Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> Re: Security audit of Oracle databases

Re: Security audit of Oracle databases

From: stephen booth <stephenbooth.uk_at_gmail.com>
Date: Tue, 12 Apr 2005 19:41:32 +0100
Message-ID: <687bf9c405041211415ff901f3@mail.gmail.com> 





On Apr 12, 2005 2:18 PM, Niall Litchfield <niall.litchfield_at_gmail.com> wrote:


>  That's true enough, though I can't see why folk wouldn't put *nix boxes

> behind firewalls that didn't allow remote access either... 

>  




I've not had much direct problem with that myself.  The networks
people are usually OK about opening up ssh on request, within the WAN
at least, once it's been explained them.  ssh sems to be sufficient
for most Oracle DBA work, for now.



X11 is usually blocked, with good reason, which can cause problems for
the users who don't understand the command line and demand a graphical
interface.  X11 can be tunnelled over ssh/ssl  but that requires
setting up before hand which doesn't always get done.  I can see this
becoming more of a problem as more functionality gets made GUI only.



VNC, Citrix, Windows Terminal Services and, especially, PCAnywhere
tend to be seen as a bigger security risk and so they're less likely
to be allowed through.



Stephen

-- 
It's better to ask a silly question than to make a silly assumption.
--
http://www.freelists.org/webpage/oracle-l


Received on Tue Apr 12 2005 - 14:45:31 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US