Oracle Database Security Policy Analysis (1)
Oracle Database Security Policy Analysis (1)
The ORACLE tutorial is: Oracle Database Security Policy Analysis (1 ).
Database security has always been a nightmare for database administrators. The loss of database data and the intrusion of illegal database users make the database administrators physically and mentally exhausted. Some security policies are put forward around the security issues of the database, hoping to help the database administrator. For database data security issues, the database administrator can refer to the system's dual-machine hot backup function and database backup and recovery information.
I. Group and security:
Creating user groups in the operating system is also an effective way to ensure database security. Oracle programs are generally divided into two categories for security purpose: one class can be executed by all users, and the other class can only be executed by DBA. In Unix, the configuration file set for the group is/etc/group. For details about how to configure this file, see the relevant Unix manual.
Several methods to ensure security:
(1) Before installing OracleServer, create a database administrator group (DBA) and assign the user IDs of the root and Oracle software owner to this group. Only 710 of the programs that DBA can execute are permitted. During the installation process, the SQL * DBA system permission command is automatically assigned to the DBA group.
(2) allow some Unix users to access the Oracle server system with restrictions, add an Oracle group of authorized user groups, and ensure that the Oracle group ID and common executable programs are assigned to the Oracle server utility routine, for example, SQL * Plus and SQL * Fo
Rms and so on should be executed by this group, and the permission of this utility routine is 710, it will allow users in the same group to execute, while other users cannot.
(3) change the permissions of programs that do not affect database security to 711. NOTE: For the convenience of installation and debugging in our System, the default password of Sys and System for two users with DBA permissions in Oracle Database is manager. To ensure the security of your database system, we strongly recommend that you delete the passwords of these two users as follows:
In SQL * DBA, type:
Alter user sys indentified by password;
Alter user system indentified by password;
Here, password is the password you set for the user.