Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-28987

Skip wire compression for certain auth and user management commands

    XMLWordPrintableJSON

Details

    • Server Security
    • Security 2019-08-12, Security 2019-08-26, Security 2019-09-09

    Description

      When wire protocol compression is enabled, the shell should avoid compressing authentication and user management commands.

      This would be in effort to mitigate any risks, although very unlikely such as BEAST and CRIME attacks.

      This includes, but may not be limited to:

      • saslStart
      • saslContinue
      • getnonce
      • authenticate
      • createUser
      • updateUser
      • copydbSaslStart
      • copydbgetnonce
      • copydb

      Attachments

        Activity

          People

            backlog-server-security Backlog - Security Team
            bjori Hannes Magnusson
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

            Dates

              Created:
              Updated: