Posts tagged ‘Puppet’

Are your Ops tools encrypted?

sherry
By Sherry Wei
Founder and CTO, Aviatrix
December 12, 2017

We recently did a survey on popular DevOps tools and discovered some normal stuff — most of them are client server based; also learned something new — most of them are not encrypted. Tools like Chef, Puppet, Jenkins, etc, where data packets between client and server travel in clear text. Typically in a cloud deployment, there is a shared service VPC or management VPC where DevOps tools are deployed. Application instances are hosted in spoke VPCs. Most of the application images have agents installed, enabling them to be managed by servers residing in the management VPC. DevOps tools, either for build, configuration or test,…