Hacker News new | ask | show | jobs
by sanityvampire 2851 days ago
Allowing unauthenticated access is the default configuration, but I think you have to go out of your way to make it accessible from external systems, let alone by anyone on the open internet...
1 comments
sb8244 2851 days ago
Can you elaborate further?

My thought process is deploying this on digital ocean would make it insecure by default.

link
aidos 2851 days ago
It binds to localhost by default (now, didn't used to which caused all the issues in the past).

https://docs.mongodb.com/manual/reference/configuration-opti...

link