You are here: TWiki >  Apex Web > SecurityCategory > DatabaseSecurity |
r5 - 13 May 2007 - 16:56 - PeterLorenzen |
Start of topic | Skip to actions
Hardening the database
Do not use the free Express Edition (XE) database since it can not be patched. Follow the principle of least privilege, so a user only has access to the resources required. Lock or remove unused users. Use sensible passwords, and do not use the same password for SYS and SYSTEM. There are lots of more advanced things you can do so check these:- Oracle has a thorough up-to-date Database Security Checklist
- Oracle has created Project Lockdown which is a project that via 4 phases helps you to secure your database infrastructure
- Hacking and Securing Oracle - A Guide To Oracle Security (24-04-2007) by Pete Finnigan. Scary reading. Contains a very informative list of steps to secure your database.
Comments
Edit | Attach | Printable | Raw View | Backlinks: Web, All Webs | History: r5 < r4 < r3 < r2 < r1 | More topic actions
Copyright © 1999-2010 by the contributing authors. All material on this collaboration platform is the property of the contributing authors. Ideas, requests, problems regarding TWiki? Send feedback
Log In
Apex Web
Index
Search
Changes
Notifications
Statistics
Preferences
Create New Topic
Apex