The software described in this documentation is either in Extended Support or Sustaining Support. See https://www.oracle.com/us/support/library/enterprise-linux-support-policies-069172.pdf for more information.
Oracle recommends that you upgrade the software described by this documentation as soon as possible.
Oracle® Linux 6: Security Guide provides security guidelines for the Oracle Linux 6 operating system. The guide presents steps that you can take to harden an Oracle Linux system and the features that you can use to protect your data and applications. You can tailor the recommendations in the guide to suit your site security policy.
This document is intended for administrators who analyze security requirements, implement site security policy, install and configure the Oracle Linux operating system, and maintain system and network security. It is assumed that readers have a general knowledge of Linux administration, a good foundation in software security, and knowledge of your organization's site security policy.
The document is organized as follows:
Chapter 1, Oracle Linux Security Overview provides an overview of Oracle Linux security.
Chapter 2, Secure Installation and Configuration outlines the planning process for a secure installation and describes how the choices that you make during installation affect system security.
Chapter 3, Implementing Oracle Linux Security describes the various ways in which you can configure the security of an Oracle Linux system.
Chapter 4, Security Considerations for Developers provides information for developers about how to create secure applications for Oracle Linux, and how to extend Oracle Linux to access external systems without compromising security.
Chapter 5, Secure Deployment Checklist provides guidelines that help secure your Oracle Linux system.
Chapter 6, Using OpenSCAP to Scan for Vulnerabilities describes how to use OpenSCAP to scan your Oracle Linux system for security vulnerabilities.
Chapter 7, FIPS 140-2 Compliance in Oracle Linux describes the FIPS 140 Level 1 certifications for cryptographic components that have been completed by Oracle and reside within Oracle Linux 6.9.
The following text conventions are used in this document:
Convention | Meaning |
|---|---|
boldface | Boldface type indicates graphical user interface elements associated with an action, or terms defined in text or the glossary. |
italic | Italic type indicates book titles, emphasis, or placeholder variables for which you supply particular values. |
| Monospace type indicates commands within a paragraph, URLs, code in examples, text that appears on the screen, or text that you enter. |
For information about Oracle's commitment to accessibility, visit the Oracle Accessibility Program website at https://www.oracle.com/corporate/accessibility/.
Oracle customers that have purchased support have access to electronic support through My Oracle Support. For information, visit https://www.oracle.com/corporate/accessibility/learning-support.html#support-tab.
Oracle is fully committed to diversity and inclusion. Oracle respects and values having a diverse workforce that increases thought leadership and innovation. As part of our initiative to build a more inclusive culture that positively impacts our employees, customers, and partners, we are working to remove insensitive terms from our products and documentation. We are also mindful of the necessity to maintain compatibility with our customers' existing technologies and the need to ensure continuity of service as Oracle's offerings and industry standards evolve. Because of these technical constraints, our effort to remove insensitive terms is ongoing and will take time and external cooperation.