[SERVER-38428] Log warning when a non-mongod client connects using a certificate with cluster membership. Created: 05/Dec/18  Updated: 29/Oct/23  Resolved: 01/Feb/19

Status: Closed
Project: Core Server
Component/s: None
Affects Version/s: None
Fix Version/s: 4.1.8

Type: Improvement Priority: Major - P3
Reporter: Sara Golemon Assignee: Isabella Siu (Inactive)
Resolution: Fixed Votes: 0
Labels: None
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Backwards Compatibility: Fully Compatible
Sprint: Security 2019-01-28, Security 2019-02-11
Participants:

 Description   

Since cluster membership (matching O/OU/DC in RDN) confers elevated privileges to cluster members, we should actively discourage the use of these certificates by any nodes other than actual cluster members (mongod instances).



 Comments   
Comment by Githook User [ 01/Feb/19 ]

Author:

{'name': 'Isabella Siu', 'email': 'isabella.siu@10gen.com', 'username': 'iwysiu'}

Message: SERVER-38428 log warning when non-mongod client connects with cluster certificate
Branch: master
https://github.com/mongodb/mongo/commit/6c0c3f30d261de356b9c57d56a478c301298025d

Generated at Thu Feb 08 04:48:55 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.