I made a post here yesterday titled "Ed has another post in the catpatch.sql series" about Edward Stanglers comments in his blog about running catpatch.sql after upgrades. His latest post talked about the need to run catpatch.sql after creating a database with the DBCA. This was because the seed database files are created for 9iR2 at least with 9.2.0.1 rather than 9.2.0.3.
I got an email from Paul this morning making some comments on my post. Paul said that he always creates a database from scratch. He said that this gives him a warm fuzzy feeling as he then knows that the installed binaries and patches are in good shape. He follows, that he knows he doesn't need to re-patch or run catpatch.sql and also it puts the hardware through its paces. He also said he is not against cloning in general but he just doesn't start on a new database server.
I liked the title of Paul’s email to me "catpatch and rm -rf /opt/oracle/product/10.1.0/db_1/assistants/dbca/templates/*.dfb" - It is good advice to delete the templates for many reasons that include space or security of the files as they can contain sensitive data.
Thanks for the email Paul and the good insights.
Blog
Pete Finnigan's Oracle Security Weblog
This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.
[Previous entry: "Ed Has another post in the catpatch.sql series"] [Next entry: "Use of Windows login details - single sign on for web applications"]
February 2005
- Google hacking is on the up! - 02/01/2005 by 02/01/2005
- A repository of security papers - SecurityDocs.com - 02/02/2005 by 02/02/2005
- A very good paper about weaknesses in password security - 02/03/2005 by 02/03/2005
- New paper from Aaron Newman - Search Engines used to attack the database - 02/04/2005 by 02/04/2005
- A password repository for Oracle - 02/05/2005 by 02/05/2005
- Another undocumented parameter in use (_ash_enable) - 02/06/2005 by 02/06/2005
- port 1521 and redirection - 02/07/2005 by 02/07/2005
- Ed Has another post in the catpatch.sql series - 02/08/2005 by 02/08/2005
- Google hacking and reverse engineering Java - 02/09/2005 by 02/09/2005
- tracing inside a PL/SQL procedure - 02/10/2005 by 02/10/2005
- Alex has presentation notes available and a forthcoming paper - 02/11/2005 by 02/11/2005
- Alex Kornbrusts Hardending Oracle Application Server presentation is now in English - 02/13/2005 by 02/13/2005
- Alex Kornbrust has updated his upcoming security alerts page - 02/18/2005 by 02/18/2005
- Interesting news post about Mary Ann Davidsons comments on security education - 02/25/2005 by 02/25/2005
Archives
Syndication
Powered by gm-rss 2.0.0
