Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-28987

Skip wire compression for certain auth and user management commands

    XMLWordPrintable

    Details

      Description

      When wire protocol compression is enabled, the shell should avoid compressing authentication and user management commands.

      This would be in effort to mitigate any risks, although very unlikely such as BEAST and CRIME attacks.

      This includes, but may not be limited to:

      • saslStart
      • saslContinue
      • getnonce
      • authenticate
      • createUser
      • updateUser
      • copydbSaslStart
      • copydbgetnonce
      • copydb

        Attachments

          Activity

            People

            • Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

              • Created:
                Updated: