Loading...

XML

Word

Printable

JSON

Type: Improvement
Resolution: Done
Priority: Major - P3
Fix Version/s: 3.1.9
Affects Version/s: None
Component/s: Security
Labels:
None

Backwards Compatibility:
Minor Change
Sprint:
Security A 10/09/15
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

Right now new user names are checked against the current server SN, but it isn't as useful as checking that the new user is not going to be recognized as the system user: https://github.com/mongodb/mongo/blob/r2.6.4/src/mongo/db/commands/authentication_commands.cpp#L343

causes

SERVER-45938 Allow matching O/OU/DC in client x509 cert if clusterMode:keyFile

Closed

Assignee:: Spencer Jackson
Reporter:: Alexander Komyagin (Inactive)
Participants:: Alexander Komyagin, Githook User, Spencer Jackson
Votes:: 0 Vote for this issue
Watchers:: 5 Start watching this issue

Created:: Sep 30 2014 12:02:38 AM UTC
Updated:: Feb 03 2020 11:14:57 PM UTC
Resolved:: Oct 01 2015 02:41:40 PM UTC
Confidence Status Last Update:: 26/Sep/15 1:36 AM