[SERVER-28473] --noscripting option on mongod doesn't work Created: 24/Mar/17 Updated: 31/May/17 Resolved: 27/Mar/17 |
|
| Status: | Closed |
| Project: | Core Server |
| Component/s: | Security |
| Affects Version/s: | 3.5.4 |
| Fix Version/s: | None |
| Type: | Bug | Priority: | Major - P3 |
| Reporter: | Krishna | Assignee: | Mark Agarunov |
| Resolution: | Done | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Operating System: | ALL |
| Steps To Reproduce: | 1. Run 'mongod --noscripting' ); |
| Participants: |
| Description |
|
As per documentation at: --noscripting option when passed to mongod, doesn't stop any '$where' executions. |
| Comments |
| Comment by Krishna [ 25/Mar/17 ] | ||||||||
|
Hi Mark, Thanks for your response. Even config file is very particular about indentation. Thanks, | ||||||||
| Comment by Mark Agarunov [ 24/Mar/17 ] | ||||||||
|
Hello krishna.devale, Thank you for the report. Unfortunately, we have not been able to reproduce this. With --noscripting passed to mongod I'm seeing:
And no output in the server logs. Without --noscripting TEST is printed in the server logs. Thanks, |