Database Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

network security without ssl/tls

steinerNov 29 2017 — edited Dec 1 2017

Hi,

Prior to our pci audit we are doing internal scans of our rhel6, oracle 11g servers to make sure we either are not using ssl/tls or if we are that its tls 1.2

I am getting confused between configuring client and server sqlnet.ora ( sqlnet.encryption_client ,sqlnet.crypto_checksum_client ...)

and configuring tcp/ip with ssl/tls and doing the wallet/certificate stuff.

Can someone please explain the differences to me (very simply) ?

Also, to meet pci scan, do I need the wallets and certificate?

Thanks a lot,

Randy

This post has been answered by pmdba on Nov 30 2017

Jump to Answer

Locked Post

New comments cannot be posted to this locked post.

Locked on Dec 29 2017

Added on Nov 29 2017

#database-security, #database-security-general

3 comments

1,246 views