I have been reading up on the security of MongoDB. If my web app lives on the same server as the DB, can I just set the bindIP to 127.0.0.1? I'm not sure what the best practices are, but this should only allow the actual machine to access the DB right?
Mongodb – Security on MongoDB
mongodb
Related Question
- Mongodb – How to setup sync between MongoDB and C# .NET Application
- MongoDB: All commands spit out “not authorized on admin to execute command”
- MongoDB Sharding and Replication – Ports to Use
- MongoDB – How to Use Users and Access Roles in MongoDB
- Mongodb – Failed to start of service MongoDB community4.2 using Homebrew in Mac OS Mojave 10.14
Best Answer
That's right, if there will be local binding only local connection could be made.
This could target overall performance - but this is other topic.
Don't forget to enable authentication - as a base security settings.
From comments :