Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Done
Priority: Major - P3
Fix Version/s: 3.5.9
Affects Version/s: 3.2.10, 3.4.0
Component/s: Logging
Labels:
- neweng
- platforms-interns-2017

Backwards Compatibility:
Minor Change
Operating System:
ALL
Steps To Reproduce:

Hide

Try to login with an nonexistent user

Show
Try to login with an nonexistent user
Sprint:
Platforms 2017-06-19
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

When an user tries to brute force access the mongo database it does not show the ip address of the incoming connection attempt.

I only get the following two lines of log:

2017-01-06T00:57:05.883+0000 I ACCESS [conn6110] Failed to authenticate rafa@admin with mechanism MONGODB-CR: AuthenticationFailed: UserNotFound: Could not find user rafa@admin
2017-01-06T00:57:06.253+0000 I ACCESS [conn6110] authenticate db: admin

{ authenticate: 1.0, user: "rafa", nonce: "xxx", key: "xxx" }

When the user exists but the password is wrong, I get the following line of log:

2017-01-05T23:38:55.782+0000 I ACCESS [conn624] Failed to authenticate rafa@admin with mechanism MONGODB-CR: AuthenticationFailed: MONGODB-CR credentials missing in the user document

I've found that this issue SERVER-16452was to resolve this problem.

I've seen this problem with both versions that I marked.

is related to

SERVER-16452 Failed login attempts should log source IP address

Closed

Assignee:: Sara Golemon (Inactive)
Reporter:: Bruno Santos
Participants:: Bruno Santos, Githook User, Kelsey Schubert, Sara Golemon
Votes:: 2 Vote for this issue
Watchers:: 6 Start watching this issue

Created:: Jan 06 2017 01:46:45 AM UTC
Updated:: Apr 06 2023 05:40:51 PM UTC
Resolved:: Jun 09 2017 07:48:41 PM UTC
Confidence Status Last Update:: 06/Jun/17 2:50 PM

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates