CFEngine Blog

The CFEngine team posts here about upcoming releases, new exciting features and thoughts about configuration management software, configuration management best practices and their own experiences.

Inventory managemnet in 3.6, part 1 - Showing variables and classes

by Eystein Måløy Stenberg - April 14, 2014

CFEngine 3.6 introduces a set of features for inventory management, and we'll have a closer look at one of them today. This feature is part of both the Community and Enterprise editions. It essentially outputs the inventory in terms of classes and variables at a local node.


CFEngine Sponsoring the Red Hat Summit Next Week

by Adi Aloni - April 11, 2014

CFEngine is a proud sponsor of the Red Hat Summit next week in downtown San Francisco! If you are attending the event, be sure to visit us at Booth #116 to say hello and learn more about new features of CFEngine 3.6 as well as get special discounts for our upcoming user conference, Promise2014.


Fixing Heartbleed with CFEngine 3.5.x and above

by Diego Zamboni - April 11, 2014

Learn how to use CFEngine to detect if your hosts have a vulnerable version of OpenSSL, and upgrade it automatically.


Promise2014 - The First Annual CFEngine User Conference

by Jonathan Thorpe - April 10, 2014

We’re proud to announce Promise2014, the first annual CFEngine user conference!  On September 17 to 19 at the DoubleTree by Hilton in San Francisco Airport.


As you may know, a serious vulnerability was recently announced in OpenSSL, commonly referred to as Heartbleed or more officially by its CVE ID CVE-2014-0160. This vulnerability affects the OpenSSL heartbeat mechanism and allows unauthorized access to private data including encryption keys, encrypted traffic and more.

At CFEngine we use OpenSSL both in our infrastructure and in our products. The security of our users and customers is one of our primary concerns, so we immediately began investigating the possible impact of this bug. Here are our findings.