Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-17591

Add SSL flag to select supported protocols

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 2.6.10, 3.0.3, 3.1.2
    • Component/s: Networking, Security
    • Labels:
      None
    • Backwards Compatibility:
      Fully Compatible
    • Backport Completed:
    • Sprint:
      Security 1 04/03/15, Security 2 04/24/15

      Description

      It should be possible to pass a list of supported encryption protocols to a MongoDB server process. The server would configure OpenSSL to make and accept connections using only those protocols. A user with specialized security requirements, for example, would then be able to setup a server to only use TLS 1.2.

        Attachments

          Issue Links

          related to

          Improvement - An improvement or enhancement to an existing feature or task. SERVER-20401 Publicly expose net.ssl.disabledProtocols

          • Major - P3 - Major loss of function.
          • Closed

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                9 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: