Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> Re: Security audit of Oracle databases

Re: Security audit of Oracle databases

From: stephen booth <stephenbooth.uk_at_gmail.com>
Date: Tue, 12 Apr 2005 19:41:32 +0100
Message-ID: <687bf9c405041211415ff901f3@mail.gmail.com>


On Apr 12, 2005 2:18 PM, Niall Litchfield <niall.litchfield_at_gmail.com> wrote:
> That's true enough, though I can't see why folk wouldn't put *nix boxes
> behind firewalls that didn't allow remote access either...
>

I've not had much direct problem with that myself. The networks people are usually OK about opening up ssh on request, within the WAN at least, once it's been explained them. ssh sems to be sufficient for most Oracle DBA work, for now.

X11 is usually blocked, with good reason, which can cause problems for the users who don't understand the command line and demand a graphical interface. X11 can be tunnelled over ssh/ssl but that requires setting up before hand which doesn't always get done. I can see this becoming more of a problem as more functionality gets made GUI only.

VNC, Citrix, Windows Terminal Services and, especially, PCAnywhere tend to be seen as a bigger security risk and so they're less likely to be allowed through.

Stephen

-- 
It's better to ask a silly question than to make a silly assumption.
--
http://www.freelists.org/webpage/oracle-l
Received on Tue Apr 12 2005 - 14:45:31 CDT

Original text of this message

HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US