<!-- 
RSS generated by JIRA (9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66) at Thu Feb 08 04:07:24 UTC 2024

It is possible to restrict the fields that are returned in this document by specifying the 'field' parameter in your request.
For example, to request only the issue key and summary append 'field=key&field=summary' to the URL of your request.
-->
<rss version="0.92" >
<channel>
    <title>MongoDB Jira</title>
    <link>https://jira.mongodb.org</link>
    <description>This file is an XML representation of an issue</description>
    <language>en-us</language>    <build-info>
        <version>9.7.1</version>
        <build-number>970001</build-number>
        <build-date>13-04-2023</build-date>
    </build-info>


<item>
            <title>[SERVER-24780] Create audit log entry for setParameter command</title>
                <link>https://jira.mongodb.org/browse/SERVER-24780</link>
                <project id="10000" key="SERVER">Core Server</project>
                    <description>&lt;p&gt;With the inclusion of setParameter support for LDAP authn/z parameters it is now technically possible to swap out the entire user database by switching LDAP server.&lt;/p&gt;

&lt;p&gt;This is a security event that should be audited. I propose we include an audit entry for all calls to setParameter.&lt;/p&gt;
</description>
                <environment></environment>
        <key id="296461">SERVER-24780</key>
            <summary>Create audit log entry for setParameter command</summary>
                <type id="4" iconUrl="https://jira.mongodb.org/secure/viewavatar?size=xsmall&amp;avatarId=14710&amp;avatarType=issuetype">Improvement</type>
                                            <priority id="3" iconUrl="https://jira.mongodb.org/images/icons/priorities/major.svg">Major - P3</priority>
                        <status id="6" iconUrl="https://jira.mongodb.org/images/icons/statuses/closed.png" description="The issue is considered finished, the resolution is correct. Issues which are closed can be reopened.">Closed</status>
                    <statusCategory id="3" key="done" colorName="success"/>
                                    <resolution id="9">Done</resolution>
                                        <assignee username="andreas.nilsson">Andreas Nilsson</assignee>
                                    <reporter username="andreas.nilsson">Andreas Nilsson</reporter>
                        <labels>
                    </labels>
                <created>Fri, 24 Jun 2016 14:08:08 +0000</created>
                <updated>Sat, 13 Aug 2016 00:07:32 +0000</updated>
                            <resolved>Thu, 28 Jul 2016 17:41:56 +0000</resolved>
                                    <version>3.2.7</version>
                                    <fixVersion>3.3.11</fixVersion>
                                    <component>Security</component>
                                        <votes>0</votes>
                                    <watches>7</watches>
                                                                                                                <comments>
                            <comment id="1340204" author="xgen-internal-githook" created="Thu, 28 Jul 2016 17:41:48 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;name&apos;: u&apos;Andreas Nilsson&apos;, u&apos;email&apos;: u&apos;andreas.nilsson@mongodb.com&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-24780&quot; title=&quot;Create audit log entry for setParameter command&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-24780&quot;&gt;&lt;del&gt;SERVER-24780&lt;/del&gt;&lt;/a&gt; Create audit log entry for setParameter command&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/10gen/mongo-enterprise-modules/commit/5cae21518129a7f43e7c60351c84307a62b1556b&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/10gen/mongo-enterprise-modules/commit/5cae21518129a7f43e7c60351c84307a62b1556b&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1339150" author="xgen-internal-githook" created="Wed, 27 Jul 2016 23:23:27 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;username&apos;: u&apos;stbrody&apos;, u&apos;name&apos;: u&apos;Spencer T Brody&apos;, u&apos;email&apos;: u&apos;spencer@mongodb.com&apos;}
&lt;p&gt;Message: Revert &quot;&lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-24780&quot; title=&quot;Create audit log entry for setParameter command&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-24780&quot;&gt;&lt;del&gt;SERVER-24780&lt;/del&gt;&lt;/a&gt; Create audit log entry for setParameter command&quot;&lt;/p&gt;

&lt;p&gt;This reverts commit 8d832327b805cfbf66e79cc0d1bc236cafe2846a.&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/10gen/mongo-enterprise-modules/commit/b382eb978536463a4e351a5867a1427a27d89a6e&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/10gen/mongo-enterprise-modules/commit/b382eb978536463a4e351a5867a1427a27d89a6e&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1339148" author="xgen-internal-githook" created="Wed, 27 Jul 2016 23:23:24 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;username&apos;: u&apos;stbrody&apos;, u&apos;name&apos;: u&apos;Spencer T Brody&apos;, u&apos;email&apos;: u&apos;spencer@mongodb.com&apos;}
&lt;p&gt;Message: Revert &quot;&lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-24780&quot; title=&quot;Create audit log entry for setParameter command&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-24780&quot;&gt;&lt;del&gt;SERVER-24780&lt;/del&gt;&lt;/a&gt; Create audit log entry for setParameter command&quot;&lt;/p&gt;

&lt;p&gt;This reverts commit a6fcab0cf4cad4bfee1d65ca2b9bfe0b69970a8f.&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo/commit/cb494c749a04ef677c6ffbb6cd77458efeb46c25&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo/commit/cb494c749a04ef677c6ffbb6cd77458efeb46c25&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1338802" author="xgen-internal-githook" created="Wed, 27 Jul 2016 21:30:28 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;name&apos;: u&apos;Andreas Nilsson&apos;, u&apos;email&apos;: u&apos;andreas.nilsson@mongodb.com&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-24780&quot; title=&quot;Create audit log entry for setParameter command&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-24780&quot;&gt;&lt;del&gt;SERVER-24780&lt;/del&gt;&lt;/a&gt; Create audit log entry for setParameter command&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/10gen/mongo-enterprise-modules/commit/8d832327b805cfbf66e79cc0d1bc236cafe2846a&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/10gen/mongo-enterprise-modules/commit/8d832327b805cfbf66e79cc0d1bc236cafe2846a&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1338798" author="xgen-internal-githook" created="Wed, 27 Jul 2016 21:29:32 +0000"  >&lt;p&gt;Author:&lt;/p&gt;
{u&apos;name&apos;: u&apos;Andreas Nilsson&apos;, u&apos;email&apos;: u&apos;andreas.nilsson@mongodb.com&apos;}
&lt;p&gt;Message: &lt;a href=&quot;https://jira.mongodb.org/browse/SERVER-24780&quot; title=&quot;Create audit log entry for setParameter command&quot; class=&quot;issue-link&quot; data-issue-key=&quot;SERVER-24780&quot;&gt;&lt;del&gt;SERVER-24780&lt;/del&gt;&lt;/a&gt; Create audit log entry for setParameter command&lt;br/&gt;
Branch: master&lt;br/&gt;
&lt;a href=&quot;https://github.com/mongodb/mongo/commit/a6fcab0cf4cad4bfee1d65ca2b9bfe0b69970a8f&quot; class=&quot;external-link&quot; target=&quot;_blank&quot; rel=&quot;nofollow noopener&quot;&gt;https://github.com/mongodb/mongo/commit/a6fcab0cf4cad4bfee1d65ca2b9bfe0b69970a8f&lt;/a&gt;&lt;/p&gt;</comment>
                            <comment id="1306159" author="schwerin" created="Fri, 24 Jun 2016 19:06:42 +0000"  >&lt;p&gt;My only objection is that it&apos;s one more path to test.&lt;/p&gt;</comment>
                            <comment id="1305914" author="milkie" created="Fri, 24 Jun 2016 17:23:05 +0000"  >&lt;p&gt;My concern with that is that it&apos;s not the default, so users would need to know that not only would they need to turn on authOk auditing, they might also need to add a filter to catch these types of events (and they would need to know that these types of events exist at all and might be valuable to audit).  Auditing setParameter by default might be easier all around, and would avoid the extra overhead of turning on authOk auditing.&lt;/p&gt;</comment>
                            <comment id="1305571" author="schwerin" created="Fri, 24 Jun 2016 14:31:06 +0000"  >&lt;p&gt;What&apos;s wrong with auditing &quot;authorization succeeded&quot; on setParameter? Is there not enough information about the setParameter command in the log message for &quot;authorization succeeded&quot;, or is it cumbersome in some other way?&lt;/p&gt;</comment>
                            <comment id="1305542" author="milkie" created="Fri, 24 Jun 2016 14:16:12 +0000"  >&lt;p&gt;I have no problem adding the command as a special audited event.&lt;/p&gt;</comment>
                    </comments>
                <issuelinks>
                            <issuelinktype id="10012">
                    <name>Related</name>
                                            <outwardlinks description="related to">
                                                        </outwardlinks>
                                                        </issuelinktype>
                    </issuelinks>
                <attachments>
                    </attachments>
                <subtasks>
                    </subtasks>
                <customfields>
                                                <customfield id="customfield_10050" key="com.atlassian.jira.toolkit:comments">
                        <customfieldname># Replies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9.0</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18555" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname># of Sprints</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2.0</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10011" key="com.atlassian.jira.plugin.system.customfieldtypes:radiobuttons">
                        <customfieldname>Backwards Compatibility</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue key="10038"><![CDATA[Fully Compatible]]></customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10055" key="com.atlassian.jira.ext.charting:firstresponsedate">
                        <customfieldname>Date of 1st Reply</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>Fri, 24 Jun 2016 14:16:12 +0000</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10052" key="com.atlassian.jira.toolkit:dayslastcommented">
                        <customfieldname>Days since reply</customfieldname>
                        <customfieldvalues>
                                        7 years, 28 weeks, 6 days ago
    
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_18254" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Dependencies</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue><![CDATA[]]></customfieldvalue>


                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_15850" key="com.atlassian.jira.plugins.jira-development-integration-plugin:devsummary">
                        <customfieldname>Development</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_10057" key="com.atlassian.jira.toolkit:lastusercommented">
                        <customfieldname>Last comment by Customer</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>true</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_10056" key="com.atlassian.jira.toolkit:lastupdaterorcommenter">
                        <customfieldname>Last commenter</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>ramon.fernandez@mongodb.com</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_11151" key="com.atlassian.jira.toolkit:LastCommentDate">
                        <customfieldname>Last public comment date</customfieldname>
                        <customfieldvalues>
                            7 years, 28 weeks, 6 days ago
                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_16465" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Linked BF Score</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>0.0</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_10051" key="com.atlassian.jira.toolkit:participants">
                        <customfieldname>Participants</customfieldname>
                        <customfieldvalues>
                                        <customfieldvalue>andreas.nilsson</customfieldvalue>
            <customfieldvalue>schwerin@mongodb.com</customfieldvalue>
            <customfieldvalue>milkie@mongodb.com</customfieldvalue>
            <customfieldvalue>xgen-internal-githook</customfieldvalue>
    
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_14254" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Product Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hrk49b:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                <customfield id="customfield_12550" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>Rank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>2|hrcpvj:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                <customfield id="customfield_10558" key="com.pyxis.greenhopper.jira:gh-global-rank">
                        <customfieldname>Rank (Obsolete)</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>9223372036854775807</customfieldvalue>
                        </customfieldvalues>
                    </customfield>
                                                                                            <customfield id="customfield_23361" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Requested By</customfieldname>
                        <customfieldvalues>
                                

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                        <customfield id="customfield_10557" key="com.pyxis.greenhopper.jira:gh-sprint">
                        <customfieldname>Sprint</customfieldname>
                        <customfieldvalues>
                                <customfieldvalue id="1010">Security 17 (07/15/16)</customfieldvalue>
    <customfieldvalue id="1011">Security (08/08/16)</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                            <customfield id="customfield_10053" key="com.atlassian.jira.ext.charting:timeinstatus">
                        <customfieldname>Time In Status</customfieldname>
                        <customfieldvalues>
                            
                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                                                                                                        <customfield id="customfield_22870" key="com.onresolve.jira.groovy.groovyrunner:scripted-field">
                        <customfieldname>Triagers</customfieldname>
                        <customfieldvalues>
                                

                        </customfieldvalues>
                    </customfield>
                                                                                                                                                                                                                                                                                                                                                                                    <customfield id="customfield_14350" key="com.pyxis.greenhopper.jira:gh-lexo-rank">
                        <customfieldname>serverRank</customfieldname>
                        <customfieldvalues>
                            <customfieldvalue>1|hseu1r:</customfieldvalue>

                        </customfieldvalues>
                    </customfield>
                                    </customfields>
    </item>
</channel>
</rss>