[chef] Re: security of chef

Chronological Thread 
  • From: Haselwanter Edmund < >
  • To:
  • Subject: [chef] Re: security of chef
  • Date: Thu, 27 Sep 2012 14:58:32 +0200


Its 80% chef with some extras to deploy openstack on bare metal nodes

cu Edmund

On 26.09.2012, at 05:25, William Herry < "> > wrote:


I've test chef for a while and I really like it, now we want integrate it with openstack for help configure instances,

my boss want me to finger it out is it is safe to use chef like this,
which I don't think it is, but always think about security is not much bad

here are the question he want to know

1. what info about chef server can client(instance) get?
2. is it easy to hack the chef server from client(if client already been cracked)?
3. if my chef server have been cracked, how do I know that?

I know chef have no such issue, I know it separated
Authentication and Authorization
but I have to make sure and explain to my boss

thanks in advs

Archive powered by MHonArc 2.6.16.