12c의 ORA_STIG_PROFILE
12c에선 보안용으로 ORA-STIG_PROFILE 이라는 profile을 기본으로 생성해준다.
SQL> select * from dba_profiles;
PROFILE RESOURCE_NAME RESOURCE LIMIT COM
----------------- ------------------------------ -------- ------------------------------ ---
DEFAULT COMPOSITE_LIMIT KERNEL UNLIMITED NO
DEFAULT SESSIONS_PER_USER KERNEL UNLIMITED NO
DEFAULT CPU_PER_SESSION KERNEL UNLIMITED NO
DEFAULT CPU_PER_CALL KERNEL UNLIMITED NO
DEFAULT LOGICAL_READS_PER_SESSION KERNEL UNLIMITED NO
DEFAULT LOGICAL_READS_PER_CALL KERNEL UNLIMITED NO
DEFAULT IDLE_TIME KERNEL UNLIMITED NO
DEFAULT CONNECT_TIME KERNEL UNLIMITED NO
DEFAULT PRIVATE_SGA KERNEL UNLIMITED NO
DEFAULT FAILED_LOGIN_ATTEMPTS PASSWORD UNLIMITED NO
DEFAULT PASSWORD_LIFE_TIME PASSWORD UNLIMITED NO
DEFAULT PASSWORD_REUSE_TIME PASSWORD UNLIMITED NO
DEFAULT PASSWORD_REUSE_MAX PASSWORD UNLIMITED NO
DEFAULT PASSWORD_VERIFY_FUNCTION PASSWORD NULL NO
DEFAULT PASSWORD_LOCK_TIME PASSWORD UNLIMITED NO
DEFAULT PASSWORD_GRACE_TIME PASSWORD UNLIMITED NO
ORA_STIG_PROFILE COMPOSITE_LIMIT KERNEL DEFAULT NO
ORA_STIG_PROFILE SESSIONS_PER_USER KERNEL DEFAULT NO
ORA_STIG_PROFILE CPU_PER_SESSION KERNEL DEFAULT NO
ORA_STIG_PROFILE CPU_PER_CALL KERNEL DEFAULT NO
ORA_STIG_PROFILE LOGICAL_READS_PER_SESSION KERNEL DEFAULT NO
ORA_STIG_PROFILE LOGICAL_READS_PER_CALL KERNEL DEFAULT NO
ORA_STIG_PROFILE IDLE_TIME KERNEL 15 NO
ORA_STIG_PROFILE CONNECT_TIME KERNEL DEFAULT NO
ORA_STIG_PROFILE PRIVATE_SGA KERNEL DEFAULT NO
ORA_STIG_PROFILE FAILED_LOGIN_ATTEMPTS PASSWORD 3 NO
ORA_STIG_PROFILE PASSWORD_LIFE_TIME PASSWORD 60 NO
ORA_STIG_PROFILE PASSWORD_REUSE_TIME PASSWORD 365 NO
ORA_STIG_PROFILE PASSWORD_REUSE_MAX PASSWORD 10 NO
ORA_STIG_PROFILE PASSWORD_VERIFY_FUNCTION PASSWORD ORA12C_STRONG_VERIFY_FUNCTION NO
ORA_STIG_PROFILE PASSWORD_LOCK_TIME PASSWORD UNLIMITED NO
ORA_STIG_PROFILE PASSWORD_GRACE_TIME PASSWORD 5 NO
STIG란 Security Technical Implementation Guidelines 의 약자이다.