:28017
(TCP)
Critical 风险
MongoDB HTTP Status
Embed This Widget
Add the script tag and a data attribute to embed this widget.
Embed via iframe for maximum compatibility.
<iframe src="https://ipfyi.com/iframe/entity//" width="420" height="400" frameborder="0" style="border:0;border-radius:10px;max-width:100%" loading="lazy"></iframe>
Paste this URL in WordPress, Medium, or any oEmbed-compatible platform.
https://ipfyi.com/entity//
Add a dynamic SVG badge to your README or docs.
[](https://ipfyi.com/entity//)
Use the native HTML custom element.
TCP — Database
端口概览
端口号
28017
服务名称
MongoDB HTTP Status
传输协议
TCP
类别
Database
安全风险
Critical
端口范围
已注册 (1024-49151)
什么是端口 28017?
Previously used by MongoDB for its built-in HTTP status interface and REST API, deprecated in MongoDB 3.2 and removed in 3.6. Historically exposed database statistics and admin information over HTTP without authentication. Should be blocked on any legacy MongoDB deployments.
TCP
Database
安全注意事项
端口28017(MongoDB HTTP Status)被归类为严重风险。此端口不应暴露在公网上。该服务在未加密的情况下传输数据,容易受到窃听、凭据窃取和中间人攻击。
建议:在防火墙处封锁此端口。改用加密替代方案(SSH、SFTP、HTTPS)。