Solved

Need source of scripts and commands  to capture Oracle 11G R2 Database Security posture

Posted on 2014-11-27
4
218 Views
Last Modified: 2015-06-23
I am looking for a source of scripts to run on a Windows server hosting an Oracle 11.2 G Database.  I need to produce a report of all users and their privileges, all processes and their owners and privileges, all databases and tables, all access controls on tables, all configuration data for the database and its audit features.  This is pretty much the same raw information that the discovery/collection  part of a Database Vulnerability Analysis scanner would collect.   Another party will then analyze the results collected and decide what to do to harden the system. The primary focus is Oracle, not Windows vulnerabilities.
0
Comment
Question by:sealnose
4 Comments
 
LVL 34

Accepted Solution

by:
johnsone earned 250 total points
ID: 40470289
Some of that is pretty easy to get.  You just need to dump the following views:

Users:
    DBA_USERS

Privileges, access controls:
    DBA_SYS_PRIVS
    DBA_ROLE_PRIVS
    DBA_TAB_PRIVS

No idea what you mean by "processes and their owners", the above views would already get the privileges if you are talking about database objects.

Not sure what you are looking for in terms of configuration data and audit features, but that is probably all contained in V$PARAMETER.

In terms of a script, you could easily write a script that goes into SQL*Plus, selects that information and spools it out to files.  I'm not a windows scripting person and not sure what kind of format you are looking for.
0
 
LVL 37

Assisted Solution

by:Geert Gruwez
Geert Gruwez earned 250 total points
ID: 40470344
don't forget the users with default passwords
select * from dba_users_with_defpwd

or check this article for a lot more info on security
http://www.oracle.com/technetwork/articles/sql/11g-security-100258.html
0
 
LVL 22

Expert Comment

by:Steve Wales
ID: 40845984
This question has been classified as abandoned and is closed as part of the Cleanup Program. See the recommendation for more details.
0

Featured Post

Comprehensive Backup Solutions for Microsoft

Acronis protects the complete Microsoft technology stack: Windows Server, Windows PC, laptop and Surface data; Microsoft business applications; Microsoft Hyper-V; Azure VMs; Microsoft Windows Server 2016; Microsoft Exchange 2016 and SQL Server 2016.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

The recent Microsoft changes on update philosophy for Windows pre-10 and their impact on existing WSUS implementations.
Restoring deleted objects in Active Directory has been a standard feature in Active Directory for many years, yet some admins may not know what is available.
To efficiently enable the rotation of USB drives for backups, storage pools need to be created. This way no matter which USB drive is installed, the backups will successfully write without any administrative intervention. Multiple USB devices need t…
This tutorial will walk an individual through configuring a drive on a Windows Server 2008 to perform shadow copies in order to quickly recover deleted files and folders. Click on Start and then select Computer to view the available drives on the se…

792 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question