Category:
Chef InSpec
Chef InSpec – Where Compliance and Security Blend into DevOps World
Guidelines on how to start with the Chef InSpec on the technical side.
Read moreExtending InSpec Resources: Core Resource Inheritance
A developer’s guide to extending Chef InSpec through Ruby inheritance of core resources to re-use the core functionality in custom resources.
Read moreHosted Chef Scheduled Maintenance and Downtime January 6, 2022
By Mark Cavins
Hosted Chef, your gateway to managing Chef infrastructure in the cloud, is set to receive an upgrade to its database. In order to facilitate this upgrade, we will be migrating all content to a new version of PostgreSQL. We will also be upgrading the application to Chef Infra server 14.10.
Read moreShift Left with Chef Compliance
This blog post discusses the security and compliance challenges that create major roadblocks in software delivery and why most organizations find implementing auditing and remediating processes daunting.
Read moreSupermarket.chef.io set to get an Infrastructure upgrade
Chef Supermarket, your gateway to finding the cookbooks best suited for your DevOps needs, is set to receive an upgrade to its infrastructure. In order to facilitate this upgrade, we will be migrating all content to new hardware. Early 2022 The outage will affect the Supermarket web application and all APIs that point to supermarket.chef.io. Supermarket is a very important content source for our community. We believe that this shift in the underlying infrastructure on which it is hosted is vital in ensuring we can serve you best in the long term.
Read moreChef Infra 101: The Road to Best Practices
In this blog post, you’ll take a look at some practices that can help you get a running start with your Chef automation and the principle of Policy as Code. It’s intended for any IT professional or Chef newcomer.
Read moreChef Guide: Accelerate test-driven development with Chef Workstation and Test Kitchen
By John Tonello
Whether you’re new to Chef or an old pro, Test Kitchen can be a boon to anyone looking to dive into test-driven automation practices and rapid code development.
Read moreA quick Chef way to detect and remediate PrintNightmare
A Microsoft publicly disclosed remote code execution zero-day vulnerability (CVE-2021-34527), now known as “PrintNightmare”, could allow attackers to run code, including malware or ransomware, and take full control of impacted vulnerable systems. Microsoft is urging Administrators to deploy the proper patches as quickly as possible or disable inbound remote printing until the patches can be applied.
Read moreAutomating PCI-DSS Compliance with Chef
Any company that handles credit card data, especially in the United States, is subject to the Payment Card Industry Data Security Standard (PCI DSS), and already knows how difficult and time-consuming PCI audits can be.
Read moreTesting Windows DNS SIGRed Vulnerability with Chef InSpec
It’s not DNS. There’s no way it’s DNS. It was DNS. A system administrator’s haiku, many have uttered before. Today it rings true once again. CVE-2020-1350 is a vulnerability found in _all_ versions of Windows Server DNS back to 2003. Found by the folks at Checkpoint, this is a highly critical vulnerability.
Read more