7.2 Ensure appropriate database file permissions are set.

Information

MongoDB database files need to be protected using file permissions.

This will restrict unauthorized users from accessing the database.

NOTE: Nessus has provided the target output to assist in reviewing the benchmark to ensure target compliance.

Solution

Set ownership of the database file to mongodb user and remove other permissions using the following commands:

chmod 770 /var/lib/mongodb
chown mongodb:mongodb /var/lib/mongodb

See Also

https://workbench.cisecurity.org/benchmarks/15675

Item Details

Category: ACCESS CONTROL

References: 800-53|AC-3, CSCv6|14.4, CSCv7|14.6

Plugin: Windows

Control ID: 768bcd7b5af6fc4e91ea130b0e28e1eabb05160996c53f1f29d2ac0ba0c19602