Authentication should only occur over secure channels

XMLWordPrintableJSON

    • Type: Improvement
    • Resolution: Won't Fix
    • Priority: Major - P3
    • None
    • Affects Version/s: None
    • Component/s: Replication, Security
    • None
    • Environment:
      All platforms
    • None
    • 3
    • None
    • None
    • None
    • None
    • None
    • None
    • None

      Authentication should only occur over secure channels. Support for SSL/TLS communication should be added for authentication.

      This form of authentication should include client certificate authentication for the purpose of mutually authenticating replication partners. Even with anti-replay nonce values and encrypted "keys" clear text authentication will be vulnerable to man-in-the middle attacks.

              Assignee:
              Andy Schwerin
              Reporter:
              Mark porter
              Votes:
              1 Vote for this issue
              Watchers:
              6 Start watching this issue

                Created:
                Updated:
                Resolved: