-
Type: Question
-
Resolution: Duplicate
-
Priority: Major - P3
-
None
-
Affects Version/s: 1.9.0
-
Component/s: Security
-
None
-
Environment:Windows/Linux/Freebsd
All requests from the client should be authenticated, even after the initial establishment of a connection. Simply authenticating the initial request followed by using the source IP/port to extend trust to subsequent requests is not a sufficient basis for trust.
- duplicates
-
SERVER-6746 Authentication should only occur over secure channels
- Closed