Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.misc -> Re: Tough question for oracle DBAs/Solaris Admins. Log shipping.

Re: Tough question for oracle DBAs/Solaris Admins. Log shipping.

From: DA Morgan <damorgan_at_psoug.org>
Date: Fri, 01 Sep 2006 13:03:13 -0700
Message-ID: <1157140991.655186@bubbleator.drizzle.com> 





Karen Hill wrote:


> We know that Oracle and SUN/Solaris go together quite well on high end

> installs.  To insure an audit trail for BASEL ,  HIPPA, Sarbanes Ox and

> other federal laws, one can ship oracle logs to an offsite server.

> Yet, how can this guarentee an audit trail, when Solaris does not

> support immutable files?  Immutable files are files where not even root

> can change/delete/move a file set as immutable.




The secret it to keep audit trails inside the database and create an
audit trail of any attempt to alter it.



How can I tell if the audit trail's been altered?
One way is to apply DBMS_CRYPTO to the data.
Data alteration becomes impossible.



Want additional methods? Apply some of Oracle's built-in capabilities
such as checksums. Here are a list of topics you can look up in Morgan's
Library at www.psoug.org that may help.



DBMS_CRYPTO



OWA_OPT_LOCK.CHECKSUM



OWA_OPT_LOCK.VERIFY_VALUES


-- 
Puget Sound Oracle Users Group


Received on Fri Sep 01 2006 - 15:03:13 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US