Re: OT: percent of DBAs that know how to impletement database security measures
- From: "Keith Moore" <kmoore@xxxxxxxxxxxx>
- To: bdbafh@xxxxxxxxx
- Date: Tue, 4 Apr 2006 15:48:42 -0500 (CDT)
If you take out the part "know how to", as in
... a full 60 percent of DBAs do not implement database security...
then I would say that based on my experience it's too low.
For example, when I find a shared Oracle account on a production system
with DBA privileges AND the username equal to the password, the response
by management is "Yeah, we know, but it's too difficult to change it right
now. We'll do it later".
Keith
> A little piece of email today told me the following:
>
> "... a full 60 percent of DBAs do not know how to implement database
> security measures, according to Forrester Research".
>
> Does that figure seem to be:
>
> - too high
> - too low
> - just about right
> - Cowboy Neil
>
> Inquring minds want to know.
> Personally, I think that the phrase lacks the term "properly", as in
> "properly implement database security measures".
> "shutdown abort" or "lsnrctl stop" would be examples of "improperly
> implement database security measures".
>
> Paul
>
--
//www.freelists.org/webpage/oracle-l
Other related posts:
