Category:

Chef InSpec


Hosted Chef Scheduled Maintenance and Downtime January 6, 2022

Hosted Chef, your gateway to managing Chef infrastructure in the cloud, is set to receive an upgrade to its database. In order to facilitate this upgrade, we will be migrating all content to a new version of PostgreSQL. We will also be upgrading the application to Chef Infra server 14.10.

Read more

Shift Left with Chef Compliance

This blog post discusses the security and compliance challenges that create major roadblocks in software delivery and why most organizations find implementing auditing and remediating processes daunting.

Read more

Supermarket.chef.io set to get an Infrastructure upgrade

Chef Supermarket, your gateway to finding the cookbooks best suited for your DevOps needs, is set to receive an upgrade to its infrastructure. In order to facilitate this upgrade, we will be migrating all content to new hardware. Early 2022 The outage will affect the Supermarket web application and all APIs that point to supermarket.chef.io. Supermarket is a very important content source for our community. We believe that this shift in the underlying infrastructure on which it is hosted is vital in ensuring we can serve you best in the long term.

Read more

Chef Infra 101: The Road to Best Practices

In this blog post, you’ll take a look at some practices that can help you get a running start with your Chef automation and the principle of Policy as Code. It’s intended for any IT professional or Chef newcomer.

Read more

Chef Guide: Accelerate test-driven development with Chef Workstation and Test Kitchen

Whether you’re new to Chef or an old pro, Test Kitchen can be a boon to anyone looking to dive into test-driven automation practices and rapid code development.

Read more

A quick Chef way to detect and remediate PrintNightmare

A Microsoft publicly disclosed remote code execution zero-day vulnerability (CVE-2021-34527), now known as “PrintNightmare”, could allow attackers to run code, including malware or ransomware, and take full control of impacted vulnerable systems. Microsoft is urging Administrators to deploy the proper patches as quickly as possible or disable inbound remote printing until the patches can be applied.

Read more

Automating PCI-DSS Compliance with Chef

Any company that handles credit card data, especially in the United States, is subject to the Payment Card Industry Data Security Standard (PCI DSS), and already knows how difficult and time-consuming PCI audits can be.

Read more

Testing Windows DNS SIGRed Vulnerability with Chef InSpec

It’s not DNS. There’s no way it’s DNS. It was DNS. A system administrator’s haiku, many have uttered before. Today it rings true once again. CVE-2020-1350 is a vulnerability found in _all_ versions of Windows Server DNS back to 2003. Found by the folks at Checkpoint, this is a highly critical vulnerability.

Read more

Cyber Security for Australian Government, National Critical Infrastructure providers and Enterprise using Chef Compliance

On Friday, June 19th 2020, the Australian Prime Minister Scott Morrison called a snap press conference to reveal that the nation was under cyber-attack by a state-based actor.

Read more
Posted in:

Automating MAS Technology Risk Management (TRM) Guidelines using Chef InSpec

I’m very privileged to work with a range of FSI organizations across Asia Pacific (APAC) as a Regional Solutions Architect at Chef. Customers in every vertical need help and assistance with continuously auditing their environments inline with industry standards, as well as those set by governments, and independent regulators.

Read more

Chef InSpec