Changing the default data directory permissions

Mayank_Siddhu · July 25, 2024, 12:01pm

We have a requirement to change default mongodb data directory and log directory permissions which are set as 0600 to 0750 so that other non-privileged user can read mongodb files after adding that user into mongod group. Can someone please heighlight risks of changing the default permissions.

Thank you!

steevej · July 30, 2024, 1:02pm

I would use sudo, for the extra logging it provides, rather than changing the permissions.

Mayank_Siddhu · August 8, 2024, 5:39am

I agree but In some secure setups, its not possile to give sudo access .

Fabio_Ramohitaj · August 10, 2024, 8:09pm

Hi @Mayank_Siddhu,
You can use something like setfacl for set the permissions read for the log in Linux.
Best Regards