGL still has some work to be done, and at the moment, the only HTML5 features that have been added is WebM support. Let’s take a look at the numbers.

    Browser Performance - Core i7-860
    Benchmark IE Old IE Experimental Chrome 40 Firefox 35 Percentage Change
    Sunspider (lower is better) 149.7ms 144.6ms 260.9ms 220.1ms 3.4%
    Octane 2.0 (higher is better) 9861 17928 17474 16508 81.8%
    Kraken 1.1 (lower is better) 3781.2ms 2077.5ms 1992.8ms 1760.4ms 45.1%
    WebXPRT (higher is better) 913 1083 1251 1345 18.6%
    Oort Online (higher is better) 1990 2170 5370 3900 9%
    HTML5Test (higher is better) 339 344 511 449 1.5%

    IE was well optimized for Sunspider already, so there is not much of a change there. Google Octane 2.0 however has always been terrible in IE, and now it comes in roughly the same as Chrome, for a massive 81.8% increase over the old rendering engine. Kraken continues this with a 45% jump in performance. It is a big change, and a welcome one too.

    Spartan should have good performance when it is eventually previewed, and hopefully the standards support will increase as well. Since it will be updated through the Windows Store, the old way of updating Internet Explorer with new Operating System releases should also disappear, allowing Microsoft to ramp up the updates to the new browser. It has taken a long time, but it seems that Redmond is finally focusing on performance and standards for a new web. For those that want to read up on more of the changes, check out the MSDN IE Blog for more information.

  • NVIDIA Publishes Statement on GeForce GTX 970 Memory Allocation (AnandTech)

    On our forums and elsewhere over the past couple of weeks there has been quite a bit of chatter on the subject of VRAM allocation on the GeForce GTX 970. To quickly summarize a more complex issue, various GTX 970 owners had observed that the GTX 970 was prone to topping out its reported VRAM allocation at 3.5GB rather than 4GB, and that meanwhile the GTX 980 was reaching 4GB allocated in similar circumstances. This unusual outcome was at odds with what we know about the cards and the underlying GM204 GPU, as NVIDIA’s specifications state that the GTX 980 and GTX 970 have identical memory configurations: 4GB of 7GHz GDDR5 on a 256-bit bus, split amongst 4 ROP/memory controller partitions. In other words, there was no known reason that the GTX 970 and GTX 980 should be behaving differently when it comes to memory allocation.


    GTX 970 Logical Diagram


    GTX 970 Memory Allocation (Image Courtesy error-id10t of Overclock.net Forums)

    Since then there has been some further investigation into the matter using various tools written in CUDA in order to try to systematically confirm this phenomena and to pinpoint what is going on. Those tests seemingly confirm the issue – the GTX 970 has something unusual going on after 3.5GB VRAM allocation – but they have not come any closer in explaining just what is going on.

    Finally, more or less the entire technical press has been pushing NVIDIA on the issue, and this morning they have released a statement on the matter, which we are republishing in full:

    The GeForce GTX 970 is equipped with 4GB of dedicated graphics memory.  However the 970 has a different configuration of SMs than the 980, and fewer crossbar resources to the memory system. To optimally manage memory traffic in this configuration, we segment graphics memory into a 3.5GB section and a 0.5GB section.  The GPU has higher priority access to the 3.5GB section.  When a game needs less than 3.5GB of video memory per draw command then it will only access the first partition, and 3rd party applications that measure memory usage will report 3.5GB of memory in use on GTX 970, but may report more for GTX 980 if there is more memory used by other commands.  When a game requires more than 3.5GB of memory then we use both segments.

    We understand there have been some questions about how the GTX 970 will perform when it accesses the 0.5GB memory segment.  The best way to test that is to look at game performance.  Compare a GTX 980 to a 970 on a game that uses less than 3.5GB.  Then turn up the settings so the game needs more than 3.5GB and compare 980 and 970 performance again.

