<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 08:03:04 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[DOCS-11541] Docs for SERVER-32981: Disable TLS 1.0 by default</title>
                <link>https://jira.mongodb.org/browse/DOCS-11541</link>
                <project id="10380" key="DOCS">Documentation</project>
                    <description>&lt;h1&gt;&lt;a name=&quot;DocumentationRequestSummary%3A&quot;&gt;&lt;/a&gt;Documentation Request Summary: &lt;/h1&gt;

&lt;p&gt;This change disabled the use of TLS 1.0 in most circumstances*.  Clients attempting to connect to such server instances via SSL may fail due to this change as they do not support TLS 1.1 or later**.&lt;/p&gt;

&lt;p&gt;In such (rare) cases, administrators should configure &quot;net.ssl.disabledProtocols = none&quot; in their config YaML file, or specify &apos;--sslDisabledProtocols none&apos; via the command line to re-enable TLS 1.0 support.&lt;/p&gt;

&lt;ul&gt;
	&lt;li&gt;When mongod/mongos are built with older versions of OpenSSL, TLS 1.0 support will NOT be disabled by default since these versions of OpenSSL do not support TLS 1.1 or later.  Additionally, we do not auto-disable TLS 1.0 on OSX regardless of the OpenSSL version used (or even if using Native TLS), since other tooling on the system is likely built against an old version of OpenSSL and would not support TLS 1.0).&lt;/li&gt;
&lt;/ul&gt;


&lt;ul&gt;
	&lt;li&gt;
	&lt;ul&gt;
		&lt;li&gt;&quot;Older&quot; vesions of OpenSSL is defined as OpenSSL 1.0.0k or earlier.&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
&lt;/ul&gt;



&lt;h2&gt;&lt;a name=&quot;Scopeofchanges%3A&quot;&gt;&lt;/a&gt;Scope of changes: &lt;/h2&gt;



&lt;ul&gt;
	&lt;li&gt;Add section to 4.0 release notes/4.0-compatibility&lt;/li&gt;
	&lt;li&gt;source/includes/options-mongod.yaml&lt;/li&gt;
	&lt;li&gt;source/reference/program/mongod.txt&lt;/li&gt;
	&lt;li&gt;source/reference/program/mongos.txt&lt;/li&gt;
	&lt;li&gt;tutorial/configure-ssl&lt;/li&gt;
	&lt;li&gt;tutorial/upgrade-cluster-to-ssl&lt;/li&gt;
	&lt;li&gt;/tutorial/configure-fips.txt&lt;/li&gt;
	&lt;li&gt;source/core/security-transport-encryption.txt&lt;/li&gt;
	&lt;li&gt;x509 tutorials
	&lt;ul&gt;
		&lt;li&gt;source/administration/security-checklist.txt&lt;/li&gt;
		&lt;li&gt;source/core/security-encryption.txt&lt;/li&gt;
		&lt;li&gt;source/core/security-internal-authentication.txt&lt;/li&gt;
		&lt;li&gt;source/core/security-x.509.txt&lt;/li&gt;
		&lt;li&gt;source/tutorial/configure-x509-client-authentication.txt&lt;/li&gt;
		&lt;li&gt;source/tutorial/configure-x509-member-authentication.txt&lt;/li&gt;
		&lt;li&gt;source/tutorial/upgrade-keyfile-to-x509.txt&lt;/li&gt;
	&lt;/ul&gt;
	&lt;/li&gt;
&lt;/ul&gt;



&lt;h2&gt;&lt;a name=&quot;Impacttootherdocsoutsideofthisproduct%3A&quot;&gt;&lt;/a&gt;Impact to other docs outside of this product: &lt;/h2&gt;
&lt;p&gt;per meeting, tickets filed separate per product&lt;/p&gt;

&lt;h2&gt;&lt;a name=&quot;MVP%3A&quot;&gt;&lt;/a&gt;MVP: &lt;/h2&gt;

&lt;h2&gt;&lt;a name=&quot;Resources%3A&quot;&gt;&lt;/a&gt;Resources: &lt;/h2&gt;
&lt;h3&gt;&lt;a name=&quot;EngineeringTicketDescription%3A&quot;&gt;&lt;/a&gt;Engineering Ticket Description:&lt;/h3&gt;

