[SERVER-17379] HTTP interface's localhost exception check is too permissive Created: 25/Feb/15 Updated: 25/Jan/17 Resolved: 03/Mar/15 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | Security |
| Affects Version/s: | None |
| Fix Version/s: | 3.0.1, 3.1.0 |
| Type: | Bug | Priority: | Major - P3 |
| Reporter: | Spencer Brody (Inactive) | Assignee: | Spencer Brody (Inactive) |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||||||||||
| Backwards Compatibility: | Minor Change | ||||||||||||
| Operating System: | ALL | ||||||||||||
| Backport Completed: | |||||||||||||
| Participants: | |||||||||||||
| Description |
|
Issue Status as of Apr 30, 2015 ISSUE SUMMARY USER IMPACT This is more permissive than the database server localhost exception policy. WORKAROUNDS AFFECTED VERSIONS FIX VERSION |
| Comments |
| Comment by Githook User [ 04/Mar/15 ] |
|
Author: {u'username': u'stbrody', u'name': u'Spencer T Brody', u'email': u'spencer@mongodb.com'}Message: (cherry picked from commit e21b0f3c018198a81a4484cdb985a2211531d6ab) |
| Comment by Githook User [ 03/Mar/15 ] |
|
Author: {u'username': u'stbrody', u'name': u'Spencer T Brody', u'email': u'spencer@mongodb.com'}Message: |