6.1.13 Ensure the 'DROP ANY PROCEDURE' Audit Option Is Enabled

Information

The AUDIT DROP ANY PROCEDURE command is auditing the dropping of procedures. Enabling the option causes auditing of all such activities.

Rationale:

Dropping procedures of another user could be part of a privilege escalation exploit and should be audited.

Solution

To remediate this setting, execute the following SQL statement in either the non multi-tenant or container database, it does NOT need run in the pluggable.

AUDIT DROP ANY PROCEDURE;

See Also

https://workbench.cisecurity.org/files/2741