[SERVER-39671] The server should log startup warnings when using --sslAllowInvalidCertificates or --sslAllowInvalidHostnames - MongoDB Jira

XML

Word

Printable

Details

Type: Task
Status: Closed
Priority: Minor - P4
Resolution: Fixed
Affects Version/s: None
Fix Version/s: 4.1.14
Component/s: None
Labels:
- neweng
- security

Backwards Compatibility:
Fully Compatible
Sprint:
Security 2019-06-03

Description

because these disable TLS validation checks which can allow some classes of attacks.

Attachments

Activity

People

Assignee:: Roxane Fruytier (Inactive)

Reporter:: Spencer Brown

Participants:: Githook User, Roxane Fruytier, Spencer Brown

Votes:: 0 Vote for this issue

Watchers:: 9 Start watching this issue

Dates

Created:: Mar 15 2018 05:42:13 PM UTC

Updated:: Jun 04 2019 01:47:34 PM UTC

Resolved:: May 30 2019 08:55:34 PM UTC