With billions of objects and people connected to the internet and your precious data sometimes exposed publicly security is one of the most important topics to discuss. In light of recent ransomware attacks, databases exposed and other breaches we’d like to share a quick reminder on how to secure your ArangoDB environment.
Attacks can be prevented with the security protections built into the product. We strive to prevent possible security issues by giving appropriate reminders in our web console when authentication is disabled:
That said, control is in the hand of users and you need to use database features correctly, and our documentation will help you do so. Here are pointers to the relevant documentation and other useful resources:
- Download the latest version of ArangoDB
- Enable authentication (enabled by default starting from version 3.0)
- Enable SSL
- Enable Auditing
- Securing your Foxx Application
If you need help to secure your installation please do reach out to us. We’d be happy to run a security assessment and help to configure ArangoDB correctly.