Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> Re: OT: percent of DBAs that know how to impletement database security measures

Re: OT: percent of DBAs that know how to impletement database security measures

From: Keith Moore <kmoore_at_zephyrus.com>
Date: Tue, 4 Apr 2006 15:48:42 -0500 (CDT)
Message-ID: <13666.15.227.137.71.1144183722.squirrel@webmail.zephyrus.com> 





If you take out the part "know how to", as in



... a full 60 percent of DBAs do not implement database security...



then I would say that based on my experience it's too low.



For example, when I find a shared Oracle account on a production system
with DBA privileges AND the username equal to the password, the response
by management is "Yeah, we know, but it's too difficult to change it right
now. We'll do it later".



Keith



> A little piece of email today told me the following:

>

> "... a full 60 percent of DBAs do not know how to implement database

> security measures, according to Forrester Research".

>

> Does that figure seem to be:

>

> - too high

> - too low

> - just about right

> - Cowboy Neil

>

> Inquring minds want to know.

> Personally, I think that the phrase lacks the term "properly", as in

> "properly implement database security measures".

> "shutdown abort" or "lsnrctl stop" would be examples of "improperly

> implement database security measures".

>

> Paul

>




--
http://www.freelists.org/webpage/oracle-l


Received on Tue Apr 04 2006 - 15:48:42 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US