Yipit Django Blog Blog Archives Menu Blog Archives Twitter GitHub RSS The first in a short series of Chef related blog posts Imagine this everyday occurrence: You are writing a Chef cookbook You need to download the source code of a program as a tarball. Being the good programmer you are, you use for Chef’s remote_file resource. You grab the checksum of the file from the website and add it to the resource. Everything is good right? Unfortunately not. The Chef remote_file resource does have a checksum property, but it is not meant as a security measure. Instead it is implemented as a bandwidth saving property. If the checksum does not match, it will download the new version but no further validation will be done to match it with the checksum. Here is an example of using a standard remote_file callback pattern to download and install from source...