Oracle Database Discussions

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

DB direcotry Permissions

DBA2011Jul 6 2007 — edited Jul 8 2007

These are the permission i am going to change in my DBs , any suggestion?

chmod 750 /u02/oradata/sid_name

Chmod 640 (Datafile,UNDO,TEMP Tablespace, Controlfile, Redo Log Files, Archivelogs)

chmod 644 (alert Logs, init.ora files, config.ora files)

Chmod 640 $ORACLE_HOME/rdbms/admin/utlpwdmg.sql

Verify umask = 022 - type "umask" - should return 022; if not, modify in .profile

Verify all files are readable--run the following:
select file_name, status from dba_data_files where status != 'AVAILABLE'--should return 0 rows

SUN - ls -al /var/opt/oracle/oratab = should be owner=oracle group=dba
IF NOT, OPEN SR TO UNIX TEAM TO CHANGE

Verify oraInst.loc - look at /u01/app/oracle/security/*.info - setting A271-
/var/opt/oracle/oraInst.loc - owned by oracle:dba
*IF NOT, OPEN SR TO UNIX TEAM TO CHANGE

Verify ownership of $ORACLE_HOME/network/admin/listener.ora,$ORACLE_HOME/network/admin/tnsnames.ora
= oracle:dba
*IF NOT, OPEN SR TO UNIX TEAM TO CHANGE

Verification:
1. run gsd331 scan and verify fixed--
execute /u01/app/oracle/security/orashc -m -a *output will go to corcldba@us.ibm.com

BACKOUT:
Change permission back to 755

Locked Post

New comments cannot be posted to this locked post.

Locked on Aug 5 2007

Added on Jul 6 2007

#general-database-discussions

1 comment

1,198 views