STIGQter: STIG Summary: Oracle Database 11g Installation STIG Version: 8 Release: 20 Benchmark Date: 28 Jul 2017: STIGQter: STIG Summary: Oracle Database 11g Installation STIG Version: 8 Release: 20 Benchmark Date: 28 Jul 2017:SV-24643r1_rule
V-3813
DBMS application password display
DG0068-ORACLE11
CAT II
10
Review policy and instructions included or noted in the System Security Plan used to inform users and administrators not to enter database passwords at the command line.
Review documented and implemented procedures used to monitor the DBMS system for such activity.
If policy or instructions do not exist, proof of users and administrators being briefed does not exist or monitoring for compliance is not being performed to dissuade the practice of entering database passwords on the command line, this is a Finding.
Review policy and instructions included or noted in the System Security Plan used to inform users and administrators not to enter database passwords at the command line.
Review documented and implemented procedures used to monitor the DBMS system for such activity.
If policy or instructions do not exist, proof of users and administrators being briefed does not exist or monitoring for compliance is not being performed to dissuade the practice of entering database passwords on the command line, this is a Finding.
V-3813
False
DG0068-ORACLE11
Review policy and instructions included or noted in the System Security Plan used to inform users and administrators not to enter database passwords at the command line.
Review documented and implemented procedures used to monitor the DBMS system for such activity.
If policy or instructions do not exist, proof of users and administrators being briefed does not exist or monitoring for compliance is not being performed to dissuade the practice of entering database passwords on the command line, this is a Finding.
I
Database Administrator
1368