Practical Oracle Security

Book description

This is the only practical, hands-on guide available to database administrators to secure their Oracle databases. This book will help the DBA to assess their current level of risk as well as their existing security posture. It will then provide practical, applicable knowledge to appropriately secure the Oracle database.
  • The only practical, hands-on guide for securing your Oracle database published by independent experts.
  • Your Oracle database does not exist in a vacuum, so this book shows you how to securely integrate your database into your enterprise.

Table of contents

  1. Cover image
  2. Title page
  3. Table of Contents
  4. Copyright page
  5. Author Acknowledgments
  6. Authors
  7. Technical Editor
  8. Chapter 1: Oracle Security: The Big Picture
    1. Introduction
    2. A Brief History of Security Features in Oracle
    3. The Regulatory Environment Driving Database Security
    4. Major Data Theft Incidents
    5. A Step-by-step Approach to Securing Oracle
    6. Summary
    7. Solutions Fast Track
    8. Frequently Asked Questions
  9. Chapter 2: File System
    1. Introduction
    2. Getting to Know Your Files
    3. Reviewing Recommended Permissions
    4. Managing Change
    5. Summary
    6. Solutions Fast Track
    7. Frequently Asked Questions
  10. Chapter 3: TNS Listener Security
    1. Introduction
    2. Introduction to the TNS Listener
    3. Listener Vulnerabilities “By Design”
    4. Fixing Listener Vulnerabilities by Applying Oracle Patch Sets and CPUs
    5. Securing the Listener Configuration
    6. Valid Node Checking
    7. Summary
    8. Solutions Fast Track
    9. Frequently Asked Questions
  11. Chapter 4: Managing Default Accounts
    1. Introduction
    2. The Role of Oracle Default Accounts From 9i to 10 g
    3. Lock Accounts and Expire Default Passwords
    4. Configure Strong Passwords
    5. Unlock Accounts and Configure Impossible Passwords
    6. Summary
    7. Solutions Fast Track
    8. Frequently Asked Questions
  12. Chapter 5: PUBLIC Privileges
    1. Introduction
    2. The PUBLIC Group
    3. Default Privileges on Sensitive Functions
    4. Privileges You Should Never Grant to PUBLIC
    5. Summary
    6. Solutions Fast Track
    7. Frequently Asked Questions
  13. Chapter 6: Software Updates
    1. Introduction
    2. Understanding Oracle’s Patching Philosophy
    3. Examining a CPU
    4. Installing a Critical Patch Update
    5. Evaluating Security Alerts
    6. Summary
    7. Solutions Fast Track
    8. Frequently Asked Questions
  14. Chapter 7: Passwords and Password Controls
    1. Introduction
    2. Configuring Strong Passwords
    3. Password Controls Using Oracle Profiles
    4. OS Authentication
    5. Automated Scanning for Weak Passwords
    6. Summary
    7. Solutions Fast Track
    8. Frequently Asked Questions
  15. Chapter 8: Database Activity Monitoring
    1. Introduction
    2. Database Intrusion 101
    3. Detecting Known Attack Patterns
    4. Detecting Suspicious Activity
    5. Tracking the Attacker
    6. Adhering to Government and Industry Regulations
    7. Summary
    8. Solutions Fast Track
    9. Frequently Asked Questions
  16. Chapter 9: Implementation Guide
    1. Introduction
    2. Getting Started
    3. Implementing Basic Security
    4. Implementing Best Practices
    5. Locking Down Your Database
    6. Summary
    7. Solutions Fast Track
    8. Frequently Asked Questions
  17. Index

Product information

  • Title: Practical Oracle Security
  • Author(s): Josh Shaul, Aaron Ingram
  • Release date: August 2011
  • Publisher(s): Syngress
  • ISBN: 9780080555669