dads.conf – ‘Verify and set permissions’
Details Only applicable for environments using the Oracle HTTP Server. Additionally, ensure all configuration changes have been made within .htaccess...
- Home
- Security Hardening
- CIS V1.1.0 Oracle 11G OS L1
CIS V1.1.0 Oracle 11G OS L1
Database datafiles – ‘Verify and restrict permissions’
Details Level 1, Scorable Supportive Information The following resource is also helpful. https://workbench.cisecurity.org/files/580 This control applies to the following type...Database object definition NOLOGGING clause – ‘Do not leave database objects in NOLOGGING mode in production environments.’
Details The NOLOGGING keyword instructs Oracle Database Server to forego writing essential recovery information to the redo log when performing...Files in $ORACLE_HOME/bin – ‘0755 or less’
Details Level 1, Scorable Supportive Information The following resource is also helpful. https://workbench.cisecurity.org/files/580 This control applies to the following type...Files in $ORACLE_HOME/bin – ‘Verify and set ownership’
Details All files in the $ORACLE_HOME/bin must be owned by the Oracle software account to prevent a system-wide compromise in...Files in $ORACLE_HOME/network/admin directory – ‘Verify and set permissions’
Details Level 1, Scorable Supportive Information The following resource is also helpful. https://workbench.cisecurity.org/files/580 This control applies to the following type...Files in $ORACLE_HOME (not including $ORACLE_HOME/bin) – ‘Permissions set to 0750 or less on Unix Systems’
Details Incorrect permissions could allow an attacker to execute or replace a command with a malicious version. Supportive Information The....htaccess – ‘Verify and set permissions’
Details Only applicable for environments using the Oracle HTTP Server. Additionally, ensure all configuration changes have been made within .htaccess...init.ora – ‘audit_file_dest parameter settings’
Details Level 1, Scorable Supportive Information The following resource is also helpful. https://workbench.cisecurity.org/files/580 This control applies to the following type...init.ora – ‘audit_trail parameter set to OS, DB, DB_EXTENDED, XML, or XML, EXTENDED’
Details Level 1, Scorable Supportive Information The following resource is also helpful. https://workbench.cisecurity.org/files/580 This security hardening control applies to the...