How to secure database

Similar Messages

• Securing Database from Enterprise Manager

  Hi all
  How to secure Database from EM console?
  Thanks
  Edited by: user13332773 on Dec 1, 2010 4:00 AM

  user13332773 wrote:
  By saying secure a database I meant that we can have database in secure mode.Yes .. you can secure agent and dbconsole.
  Check :
  http://oracle-magician.blogspot.com/2008/05/how-to-secure-oracle-10g11g-enterprise.html
  http://download.oracle.com/docs/html/B12013_03/security2.htm#i1042301
  Regards
  Rajesh

• How to secure oracle database

  how to secure oracle database,
  I am having the oracle database which will be packed as package in a machine and will be delivered to client place , need to ensure that the client will not access the database by any means.
  Even he breaks the password (he should not break but despite client has broken the password) and went inside the database, he should not be able to see the databases Procedures ,views,functions and triggers.
  Can we Encrypt this,if so can client will be able to decrypt the same?
  Is there a way to secure the database from the client not to access the database.
  Thanks!

  933663 wrote:
  so how can i secure when there is an option to unwrap ,then there is no use in using the wrap right?Yes, because when there is a lock there is a key, when there is wrap there is unwrap, when there is encrypt there is decrypt. We can not be rest assure for hack the code. I think you should think and explore above security options which are provided by Oracle itself which have lock and key by Oracle itself; which i have mentioned in my previous post.
  You just think that if that is that much easy and cheap, then why Oracle have developed above options/features by expending many dollors..!!!
  Regards
  Girish Sharma

• The security database on the server does not have a computer account for this workstation trust relationship

