Information
MongoDB database files need to be protected using file permissions.
Rationale:
This will restrict unauthorized users from accessing the database.
NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.
Solution
Set ownership of the database file to mongodb user and remove other permissions using the following commands:
chmod 600 /var/lib/mongodb
sudo chown mongodb:mongodb /var/lib/mongodb
Default Value:
Not configured