[DOCS-1467] document new mms exposed db host check feature Created: 30/Apr/13  Updated: 10/May/13  Resolved: 10/May/13

Status: Closed
Project: Documentation
Component/s: Cloud Manager
Affects Version/s: None
Fix Version/s: None

Type: Bug Priority: Major - P3
Reporter: Ryan Nitz Assignee: Sam Kleinman (Inactive)
Resolution: Done Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Duplicate
Related
Participants:
Days since reply: 10 years, 41 weeks, 1 day ago

 Description   

We are releasing this soon. This is configured via a button toggle on the settings page.

If enabled, the MMS servers will attempt to login to your database servers from our central datacenter. This is a safety test that tries to detect if your firewall is missing or misconfigured. The central MMS servers will attempt to connect to your server by using the primary (i.e., non-canonical) host id you see on your "Hosts" page in MMS. Note: If you are running intrusion detection software and this is enabled, it may set off some alerts in your system.

Note: This is not a replacement for proper security audits, it is a high level check to try and assist people from making mistakes.

It is important that this is described as a weak security check. If someone is hacked, I don't want them to come to 10gen and say, "we thought we were covered".



 Comments   
Comment by Ryan Nitz [ 07/May/13 ]

There are more info requests for this here:

The requests are made from AWS.

Generated at Thu Feb 08 07:41:05 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.