Re: Keeping a DB from Phoning Home...

From: Veerabasaiah C <veeracb_at_gmail.com>
Date: Fri, 13 Sep 2013 14:56:30 +1200
Message-ID: <CAKE9HuMVxT1X9FHvwVoH9GVGzt+qygNtbRzn8Tuf4V_QZ+8hbw_at_mail.gmail.com>

Hi Dave,
You could try using the sqlnet.ora file in your db server with the configuration parameter

tcp.invited_nodes

tcp.validnode_checking.

More details :
http://docs.oracle.com/cd/B10500_01/network.920/a96581/sqlnet.htm

Hope it helps.

Regards

Veera

On Fri, Sep 13, 2013 at 2:24 PM, <gokulkumar.gopal_at_gmail.com> wrote:

> Hi Dave,
> How about using an AFTER LOGON trigger ?
>
> Sent from BlackBerry� on Airtel
>
> -----Original Message-----
> From: David Mann <dmann99_at_gmail.com>
> Sender: oracle-l-bounce_at_freelists.org
> Date: Thu, 12 Sep 2013 12:51:25
> To: Martin Klier<usn_at_usn-it.de>
> Reply-To: dmann99_at_gmail.com
> Cc: Mark.Bobak_at_proquest.com<Mark.Bobak_at_proquest.com>;
> oracle-l_at_freelists.org<oracle-l_at_freelists.org>
> Subject: Re: Keeping a DB from Phoning Home...
>
> Thanks for the suggestions, I will push the networking angle more when I
> meet with the sysadmin. The biggest risk is probably from DB links which
> can be mitigated, but to be 100% sure looks like isolating it in a subnet
> or with firewall is the most reliable route. (Pun intended!)
> On Thursday, September 12, 2013, Martin Klier wrote:
>
> > Hi David,
> >
> > I agree with Mark - but my first thought was: "Why not putting it behind
> > a firewall, not allowing outgoing connections, and only allow the app
> > server to connect in [to Port 1521 via TNS]?"
> >
> > Maybe easier to achieve than reconfiguring a legacy system to a new
> subnet.
> >
> > HTH
> > Martin Klier
> >
> >
> > Mark Bobak schrieb:
> > > If you're not sure how to do that, you may want to have a chat with
> your
> > > network engineering group. It should be pretty trivial to set up.
> > >
> >
> > --
> > Usn's IT Blog for Oracle and Linux
> > http://www.usn-it.de
> >
> >
>
> --
> Dave Mann
> General Geekery | www.brainio.us
> Database Geekery | www.ba6.us | _at_ba6dotus | http://www.ba6.us/rss.xml
>
>
> --
> http://www.freelists.org/webpage/oracle-l
>
>
> --
> http://www.freelists.org/webpage/oracle-l
>
>
>

-- 
Veerabasaiah C B
"Don't take life too seriously, you will never come out of it alive"

--
http://www.freelists.org/webpage/oracle-l

Received on Fri Sep 13 2013 - 04:56:30 CEST

This message: [ Message body ]
Next message: jaromir nemec: "Re: Optimizer ignoring hints"
Previous message: gokulkumar.gopal_at_gmail.com: "Re: Keeping a DB from Phoning Home..."
In reply to: gokulkumar.gopal_at_gmail.com: "Re: Keeping a DB from Phoning Home..."
Next in thread: Mark W. Farnham: "RE: Keeping a DB from Phoning Home..."
Reply: Mark W. Farnham: "RE: Keeping a DB from Phoning Home..."

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message