Blog
Year:
Introducing cf-secret – Secret encryption in CFEngine
Posted by: Ole Herman Elgesem
Contributor and CFEngine Champion, Jon Henrik Bjørnstad, developed a tool for encrypting files using CFEngine host keys, called cf-keycrypt. Thank you to Jon Henrik and all...
Read More
CVE-2019-19394 – Mission Portal JavaScript Injection vulnerability
Posted by: Ole Herman Elgesem
A vulnerability was recently discovered in CFEngine Mission Portal and has now been fixed. Under certain circumstances, it was possible to inject JavaScript code into data...
Read More
CFEngine 3.12.4-2 released
Posted by: Nick Anderson
Today we released 3.12.4-2. Shortly after releasing 3.12.4-1, we identified a permissions problem that prevents 3.12.4-1 from contributing data to a 3.15 hub setup for federated...
Read More
CFEngine migrates to FORTH language for policy in version 4.0.-4 (non-breaking change!)
Posted by: Craig Comstock
Announcing CF4! (or is it CF-FORTH?!)
I imagine you didn't expect such a big release so soon after our most recent release of 3.12.4 and 3.15.1 on...
Read More
CFEngine 3.12.4 and 3.15.1 released
Posted by: Nils Christian Roscher-Nielsen
We are today very excited to bring you new updates to CFEngine.
This is a set of patch releases for the CFEngine 3.12 LTS and 3.15 LTS...
Read More
CFEngine and Covid-19
Posted by: Nils Christian Roscher-Nielsen
The ongoing COVID-19 pandemic brings challenging times for many countries, companies, families, and individuals. Therefore we wanted to make a brief statement about the state of...
Read More
Welcoming Dimitrios Apostolou as a CFEngine Champion
Posted by: Nick Anderson
As we enter 2020 and reflect on the various contributions the project has received we want to take a moment to recognize one of the more...
Read More
CFEngine 3.12.3-2, 3.15.0-2 released
Posted by: Nick Anderson
We recently released new builds for our Enterprise and Community packages. This release fixes an issue causing Enterprise Hub packages to fail upgrade in some cases....
Read More
Upgrading from CFEngine 2 to 3: running the 2 agents side by side with 3
Posted by: Aleksey Tsalolikhin
CFEngine 2 network communication is insecure by today's standards.
CFEngine 2
CVE-2016-6329: CFEngine 2 uses Blowfish cipher (1993) which today is considered:
Weak
Deprecated
Subject to key recovery attack
No security fixes...
Read More
CFEngine 3.15 LTS released
Posted by: Nils Christian Roscher-Nielsen
Today marks a new milestone for CFEngine, with the release of the new CFEngine 3.15.0 LTS. This is the newest Long Term Supported CFEngine series, introducing...
Read More