wazir
Jul 05, 2019Altostratus
MongoDB Service Without Authentication Detection
DescriptionMongoDB, a document-oriented database system, is listening on the remote port, and it is configured to allow connections without any authentication. A remote attacker can therefore connect to the database system in order to create, read, update, and delete documents, collections, and databases.
Enable authentication or restrict access to the MongoDB service.
What are the steps for the above vulnerabilty on linux server to enable authentication or restrict access to the MongoDB service?