进Oracle数据库:
su - oracle账户
sqlplus / as sysdba
1、查看数据库用户:select username,account_status from dba_users;(结果:显示所有能登录数据库的用户信息)
2、查看profile名称分配:select username,account_status,profile from dba_users;(结果:PASSWORD_REUSE_MAX=6,PASSWORD_REUSE_TIME=1800,PASSWORD_LIFE_TIME=90)。口令复杂度校验函数:VERIFY_FUNCTTON PASSWORD_VERIFY_FUNCTTON=VERIFY_FUNCTTON。
3、查看profile内容配置:select profile, resource_name,limit from dba_profiles where resource_type=‘PASSWORD‘;(结果:FAILED_LOGIN_ATTEMPTS=3,PASSWORD_GRACE_TIME=10,加锁天数PASSWORD_LOCK_TIME=1/1440)
4、查看是否重命名默认账户:select granted_role from dba_role_privs where grantee=‘PUBLIC‘;(结果:null)
5、show parameter 07 DICTTONARY ACCESSIBILITY;(结果:system/manager,scott/tiger等默认账户的密码已修改)
6、审计范围:show parameter audit_sys_operations; show parameter audit_trail;(结果:)
7、关键操作审计:select * from dba_stmt_audit_opts;(结果:)
8、审计日志访问权限:select grantee from dba_tab_privs where table_name=‘AUD$‘ and grantee not in (‘DELETE_CATALOG_ROLE‘) and grantee not in (select grantee from dba_role_privs where granted_role=‘DBA‘);(结果:)有问题
9、登录超时锁定:select resource_name,limit from dba_profiles where profile=‘DEFAULT‘ and resource_type=‘KERNEL‘;(结果:)
10、资源限制:select profile from dba_users;(结果:自定义profile文件)