12. RDBMS 安全加固
l 最小授权原则᠋᠌᠍
grant resouce to scott ; NO, NO, NO!
l 取消不必要的权限᠋᠌᠍
resouce, unlimited tablespace...create
session
l 权限审计᠋᠌᠍
eg: who has dba role ?
20. Oracle Listener 密码设定演示(1)
l LSNRCTL change_password
l Old password:
l New password:
l Reenter new password:
l Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC)))
l Password changed for listener
l The command completed successfully
l LSNRCTL set password
l Password:
l The command completed successfully
l LSNRCTL save_config
l Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC)))
l Saved LISTENER configuration parameters.
l Listener Parameter File /opt/oracle/products/9.2.0/network/admin/listener.ora
l Old Parameter File /opt/oracle/products/9.2.0/network/admin/listener.bak
l The command completed successfully
l LSNRCTL exit
21. Oracle Listener 密码设定演示(2)
l $ lsnrctl status᠋᠌᠍
᠋᠌᠍
LSNRCTL for IBM/AIX RISC System/6000: Version 9.2.0.6.0 - Production on 07-SEP-2007
18:18:01᠋᠌᠍
Copyright (c) 1991, 2002, Oracle Corporation. All rights reserved.᠋᠌᠍
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=IPC)(KEY=EXTPROC)))᠋᠌᠍
TNS-01169: The listener has not recognized the password᠋᠌᠍
᠋᠌᠍
$ cat /opt/oracle/products/9.2.0/network/admin/listener.ora᠋᠌᠍
᠋᠌᠍
#----ADDED BY TNSLSNR 07-SEP-2007 18:17:54---
PASSWORDS_LISTENER = A072C8903DA55A33
#--------------------------------------------