2.1.1 Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora'

Information

The SECURE_CONTROL_<listener_name> setting determines the type of control connection the Oracle server requires for remote configuration of the listener.

Rationale:

Listener configuration changes via unencrypted remote connections can result in unauthorized users sniffing control configuration information from the network.

Solution

To remediate this recommendation:

Set the SECURE_CONTROL_<listener_name> for each defined listener in the listener.ora file.

See Also

https://workbench.cisecurity.org/benchmarks/13413

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-2(1), CSCv7|4.5

Plugin: Unix

Control ID: 28e0780096a12410b58246caddc896c124e0921d02dfa7775c92a86277f64df8