[SERVER-38428] Log warning when a non-mongod client connects using a certificate with cluster membership. - MongoDB Jira

XML

Word

Printable

Details

Type: Improvement
Status: Closed
Priority: Major - P3
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 4.1.8
Component/s: None
Labels:
None

Backwards Compatibility:
Fully Compatible
Sprint:
Security 2019-01-28, Security 2019-02-11

Description

Since cluster membership (matching O/OU/DC in RDN) confers elevated privileges to cluster members, we should actively discourage the use of these certificates by any nodes other than actual cluster members (mongod instances).

Attachments

Activity

People

Assignee:: Isabella Siu (Inactive)

Reporter:: Sara Golemon

Participants:: Githook User, Isabella Siu, Sara Golemon

Votes:: 0 Vote for this issue

Watchers:: 3 Start watching this issue

Dates

Created:: Dec 05 2018 09:25:34 PM UTC

Updated:: Feb 01 2019 08:33:32 PM UTC

Resolved:: Feb 01 2019 08:33:32 PM UTC