Call: +44 (0)1904 557620 Call

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Exploiting and protecting Oracle"] [Next entry: "Oracle's security chief lambastes faulty coding"]

Project Lockdown

I just saw on OTN that Arup Nanda's paper on how to secure an Oracle database has finally been put up. Arup gave me a heads up on this paper a few months ago as he asked if he could use my default password list. Thanks for the mention in your paper Arup.

This is an excellent paper, truly very very well written. I am a fan of Arups HIPAA book because of its very easy reading style. he has not lost any of the style here. This paper is called "Project Lockdown - A phased approach to securing your database infrastructure" and is a 4 part paper on securing an Oracle database. The paper is phased into 4 sections, what you can do in one day, what you can do in a week, what you can do in a month and finally what you can do in a quarter.

Excellent paper, well worth reading, well done Arup!!!