How is MongoDB usage secured with MetaDefender Core?

MetaDefender Core's MongoDB instance is secured in two ways:

  1. When a username and password is not supplied, MongoDB can ONLY be accessed via a localhost. MetaDefender Core can access the MongoDB instance from the localhost while access from outside of the system is denied.

  2. MongoDB's HTTP interface is disabled so that it cannot be accessed remotely via HTTP (this is different from DB authentication).

For more details about securing MetaDefender Core's MongoDB interface, please refer to Security and MongoDB API Interfaces.

This article applies to MetaDefender Core v3
This article was last updated on 2019-11-08