Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-39671

The server should log startup warnings when using --sslAllowInvalidCertificates or --sslAllowInvalidHostnames

    XMLWordPrintableJSON

Details

    • Icon: Task Task
    • Resolution: Fixed
    • Icon: Minor - P4 Minor - P4
    • 4.1.14
    • None
    • None
    • Fully Compatible
    • Security 2019-06-03

    Description

      because these disable TLS validation checks which can allow some classes of attacks.

      Attachments

        Activity

          People

            roxane.fruytier@mongodb.com Roxane Fruytier (Inactive)
            spencer.brown@mongodb.com Spencer Brown
            Votes:
            0 Vote for this issue
            Watchers:
            9 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: