change text

Author: dblythy

src/Options/index.js

@@ -247,7 +247,6 @@ export interface ParseServerOptions {
   :DEFAULT: {} */
   security: ?SecurityOptions;
   /* Set to true if new users should be created without public read and write access.
-  :ENV: PARSE_SERVER_ENFORCE_PRIVATE_USERS
   :DEFAULT: false */
   enforcePrivateUsers: ?boolean;
 }

src/Security/CheckGroups/CheckGroupServerConfig.js

@@ -41,7 +41,8 @@ class CheckGroupServerConfig extends CheckGroup {
       }),
       new Check({
         title: 'Security log disabled',
-        warning: 'Security checks in logs may expose vulnerabilities to anyone access to logs.',
+        warning:
+          'Security checks in logs may expose vulnerabilities to anyone with access to logs.',
         solution: "Change Parse Server configuration to 'security.enableCheckLog: false'.",
         check: () => {
           if (config.security && config.security.enableCheckLog) {
@@ -62,7 +63,8 @@ class CheckGroupServerConfig extends CheckGroup {
       }),
       new Check({
         title: 'Users are created without public access',
-        warning: 'Users are created with public read access.',
+        warning:
+          'Users with public read access are exposed to anyone who knows their object IDs, or to anyone who can query the Parse.User class.',
         solution: "Change Parse Server configuration to 'enforcePrivateUsers: true'.",
         check: () => {
           if (!config.enforcePrivateUsers) {