I added a user with a password to the database, and when I run c++ application it authenticates properly - i.e. if I provide the wrong credentials, it tells me that it can't connect.
But when I go in the shell to connect manually to the database with no credentials, it connects no problem... Same thing when I'm connecting via MongoVUE, it does not prompt for credentials...
What's the proper way to password protect a database?