34 lines
1.1 KiB
Python
34 lines
1.1 KiB
Python
|
#!/usr/bin/python
|
|||
|
|
#coding: utf-8
|
|||
|
|
|
|||
|
|
import os, re, public
|
|||
|
|
|
|||
|
|
_title = 'Whether to enable security authentication for MongoDB'
|
|||
|
|
_version = 1.0 # 版本
|
|||
|
|
_ps = "Check whether MongoDB security authentication is enabled" # 描述
|
|||
|
|
_level = 3 # 风险级别: 1.提示(低) 2.警告(中) 3.危险(高)
|
|||
|
|
_date = '2023-03-09' # 最后更新时间
|
|||
|
|
_ignore = os.path.exists("data/warning/ignore/sw_mongodb_auth.pl")
|
|||
|
|
_tips = [
|
|||
|
|
"Turn on the security authentication switch in the YakPanel Databases MongoDB",
|
|||
|
|
]
|
|||
|
|
_help = ''
|
|||
|
|
_remind = 'This is a great way to protect your database against hackers trying to steal data from your mongo database. '
|
|||
|
|
|
|||
|
|
def check_run():
|
|||
|
|
'''
|
|||
|
|
@name 开始检测
|
|||
|
|
@return tuple (status<bool>,msg<string>)
|
|||
|
|
'''
|
|||
|
|
if not public.process_exists("mongod"):
|
|||
|
|
return True, 'Risk-free,The MongoDB service has not been started!'
|
|||
|
|
cfile = '{}/mongodb/config.conf'.format(public.get_setup_path())
|
|||
|
|
conf = public.readFile(cfile)
|
|||
|
|
rep = r".*authorization(\s*):(\s*)enabled"
|
|||
|
|
tmp = re.search(rep, conf)
|
|||
|
|
if tmp:
|
|||
|
|
return True, 'Risk-free'
|
|||
|
|
else:
|
|||
|
|
return False, 'MongoDB security authentication is not enabled'
|
|||
|
|
|