    Here’s an example of some performance data:

    GeForce GTX 970 Performance
    Settings GTX980 GTX970

    Shadows of Mordor

    <3.5GB setting = 2688x1512 Very High

    72fps

    60fps

    >3.5GB setting = 3456x1944

    55fps (-24%)

    45fps (-25%)

    Battlefield 4

    <3.5GB setting = 3840x2160 2xMSAA

    36fps

    30fps

    >3.5GB setting = 3840x2160 135% res

    19fps (-47%)

    15fps (-50%)

    Call of Duty: Advanced Warfare

    <3.5GB setting = 3840x2160 FSMAA T2x, Supersampling off

    82fps

    71fps

    >3.5GB setting = 3840x2160 FSMAA T2x, Supersampling on

    48fps (-41%)

    40fps (-44%)

    On GTX 980, Shadows of Mordor drops about 24% on GTX 980 and 25% on GTX 970, a 1% difference.  On Battlefield 4, the drop is 47% on GTX 980 and 50% on GTX 970, a 3% difference.  On CoD: AW, the drop is 41% on GTX 980 and 44% on GTX 970, a 3% difference.  As you can see, there is very little change in the performance of the GTX 970 relative to GTX 980 on these games when it is using the 0.5GB segment.

    Before going any further, it’s probably best to explain the nature of the message itself before discussing the content. As is almost always the case when issuing blanket technical statements to the wider press, NVIDIA has opted for a simpler, high level message that’s light on technical details in order to make the content of the message accessible to more users. For NVIDIA and their customer base this makes all the sense in the world (and we don’t resent them for it), but it goes without saying that “fewer crossbar resources to the memory system” does not come close to fully explaining the issue at hand, why it’s happening, and how in detail NVIDIA is handling VRAM allocation. Meanwhile for technical users and technical press such as ourselves we would like more information, and while we can’t speak for NVIDIA, rarely is NVIDIA’s first statement their last statement in these matters, so we do not believe this is the last we will hear on the subject.

    In any case, NVIDIA’s statement affirms that the GTX 970 does materially differ from the GTX 980. Despite the outward appearance of identical memory subsystems, there is an important difference here that makes a 512MB partition of VRAM less performant or otherwise decoupled from the other 3.5GB.

    Being a high level statement, NVIDIA’s focus is on the performance ramifications – mainly, that there generally aren’t any – and while we’re not prepared to affirm or deny NVIDIA’s claims, it’s clear that this only scratches the surface. VRAM allocation is a multi-variable process; drivers, applications, APIs, and OSes all play a part here, and just because VRAM is allocated doesn’t necessarily mean it’s in use, or that it’s being used in a performance-critical situation. Using VRAM for an application-level resource cache and actively loading 4GB of resources per frame are two very different scenarios, for example, and would certainly be impacted differently by NVIDIA’s split memory partitions.

    For the moment with so few answers in hand we’re not going to spend too much time trying to guess what it is NVIDIA has done, but from NVIDIA’s statement it’s clear that there’s some additional investigating left to do. If nothing else, what we’ve learned today is that we know less than we thought we did, and that’s never a satisfying answer. To that end we’ll keep digging, and once we have the answers we need we’ll be back with a deeper answer on how the GTX 970’s memory subsystem works and how it influences the performance of the card.

  • Mises à jour et téléchargements de la semaine (Génération NT: logiciels)
    Comme chaque dimanche, retrouvez les mises à jour et téléchargements de la semaine.
  • Windows 10 : la nouvelle préversion disponible ! Quoi de neuf ? (Génération NT: logiciels)
    Microsoft propose de télécharger une nouvelle préversion de Windows 10. Disponible dans plusieurs langues dont le français, elle intègre des nouveautés présentées mercredi dont au niveau de l'interface utilisateur, Cortana, de nouvelles applications ainsi que des fonctionnalités Xbox.
  • Apple laisse les autorités chinoises jeter un coup d'œil à son code (MacBidouille)

    Depuis les cascades de révélations sur les pratiques de la NSA, nombre de pays sont inquiets d'éventuelles portes déroblées installées dans les produits américains.
    Après un long bras de fer, les autorités chinoises ont réussi à convaincre (euphémisme) Apple de leur laisser jeter un coup d'œil au code source d'iOS et OS X. Cela se fera certainement sous des conditions drastiques et complexes pour éviter de pouvoir en copier des pans ou de l'utiliser pour trouver des failles non encore connues mais clairement, Apple a cédé une chose qui était peu envisageable.
    Apple a cédé aux pressions pour éviter toute sanction comme en a prononcé la Russie, qui interdit les appareils utilisant iCloud depuis le début de l'année. En Russie, marché très secondaire pour Apple, cela n'a pas d'incidence commerciale. La société ne peut se permettre la même chose en Chine, où elle réalise une bonne partie de sa croissance actuelle.

