Oracle Enterprise Linux on Exadata and Security concerns
A customer of mine - Banque de France - has just acquired 4 half Exadata machines and an associated ACS BCA contract for the
follow-up and the support of the solution.
They raised important questions about the embedded Linux OS and the potential vulnerabilities:
1- What is the Oracle Policy for the OS security patching ? Must we install the security updates provided by RedHat (RHSA) or those provided by Oracle (ELSA)? If we have to apply Oracle recommendations, where can we find the list of the vulnerabilities selected by Oracle and the corresponding patches? Are these patches gathered in something like RDBMS CPUs for Oracle Linux OS?
follow-up and the support of the solution.
They raised important questions about the embedded Linux OS and the potential vulnerabilities:
1- What is the Oracle Policy for the OS security patching ? Must we install the security updates provided by RedHat (RHSA) or those provided by Oracle (ELSA)? If we have to apply Oracle recommendations, where can we find the list of the vulnerabilities selected by Oracle and the corresponding patches? Are these patches gathered in something like RDBMS CPUs for Oracle Linux OS?
0