&lt;p&gt;TLS 1.0 will be disabled by default on all platforms where MongoDB is linked against OpenSSL 1.0.1 or later.&lt;/p&gt;

&lt;p&gt;A new boolean startup server parameter will be added &#8220;enableInsecureTLS1_0&#8221; to enable TLS 1.0. It is an error to set this parameter if net.ssl.disabledProtocols contains &quot;noTLS1_0&quot;.&lt;/p&gt;
</description>
                <environment></environment>
        <key id="521515">DOCS-11541</key>
            <summary>Docs for SERVER-32981: Disable TLS 1.0 by default</summary>
                <type id="3" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14718&amp;avatarType=issuetype">Task</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="13201">Fixed</resolution>
                                        <assignee username="kay.kim@mongodb.com">Kay Kim</assignee>
                                    <reporter username="kay.kim@mongodb.com">Kay Kim</reporter>
                        <labels>
                            <label>security</label>
                    </labels>
                <created>Wed, 4 Apr 2018 01:15:17 +0000</created>
                <updated>Sun, 29 Oct 2023 13:58:05 +0000</updated>
                            <resolved>Mon, 11 Jun 2018 15:44:28 +0000</resolved>
                                                    <fixVersion>3.7.4</fixVersion>
                                        <due></due>
                            <votes>0</votes>
                                    <watches>3</watches>
                                                                                                                <comments>
                            <comment id="1917049" author="kay.kim@10gen.com" created="Mon, 11 Jun 2018 15:44:28 +0000"  >&lt;p&gt;republishing now with fix&lt;/p&gt;</comment>
                            <comment id="1917030" author="xgen-internal-githook" created="Mon, 11 Jun 2018 15:36:16 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;username&apos;: &apos;kay-kim&apos;, &apos;name&apos;: &apos;kay&apos;, &apos;email&apos;: &apos;kay.kim@10gen.com&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DOCS-11541&quot; title=&quot;Docs for SERVER-32981: Disable TLS 1.0 by default&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DOCS-11541&quot;&gt;&lt;del&gt;DOCS-11541&lt;/del&gt;&lt;/a&gt;: remove except on macOS for mongo shell option&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/docs/commit/bc5e9e16fe45b1183b0c6f1583016855fc1d8ea5&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/docs/commit/bc5e9e16fe45b1183b0c6f1583016855fc1d8ea5&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1916244" author="xgen-internal-githook" created="Sun, 10 Jun 2018 01:58:20 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{&apos;username&apos;: &apos;kay-kim&apos;, &apos;name&apos;: &apos;kay&apos;, &apos;email&apos;: &apos;kay.kim@10gen.com&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/DOCS-11541&quot; title=&quot;Docs for SERVER-32981: Disable TLS 1.0 by default&quot; class=&quot;issue-link&quot; data-issue-key=&quot;DOCS-11541&quot;&gt;&lt;del&gt;DOCS-11541&lt;/del&gt;&lt;/a&gt;,&lt;a href=&quot;https://jira.mongodb.org/browse/DOCS-11559&quot; title=&quot;Docs for SERVER-34237: Expose means for shell to disable TLS 1.0 &quot; class=&quot;issue-link&quot; data-issue-key=&quot;DOCS-11559&quot;&gt;&lt;del&gt;DOCS-11559&lt;/del&gt;&lt;/a&gt;: disable TLS 1.0&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/docs/commit/0a979235dd997069d0cd66369a6094bd78d276c0&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/docs/commit/0a979235dd997069d0cd66369a6094bd78d276c0&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1914494" author="kay.kim@10gen.com" created="Thu, 7 Jun 2018 22:34:21 +0000"  >&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/secure/ViewProfile.jspa?name=matt.lord&quot; class=&quot;user-hover&quot; rel=&quot;matt.lord&quot;&gt;matt.lord&lt;/a&gt;  &amp;#8211; so is it only the shell changes that have been backported to 3.4.15 and 3.6.5?  &lt;/p&gt;</comment>
                            <comment id="1902028" author="kay.kim@10gen.com" created="Fri, 25 May 2018 17:24:01 +0000"  >&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/secure/ViewProfile.jspa?name=shannon.bradshaw&quot; class=&quot;user-hover&quot; rel=&quot;shannon.bradshaw&quot;&gt;shannon.bradshaw&lt;/a&gt; &amp;#8211; So, I&apos;ll run the script to update  the fixVersion for &lt;a href=&quot;https://jira.mongodb.org/browse/DOCS-11559&quot; title=&quot;Docs for SERVER-34237: Expose means for shell to disable TLS 1.0 &quot; class=&quot;issue-link&quot; data-issue-key=&quot;DOCS-11559&quot;&gt;&lt;del&gt;DOCS-11559&lt;/del&gt;&lt;/a&gt; &amp;#8211; as the fixVersion has been updated on &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-34237&quot; title=&quot;Expose means for shell to disable TLS 1.0 &quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-34237&quot;&gt;&lt;del&gt;SERVER-34237&lt;/del&gt;&lt;/a&gt;   &lt;/p&gt;</comment>
                            <comment id="1902014" author="shannon.bradshaw@10gen.com" created="Fri, 25 May 2018 17:16:35 +0000"  >&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/secure/ViewProfile.jspa?name=kay.kim&quot; class=&quot;user-hover&quot; rel=&quot;kay.kim&quot;&gt;kay.kim&lt;/a&gt;, I don&apos;t see a ticket to explicitly capture support for safe TLS on 3.6 as well. We are backporting support to 3.6. Do you want to capture that work here or in a separate ticket?&lt;/p&gt;

