Uploaded image for project: 'Couchbase Server'
  1. Couchbase Server
  2. MB-25401

XDCR Password encryption without certificates using SASL.

    XMLWordPrintable

Details

    Description

      Full & Half modes were provided in 5.0 but it utilizes certificates.
      In most of the deployments of target clusters, all network ports are closed but XDCR and it is impossible to retrieve certificates on the wire.

      Goal of this improvement is to not use certificates but SASL to hide password on the wire.

      Note: Certificates management is not acceptable.

      Example: SCRAM-SHA would solve the problem.

      Attachments

        Issue Links

          blocks

          Bug - A problem which impairs or prevents the functions of the product. MB-28267 XDCR secure connection using SCRAM- SHA.

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. MB-20599 Introduce SCRAM-SHA protocol in Couchbase

          • Major - Major loss of function.
          • Closed
          mentioned in

          Page Loading...

          Page Loading...

          No reviews matched the request. Check your Options in the drop-down menu of this sections header.

          Activity

            People

              yu Yu Sui (Inactive)
              ludovic.dufrenoy Ludovic Dufrenoy (Inactive)
              Votes:
              0 Vote for this issue
              Watchers:
              11 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Gerrit Reviews

                  There are no open Gerrit changes

                  PagerDuty