Latest Stories
Security response: bash on Windows Chef Client, Chef DK, and Push Jobs Client packages (CVE-2014-6271)
We’ve verified that for Windows platforms only, the Chef Client, Chef DK, and Push Jobs Client packages contain versions of the bash command interpreter that are affected by CVE-2014-6271, the “ShellShock” advisory.
DevOps Against Inhumanity: Uniting To Put Technology First
Several weeks ago I had the pleasure of giving my talk “DevOps Against Inhumanity” at the first-ever DevOpsDays Toronto. Toronto’s actually my hometown, so it was fun to return and see what’s changed, both in technology and with the city. What is “DevOps Against Inhumanity?
Security Releases: Omnibus 2.0.2 and 3.2.2 (insecure file ownership in Omnibus-built Debian and Ubuntu packages)
Ohai everyone, We have released Omnibus 2.0.2 and Omnibus 3.2.2 to address an issue in which the contents of Omnibus-built Debian and Ubuntu packages are being installed with an arbitrary non-root UID and GID.
Security Releases: Chef Server and Premium Features (insecure file ownership)
Today we are announcing security releases of all supported versions of the Chef Server, Enterprise Chef, and Chef Software-built premium features. These releases address package ownership issues on Debian-based platforms that result in Omnibus-built packages installing with contents owned by UID and GID 999 or 1001.
Security Releases: Chef Client and Related Products (insecure file ownership)
Today we are announcing security releases of all supported versions of the Chef Client, ChefDK, Chef Container and the Push Jobs client. These releases address package ownership issues on Debian-based platforms. Platforms Ubuntu Linux Debian Linux Description Chef products installed from Debian-style .
Chef! Where is my Ubuntu 14.04 service support?
So you’ve decided to update or use Ubuntu 14.04 LTS. You’ve probably started leveraging Chef in some awesome way. The problem is, you put in a nice little service Resource and see something like: Chef::Exceptions::Exec \———————- /usr/sbin/update-rc.d
Chef Teams with AWS, Brings DevOps to the Pop-Up Loft
We’re excited to announce we’ve joined with our friends at Amazon Web Services (AWS) in the reopening of the AWS Pop-Up Loft, which had a very successful run earlier this year. Chef is joining AWS to bring DevOps and IT automation expertise to the re-launched Pop-Up Loft, opening this October 1, in San Francisco.
vagrant-omnibus Issues
Ohai Chefs! Yesterday evening during the process of building a new release of Chef the chef gem was pushed to RubyGems ahead of the complete omnibus release making it out to OmniTruck. Unfortunately, this has broken vagrant-omnibus for anyone that has the version set to latest or hasn’t explicitly set a version.
Release: Chef Development Kit 0.2.2
Ohai Chefs, As of today version 0.2.2 of Chef Development Kit is available on our download page. This version includes one critical bugfix to address a regression in 0.2.