Psychz - Jorge
Votes: 0Posted On: Apr 29, 2019 05:04:54
MongoDB by defaults does not have authentication and no encryption of data or protocol. This makes it pretty easy to target from a security perspective. However, to answer your question, MongoDB is secure! It is just a matter of knowing how to set up, configure, and work with the installation.
Using the following simple measures, you can strengthen the security level of your MongoDB
- Avoid using default ports
- Enabling user authentication immediately
- Force SSL usage on the database
- Use LDAP to force password rotations
- Limit your database access to known network devices
The above are just a few methods that can help you improve the security of your MongoDB database. To know more about the security measures on securing your MongoDB you can visit their site https://docs.mongodb.com/manual/administration/security-checklist/#encrypt-communication
For any further queries, you can write to us at sales@psychz.net