[SERVER-17739] Ability to limit which named curves may be used in SSL connections Created: 25/Mar/15 Updated: 06/Dec/22 |
|
| Status: | Open |
| Project: | Core Server |
| Component/s: | Security |
| Affects Version/s: | None |
| Fix Version/s: | features we're not sure of |
| Type: | Improvement | Priority: | Major - P3 |
| Reporter: | Osmar Olivo | Assignee: | Backlog - Security Team |
| Resolution: | Unresolved | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Issue Links: |
|
||||
| Assigned Teams: |
Server Security
|
||||
| Sprint: | Security A 10/09/15 | ||||
| Participants: | |||||
| Description |
|
When using MongoDB one should be able to configure the kinds of SSL connections it can make to a high degree of granularity. In particular, one should be able to select which kinds of curves may be used when establishing connections. Explicitly allowing or dissallowing certain ones. This will be implemented as a hidden flag for end-users wishing to configure OpenSSL directly. |
| Comments |
| Comment by Spencer Jackson [ 15/Oct/15 ] |
|
It appears I used the wrong ticket number on the above commit. |
| Comment by Githook User [ 14/Oct/15 ] |
|
Author: {u'username': u'spencerjackson', u'name': u'Spencer Jackson', u'email': u'spencer.jackson@mongodb.com'}Message: |