Detections
Analytics
6.31 Restrict Access to SYSIBMADM.PRIVILEGES
Information
The SYSIBMADM.PRIVILEGES administrative view displays all explicit privileges for all authorization IDs in the currently connected databases' system catalogs. PRIVILEGES schema is SYSIBMADM.Solution
Perform the following to revoke access from PUBLIC.1. Connect to the DB2 database.
db2 => connect to $DB2DATABASE user $USERNAME using $PASSWORD
2. Run the following command from the DB2 command window-
db2 => revoke select on SYSIBMADM.PRIVILEGES from public
See Also
Item Details
Audit Name: CIS IBM DB2 v10 v1.1.0 Database Level 1
Category: ACCESS CONTROL
References: 800-53|AC-6, CSCv6|5.1
Plugin: IBM_DB2DB
Control ID: 730bdb9336264c10bd7b80d806a60d9079e50834b07bc8ec68273fbdd6af1c7e