Oracle 11g anti-hacker's cookbook / Adrian Neagu.

Format:

Book

Author/Creator:

Neagu, Adrian.

Series:

Quick answers to common problems

Language:

English

Subjects (All):

Oracle (Computer file)--Handbooks, manuals, etc.

Oracle (Computer file).

Computer security.

Physical Description:

1 online resource (302 p.)

Edition:

1st edition

Place of Publication:

Birmingham, [Eng.] : Packt Publishing, 2012.

Language Note:

English

System Details:

text file

Biography/History:

Neagu Adrian: Adrian Neagu has over ten years of experience as a database administrator, mainly with DB2 and Oracle databases. He is an Oracle Certified Master 10g, Oracle Certified Professional 9i, 10g, and 11g, IBM DB2 Certified Administrator version 8. 1. 2 and 9, IBM DB2 9 Advanced Certified Administrator 9, and Sun Certified System Administrator Solaris 10. He is an expert in many areas of database administration such as performance tuning, high availability, replication, backup, and recovery. In his spare time, he likes to cook, take photos, and to catch big pikes with huge jerkbaits and bulldawgs.

Summary:

This cookbook has recipes written in simple, easy to understand format with lots of screenshots and insightful tips and hints. If you are an Oracle Database Administrator, Security Manager or Security Auditor looking to secure the Oracle Database or prevent it from being hacked, then this book is for you. This book assumes you have a basic understanding of security concepts.

Contents:

Cover; Copyright; Credits; Foreword; About the Author; About the Reviewers; www.PacktPub.com; Table of Contents; Preface; Chapter 1: Operating System Security; Introduction; Using Tripwire for file integrity checking; Using immutable files to prevent modifications; Closing vulnerable network ports and services; Using network security kernel tunables to protect your system; Using TCP wrappers to allow and deny remote connections; Enforcing the use of strong passwords and restricting the use of previous passwords; Restricting direct login and su access; Securing ssh login

Chapter 2:Securing the Network and Data in TransitIntroduction; Hijacking an Oracle connection; Using OAS network encryption for securing data in motion; Using OAS data integrity for securing data in motion; Using OAS SSL network encryption for securing data in motion; Encrypting network communication using IPSEC; Encrypting network communication with stunnel; Encrypting network communication using SSH tunneling; Restricting the fly listener administration using the ADMIN_RESTRICTION_LISTENER; parameter; Securing external program execution (EXTPROC)

Controlling client connections using TCP.VALIDNODE_CHECKING listenerparameter; Chapter 3:Securing Data at Rest; Introduction; Using block device encryption; Using filesystem encryption with eCryptfs; Using DBMS_CRYPTO for column encryption; Using Transparent Data Encryption for column encryption; Using TDE for tablespace encryption; Using encryption with data pump; Using encryption with RMAN; Chapter 4:Authentication and User Security; Introduction; Performing a security evaluation using Oracle Enterprise Manager; Using an offline Oracle password cracker

Using user profiles to enforce password policiesUsing secure application roles; How to perform authentication using external password stores; Using SSL authentication; Chapter 5:Beyond Privileges: Oracle Virtual Private Database; Introduction; Using session-based application contexts; Implementing row-level access policies; Using Oracle Enterprise Manager for managing VPD; Implementing column-level access policies; Implementing VPD grouped policies; Granting exemptions from VPD policies; Chapter 6:Beyond Privileges: Oracle Label Security; Introduction; Creating and using label components

Defining and using compartments and groupsUsing label policy privileges; Using trusted stored units; Chapter 7:Beyond Privileges: Oracle Database Vault; Introduction; Creating and using Oracle Database Vault realms; Creating and using Oracle Vault command rules; Creating and using Oracle Database Vault rulesets; Creating and using Oracle Database Vault factors; Creating and using Oracle Database Vault reports; Chapter 8:Tracking and Analysis: Database Auditing; Introduction; Determining how and where to generate audit information; Auditing sessions; Auditing statements; Auditing objects

Auditing privileges

Notes:

Includes index.

ISBN:

9781283739061

1283739062

9781849685276

1849685274

OCLC:

818819131