chef - [chef] Security Response: SSL POODLE Attack and Mitigation

First login ?
Lost password ?

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Security Response: SSL POODLE Attack and Mitigation

From: Joshua Timberman < >
To: Chef users < >
Subject: [chef] Security Response: SSL POODLE Attack and Mitigation
Date: Tue, 14 Oct 2014 22:41:24 -0600

Ohai Chefs!

We've posted on the blog about the SSL POODLE attack. For now we have mitigation via configuration for the various Chef Server and related products, all detailed. We're working to get released packages with the default configuration updated and will have another post when those are available.

https://www.getchef.com/blog/2014/10/14/security-response-ssl-poodle-attack-and-mitigation/

--
Joshua Timberman, Chef.

[chef] Security Response: SSL POODLE Attack and Mitigation, Joshua Timberman, 10/14/2014