DG0158-ORACLE11 - DBMS remote administration should be audited.

Information

When remote administration is available, the vulnerability to attack for administrative access is increased. An audit of remote administrative access provides additional means to discover suspicious activity and to provide accountability for administrative actions completed by remote users.

NOTE: Nessus has not performed this check. Please review the benchmark to ensure target compliance.

Solution

Develop, document and implement policy and procedures for remote administration auditing.

Configure the DBMS to provide an audit trail for remote administrative sessions.

Include all actions taken by database administrators during remote sessions.

Actions should be tied to a specific user.

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Database_11g_Y21M10_STIG.zip

Item Details

References: CAT|II, Rule-ID|SV-24985r1_rule, STIG-ID|DG0158-ORACLE11, Vuln-ID|V-15652

Plugin: Unix

Control ID: 2ed9027a0e315c31db79749f70ce04063dadce7cd4e7033ba65635447f69711a