Table of Contents
- Title and Copyright Information
- Trademark Notice
- Preface
-
1
General security
principles
- Keep software up to date
- Keep up to date with critical patches
- Configure strong passwords on the database
- Follow the principle of least privilege
- Manage default user accounts
- Close all open ports not in use
- Disable the Telnet service
- Disable other unused services
- Design for multiple layers of protection
- Enable SSL
- 2 Protected Health Information
- 3 Security guidelines for database objects and database options
-
4
Security guidelines for the middle
tier
- Remove unused applications from WebLogic
- Enable SSL (for middle tier)
- Configure SSL
- Allow known host only
- Protect user accounts
- Create MIDM User Accounts for Web Service on WebLogic
- Set up the user for MIDM access using WebLogic
- Integrate application-generated logs with Security Information and Event Management System (SIEM)
- 5 Restricting access to sensitive files
- 6 Find information and patches on My Oracle Support