Uploaded image for project: 'Core Server'
  1. Core Server
  2. SERVER-28987

Skip wire compression for certain auth and user management commands

    • Server Security
    • Security 2019-08-12, Security 2019-08-26, Security 2019-09-09

      When wire protocol compression is enabled, the shell should avoid compressing authentication and user management commands.

      This would be in effort to mitigate any risks, although very unlikely such as BEAST and CRIME attacks.

      This includes, but may not be limited to:

      • saslStart
      • saslContinue
      • getnonce
      • authenticate
      • createUser
      • updateUser
      • copydbSaslStart
      • copydbgetnonce
      • copydb

            Assignee:
            backlog-server-security [DO NOT USE] Backlog - Security Team
            Reporter:
            bjori Hannes Magnusson
            Votes:
            0 Vote for this issue
            Watchers:
            7 Start watching this issue

              Created:
              Updated: