Security Breach: User information for and compromised.

What Happened?

A vulnerability in the third-party software that runs our Open Source Chef wiki and ticketing system was exploited to gain access to that particular system. While on this system, the attacker gained escalated privileges and downloaded the user database for the wiki and ticketing system.

What information was exposed?

The user database that was accessed contained usernames, email addresses, full names, and hashed passwords. We believe these passwords are adequately secure (the software in question uses the PBKDF2 algorithm), but we will be forcing a password change on the ticketing and wiki systems. If you use this password on other systems, we suggest choosing a new password on those systems as well. We will also contact the affected users via email today.

Were any of my personal tickets accessed?  What about my Hosted Chef data?

We are still investigating this breach; however, there is currently no evidence that any other systems were impacted or that  other data was compromised.

Does this affect my Hosted Chef accounts?

This does not directly impact your Hosted Chef data or accounts. If you use the same username and password, it is recommended that you change this.

How did you catch the breach?

Our security monitoring alerted us to the unauthorized access. Upon investigation, we confirmed the unauthorized activity and immediately took steps to terminate the unauthorized access, isolate the affected systems, and secure forensic data.

What has been done to prevent this type of unauthorized access?

We are working with our third party software providers to identify the vulnerability and apply the appropriate patches to the systems.

We will provide additional details as they become available.  We’re very sorry about this incident. We take security seriously and are addressing the incident as our top priority.

If you have any questions please contact Opscode at

Author Steven Danna

  • junk

    What software?

  • pmocek

    What third-party software runs Opscode’s Open Source Chef wiki and ticketing system?

    • Larry Gilbert

      I think they are Confluence and Jira, respectively, both products by Atlassian. (Going from memory here.)

      • rebootwx

        I think the Wiki was based on MediaWiki and the Ticket system looks like HelpSpot

        • steve

          The support ticketing system was not compromised as far as we can tell. The Wiki is Atlassian’s Confluence and the ticketing system is JIRA.

      • Yui

        Is there information on what versions those are? Thanks.

  • Opscode’s third-party software that runs our Open Source Chef wiki and ticketing system is powered by Atlassian’s Confluence and Jira products.

    • Were these the Download or On Demand versions?

  • anonymous coward

    Tell me you were using bcrypt for the password storage

  • Bridger

    So, how do I get to or now? Both forward to this page…

    • steve

      Both systems are still offline until we can bring them up safely. We’ll post an update to once it is back online.

  • Ashish

    Since yesterday i was trying to find installation document of chef client on windows and ubuntu, but i am not able to find those. Can you please suggest me where can i get these.

  • Luke Chavers

    Ok, got it! So, do you realize that every ticket and wiki link redirects here? Been like this for days… so… maybe a more elegant approach is in order? .. poor form ..

    • Yes, we realize that is the case. We’re continuing our work to ensure the wiki and ticketing systems are secure before we bring them back online. Much of the content from the wiki has actually been migrated to our documentation site – You may be able to find what you’re looking for there.

      • mrjcleaver

        So the tickets are offline :(

      • hyfather

        Where can I find the Cookbook Style Guide on the docs site?

  • bjorn

    i got to some pages using google cache

  • Eric Herot

    See for updates on this issue…