Re: Question on Oracle Security Alert for CVE-2012-1675

• From: "Radoulov, Dimitre" <cichomitiko@xxxxxxxxx>
• To: martin.a.berger@xxxxxxxxx
• Date: Wed, 2 May 2012 17:42:25 +0200

Hi,
if I am reading Note 1340831.1 correctly, in order to secure the communication
between pmon and the scan listeners, we'll need to use SSL.

There is a note about _licensing changes_:

--------------------------------------------------------------

Please refer to the Oracle licensing documentation available on
Oracle.com regarding licensing changes that allow Oracle Advanced
Security SSL/TLS to be used with Oracle SE Oracle Real Application
Clusters and Oracle Enterprise Edition Real Application Customers
(Oracle RAC) and Oracle RAC OneNode Options.

--------------------------------------------------------------

I am trying to understand if we need to buy the Advanced Security
option in order to fix the issue (I hope we don't ...).

Can anybody throw some light on this?


Thanks
Dimitre




On Wed, May 2, 2012 at 3:48 PM, Martin Berger <martin.a.berger@xxxxxxxxx> wrote:
> Hi Kumar,
>
> even untested,
> yes, that is enough.
>
> for local listener
> SECURE_REGISTER_LISTENER = (TCP)
> is the same in both documents (it's just more widely explained in 1453883.1).
>
> as this is a real new topic and many are interested in it's details,
> please share all your findings?
>
> Martin
>
> On Wed, May 2, 2012 at 9:24 AM, Kumar Madduri <ksmadduri@xxxxxxxxx> wrote:
>> Hi
>> Two notes are given for applying the fix for this alert (one for rac and
>> another for non-rac).
>> We dont use scan listeners on a 2 node rac. So after reading the note
>> 1340831.1, I think the steps listed for scan listeners are not required
>> (creating wallet and other steps that follow).
>> In this case note 1453883.1 (for non-rac) is applicable for rac as well.
>> I am going to re-read the notes again and raise SR if required but thought
>> about checking with the list as well.
>>
>>
>> Thank you
>> Kumar
>>
>>
>> --
>> //www.freelists.org/webpage/oracle-l
> --
> //www.freelists.org/webpage/oracle-l
>
>
--
//www.freelists.org/webpage/oracle-l

• Follow-Ups:
  • RE: Question on Oracle Security Alert for CVE-2012-1675
    • From: Uzzell, Stephan
  • RE: Question on Oracle Security Alert for CVE-2012-1675
    • From: rajendra.pande
  • Re: Question on Oracle Security Alert for CVE-2012-1675
    • From: Ilmar Kerm

• References:
  • Question on Oracle Security Alert for CVE-2012-1675
    • From: Kumar Madduri
  • Re: Question on Oracle Security Alert for CVE-2012-1675
    • From: Martin Berger

Other related posts:

• » Question on Oracle Security Alert for CVE-2012-1675- Kumar Madduri
• » Re: Question on Oracle Security Alert for CVE-2012-1675- Martin Berger
• » Re: Question on Oracle Security Alert for CVE-2012-1675 - Radoulov, Dimitre
• » RE: Question on Oracle Security Alert for CVE-2012-1675- Uzzell, Stephan
• » Re: Question on Oracle Security Alert for CVE-2012-1675- Radoulov, Dimitre
• » RE: Question on Oracle Security Alert for CVE-2012-1675- rajendra.pande
• » RE: Question on Oracle Security Alert for CVE-2012-1675- Jiang, Lu
• » Re: Question on Oracle Security Alert for CVE-2012-1675- Radoulov, Dimitre
• » Re: Question on Oracle Security Alert for CVE-2012-1675- Radoulov, Dimitre
• » Re: Question on Oracle Security Alert for CVE-2012-1675- Ilmar Kerm
• » Question on Oracle Security Alert for CVE-2012-1675- Mayen . Shah
• » Re: Question on Oracle Security Alert for CVE-2012-1675- Martin Berger
• » Re: Question on Oracle Security Alert for CVE-2012-1675- Niall Litchfield
• » Re: Question on Oracle Security Alert for CVE-2012-1675- Mayen . Shah
• » Re: Question on Oracle Security Alert for CVE-2012-1675- Martin Berger
• » RE: Question on Oracle Security Alert for CVE-2012-1675- Jeff Chirco
• » Re: Question on Oracle Security Alert for CVE-2012-1675- Ilmar Kerm

1. Home
2. oracle-l
3. Archive
4. 05-2012

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---