Help Central | G5 Cyber Security
Security Hardening
TNS OpenStack Dashboard/Horizon Security Guide

init.ora - 'audit_sys_operations = TRUE'

Gavin M. Dennis

20 April 2022 17:31

Details

Auditing of the users authenticated as the SYSDBA or the SYSOPER provides an oversight of the most privileged of users. It is important that

the database user should not have access to the system directories where the audits will be recorded. Ensure this by setting the

AUDIT_SYS_OPERATIONS to TRUE.

Level 2, Scorable

Supportive Information

The following resource is also helpful.

https://workbench.cisecurity.org/files/580

This security hardening control applies to the following category of controls within NIST 800-53: Access Control, Audit and Accountability.This control applies to the following type of system Windows.

References

800-53|AC-6(7)
800-53|AU-9(4)

Source

Tenable.com/audits

PS. Before you go.

Request a quote to protect your organisation from cyber attacks and breaches.

Was this article helpful?

0 out of 0 found this helpful

Comments

0 comments

Please sign in to leave a comment.

Articles in this section

All associated application files - 'Verify permissions'
cman.ora - 'remote_admin = NO'
Encryption - 'Use a procedure that employs a content data element as the encryption key that is unique for each record.'
Encryption - 'Use RAW or BLOB for the storage of encrypted data'
init.ora - 'audit_sys_operations = TRUE'
init.ora - 'db_securefile = ALWAYS'
init.ora - 'o7_dictionary_accessibility = FALSE'
init.ora - 'remote_login_passwordfile = NONE'
init.ora - 'sec_return_server_release_banner = FALSE'
init.ora - 'sql92_security = TRUE'