http://awads.disqus.com/News, views, tips and tricks on Oracle and other fun stuffenTue, 24 Jan 2006 15:21:45 -0000http://awads.net/wp/2006/01/24/oracle-rootkit/#comment-3658265<p>I was a security consultant prior to being a DBA.</p><p><br></p><p>I found that many folks tend to think of security as blocking outsiders. Yet, too many times, an internal attack causes more problems, due to lack of auditing for internal users. Further, if a company deploys a VPN with another company, you can possibly have users at another company taking stabs at your data without your knowledge.</p><p><br></p><p>Oh boy, what a wonderful world we live in.</p><p><br></p><p>--Tom</p>Tom_FoxTue, 24 Jan 2006 15:21:45 -0000http://awads.net/wp/2006/01/24/oracle-rootkit/#comment-3658264<p><i>The DBSA already exists in many larger organizations</i></p><p><br></p><p>I guess in smaller (even medium) size organizations, database security is mainly the responsibility of a DBA, and, to alesser extent, database developers. -- Thanks Lewis.</p>Eddie AwadTue, 24 Jan 2006 15:03:19 -0000http://awads.net/wp/2006/01/24/oracle-rootkit/#comment-3658266<p>Hi Eddie,</p><p><br></p><p>The DBSA already exists in many larger organizations. With all of the compliance regulations and issues in recent years, it's important to have someone responsible for database security that understands the laws and regualtions around data at rest. Understanding rootkits and keeping up with the latest from both Oracle and hackers is an important part of the job.</p><p><br></p><p>Thanks,</p><p><br></p><p>LewisC<br><a href="http://blogs.ittoolbox.com/oracle/guide/" rel="nofollow noopener" target="_blank" title="http://blogs.ittoolbox.com/oracle/guide/">http://blogs.ittoolbox.com/...</a></p>Lewis CunninghamTue, 24 Jan 2006 07:46:06 -0000