MongoDB security questions


I have some questions regarding MongoDB security reference:

  1. Which users are registered in the database and which roles/permissions are assigned to them?
  2. How is the Database (collection) in MongoDB set up?
  3. Which logfiles does the Database create?
  4. Is the data encrypted inside the database?

Server Setup Information

  • Version of Rocket.Chat Server: 3.0.11
  • Operating System: Linux
  • Deployment Method: tar
  • Number of Running Instances: 2
  • DB Replicaset Oplog: enabled
  • NodeJS Version: v12.4.0
  • MongoDB Version: 4.0.12
  • Proxy: nginx
  • Firewalls involved: no

Any additional Information