  When I try to log on to my DC it says "The security database on the server does not have a computer account for this workstation trust relationship". It won't let me log on. I installed another server server 2012r2  (its virtual )
  and I can get to ADSI edit. 
  I think what happened was I had a pc that could not connect without unplugging the network cable. So I found this fix 
  FIX: “The security database on the server does not have a computer account for this workstation trust relationship”2032011
  I’ve seen a lot of solutions, or suggestions rather, with regard to the error in the title of this post.  In my experience, the problem can almost always be resolved without extra domain add/removes and reboots, which is the most prevalent solution I have
  seen around.  Usually, this issue is due to a mismatch between attributes of the computer account in Active Directory and those values on the system itself.  Here are the steps I take to fix this issue when it crops up:
  Open up Active Directory Users & Computers pointed to the domain the computer account resides in
  From the “View” pull-down menu, make sure that “Advanced Features” is checked
  Navigate to the part of your organizational unit (OU) structure where the computer account for this server resides
  Open the Properties for the computer object
  Choose the “Attribute Editor” tab on the Properties dialog box
  Check the Attributes dNSHostName & servicePrincipalName – anywhere that a fully qualified hostname is specified (e.g. myserver.mydomainname.com), make sure that the entry matches the hostname
  you have configured when you go here on your server: Start -> Computer -> Right-Click, Properties -> Change Settings (under “Computer name, domain… settings”) -> Full Computer Name
  As an example, for a fictitious W2K8 R2 server whose Full Computer Name is “srv1.mydomainname.com”, these attribute/value pairs should be in Active Directory:
  dNSHostName:
  srv1.mydomainname.com
  servicePrincipalName:
  HOST/SRV1
  HOST/srv1.mydomainname.com
  RestrictedKrbHost/SRV1
  RestrictedKrbHost/srv1.mydomainname.com
  TERMSRV/SRV1
  TERMSRV/srv1.mydomainname.com"
  Not reading it carefully I add a computer with the same name as the pc having the issue and followed the above. The problem is that I did not notice that the spn did not want the name of my server (serv1) but the name of the trouble
  pc.
  dcdiag output
  PS C:\Users\administrator.TOM> dcdiag.exe
  Directory Server Diagnosis
  Performing initial setup:
     Trying to find home server...
     ***Error: DC3 is not a Directory Server.  Must specify /s:<Directory Server> or  /n:<Naming Context> or nothing to
     use the local machine.
     ERROR: Could not find home server.
  PS C:\Users\administrator.TOM> dcdiag.exe /s:DC2
  Directory Server Diagnosis
  Performing initial setup:
     * Identified AD Forest.
     Done gathering initial info.
  Doing initial required tests
     Testing server: Default-First-Site\DC2
        Starting test: Connectivity
           The host 9e0dca7a-d017-445a-b354-adee5ff53d48._msdcs.TOM could not be resolved to an IP address. Check the DN
           server, DHCP, server name, etc.
           Neither the the server name (DC2.TOM) nor the Guid DNS name (9e0dca7a-d017-445a-b354-adee5ff53d48._msdcs.TOM)
           could be resolved by DNS.  Check that the server is up and is registered correctly with the DNS server.
           Got error while checking LDAP and RPC connectivity. Please check your firewall settings.
           ......................... DC2 failed test Connectivity
  Doing primary tests
     Testing server: Default-First-Site\DC2
        Skipping all tests, because server DC2 is not responding to directory service requests.
     Running partition tests on : ForestDnsZones
        Starting test: CheckSDRefDom
           ......................... ForestDnsZones passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... ForestDnsZones passed test CrossRefValidation
     Running partition tests on : DomainDnsZones
        Starting test: CheckSDRefDom
           ......................... DomainDnsZones passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... DomainDnsZones passed test CrossRefValidation
     Running partition tests on : Schema
        Starting test: CheckSDRefDom
           ......................... Schema passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... Schema passed test CrossRefValidation
     Running partition tests on : Configuration
        Starting test: CheckSDRefDom
           ......................... Configuration passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... Configuration passed test CrossRefValidation
     Running partition tests on : TOM
        Starting test: CheckSDRefDom
           ......................... TOM passed test CheckSDRefDom
        Starting test: CrossRefValidation
           ......................... TOM passed test CrossRefValidation
     Running enterprise tests on : TOM
        Starting test: LocatorCheck
           ......................... TOM passed test LocatorCheck
        Starting test: Intersite
           ......................... TOM passed test Intersite
  PS C:\Users\administrator.TOM> regsvr32 schmmgmt.dll
  PS C:\Users\administrator.TOM> netdig /fix
  netdig : The term 'netdig' is not recognized as the name of a cmdlet, function, script file, or operable program.
  Check the spelling of the name, or if a path was included, verify that the path is correct and try again.
  At line:1 char:1
  + netdig /fix
  + ~~~~~~
      + CategoryInfo          : ObjectNotFound: (netdig:String) [], CommandNotFoundException
      + FullyQualifiedErrorId : CommandNotFoundException
  PS C:\Users\administrator.TOM> Setup /PrepareSchema
  Setup : The term 'Setup' is not recognized as the name of a cmdlet, function, script file, or operable program. Check
  the spelling of the name, or if a path was included, verify that the path is correct and try again.
  At line:1 char:1
  + Setup /PrepareSchema
  + ~~~~~
      + CategoryInfo          : ObjectNotFound: (Setup:String) [], CommandNotFoundException
      + FullyQualifiedErrorId : CommandNotFoundException
  PS C:\Users\administrator.TOM> netdiag /test
  netdiag : The term 'netdiag' is not recognized as the name of a cmdlet, function, script file, or operable program.
  Check the spelling of the name, or if a path was included, verify that the path is correct and try again.
  At line:1 char:1
  + netdiag /test
  + ~~~~~~~
      + CategoryInfo          : ObjectNotFound: (netdiag:String) [], CommandNotFoundException
      + FullyQualifiedErrorId : CommandNotFoundException
  PS C:\Users\administrator.TOM> nslooup
  nslooup : The term 'nslooup' is not recognized as the name of a cmdlet, function, script file, or operable program.
  Check the spelling of the name, or if a path was included, verify that the path is correct and try again.
  At line:1 char:1
  + nslooup
  + ~~~~~~~
      + CategoryInfo          : ObjectNotFound: (nslooup:String) [], CommandNotFoundException
      + FullyQualifiedErrorId : CommandNotFoundException
  PS C:\Users\administrator.TOM>

  Ok fixed. 
  At a elevated cmd prompt run ;
  C:\Users\administrator.TOM>setspn -x
  As you can see the DC serv1 had duplicate SPNs.
  Checking domain DC=TOM
  Processing entry 1
  HOST/serv1.TOM is registered on these accounts:
          CN=SERV1,OU=Domain Controllers,DC=TOM
          CN=C00049,CN=Computers,DC=TOM
  {14E52635-0A95-4a5c-BDB1-E0D0C703B6C8}/TOWN-HBWJ29ZOQC is registered on these ac
  counts:
          CN=Administrator,CN=Users,DC=TOM
          CN=TOWN-HBWJ29ZOQC,CN=Computers,DC=TOM
  {14E52635-0A95-4a5c-BDB1-E0D0C703B6C8}/town-hbwj29zoqc.TOM is registered on thes
  e accounts:
          CN=Administrator,CN=Users,DC=TOM
          CN=TOWN-HBWJ29ZOQC,CN=Computers,DC=TOM
  RestrictedKrbHost/serv1 is registered on these accounts:
          CN=C00049,CN=Computers,DC=TOM
          CN=SERV1,OU=Domain Controllers,DC=TOM
  RestrictedKrbHost/serv1.TOM is registered on these accounts:
          CN=C00049,CN=Computers,DC=TOM
          CN=SERV1,OU=Domain Controllers,DC=TOM
  found 5 groups of duplicate SPNs.
  Went to the computers OU and changed computer c00049 to the correct SPN. Now I have a new issues, I'll start a new thread.