  • Apple laisse les autorités chinoises jeter un coup d'oeil à son code (MacBidouille)

    Depuis les cascades de révélations sur les pratiques de la NSA nombre de pays sont inquiets d'éventuelles portes déroblées installées dans les produits américains.
    Après un long bras de fer les autorités chinoises ont réussi à convaincre (euphémisme) Apple de leur laisser jeter un coup d'oeil au code source d'iOS et OS X. Cela se fera certainement sous des conditions drastiques et complexes pour éviter de pouvoir en copier des pans ou de l'utiliser pour trouver des failles non encore connues mais clairement, Apple a cédé une chose qui était peu envisageable.
    Apple a cédé aux pressions pour éviter toutes sanctions comme en a prononcé la Russie qui interdit les appareils utilisant iCloud depuis le début de l'année. En Russie, marché très secondaire pour Apple cela n'a pas d'incidence commerciale. La société ne peut se permettre la même chose en Chine où elle réalise une bonne partie de sa croissance actuelle.

  • Google révèle deux failles d'OS X non encore comblées (MacBidouille)

    On avait l'habitude que des pirates ou des chercheurs en sécurité lassés de ne pas être pris au sérieux révèlent une faille de sécurité avant d'avoir été comblée, maintenant même Google se laisse aller à ces pratiques.
    Son laboratoire de sécurité a dévoilé deux failles d'OS X qu'Apple n'a pas comblé 90 jours après en avoir été informé.
    La première est appelée "effective_audit_token" et se cache dans le process "networkd". Elle permet d'exécuter du code en dehors de la SandBox et donc de prendre le contrôle d'une machine sans coup férir.
    La seconde est liée au fait que l'on puisse provoquer une erreur de pointage mémoire via l'extension "IntelAccelerator" et permet aussi l'exécution de code arbitraire une fois que l'on a fait planté le process.

    On pourrait en vouloir à Google d'agir ainsi mais Apple n'a pas bougé en 90 jours. Or, rien ne dit que de telles failles ne sont pas connues par d'autres, pirates ou administrations du type NSA et utilisées de manière ciblée ou massive en toute impunité.

    Il y a peu Tim Cook a déclaré que sa société était très préoccupée par la sécurité des données de ses clients. Elle va devoir maintenant le prouver en étant plus prompte à combler les failles de sécurité que l'on lui met sous le nez. 

    [MàJ] Apple aurait comblé ces failles dans la dernière bêta de la 10.10.2. Il ne reste donc qu'à la rendre publique.

  • Windows 10 January Build Available For Download (AnandTech)

    On Tuesday, Microsoft unveiled the upcoming changes to Windows 10. They said that a new build, including many of the announced features (but not everything) would be available within a week. Well, a mere two days later the build is now available for download. In order to gain access to the preview builds, you have to join the Windows Insider program, which has no cost. In the one day after the event, Gabriel Aul tweeted that 173,624 people had joined the program, which had over 1.7 million members just the day before.

    For those already on the Technical Preview, both the Windows 10 Fast and Slow rings have access to this new build, numbered 9926. Simply go to Settings, Update and Recovery, and choose the Preview Build tab to force a check. If you have not tried it out, but want to, of course first backup your PC before starting, and then head over to http://insider.windows.com/ to get access to the automated install, or the ISO files. Of note to people upgrading either from Windows 7, 8, or previous builds of 10, this is an in-place upgrade which should keep your software and settings intact, but does require a re-provisioning of your account. As a final warning, this is pre-release software, so if you are unsure whether you should be running it, the easy answer is that you likely should skip it.

    Some of the new features coming in this build are fairly significant, with the first obvious one being an updated Start Menu. It can now be expanded to a full screen experience, just like any app. It also has a scrollable list of live tiles, which can be customized as you prefer.

    Cortana is coming to the desktop in this build as well, although it is limited to the USA and English at the moment.

    Continuum is now available, which is the automated method of switching a device to touch mode and back, and it can be accessed through the updated Action Center as well, which now includes toggles for various modes. The settings app is also new, and blends the Windows 8 style settings with the traditional control panel.

    There is now a switch in the action center to make it easier to connect to Bluetooth and Miracast devices, to project audio or video wirelessly.

