Several reports we’re published in the news about how easy it is
to access data stored in some NoSQL systems, including MongoDB.
This is not surprising because security was rather relaxed in
earlier versions of MongoDB . This post lists some of the common
vulnerabilities in MongoDB and Percona TokuMX.
One key point is to ensure that the [Read more...]
is correctly adjusted: in MongoDB 2.4 and Percona TokuMX, it is
not set which means that the server will listen to all available
network interfaces. If proper firewall rules (iptables, Security
Groups in AWS, …) are not in place, your dataset could easily …