[chef] Re: security of chef

Chronological Thread 
  • From: Haselwanter Edmund < >
  • To:
  • Subject: [chef] Re: security of chef
  • Date: Thu, 27 Sep 2012 17:34:11 +0200

But there is still no content on the listed github repos ;-)
On 27.09.2012, at 16:35, Matt Ray < "> > wrote:

As long as we're mentioned OpenStack, there's the Chef for OpenStack project as well.

Matt Ray
Senior Technical Evangelist | Opscode Inc.
Twitter, IRC, GitHub: mattray

Thanks Haselwanter Edmund, I will look into it

On Thu, Sep 27, 2012 at 8:58 PM, Haselwanter Edmund < " target="_blank"> > wrote:

Its 80% chef with some extras to deploy openstack on bare metal nodes

cu Edmund


I've test chef for a while and I really like it, now we want integrate it with openstack for help configure instances, 

my boss want me to finger it out is it is safe to use chef like this, 
which I don't think it is, but always think about security is not much bad

here are the question he want to know

1. what info about chef server can client(instance) get?
2. is it easy to hack the chef server from client(if client already been cracked)?
3. if my chef server have been cracked, how do I know that?

I know chef have no such issue, I know it separated 
Authentication and Authorization
but I have to make sure and explain to my boss

thanks in advs

Archive powered by MHonArc 2.6.16.