![]() Output:įor more comprehensive documentation, see When we open the Mongo DB shell it shows many warnings that access control is not enabled for the database and read or write access to the database and configuration is unrestricted. To add an Admin user we will first connect to the Mongo shell. To secure this we will create an administrative user and enable authentication and test the authentication with Admin user. ![]() This issue has been mitigated in the latest versions of Mongo DB after version 3.x releases, however, the authentication is still disabled as default settings, so any user can have the complete access to the database. Enabling Authentication and Adding Admin User In previous versions the Mongo DB is vulnerable to automated exploits because, by default, there is no authentication which was allowed to interact with the database, any user can create, read, modify and destroy the database and the contents, this is because of the Mongo DB daemon which can listen to all interfaces as default settings. In this article, we will learn how to secure Mongo DB on Ubuntu 16.04.
0 Comments
Leave a Reply. |