[DOCS-11559] Docs for SERVER-34237: Expose means for shell to disable TLS 1.0 Created: 09/Apr/18 Updated: 29/Oct/23 Resolved: 10/Jun/18 |
|
| Status: | Closed |
| Project: | Documentation |
| Component/s: | manual, Server |
| Affects Version/s: | None |
| Fix Version/s: | 3.7.4, 3.4.15, 4.0.0-rc0, 3.6.5 |
| Type: | Task | Priority: | Major - P3 |
| Reporter: | Kay Kim (Inactive) | Assignee: | Kay Kim (Inactive) |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||||||||||
| Participants: | |||||||||||||||||
| Days since reply: | 5 years, 35 weeks, 4 days ago | ||||||||||||||||
| Epic Link: | DOCS: 4.0 Server | ||||||||||||||||
| Story Points: | 1.5 | ||||||||||||||||
| Description |
DescriptionThis change disables TLS 1.0 encryption when using the shell client if TLS 1.1 or greater is available on the system. This change also adds support for the --sslDisabledProtocols option to the shell client. To make connections using TLS 1.0 using the shell, specify --sslDisabledProtocols 'none' Scope of changes (files that need work and how much)
Optional: Potentially point to the PCI SSC announcement in the release notes for why MongoDB is removing support for TLS 1.0. Impact to other docs outside of this product
MVP (work and date?)Resources (e.g. Scope Docs, Invision)PCI SSC announcement Engineering Ticket Description:Compliance requirements, such as PCI DSS v3.1, have mandated removal of TLS 1.0 by June 30th 2018. customers need a way not only to enable newer safe protocols but also to provably disable TLS 1.0. shell does not currently expose a means of disabling TLS protocols |
| Comments |
| Comment by Githook User [ 10/Jun/18 ] |
|
Author: {'username': 'kay-kim', 'name': 'kay', 'email': 'kay.kim@10gen.com'}Message: |
| Comment by Githook User [ 10/Jun/18 ] |
|
Author: {'username': 'kay-kim', 'name': 'kay', 'email': 'kay.kim@10gen.com'}Message: |
| Comment by Githook User [ 10/Jun/18 ] |
|
Author: {'username': 'kay-kim', 'name': 'kay', 'email': 'kay.kim@10gen.com'}Message: |