Loading...

XML

Word

Printable

JSON

Type: Bug
Resolution: Won't Fix
Priority: Major - P3
Fix Version/s: None
Affects Version/s: None
Component/s: Security
Labels:
- platforms_security

Assigned Teams:

Server Security
Operating System:
ALL
Sprint:
Security 2018-10-08, Security 2018-10-22
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

A normal user who has write access to the "local" database is currently not disallowed from writing arbitrary data to the oplog. We should discuss more stringent rules about when (if ever) to allow these kinds of arbitrary oplog writes.

is depended on by

SERVER-26829 Oplog usable as output of mapreduce

Closed

related to

SERVER-29826 Prevent user writes to internal replication collections

Closed

Assignee:: [DO NOT USE] Backlog - Security Team
Reporter:: Will Schultz
Participants:: [DO NOT USE] Backlog - Security Team, Gregory McKeon, Jonathan Reams, Spencer Jackson, Will Schultz
Votes:: 0 Vote for this issue
Watchers:: 10 Start watching this issue

Created:: Mar 16 2017 08:50:17 PM UTC
Updated:: Dec 06 2022 04:05:15 AM UTC
Resolved:: Oct 26 2018 03:42:25 PM UTC
Confidence Status Last Update:: 08/Oct/18 2:28 PM

Details

Description

Attachments

Issue Links

Forms

Activity

People

Dates