Hi Jeff,
You might want to check out the CIS Security Benchmarks for ideas. There is
no script supplied per-se but there is a list of sensitive items which you
may want to consider.
I evaluated this for a client and we found them to be generally helpful.
There are a few that are restrictive or would break current configurations
we had so we skipped those and noted reasons why we were skipping.
https://benchmarks.cisecurity.org/downloads/browse/index.cfm?category=benchmarks.servers.database.oracle
-Dave
On Thu, Aug 11, 2016 at 1:05 AM, FreeLists Mailing List Manager <
ecartis@xxxxxxxxxxxxx> wrote:
________________________________
From: oracle-l-bounce@xxxxxxxxxxxxx <oracle-l-bounce@xxxxxxxxxxxxx> on
behalf of Jeff Chirco <backseatdba@xxxxxxxxx>
Sent: Tuesday, August 9, 2016 7:42:27 PM
To: oracle-l@xxxxxxxxxxxxx
Subject: setting up a new database - remove any permissions?
Wondering if any of you have basic scripts you run everytime you create a
new database. What do you configure? Do you remove any permissions from
PUBLIC? I know I have experimented with removing certain objects from
PUBLIC but found that it came back to bite me when applying patches and
updates. Patches would either fail or cause some components to not be
valid.
What do any of you do.
Thanks,
Jeff
