[chef] RE: Re: Re: security of chef

Chronological Thread 
  • From: Matt Ray < >
  • To: " " < >
  • Subject: [chef] RE: Re: Re: security of chef
  • Date: Thu, 27 Sep 2012 14:35:14 +0000
  • Accept-language: en-US

As long as we're mentioned OpenStack, there's the Chef for OpenStack project as well.

Matt Ray
Senior Technical Evangelist | Opscode Inc.
| (512) 731-2218
Twitter, IRC, GitHub: mattray

From: on behalf of William Herry
Sent: Thursday, September 27, 2012 9:30 AM
Subject: [chef] Re: Re: security of chef

Thanks Haselwanter Edmund, I will look into it

On Thu, Sep 27, 2012 at 8:58 PM, Haselwanter Edmund < " target="_blank"> > wrote:

Its 80% chef with some extras to deploy openstack on bare metal nodes

cu Edmund


I've test chef for a while and I really like it, now we want integrate it with openstack for help configure instances,

my boss want me to finger it out is it is safe to use chef like this,
which I don't think it is, but always think about security is not much bad

here are the question he want to know

1. what info about chef server can client(instance) get?
2. is it easy to hack the chef server from client(if client already been cracked)?
3. if my chef server have been cracked, how do I know that?

I know chef have no such issue, I know it separated
Authentication and Authorization
but I have to make sure and explain to my boss

thanks in advs

Archive powered by MHonArc 2.6.16.