Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: how can I stop oracle from listening to these ports

Re: how can I stop oracle from listening to these ports

From: Pete Finnigan <pete_at_petefinnigan.com>
Date: Mon, 20 Oct 2003 17:22:57 +0100
Message-ID: <uHYX7CBhvAl$EwJT@peterfinnigan.demon.co.uk> 





Hi 



Oracle 9ir2 default install comes with two additional ports (8080 and
2100) from the new OSE integrated stack in the database. These are a
security risk if you do not actually need them and protect them as
anyone with a browser can attempt to break into your database. You can
see them with "lsnrctl status" command or via enterprise manager.



The best way to get rid of them is to alter the init.ora file and remove
the line that reads



dispatcher=(PROTOCOL=TCP) (SERVICE=orat92XDB)



If you use spfile then copy to init.ora first, stop and start the
database with init.ora and copy back to spfile. eg:



Create pfile='/path/initSID.ora' from 


Spfile='/path/spfileSID.ora'; 



Change initSID.ora 


Delete old spfile 



Create spfile='/path/spfileSID.ora' from  
Pfile='/path/initSID.ora'; 



hth



kind regards



Pete

-- 
Pete Finnigan
email:pete_at_petefinnigan.com
Web site: http://www.petefinnigan.com - Oracle security audit specialists
Book:Oracle security step-by-step Guide - see http://store.sans.org for details.


Received on Mon Oct 20 2003 - 11:22:57 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US