[SERVER-17739] Ability to limit which named curves may be used in SSL connections Created: 25/Mar/15  Updated: 06/Dec/22

Status: Open
Project: Core Server
Component/s: Security
Affects Version/s: None
Fix Version/s: features we're not sure of

Type: Improvement Priority: Major - P3
Reporter: Osmar Olivo Assignee: Backlog - Security Team
Resolution: Unresolved Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Issue Links:
Depends
Assigned Teams:
Server Security
Sprint: Security A 10/09/15
Participants:

 Description   

When using MongoDB one should be able to configure the kinds of SSL connections it can make to a high degree of granularity. In particular, one should be able to select which kinds of curves may be used when establishing connections. Explicitly allowing or dissallowing certain ones.

This will be implemented as a hidden flag for end-users wishing to configure OpenSSL directly.



 Comments   
Comment by Spencer Jackson [ 15/Oct/15 ]

It appears I used the wrong ticket number on the above commit. SERVER-13885 should have been linked instead.

Comment by Githook User [ 14/Oct/15 ]

Author:

{u'username': u'spencerjackson', u'name': u'Spencer Jackson', u'email': u'spencer.jackson@mongodb.com'}

Message: SERVER-2421 SERVER-17739 Add FQDN canonicalization for serverStatus and SPNs
Branch: master
https://github.com/mongodb/mongo/commit/e7189d7af091983e9eedc1ca30bc7f1d8e136951

Generated at Thu Feb 08 03:45:26 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.