    On the app side, there is a new Windows Store beta, with a much cleaner look and feel, as well as the new Photos map which was demoed on Wednesday. Maps is also updated to the demonstrated build, and the much revamped Xbox app is also available.

    There is a lot of other changes as well, such as the ability to choose which folder is the default when opening File Explorer, there have been Snap Assist changes, more languages are supported, and even Windows Updates can be scheduled to install at specific times with a radio button.

    If you do upgrade to this build, be sure to check Windows Update as well. There are a couple of patches which fix known issues.

    I am installing right now, and we will go over more of the changes in a future post.

    Source: Windows Blog

  • Attaque Outlook.com : la Chine s'offusque (Génération NT: logiciels)
    Ce sont des " calomnies sans fondement ". La Chine ne digère pas les suspicions à son encontre d'une attaque d'Outlook.com.
  • Interview at CES 2015: Eric Kuo and Sam Chern from MSI Notebooks (AnandTech)

    As part of a series of getting into the minds of those who run our industry, we were able to take the time at CES to interview two key figures from MSI’s Notebook team who were visiting the show from the MSI headquarters in Taiwan. First up is Eric Kuo, Vice President of Notebook Sales and Marketing who has been with MSI for more than 17 years. Mr Kuo has been in charge of the MSI notebook sales and marketing since 2006, pre-dating the recent rise in laptop based gaming machines. This was a two-for-one interview, with Sam Chern, Senior Director of Notebook Marketing also alongside. Mr Chern has also been at MSI for over a decade. Time was short, but we were able to discuss events evolving at CES as well as a wider company vision from MSI.


    Eric Kuo and Sam Chern

    Ian Cutress: We are at CES, and CES is a big show with lots of companies showing off exciting things. MSI is here for reason, so what is MSI’s main purpose at CES this year?

    Eric Kuo: The key reason is give tours to customers that MSI is focused on gaming products. So not only gaming notebooks, but also gaming AIO, gaming motherboards and gaming VGA cards. So lots of new stuff – we are at CES to show our progress.

    IC: Do you have a particular product that you are most proud of this year?

    EK: Of course! We have the very innovate GT80 Titan SLI. This is the first gaming notebook with an integrated mechanical keyboard and it also has SLI. As far as we’re concerned, it’s the most special product launched at CES this year.

    Sam Chern: I think that the GT80 is one, but another is our GT30 Shadow with the Gaming Dock. I think it’s an excellent product. It focuses on mobility and portability for the main unit, while you leave the dock at home with all its horse power.

    IC: What are the intended price points and release dates for these?

    SC: Right now in the US the GT80 Titan SLI pricing starts at $2699, and goes the way up depending on configuration. It should be on the shelves if not today, then shortly after CES.

    IC: How many years have you personally been at CES?

    EK: This is my seventh or eighth time. Since I started it has changed quite a lot – it used to be a very computer oriented show, but now it is a bit mixed. There is a lot more consumer electronics now. MSI has also changed a lot. We used to have a booth on the show floor, but now we are more and more focused on our audience so we have a suite (at the Aria for 2015).

    IC: Is CES more important for media or meeting business customers?

    EK: Both! We have an extensive meeting list not only with media such as AnandTech but also our distributors and partners as well as internal meetings with the regional offices.

    IC: Is there any sort of product that MSI is missing from its portfolio?

    EK: We have a roadmap, but of course we are not going to talk about it! I think Computex will be important this year, we are set to release further important products onto the market.

    IC: I want to know more about what you do, day-to-day. Most employees work a regular-ish schedule, but for Vice Presidents and Directors, it can be different. What exactly does a person in your position do?

    SC: We try to find out what our customers want, including gamers, but also examine what our competitors are releasing onto the market. We keep track of lots of gaming events, because of our gaming focus, so we need to know what gamers are thinking. We listen to feedback, and we learn a lot from media as well. We always read reviews for both professional as well as end-user feedback, to see what people expect from products such as ours.

    EK: In my daily job, I focus on keeping track of feedback from different regions. We want to be able to take the data that we receive and come up with products and strategies that fit well in each different type of market. I want to be able to create products that gamers will appreciate and use, as well as provide our customers with something that will ultimately benefit how gamers play and live.

