Hello Chefs,
We've been remiss in not mentioning the release of the Chef Server 12 RC 5. This RC went out when we updated all of the Chef Server packages to disable SSLv3 by default in response to the POODLE exploit.[1][2] During that series of releases we disabled SSLv3 by default in the Chef Server 12 RC and rolled it forward to version 5.
Highlights include LDAP support being fixed and the removal of the max_client check which will ensure Chef Client 12 will function properly against the server. This release also includes the disabling of SSLv3 by default, as mentioned, as well as updating OpenSSL to 1.0.1j. In addition to these changes there have been many other improvements and fixes that went into this RC. The full list can be seen in the changelog.[3]
As we continue to work on the Chef Server 12 release, we've created a Google Doc where you can follow along with the issue list and how it is triaged.[4] This document receives periodic updates as we remove or add issues to the list. It also gets updated with other info that might pertain to the Chef Server 12 release.
One such piece of info is that Ubuntu 14.04 will officially be supported for the Chef Server with the 12 release. We're working on adding this support now. Note that RHEL/CentOS 7 will not be supported with the initial Chef Server 12 release, but we plan to add it shortly thereafter.
If you encounter any issues while trying out this RC, please feel free to open an issue against the opscode-omnibus[5] or chef-server[6] repos. We watch both repos for now as we work on transitioning over to using chef-server as the official repo to submit issues.
Thanks for all you all do. It makes the Chef Server better.
Mark Mzyk
1. https://www.getchef.com/blog/2014/10/14/security-response-ssl-poodle-attack-and-mitigation/
2. https://www.getchef.com/blog/2014/10/17/security-release-chef-server-and-analytics-poodle-and-openssl-vulnerabilites/
3. https://github.com/opscode/opscode-omnibus/blob/master/CHANGELOG.md
4.https://docs.google.com/a/opscode.com/document/d/1xqVTMt1_8q23VCkQOQGFcMMvSf3ZKj1wjsmx8O7vqRI/edit
5.https://github.com/opscode/opscode-omnibus
6.https://github.com/opscode/chef-server
Archive powered by MHonArc 2.6.16.