[SERVER-9611] Setting NoCursorTimeout flag in OP_QUERY should require special privilege. Created: 07/May/13  Updated: 06/Dec/22

Status: Backlog
Project: Core Server
Component/s: Querying, Security
Affects Version/s: None
Fix Version/s: None

Type: Improvement Priority: Major - P3
Reporter: Andy Schwerin Assignee: Backlog - Security Team
Resolution: Unresolved Votes: 0
Labels: platforms-re-triaged
Remaining Estimate: Not Specified
Time Spent: Not Specified
Original Estimate: Not Specified

Assigned Teams:
Server Security
Participants:

 Description   

Disabling cursor timeout gives the client a means to force the server to leak resources. As such, it should require special privilege beyond "find".


Generated at Thu Feb 08 03:20:56 UTC 2024 using Jira 9.7.1#970001-sha1:2222b88b221c4928ef0de3161136cc90c8356a66.