&lt;p&gt;&lt;a href=&quot;https://jira.mongodb.org/browse/PRODUCT-774&quot; class=&quot;external-link&quot; rel=&quot;nofollow&quot;&gt;https://jira.mongodb.org/browse/PRODUCT-774&lt;/a&gt;&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10320">
                    <name>Documented</name>
                                            <outwardlinks description="documents">
                                        <issuelink>
            <issuekey id="488906">SERVER-32981</issuekey>
        </issuelink>
                            </outwardlinks>
                                                        </issuelinktype>
                            <issuelinktype id="10012">
                    <name>Related</name>
                                                                <inwardlinks description="is related to">
                                        <issuelink>
            <issuekey id="524167">DOCS-11559</issuekey>
        </issuelink>
                            </inwardlinks>
                                    </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                <customfield id="customfield_10050" key="com.atlassian.jira.toolkit:comments">
                        <customfieldname># Replies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>6.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_10055" key="com.atlassian.jira.ext.charting:firstresponsedate">
                        <customfieldname>Date of 1st Reply</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Fri, 25 May 2018 17:16:35 +0000</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10052" key="com.atlassian.jira.toolkit:dayslastcommented">
                        <customfieldname>Days since reply</customfieldname>
                        <customfieldvalues>
                                        5 years, 35 weeks, 2 days ago
    
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18254" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Dependencies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[]]></customfieldvalue>


                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                            <customfield id="customfield_10857" key="com.pyxis.greenhopper.jira:gh-epic-link">
                        <customfieldname>Epic Link</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>DOCS-11003</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10057" key="com.atlassian.jira.toolkit:lastusercommented">
                        <customfieldname>Last comment by Customer</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>true</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10056" key="com.atlassian.jira.toolkit:lastupdaterorcommenter">
                        <customfieldname>Last commenter</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>luke.bonanomi@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_11151" key="com.atlassian.jira.toolkit:LastCommentDate">
                        <customfieldname>Last public comment date</customfieldname>
                        <customfieldvalues>
                            5 years, 35 weeks, 2 days ago
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                            <customfield id="customfield_10051" key="com.atlassian.jira.toolkit:participants">
                        <customfieldname>Participants</customfieldname>
                        <customfieldvalues>
                                        <customfieldvalue>xgen-internal-githook</customfieldvalue>
            <customfieldvalue>kay.kim@mongodb.com</customfieldvalue>
            <customfieldvalue>shannon.bradshaw</customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_14254" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Product Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|htuarz:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|htljb3:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                    <customfield id="customfield_10557" key="com.pyxis.greenhopper.jira:gh-sprint">
                        <customfieldname>Sprint</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue id="1324">KANBAN BUCKET</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                    <customfield id="customfield_10053" key="com.atlassian.jira.ext.charting:timeinstatus">
                        <customfieldname>Time In Status</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_14350" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>serverRank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|httx07:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                </customfields>
    </item>
</channel>
</rss>