Chef Heartbleed Releases

Chef_Heartbleed_Releases

The following Chef products were released with security patches in response to the Heartbleed openssl vulnerability.

* Enterprise Chef Server 11.1.3
* Manage add-on 1.3.1
* Reporting add-on 1.1.1
* Push-Jobs-Server add-on 1.1.1
* Push-Jobs-Client 1.0.2
* Chef Client 11.12.2

### Upgrade Instructions for Enterprise Chef Server

http://docs.opscode.com/upgrade_server_standalone.html

http://docs.opscode.com/upgrade_server_ha.html

http://docs.opscode.com/upgrade_server_ha_notes.html

### Regenerate SSL Certificates on Chef server

After upgrading to Enterprise Chef 11.1.3 you should regenerate the servers' SSL certificates.

http://docs.opscode.com/server_security.html#regenerate-ssl-certificates

### Heartbleed and Chef Client Keys

http://www.getchef.com/blog/2014/04/10/update-on-heartbleed-and-chef-keys/

### (Optional) Disable Sign Up in Web Interface

If you want, you can disable the sign up page in the management console by adding 'disable_sign_up true' to '/etc/opscode-manage/manage.rb' and running 'opscode-manage-ctl reconfigure'.

http://docs.opscode.com/config_rb_manage.html

### Related Blog Posts

http://www.getchef.com/blog/2014/04/09/enterprise-chef-11-1-3-release/
http://www.getchef.com/blog/2014/04/10/management-console-enterprise-chef-add-on-1-3-1-released/
http://www.getchef.com/blog/2014/04/09/release-chef-client-11-12-2/

### Download Links

Chef client 11.12.2 can be obtained from http://www.getchef.com/chef/install

If you need push-jobs-client please let me know which platforms you want to run it on.