Skip wire compression for certain auth and user management commands

XMLWordPrintableJSON

    • Server Security
    • Security 2019-08-12, Security 2019-08-26, Security 2019-09-09
    • None
    • 3
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      When wire protocol compression is enabled, the shell should avoid compressing authentication and user management commands.

      This would be in effort to mitigate any risks, although very unlikely such as BEAST and CRIME attacks.

      This includes, but may not be limited to:

      • saslStart
      • saslContinue
      • getnonce
      • authenticate
      • createUser
      • updateUser
      • copydbSaslStart
      • copydbgetnonce
      • copydb

              Assignee:
              [DO NOT USE] Backlog - Security Team
              Reporter:
              Hannes Magnusson (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              7 Start watching this issue

                Created:
                Updated: