Pete Finnigan's Oracle Security Forum (http://www.petefinnigan.com/forum/yabb/YaBB.cgi)
Oracle Security >> Oracle Security >> Reg oracle security and standards
(Message started by: Pete Finnigan on Aug 8th, 2005, 1:54pm)

Title: Reg oracle security and standards
Post by Pete Finnigan on Aug 8th, 2005, 1:54pm
Hi All,

I am a fresher to oracle and have just completed ocp exams.

would like to know what are the basic knowledge one should have regarding dba.

i have just started posting my cvs and hence wanted to have idea about security on oracle to start with.

can anyone advice.
thanks
indu

Title: Re: Reg oracle security and standards
Post by Pete Finnigan on Aug 8th, 2005, 4:15pm
Hi Indu,

I moved your question to this category as it is an Oracle security question, you had posted it in the general Oracle questions section.

thanks

Pete

Title: Re: Reg oracle security and standards
Post by Pete Finnigan on Aug 8th, 2005, 4:57pm
Hi Indu,

Oracle security is a big subject. I would say the best place to start is to read th checklists that are available on my [url http://www.petefinnigan.com/orasec.htm]Oracle security white papers page[/url] and then some of the papers. I would also check out my [url http://www.petefinnigan.com/tools.htm]tools page[/url] which has some great free tools. Download them and try them.

My white papers page lists a lot of papers about Oracle security. Also if you check the [url http://www.petefinnigan.com/weblog/archives]archives of my blog [/url]you will find some interesting stuff on Oracle security and links to other papers.

You should also read around on some basic security issues such as SQL Injection, Cross Site Scripting, Buffer Overflows....

This should get you started, come back and ask more specific questions when you have got through this lot.

cheers

Pete

Title: Re: Reg oracle security and standards
Post by Pete Finnigan on Aug 9th, 2005, 8:13am
As a developer rather than DBA, I find myself more interested in SQL Injection issues.

When programming, it is my responsibility to ensure that my code doesn't open up the database to abuse. Most other things I see as 'someone else's problem'.

If anyone cares to comment about what else a developer should consider to be part of their problem, I'm interested to hear it.



Powered by YaBB 1 Gold - SP 1.4!
Forum software copyright © 2000-2004 Yet another Bulletin Board