-
Type:
Bug
-
Resolution: Fixed
-
Priority:
Major - P3
-
Affects Version/s: None
-
Component/s: None
-
Labels:None
-
Minor Change
-
ALL
-
- Start mongod with auditing enabled
- Prepare a table with some dummy data
for (let i = 0; i < 100; i++) { assert.writeOK(db.audit.insert({ _id: i })); }- Connect to mongod using console in legacy mode such as:
mongo 127.0.0.1:20000/admin --readMode=legacy --useLegacyWriteOps
- Execute following code:
let query = db.audit.find().batchSize(1); query.next(); query.close();- Observe that there is an event "atype=authCheck,command=find", followed by "atype=authCheck,command=endSessions". There is no "atype=authCheck,command=killCursors".
- Wireshark does demonstrate that there indeed is a killCursors operation:
Start mongod with auditing enabled Prepare a table with some dummy data for (let i = 0; i < 100; i++) { assert .writeOK(db.audit.insert({ _id: i })); } Connect to mongod using console in legacy mode such as: mongo 127.0.0.1:20000/admin --readMode=legacy --useLegacyWriteOps Execute following code: let query = db.audit.find().batchSize(1); query.next(); query.close(); Observe that there is an event "atype=authCheck,command=find", followed by "atype=authCheck,command=endSessions". There is no "atype=authCheck,command=killCursors". Wireshark does demonstrate that there indeed is a killCursors operation: -
Security 2021-03-22
- split from
-
-
- Closed
-