Uploaded image for project: 'Documentation'
  1. Documentation
  2. DOCS-1467

document new mms exposed db host check feature

    XMLWordPrintableJSON

Details

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major - P3 Major - P3
    • None
    • None
    • Cloud Manager
    • None

    Description

      We are releasing this soon. This is configured via a button toggle on the settings page.

      If enabled, the MMS servers will attempt to login to your database servers from our central datacenter. This is a safety test that tries to detect if your firewall is missing or misconfigured. The central MMS servers will attempt to connect to your server by using the primary (i.e., non-canonical) host id you see on your "Hosts" page in MMS. Note: If you are running intrusion detection software and this is enabled, it may set off some alerts in your system.

      Note: This is not a replacement for proper security audits, it is a high level check to try and assist people from making mistakes.

      It is important that this is described as a weak security check. If someone is hacked, I don't want them to come to 10gen and say, "we thought we were covered".

      Attachments

        Activity

          People

            sam.kleinman Sam Kleinman (Inactive)
            rn@deftlabs.com Ryan Nitz
            Votes:
            0 Vote for this issue
            Watchers:
            6 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:
              10 years, 41 weeks, 1 day ago