Uploaded image for project: 'Documentation'
  1. Documentation
  2. DOCS-6027

3.1.x release notes for encryption use incorrect command

    XMLWordPrintableJSON

Details

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Major - P3 Major - P3
    • 01112017-cleanup
    • None
    • None
    • None

    Description

      The instructions for key-file encryption tell us to use the following command for keyfile creation

       openssl rand -base64 32 | head -c 32 > mongodb-keyfile 

      This is incorrect as when you base64 encode something, original key length is not preserved, therefore we are truncating our keys with this command. What we actually want is

       openssl rand -base64 32 > mongodb-keyfile 

      The exact issue can be found at http://docs.mongodb.org/manual/release-notes/3.1-dev-series-configure-encryption/#local-key-management

      Attachments

        Activity

          People

            kay.kim@mongodb.com Kay Kim (Inactive)
            osmar.olivo Osmar Olivo
            Votes:
            0 Vote for this issue
            Watchers:
            1 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved:
              8 years, 26 weeks, 6 days ago