    SC: I also think one of the most important thing to do is to play PC games. Eric and I, along with our product managers, all play games. Sometimes we even play together! We also have a company team that has battles on World Of Tanks. I think the fact that we all play PC games is important here at MSI, as it helps us to understand the feedback we get from the gamer’s viewpoint. By both using a product as well as developing a product, it helps us internally to understand, even at the VP level.

    IC: Ever considered hosting a VP gaming tournament?

    EK: Perhaps we should take some pictures to show others! I like to play games, while some of our product managers are very much into competitive gaming and play every day.

    IC: When it comes to gaming sponsorship, which teams are you involved with?

    SC: Fnatic is our main team, but we sponsor at least 12 worldwide. But we plan to expand this to at least 20 teams in total through 2015. With the controversy about Fnatic at Dreamhack, we are working closely with them as we want to sponsor teams that play honestly so there is no grey area.

    IC: When it comes to sponsoring teams, how far does your sponsorship go?

    SC: I think we have different levels of cooperation. It starts with us providing hardware and equipment, then with bigger teams it goes on to monetary contributions from us, with feedback and exposure in return – large-scale partnerships.

    EK: We ask for feedback and opinions on the products. The product manager will work directly with the teams to get this feedback in order to improve our products and suit their needs better. I think this is a good cycle, whereby we improve our products generation by generation. We have not looked into Boot Camps yet, as sending products to the team instead is easier right now.

    IC: How do you gather feedback from regular gamers?

    EK: We monitor the forums as well as social media. We watch these channels and attempt to match their requests. We mainly use our own forum as the platform, but we also read others focused on the notebook markets.

    IC: When it comes to specific markets, such as China, South America or Europe, how do you cater the products differently?

    EK: Usually in terms of buying power, such as the average selling price of the models in that region. In the US we focus on the high end models and in Europe while it is a high end market they care a lot more on the price/performance scale, so it is a bit different. Each market has a different character. For example we have some sales in Brazil, but not many due to the high taxes and barriers that encourage local production.

    IC: What markets are your best right now?

    EK: I think Europe, US and China we are strong right now with equally the same position.

    IC: What is the most important innovation that MSI has made recently?

    EK: I believe that our most important innovation comes in the shape of our GT80 Titan SLI and GS30 Shadow with Gaming Dock. The GT80 Titan SLI comes with a full mechanical keyboard integrated directly into the laptop allowing gamers to have the best performance input possible. The GS30 Shadow with Gaming dock is another innovation that we believe is very important. We provide end-users a solution that includes a powerful and portable notebook for the road, while being able to use the same system at home docked with the full performance of a desktop system.

    IC: From the notebook side of the equation, who is more important: the end-user or the reseller, or the business customers?

    EK: For the gaming market, the gamer is the top priority.

    IC: A slightly different question here – if you were not working at MSI, where would you be instead?

    EK: I would probably like to do more photography.

    SC: DJ! I love music, particularly old rock and roll. I love Metallica, Guns N Roses, proper 80s rock and roll.

    IC: Another question that comes up is about the advice you would give to a high school student to come to work at MSI. Any thoughts?

    EK: It depends on which area they want to focus, if they want to focus on R&D, product management, sales or marketing – they all have different aspects. For marketing for example, it helps to understand the product areas. For MSI of course, because gaming is our focus, they really need to understand the gaming environment and the industry. When we interview, one of the questions we ask is if the interviewee plays games! If they’re gamers, they likely stand a better chance of getting hired.

     IC: Is it beneficial to move to Taiwan and learn Chinese (Mandarin)?

    EK: I highly recommend it!

    SC: There are some MSI people overseas who are gamers and they love PC games. They have passion as well as knowing the industry, the hardware and software, so they join MSI. This industry can be very good for them.

    IC: Speaking of interviews, what is staff turnover like at MSI?

    EK: I like to think MSI is a very stable company compared to others. We are actually hiring right now, because our business is expanding.

    IC: To finish up – having been at MSI for over a decade each, has there been one particular day or moment/event that really stands out in your tenure?

    EK: Last year I won a special award from the company for leading the gaming line. This was an important award internally!

    SC: We had a big LAN party and event last year in Taipei for pro-gamers. I did not play but I did watch, and it was very exciting to see how far MSI has come within gaming.

    IC: Any thoughts on MSI’s future?

    EK: MSI’s direction is very clear now – we are focused on gaming and our departments are working in the same direction. It is my aim to provide the best possible products for gamers and we want MSI to be number one in gaming. This is our goal.

