[SERVER-23645] The shell does certificate hostname checking when connected to unix domain socket Created: 11/Apr/16 Updated: 06/Dec/17 Resolved: 30/Aug/17 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | Security |
| Affects Version/s: | 3.2.4 |
| Fix Version/s: | 3.5.13 |
| Type: | Bug | Priority: | Major - P3 |
| Reporter: | Hannes Magnusson | Assignee: | ADAM Martin (Inactive) |
| Resolution: | Done | Votes: | 0 |
| Labels: | neweng, platforms-interns-2017 | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Backwards Compatibility: | Fully Compatible |
| Operating System: | ALL |
| Sprint: | Platforms 2017-07-10, Platforms 2017-07-31, Platforms 2017-08-21, Platforms 2017-09-11 |
| Participants: |
| Description |
Since Unix Domain Sockets are a different beast and it doesn't make any sense to do hostname verification. |
| Comments |
| Comment by Githook User [ 30/Aug/17 ] |
|
Author: {'name': 'ADAM David Alan Martin', 'username': 'adamlsd', 'email': 'adam.martin@10gen.com'}Message: Because Unix Domain Sockets are indicated by path, we can easily distinguish |
| Comment by Githook User [ 18/Aug/17 ] |
|
Author: {'username': 'adamlsd', 'email': 'adam.martin@10gen.com', 'name': 'ADAM David Alan Martin'}Message: Revert " This reverts commit c5b7415b7d1a314dd7f4f1143bc5b354894183c0. |
| Comment by Githook User [ 18/Aug/17 ] |
|
Author: {'username': 'adamlsd', 'email': 'adam.martin@10gen.com', 'name': 'ADAM David Alan Martin'}Message: Because Unix Domain Sockets are indicated by path, we can easily distinguish |