I noticed a nice post on Robert Geier's blog a while ago and made a note to link to it from here. The post is titled " http://blog.contractoracle.com/2009/09/enable-oracle-auditing-before-you-need.html - (broken link) Enable Oracle auditing BEFORE you need it." which of course carries a lot of true sentiments. The article is quite long and suffers from not being easy to read as all of the text and the code is all in the same font but percevere (probably thats the wrong spelling but GM doesnt have a built in spell checker - yet!).
The article is a fast ride through lots of options; turn on audit, sys audit, audit options, some forensics ideas, querying the audit trail, using statspack, database vault, audit vault, FGA, checksumming, flashback, log miner, system triggers, AWR, Materialised view logs, trace,DML triggers, even DBMS_SYSTEM.KSDWRT, alert logs and even the scheduler logs. This is a great article that contains a lot of valuable data on what you can do for free in terms of auditing and monitoring your database. Well worth a read.
Blog
Pete Finnigan's Oracle Security Weblog
This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.
[Previous entry: "Expert Oracle Practices: Oracle database administration from the oak table"] [Next entry: "Oracle's new Oracle database security and compliance solution"]
October 2009
- IOUG Data Security Report 2009 is out - 10/02/2009 by 10/02/2009
- 60 million password hashes/second Oracle password cracker available - 10/05/2009 by 10/05/2009
- Oracle Security Worst Practices - 10/06/2009 by 10/06/2009
- How many Security bugs are in the Oracle database software product set - 10/07/2009 by 10/07/2009
- Expert Oracle Practices: Oracle database administration from the oak table - 10/08/2009 by 10/08/2009
- Nice Summary of setting up audit options - 10/09/2009 by 10/09/2009
- Oracle's new Oracle database security and compliance solution - 10/12/2009 by 10/12/2009
- Spoofing users and programs and presenting at OWASP - 10/13/2009 by 10/13/2009
- SQL Injection and a presentation on data security - 10/14/2009 by 10/14/2009
- OWASP Leeds meeting slides available - 10/15/2009 by 10/15/2009
- Oracle's October pre-cpu advisory is released - 10/16/2009 by 10/16/2009
- Health Data Theft - 10/20/2009 by 10/20/2009
- October 2009 Critical Patch Update is out; Paul has a paper on escalation to OSDBA - 10/21/2009 by 10/21/2009
- Mary Ann Davidson fields security questions at Open World - 10/23/2009 by 10/23/2009
- Cold remedies and Oracle Security - 10/26/2009 by 10/26/2009
- A new Oracle Security book.... or three! - 10/27/2009 by 10/27/2009
- Some training and speaking dates - 10/28/2009 by 10/28/2009
- Update to Dennis Yurichevs FPGA cracker plus exploit code for the CPU CVSS 10.0 bug - 10/30/2009 by 10/30/2009
Archives
Syndication
Powered by gm-rss 2.0.0