    SC: MSI is not only the brand or the company to sell hardware – we actually want to build a community for two-way communication with our users and provide the best gear for the gamers.

    I would like to thank Mr Kuo and Mr Chern for their time!

  • Acer Chromebook 13: 1080p with Tegra K1 (AnandTech)

    The Google Chromebook has a rather interesting history, starting as an always connected device with all your data stored in the cloud and slowly but steadily transforming into a platform that can function as a full laptop replacement. The hardware has evolved as well, moving from Atom in the initial release to a collection of processors including Atom, Haswell, ARM SoCs, and even Broadwell (coming soon). While you might not be able to do everything on a Chromebook that you can on a Windows laptop, if it can do 95% of what most users need that could very well be enough, and there are clear benefits to Chrome OS as well. Read on for our full review of Acer’s Chromebook 13.

  • New Challenger: KLEVV DRAM Modules, Linked to SK Hynix (AnandTech)

    The DRAM market, especially at the consumer level, is a cut and thrust business. Margins are small on a per-module basis, but with the right volume it can make several companies earn a tidy profit. If they move into the server market, there is even more potential. But for now, the three main DRAM IC manufacturers are Micron, Samsung and SK Hynix.

    Each reseller of DRAM modules buys or bids on batches of ICs from these companies, does internal binning to see which speeds it can reach, and arranges the modules for the market.  Certain batches of ICs, such as Hynix MFR, are expensive due to their high overclocking capability for example. On the open market, it can be a free for all. But some companies have additional leverage.

    Samsung use their own ICs and sell DRAM modules under their own name. Micron also sells their own DRAM in modules for the bulk customers, and their Crucial brand which gets the pick of the components in the consumer business. The only player without a ‘house brand’ so to speak is SK Hynix. This is where the name ‘KLEVV’ comes in.

    SK Hynix is owned by SK Group (SK C&C), which acts as an umbrella firm over many individual companies. SK Group created a new firm, Essencore, to help bring to market some of the DRAM and NAND capabilities directly to the end-user rather than through their ICs being sold on the open market. Essencore thus created KLEVV to cover the DRAM side of the equation, kind of making KLEVV a customer/vertical integration partner of SK Hynix, although the two are separate entities under the same umbrella, SK Group. This allows SK Hynix to have more control over their better components coming out of the fabs and sell direct. KLEVV is, on paper at least, another Crucial-like player in the space, and another soon-to-be important DRAM module manufacturer.

    This marks a few interesting dynamics. As I mentioned previously, a lot of the high end memory modules use Hynix MFR ICs which are historically known as good clocking components. If KLEVV ends up having first pick of those modules, without a serious high bid from people like G.Skill and Corsair, there is potential for market share to adjust somewhat quickly. This could lead to rapid growth from KLEVV and Essencore if their distribution is set up as well as any other memory module manufacturer. KLEVV could very easily start to price some of the more established DRAM brands who do have their own fabs out of business, or offer a more unique range of products.

    Image from 10korea.com

    At this point in time, at PAX South, Essencore is launching KLEVV into the market with a full array of DDR4 and DDR3 products, at least on paper. We have been told that Newegg will be their initial partner in North America, but we are waiting for information on how they are going to attack other markets such as Europe and Asia. Distribution, without previous contacts, can be difficult to penetrate – but with the right execution, it could go well. KLEVV is targeting the gaming market hard with this launch.

    The halo line will be called the KLEVV Cras DDR4, featuring very tall heatsinks with LED lighting effects. KLEVV has not said which combinations of speed will match what capacities, but kits will be offered from 2x4GB to 4x8GB, in 2133 MHz to 3200 MHz configurations.

    When I first got this slide, there was one standout kit that took me by surprise - a 2133 10-12-12 kit. Subtimings of 10-12-12 are crazy low for DDR4 at this frequency, and most kits we see are 15-15-15. This would have a direct impact in performance, moving the MHz/CL rating from 142 to 213. When KLEVV begin sampling, this is the kit we have requested for our DDR4 coverage. Unfortunately it looks like it was a copy paste error from DDR3, and the kit is listed as 15-15-15 in the final press materials we were emailed.

    And for the record, I am told ‘Cras’ is pronounced ‘Kraz’, and not ‘Crass’.

