Comments (5)
Some discussion with coworkers yields that it's not actually a proper private key in the normal sense of public key crypto but rather the key for a symmetric cipher algorithm. The docs don't make this clear, and they should probably be updated.
from chef-web-docs-2016.
So thanks for the feedback. After some internal discussion, we updated the page: http://docs.opscode.com/essentials_data_bags.html#encrypt-a-data-bag ... the openssl rand
isn't meant to imply a specific/recommended approach, but rather just show one way of getting started down a path for data bag encryption. Please let me know if this update gets at the question you were asking. James
from chef-web-docs-2016.
On Mon, May 13, 2013 at 15:28:17 -0700 , jamescott wrote:
So thanks for the feedback. After some internal discussion, we updated
the page:
http://docs.opscode.com/essentials_data_bags.html#encrypt-a-data-bag ...
theopenssl rand
isn't meant to imply a specific/recommended
approach, but rather just show one way of getting started down a path
for data bag encryption. Please let me know if this update gets at the
question you were asking. James
Thank you for taking the time to address this! The text about using a
random number does help. I guess I was confused by the use of the term
'secret key' which to me is something specific to public key crypto.
Adding text to clarify that the key chef uses isn't a key for public key
crypto would be useful - at least to people who think like I do. :)
Again, thank you for taking the time to look into this!
from chef-web-docs-2016.
Cool. I updated that page again (building right now -- refresh in ~10 mins and the changes should be there) to use the phrase "shared secret encryption" and a link to this page: https://en.wikipedia.org/wiki/Symmetric-key_algorithm. Same as last time -- please let me know if this helps. And any other feedback you have about any of the other docs. We're working hard on getting them all to be much better, one page at a time ;) James
from chef-web-docs-2016.
On Mon, May 13, 2013 at 15:51:45 -0700 , jamescott wrote:
Cool. I updated that page again (building right now -- refresh in ~10
mins and the changes should be there) to use the phrase "shared secret
encryption" and a link to this page:
https://en.wikipedia.org/wiki/Symmetric-key_algorithm. Same as last time
-- please let me know if this helps. And any other feedback you have
about any of the other docs. We're working hard on getting them all to
be much better, one page at a time ;) James
This looks good, thanks!
Chris Nehren
from chef-web-docs-2016.
Related Issues (20)
- Compliance api update HOT 3
- chef_gem examples are outdated HOT 2
- docs.chef.io missing error_messages page for external-postgresql HOT 1
- chef_gem 'compile_time' wording isn't so great HOT 2
- remove-partitions option to opscode-reporting-ctl should be documented HOT 1
- document block argument to load_current_value HOT 12
- Open source to chef server 12 link is missing from upgrade cods HOT 1
- Manually loading encrypted databags is missing from the docs
- chef generate cookbook sentence is Deep.
- Greatly expand uninstall procedure
- metadata.rb doc is wrong for 'ohai_version' HOT 1
- Docs misrepresent default behaviour of chef-client -l
- Installation of Supermarket does not seem to be documented HOT 2
- Error in : chef-web-docs-2016/includes_delivery_integration/includes_delivery_integration_ldap_attributes.rst
- General compliance.rb improvements HOT 3
- (low pri) compliance api documentation bug HOT 1
- (windows) kitchen.yml docs
- Document new Ohai ohai flags
- `chef provision` docs don't show how to include dependencies in './provision/metadata.rb'
- Chef Server /universe example return values are incorrect/misleading
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from chef-web-docs-2016.