• My iPhone 5 has broken and is being replaced with a new iPhone tomorrow. However, My carrier (orange) will b picking up my broken iPhone and I am unsure how to secure the content and icloud data on the broken phone. Is there a way to display the data?

  My iPhone 5 has broken and is being replaced with a new iPhone tomorrow. However, My carrier (orange) will b picking up my broken iPhone and I am unsure how to secure the content and icloud data on the broken phone. Is there a way to disable the data held on it and ensure that if it is fixed, nobody can use/see my data and access my account?

  Hi Gazpan,
  Thanks for visiting Apple Support Communities.
  I recommend using the steps in this article to back up your iPhone if possible:
  iOS: Back up and restore your iOS device with iCloud or iTunes
  http://support.apple.com/kb/ht1766
  You may also find this advice helpful for your situation:
  What to do before selling or giving away your iPhone, iPad, or iPod touch
  http://support.apple.com/kb/ht5661
  If you no longer have your iOS device
  If you're using iCloud and Find My iPhone on the device, you can erase the device remotely and remove it from your account by signing in to icloud.com/find, selecting the device, and clicking Erase. When the device has been erased, click Remove from Account.
  If you're unable to complete either of the above steps, you should change your Apple ID password. Changing your password won't remove any personal information that is cached on the device, but it will make sure that the new owner can't delete your information from iCloud.
  Cheers,
  Jeremy

• Mac being unable to sever connections and I can't access secure databases

  Recently my university library underwent a security rehaul, since then I have been unable to access secure databases to do research for papers and the like. After resetting my browser, emptying my cache, and shutting down my computer, I am unable to sever my old connection to the library page.
  The weird thing was I was in a chat with a librarian at the school at the time, and it never signed off even when my computer was shut down...
  What do?

  This will tell you if your apps are compatible:
  http://roaringapps.com/apps:table
  Thanks ... Ken

• How to use database look up table function in xsl mapping

  Can anybody tell me how to use database look up table function while mapping xsl between 2 nodes.
  I have an XML file coming in and depending on one of XML elements we need to decide which further path to take. But, using this XML element, we need to query database table, get metadata and accordingly take appropriate path. I have written lookup function which returns metadata value.
  Now, the issue is how do I pass the XML element valu as input to look up function? When I tried to drag it to the input node of lookup function, it throws an error like "Maximum number of parameters exceeded"
  Thanks,

  If the lookup table is always going to remain the same (e.g. a character generator or something similar) you can place the values in a 2D array constant on your diagram, with the input value as one column, the equivalent as the other. When you need to perform the lookup you use an index array to return all the values in the "input column", search it using "search 1D array" and use the resulting index number to index the other column's data. If the values may change, then it would probably be best to load an array control with your equivalent values from a file.
  P.M.
  Putnam
  Certified LabVIEW Developer
  Senior Test Engineer
  Currently using LV 6.1-LabVIEW 2012, RT8.5
  LabVIEW Champion

• How to create database in 10g xe

  How to create database in 10g xe? could you please direct me to which documentation in 10g xe website? is it possible to create the db from the web console? if so, how? I can't seem to find a way to do it? Thanks

  You cannot: there can only be one XE database per host and it's created when you install Oracle XE.

• How to view database table in OAF run page.

  Hi,
  how to view database table in OAF run page,any manual setting .please help me.
  thanks
  saran.

  Hi;
  1. This site side related EBS for your issue there is sqldeveloer dedicated forum side
  Forum Home » Application Development in PL/SQL » SQL Developer (Not for general SQL/PLSQL questions)
  2. Please see:
  http://docs.oracle.com/cd/B10501_01/java.920/a96655.pdf
  Regard
  Helios

• How to view database table in oracle9i Jdeveloper

  Hi,
  how to view database table in oracle9i jdeveloper,any manual setting .please help me.
  thanks
  saran.

  In Jdeveloper go to View-->Connection Nevigator. there you will see all kind of connctions. Expand Database and check if your DB connection is present there. If not, you need to create using right clicking on Database and choose New Database Connecton. Here few screens will be there where you need to put the TNS entries of your database.
  Once DB connection is created, you can expand the connection by clicking on + icon and you can see different available schema objects. Again you need to expand Tables and you can look for specific table in there.
  Hope this clears your doubts.
  Thanks,
  Mukesh Uchaniya

• How to view database table in oracle9i developer

  Hi,
  how to view database table in oracle9i developer,any manual setting .please help me.
  thanks
  saran.

