[DOCS-10796] Release notes walk through allowing access from remote hosts without first creating users Created: 15/Sep/17  Updated: 29/Oct/23  Resolved: 20/Sep/17

Status: Closed
Project: Documentation
Component/s: Rel Notes
Affects Version/s: 3.4.0
Fix Version/s: 3.4.0

Type: Improvement Priority: Major - P3
Reporter: Andrew Morgan Assignee: Kay Kim (Inactive)
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Participants:
Days since reply: 6 years, 21 weeks ago

 Description   

The release notes (https://docs.mongodb.com/master/release-notes/3.6-compatibility/#bind-ip-compatibility) explain to the reader how they should enable additional network interfaces (rather than just localhost) when upgrading to 3.6.

If the reader hasn't first turned on security and created username/passwords then this could open them up to unauthorized access.

It would be better to add a warning that they should enable security (if they haven't already done so) before removing the localhost limitation.



 Comments   
Comment by Kay Kim (Inactive) [ 20/Sep/17 ]

Added a warning blurb. Just give a holler if you want stronger wording.

Comment by Githook User [ 20/Sep/17 ]

Author:

{'email': 'kay.kim@10gen.com', 'name': 'kay', 'username': 'kay-kim'}

Message: DOCS-10796: security and bind_ip
Branch: master
https://github.com/mongodb/docs/commit/a5a15268ed10e30a8ac9bd2c90b2b6be846ce8be

Generated at Thu Feb 08 08:01:23 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.