Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-38428

Log warning when a non-mongod client connects using a certificate with cluster membership.

    XMLWordPrintable

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major - P3
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 4.1.8
    • Component/s: None
    • Labels:
      None
    • Backwards Compatibility:
      Fully Compatible
    • Sprint:
      Security 2019-01-28, Security 2019-02-11

      Description

      Since cluster membership (matching O/OU/DC in RDN) confers elevated privileges to cluster members, we should actively discourage the use of these certificates by any nodes other than actual cluster members (mongod instances).

        Attachments

          Activity

            People

            Assignee:
            isabella.siu Isabella Siu (Inactive)
            Reporter:
            sara.golemon Sara Golemon
            Participants:
            Votes:
            0 Vote for this issue
            Watchers:
            3 Start watching this issue

              Dates

              Created:
              Updated:
              Resolved: