| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Usenet -> c.d.o.server -> Re: newbie listener question
Hi
Have a look at a paper called "Oracle database listener security guide", cannot remember who it is by but there is a link on my website, see http://www.petefinnigan.com/orasec.htm, it is near the bottom of the page and one of the new additions.
This paper is excellent and shows amongst other things how to protect the listener with a password. It is the administration of the listener you are password protecting. Other programs such as tomcat and oracle jdbc thin drivers do not need the listener password. extproc is used to allow you to call external procedures written in C from pl/sql. admin_restrictions is used to prevent set commands from being accepted whilst the listener is running. the parameter was added to prevent reading and writing of OS files when the listener password had not been set.
My web site has many links to Oracle security papers and presentations. I have just added a few more today marked "NEW" in red. see http://www.petefinnigan.com/orasec.htm
hth
kind regards
Pete
-- Pete Finnigan email:pete_at_petefinnigan.com Web site: http://www.petefinnigan.com - Oracle security audit specialists Book:Oracle security step-by-step Guide - see http://store.sans.org for details.Received on Fri Nov 14 2003 - 11:48:16 CST
 |
 |