) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
CIS Oracle Database 11g Benchmark v1.0.1 Checklist Details (Checklist Revisions)
NOTE
This is not the current revision of this Checklist, view the current revision.
Supporting Resources:
-
Download Prose - Prose for the checklist entitled Security Configuration Benchmark For Oracle Database Server 11g.
- Center for Internet Security (CIS)
Target:
| Target | CPE Name |
|---|---|
| Oracle Database 11g | cpe:/a:oracle:database_server:11 (View CVEs) |
Checklist Highlights
- Checklist Name:
- CIS Oracle Database 11g Benchmark
- Checklist ID:
- 265
- Version:
- v1.0.1
- Type:
- Compliance
- Review Status:
- Under Review
- Authority:
- Third Party: Center for Internet Security (CIS)
- Original Publication Date:
- 08/31/2008
Checklist Summary:
This document is derived from research conducted utilizing the Oracle 11g program, the Oracle?s Technology Network (otn.oracle.com), various published books and the Oracle 11g Database Security Guidelines. This document provides the necessary settings and procedures for the secure installation, setup, configuration, and operation of an Oracle 11g database environment. With the use of the settings and procedures in this document, an Oracle database may be secured from conventional â??out of the boxâ? threats. Recognizing the nature of security cannot and should not be limited to only the application, the scope of this document is not limited to only Oracle specific settings or configurations, but also addresses backups, archive logs, â??best practicesâ? processes and procedures that are applicable to general software and hardware security
Checklist Role:
- Database Management System
Known Issues:
Not provided.
Target Audience:
Database Administrator
Target Operational Environment:
- Managed
Testing Information:
Applicable items were verified and tested against an Oracle 11g default install on a Redhat Enterprise Sever 5. The Oracle version used was 11.1.0.6.0.Where the default setting is less secure than the recommended setting a caution has been provided in the comment section below the separator bar or as a note below a chapter heading. Default installs for both the operating system and the database may differ dependent on versions and options installed so this is to be used as a general guide only. Linux settings should translate to other varieties of Linux, but were only tested against RHEL5. If any differences are found, please contact the CIS team.
Regulatory Compliance:
Not provided.
Comments/Warnings/Miscellaneous:
Not provided.
Disclaimer:
Proper use of the recommendations requires careful analysis and adaptation to specific user requirements. The recommendations are not in any way intended to be a quick fix for anyones information security needs. CIS makes no representations, warranties or covenants whatsoever as to (i) the positive or negative effect of the products or the recommendations on the operation or the security of any particular network, computer system, network device, software, hardware, or any component of any of the foregoing or (ii) the accuracy, reliability, timeliness or completeness of any product or recommendation. CIS is providing the products and the recommendations as is and as available without representations, warranties or covenants of any kind.
Product Support:
http://www.oracle.com/support/index.html
Point of Contact:
cis-feedback@cisecurity.org
Sponsor:
Not provided.
Licensing:
Oracle Technology Network Developer License Terms
Change History:
Not provided.
Dependency/Requirements:
| URL | Description |
|---|
References:
| Reference URL | Description |
|---|
NIST checklist record last modified on 07/17/2009
* This checklist is still undergoing review for inclusion into the NCP.