-
Type: Improvement
-
Resolution: Unresolved
-
Priority: Major - P3
-
Affects Version/s: None
-
Component/s: Shell
-
Server Security
-
Security 2019-08-12, Security 2019-08-26, Security 2019-09-09
When wire protocol compression is enabled, the shell should avoid compressing authentication and user management commands.
This would be in effort to mitigate any risks, although very unlikely such as BEAST and CRIME attacks.
This includes, but may not be limited to:
- saslStart
- saslContinue
- getnonce
- authenticate
- createUser
- updateUser
- copydbSaslStart
- copydbgetnonce
- copydb