Component Security

Oracle Database Security

The Oracle Database Security Guide contains more information about the security best practices.

MySQL Database Security

https://dev.mysql.com/doc/refman/8.0/en/security.html contains more information about the security best practices for MySQL database.

Oracle WebLogic Server Security

The Securing a Production Environment for Oracle WebLogic Server Guide from Oracle Fusion Middleware contains more information.

By default, WebLogic Server is configured with two keystores, which are located in the DOMAIN_HOME\security and WL_HOME\server\lib directories, respectively:

• DemoIdentity.jks - Contains a demonstration private key for WebLogic Server. This keystore contains the identity for WebLogic Server.

• DemoTrust.jks - Contains the trusted certificate authorities from the WL_HOME\server\lib\DemoTrust.jks and the JDK cacerts keystores. This keystore establishes trust for WebLogic Server.

Note:

You should never use these demonstration keystores in a production environment. In production, we recommend to use CA signed certificate.

For information about how to configure keystores for use in a production environment, see Obtaining and Storing Certificates for Production Environments; Steps to create a self-signed certificate and configure Custom Identity and Custom Trust with Weblogic Server using Keytool.