Oracle Database Security Policy Analysis (i) 1th/2 page _oracle

The Oracle tutorial you are looking at is: Oracle Database Security Policy Analysis (i).

Database security issues have been the nightmare of database administrators, the loss of database data and the intrusion of databases by illegal users makes the database administrator physically and mentally exhausted. Some security policies are proposed around the security of the database, which is helpful to the database administrator. For the security of database data, database administrators can refer to the system dual-Computer hot backup function, as well as database backup and recovery data.

　　first, group and security:

The establishment of user groups under the operating system is also an effective way to ensure database security. Oracle programs are generally divided into two categories for security purposes: one for all users and the other for DBA execution. The configuration file for the group settings in the UNIX environment is/etc/group, and refer to the UNIX manual for how to configure this file.

　　several ways to ensure security:

(1) Before installing Oracleserver, create the Database Administrators group (DBA) and assign the user ID of root and Oracle software owners to this group. The program that the DBA can execute has only 710 permissions. SQL*DBA System permission commands are automatically assigned to the DBA group during the installation process.

(2) Allow some UNIX users to have limited access to the Oracle Server system, add an Oracle group from the authorized user group, and ensure that the Oracle Server utility routine Oracle group IDs, common executable programs, such as Sql*plus,sql*fo
RMS, etc., that should be executed by this group, and then the permission for this utility routine is 710, which will allow users of the same group to execute, while other users cannot.

(3) Change the permissions of programs that do not affect database security to 711. Note: For the convenience of installation and debugging in our system, the default password for two user sys and system with DBA authority in the Oracle database is manager. For your database system security, we strongly recommend that you should drop the password of these two users, the following actions:
Under Sql*dba type:

ALTER user sys indentified by password;
Alter user system indentified by password;

Where password is the password that you set for the user.

Current 1/2 page 12 Next read the full text