  Hi;
  1. This site side related EBS for your issue there is sqldeveloer dedicated forum side
  Forum Home » Application Development in PL/SQL » SQL Developer (Not for general SQL/PLSQL questions)
  2. Please see:
  http://docs.oracle.com/cd/B10501_01/java.920/a96655.pdf
  Regard
  Helios

• How to use Database views in XI

  Hi Folks,
  Any idea about how to use Database views for sending and receiving messages in XI ?
  Regards,

  Farooq,
  My doubt is do i have work in the same fashion as if i am working on a Database Table...?
  For Ex :
  Creating Source and Target Data structure for JDBC adapter in the same format....etc
  Regards.

• How to determine database growth for new B1 instalation

  Hello B1 people,
  I'm working on the capacity planning of my new business one project and must know how to determine database growth. Does anyone did something like that before?
  Wich tables should I consider?
  Thanks in advance.

  Hello Gabriel,
  I think it is difficult to make any predictions about database growth because this depends on the volume of your business transactions, the number of users, the continuity of your master data...
  For example a small number of users can create a lot of transactions (accounting, logistics) with big documents like sales orders with more than 100 items, or a lot of users who primarily look up things but only create small transaction won't create too much data and thus influence database growth in totally different ways.
  You should collect information about the volume of daily business to make any forecasts.
  If you start with an empty database, the first big growth will be when you upload your master data, but if only few business transactions follow, you shouldn't use that first increase for your calculation.
  Is this your very first B1 installation, or do you already have B1 systems running? If you use the EWA service on a running B1 installation on a regular basis, then you will get a good impression of database growth and transaction volume but you should only use this as a basis for your calculation if the business of the new installation is similar to already running company's.
  Hope that helps,
  Sandra

• When and How to close database connection in JSP?

  Hi there,
  I am using MySQL and JDBC 3.0, in my system, When and How to close database connection in JSP?
  Thanks in advance.
  Lonely Wolf
  <%@ page session="true" language="java" %>
  <jsp:include page="checkauthorization.jsp" />
  <%@ taglib prefix="c" uri="http://java.sun.com/jstl/core" %>
  <%@ taglib prefix="sql" uri="http://java.sun.com/jstl/sql" %>
  <%--
  Execute query, with wildcard characters added to the
  parameter values used in the search criteria
  --%>
  <sql:query var="availablecomputerList" dataSource="jdbc/Bookingcomputer" scope="request">
  SELECT * FROM computer where status=0
  order by s_code
  </sql:query>
  <html>
  <head>
  <title>Search Result</title>
  </head>
  <body bgcolor="white">
  <center>
  <form action="checkin.jsp" method="post">
  <input type="submit" value="Back to Check-in Page">
  </form>
  <c:choose>
  <c:when test="${availablecomputerList.rowCount == 0}">
  Sorry, no available computer found.
  </c:when>
  <c:otherwise>
  The following available computers were found:
  <table border="1">
  <th>Computer</th>
  <th>Description</th>
  <th>Status</th>
  <c:forEach items="${availablecomputerList.rows}" var="row">
  <tr>
  <td><c:out value="${row.s_code}" /></td>
  <td><c:out value="${row.description}" /></td>
  <td><c:out value="${row.status}" /></td>
  </tr>
  </c:forEach>
  </table>
  </c:otherwise>
  </c:choose>
  </center>
  </body>
  </html>

  when should you close the connection? when you're done with it.
  how should you close the connection? like this: conn.close();
  that said, doing this in a JSP page is bad form and not recommended
  JSP's typically don't contain ANY business or data logic

• How to secure one page not entire application?

  Hi there,
  I'm looking for some guidance on how to secure individual pages on my site. I've read a number of articles discussing creating a login using the Application.cfc. The thing is this approach locks down the entire site. I only want to secure a page. In my scenario, if the user hasn't logged in, and goes to a profile.cfm page, they will be asked to login. Once they login, they will then be directed to the profile.cfm page.
  Any and all advice would be greatly appreciated.
  Thanks.
  Novian

  Hi, Novian,
  An option that come directly to mind is to check for the specific page to be locked down in onRequestStart of your Application.cfc.
  This approach is relatively easy to implement but may not be the best approach (don't know how it might affect performance or something else). Basically, use a conditional in your onRequestStart method to see if the page being requested by the user is the page that needs to be secured. Something along the lines of:
  <cffunction name="onRequestStart">
       <cfargument name="target_page" />
       <cfif target_page is 'super-secure-page.cfm'>
            <!--- security stuff --->
       </cfif>
  </cffunction>
  There are, of course, other options but this was a quick and easy one that came right to mind.