    The DDR3 lines are essentially three big Venn diagram circles covering almost the same areas. At the top is KLEVV Genuine, from 1600 C9 to 3200 C13, followed by KLEVV Urbane in similar scope, and KLEVV Neo on the more budget oriented scale.

    While Genuine and Urbane cover the same speeds and densities, the Genuine line will be fitted with LEDs, hence the different branding.

    For budget builds, KLEVV will also start to sell DDR3 and DDR4 in JEDEC specifications as single modules.

    While KLEVV is being controlled by Essencore rather than directly from SK Hynix, there is still an element of vertical integration which could benefit both sides and hopefully benefit end users. As mentioned, Essencore is dealing with both DRAM and NAND, so while the plan today is to launch memory modules, over the course of 2015 we will see MicroSD cards and eventually SSDs reaching the market under the SK Group heading, with all the advantages that entails. We are not sure yet if the SSDs will also be called KLEVV, or if Essencore will use a different brand for that direction, but both Kristian and I are in contact for when products enter the market. As the SSD side is still a number of quarters away, no specifications or predictions can be made at this time.

    The KLEVV website went live in the last 24 hours, with details about each of the product areas. I cannot find the products up for sale at the time of writing, but I understand Newegg should be listing them soon.

    Source: Essencore

    Additional: We have just been told that the first showing is at PAX South, with more depth and range during PAX East in March. Newegg and US will be the first target market, with Europe following later in 2015.

  • Vulnérabilités OS X : Google divulgue des 0-day (Génération NT: logiciels)
    Via son Project Zero, Google a récemment divulgué publiquement des détails techniques de trois vulnérabilités non corrigées affectant le système d'exploitation OS X. Apple est traité de la même manière que Microsoft.
  • Microsoft : Office pour Windows 10 mais aussi Office 2016 (Génération NT: logiciels)
    Windows 10 bénéficiera d'applications Office universelles spécialement optimisées pour le tactile. Mais pour une utilisation plus poussée sur ordinateur classique, la suite bureautique Office 2016 sera disponible au second semestre 2015.
  • Ce seraient des photos de composants du MacBook Air 12" (MacBidouille)

    Le site chinois iFanr a publié une série de photos de ce qui seraient des composants du futur MacBook Air 12". En voici quelques unes.

    La machine est beaucoup plus petite que le Modèle 13" qui sert de comparaison sur les photos. C'est probablement parce que la dalle couvre une surface plus importante, chose hélas impossible à quantifier sur un écran éteint.

  • Flash Player : patch en urgence et c'est pas fini (Génération NT: logiciels)
    Adobe livre en urgence un correctif de sécurité afin de combler une vulnérabilité Flash Player exploitée dans des attaques. Mais une autre 0-day plus critique est dans la nature.
  • Une faille 0 days de Flash exploitée dans un kit de piratage (MacBidouille)

    Certains pirates développent et font circuler des logiciels permettant de réaliser des attaques multiples et variées sur des machines afin d'en prendre le contrôle.
    Dans la plupart des cas il s'agit d'une compilation de failles connues destinées à permettre l'attaque de machines mal protégées, pas mises à jour. Hélas, tout récemment un de ces kits a intégré une faille 0 day de Flash, ce qui signifie que toutes les machines sur lesquelles Flash est installé sont vulnérables.
    C'est une très mauvaise nouvelle car ces outils, relativement simples à utiliser, vont permettre à n'importe qui les ayant récupéré d'attaquer pratiquement tous les ordinateurs du monde.

    A part désinstaller Flash et attendre une mise à jour d'Adobe, il n'y a pas grand chose à faire pour s'en protéger sauf couper tout accès à internet.

    [MàJ] Adobe propose une mise à jour de sécurité pour Flash.

  • Windows 10 : Spartan et Internet Explorer (Génération NT: logiciels)
    Windows 10 proposera un nouveau navigateur issu du projet Spartan mais Internet Explorer ne tire pas sa révérence.
<qazx> Salut tlm je voudrais installer redhat mais je ne sais pas commen, j'ai déja fais une partition et j'ai télécharger redhat (rpms, base, instimage)
<Cybuzz_33> pike: bien ouvre un fichier configure et tu va voir ...
<qazx> cybuz: si le fichier configure s'apelle configure je l'ai pas
<qazx> cybuz: c'est quoi le repertoire où est la confiqguration dans red hat