Rem Rem $Header: racSecureConfigCS.sql 16-nov-2006.11:32:21 groyal Exp $ Rem Rem racSecureConfigCS.sql Rem Rem Copyright (c) 2006, Oracle. All rights reserved. Rem Rem NAME Rem racSecureConfigCS.sql - Rem Rem DESCRIPTION Rem Rem Rem NOTES Rem Rem Rem MODIFIED (MM/DD/YY) Rem groyal 11/16/06 - XbranchMerge groyal_bug-5660652 from Rem st_emdbgc_10.2.0.1.0 Rem groyal 11/15/06 - Create in single transaction Rem groyal 10/16/06 - Created Rem -- SET ECHO ON -- SET FEEDBACK 1 -- SET NUMWIDTH 10 -- SET LINESIZE 80 -- SET TRIMSPOOL ON -- SET TAB OFF -- SET PAGESIZE 100 SET DEFINE OFF DECLARE l_cs_guid mgmt_cs_config_standard.cs_guid%TYPE; l_folder_guid mgmt_cs_rulefolder.rulefolder_guid%TYPE; l_nested_folder_guid mgmt_cs_rulefolder.rulefolder_guid%TYPE; l_rule_guid mgmt_cs_rule.rule_guid%TYPE; l_keyword_list MGMT_SHORT_STRING_TABLE; BEGIN l_keyword_list := MGMT_SHORT_STRING_TABLE(); l_keyword_list.extend(); l_keyword_list(1) := 'dbSecure_SecurityKEYWORD'; l_cs_guid := MGMT_CONFIG_STD.CREATE_CONFIG_STANDARD( p_cs_iname => 'racSecure', p_cs_dname => 'racSecure_NAME', p_version => 1, p_target_type => MGMT_GLOBAL.G_RAC_DATABASE_TARGET_TYPE, p_author => 'ORACLE', p_lifecycle_status => MGMT_CONFIG_STD.G_LIFECYCLE_PRODUCTION, p_description => 'dbSecure_DESC', p_keyword_list => l_keyword_list); -- COMMIT; -- ********************************************************************* -- Post Installation -- ********************************************************************* l_folder_guid := MGMT_CONFIG_STD.ADD_RULEFOLDER( p_cs_guid => l_cs_guid, p_rulefolder_iname => 'PostInstallation', p_rulefolder_dname => 'PostInstallation_NAME', p_parent_guid => l_cs_guid, p_child_position => 1, p_description => 'PostInstallation_DESC'); -- COMMIT; -- Default Passwords Have Been Changed l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DefaultPwd', p_rule_dname => 'DefaultPwd_NAME', p_parent_guid => l_folder_guid, p_child_position => 1, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'Default_Passwords', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DefaultPwd_DESC', p_rationale => 'DefaultPwd_RATIONALE', p_fixtext => 'DefaultPwd_FIX'); -- COMMIT; -- Default Accounts are Locked and Expired l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DefaultAccountLockedAndExpired', p_rule_dname => 'DefaultAccountLockedAndExpired_NAME', p_parent_guid => l_folder_guid, p_child_position => 2, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'Well_known_Accounts', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DefaultAccountLockedAndExpired_DESC', p_rationale => 'DefaultAccountLockedAndExpired_RATIONALE', p_fixtext => 'DefaultAccountLockedAndExpired_FIX'); -- COMMIT; -- ********************************************************************* -- Oracle Directory and File Permissions -- ********************************************************************* l_folder_guid := MGMT_CONFIG_STD.ADD_RULEFOLDER( p_cs_guid => l_cs_guid, p_rulefolder_iname => 'OracleDirAndFilePerms', p_rulefolder_dname => 'OracleDirAndFilePerms_NAME', p_parent_guid => l_cs_guid, p_child_position => 2, p_description => 'OracleDirAndFilePerms_DESC'); -- COMMIT; -- ********************************************************************* -- Unix Platform -- ********************************************************************* l_nested_folder_guid := MGMT_CONFIG_STD.ADD_RULEFOLDER( p_cs_guid => l_cs_guid, p_rulefolder_iname => 'OracleDirAndFilePermsU', p_rulefolder_dname => 'OracleDirAndFilePermsU_NAME', p_parent_guid => l_folder_guid, p_child_position => 1, p_description => 'OracleDirAndFilePermsU_DESC'); -- COMMIT; -- Database Datafiles l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DbDatafilesU', p_rule_dname => 'DbDatafilesU_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 1, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'Oracle_Home_Data_Files_Permission', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DbDatafilesU_DESC', p_rationale => 'DbDatafilesU_RATIONALE', p_fixtext => 'DbDatafilesU_FIX'); -- COMMIT; -- Control Files (CONTROL_FILES) l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'ControlFilesU', p_rule_dname => 'ControlFilesU_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 2, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'DB_control_files_Permission', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'ControlFilesU_DESC', p_rationale => 'ControlFilesU_RATIONALE', p_fixtext => 'ControlFilesU_FIX'); -- COMMIT; -- ********************************************************************* -- END Unix Platform -- ********************************************************************* -- ********************************************************************* -- Windows Platform -- ********************************************************************* l_nested_folder_guid := MGMT_CONFIG_STD.ADD_RULEFOLDER( p_cs_guid => l_cs_guid, p_rulefolder_iname => 'OracleDirAndFilePermsW', p_rulefolder_dname => 'OracleDirAndFilePermsW_NAME', p_parent_guid => l_folder_guid, p_child_position => 2, p_description => 'OracleDirAndFilePermsW_DESC'); -- COMMIT; -- Database Datafiles l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DbDatafilesW', p_rule_dname => 'DbDatafilesW_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 1, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'Oracle_Home_Data_Files_PermissionNT', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DbDatafilesW_DESC', p_rationale => 'DbDatafilesW_RATIONALE', p_fixtext => 'DbDatafilesW_FIX'); -- COMMIT; -- Control Files (CONTROL_FILES) l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'ControlFilesW', p_rule_dname => 'ControlFilesW_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 2, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'DB_control_files_PermissionNT', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'ControlFilesW_DESC', p_rationale => 'ControlFilesW_RATIONALE', p_fixtext => 'ControlFilesW_FIX'); -- COMMIT; -- ********************************************************************* -- END Windows Platform -- ********************************************************************* -- ********************************************************************* -- END Oracle Directory and File Permissions -- ********************************************************************* -- ********************************************************************* -- Database Password Profile Settings -- ********************************************************************* l_folder_guid := MGMT_CONFIG_STD.ADD_RULEFOLDER( p_cs_guid => l_cs_guid, p_rulefolder_iname => 'DbPwdProfileSettings', p_rulefolder_dname => 'DbPwdProfileSettings_NAME', p_parent_guid => l_cs_guid, p_child_position => 3, p_description => 'DbPwdProfileSettings_DESC'); -- COMMIT; -- Secure Failed Login Attempts Setting l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'SecureFailedLoginAttemptsSetting', p_rule_dname => 'SecureFailedLoginAttemptsSetting_NAME', p_parent_guid => l_folder_guid, p_child_position => 1, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'Unlimited_login_attempts', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'SecureFailedLoginAttemptsSetting_DESC', p_rationale => 'SecureFailedLoginAttemptsSetting_RATIONALE', p_fixtext => 'SecureFailedLoginAttemptsSetting_FIX'); -- COMMIT; -- Secure Password Life Time Setting l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'SecurePwdLifeTimeSetting', p_rule_dname => 'SecurePwdLifeTimeSetting_NAME', p_parent_guid => l_folder_guid, p_child_position => 2, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_NORMAL, p_test => 'Password_Life_Time', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'SecurePwdLifeTimeSetting_DESC', p_rationale => 'SecurePwdLifeTimeSetting_RATIONALE', p_fixtext => 'SecurePwdLifeTimeSetting_FIX'); -- COMMIT; -- Secure Password Lock Time Setting l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'SecurePwdLockTimeSetting', p_rule_dname => 'SecurePwdLockTimeSetting_NAME', p_parent_guid => l_folder_guid, p_child_position => 3, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_NORMAL, p_test => 'Password_Locking_Time', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'SecurePwdLockTimeSetting_DESC', p_rationale => 'SecurePwdLockTimeSetting_RATIONALE', p_fixtext => 'SecurePwdLockTimeSetting_FIX'); -- COMMIT; -- Secure Password Grace Time Setting l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'SecurePwdGraceTimeSetting', p_rule_dname => 'SecurePwdGraceTimeSetting_NAME', p_parent_guid => l_folder_guid, p_child_position => 4, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'Password_Grace_Time', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'SecurePwdGraceTimeSetting_DESC', p_rationale => 'SecurePwdGraceTimeSetting_RATIONALE', p_fixtext => 'SecurePwdGraceTimeSetting_FIX'); -- COMMIT; -- Password Complexity Checking Enabled l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'PwdComplexityCheckingEnabled', p_rule_dname => 'PwdComplexityCheckingEnabled_NAME', p_parent_guid => l_folder_guid, p_child_position => 5, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'Password_Complexity_Fn_Usage', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'PwdComplexityCheckingEnabled_DESC', p_rationale => 'PwdComplexityCheckingEnabled_RATIONALE', p_fixtext => 'PwdComplexityCheckingEnabled_FIX'); -- COMMIT; -- ********************************************************************* -- END Database Password Profile Settings -- ********************************************************************* -- ********************************************************************* -- Database Access Settings -- ********************************************************************* l_folder_guid := MGMT_CONFIG_STD.ADD_RULEFOLDER( p_cs_guid => l_cs_guid, p_rulefolder_iname => 'DbAccessSettings', p_rulefolder_dname => 'DbAccessSettings_NAME', p_parent_guid => l_cs_guid, p_child_position => 4, p_description => 'DbAccessSettings_DESC'); -- COMMIT; -- ********************************************************************* -- Views -- ********************************************************************* l_nested_folder_guid := MGMT_CONFIG_STD.ADD_RULEFOLDER( p_cs_guid => l_cs_guid, p_rulefolder_iname => 'Views', p_rulefolder_dname => 'Views_NAME', p_parent_guid => l_folder_guid, p_child_position => 1, p_description => 'Views_DESC'); -- COMMIT; -- Restricted Access to DBA_ROLES l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DBARoles', p_rule_dname => 'DBARoles_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 1, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_DBA_ROLES_View', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DBARoles_DESC', p_rationale => 'DBARoles_RATIONALE', p_fixtext => 'DBARoles_FIX'); -- COMMIT; -- Restricted Access to DBA_SYS_PRIVS l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DBASysPrivs', p_rule_dname => 'DBASysPrivs_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 2, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_DBA_SYS_PRIVS_View', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DBASysPrivs_DESC', p_rationale => 'DBASysPrivs_RATIONALE', p_fixtext => 'DBASysPrivs_FIX'); -- COMMIT; -- Restricted Access to DBA_ROLE_PRIVS l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DBARolePrivs', p_rule_dname => 'DBARolePrivs_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 3, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_DBA_ROLE_PRIVS_View', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DBARolePrivs_DESC', p_rationale => 'DBARolePrivs_RATIONALE', p_fixtext => 'DBARolePrivs_FIX'); -- COMMIT; -- Restricted Access to DBA_TAB_PRIVS l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DBATabPrivs', p_rule_dname => 'DBATabPrivs_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 4, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_DBA_TAB_PRIVS_View', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DBATabPrivs_DESC', p_rationale => 'DBATabPrivs_RATIONALE', p_fixtext => 'DBATabPrivs_FIX'); -- COMMIT; -- Restricted Access to DBA_USERS l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DBAUsers', p_rule_dname => 'DBAUsers_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 5, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_DBA_USERS_View', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DBAUsers_DESC', p_rationale => 'DBAUsers_RATIONALE', p_fixtext => 'DBAUsers_FIX'); -- COMMIT; -- ********************************************************************* -- END Views -- ********************************************************************* -- ********************************************************************* -- Tables -- ********************************************************************* l_nested_folder_guid := MGMT_CONFIG_STD.ADD_RULEFOLDER( p_cs_guid => l_cs_guid, p_rulefolder_iname => 'Tables', p_rulefolder_dname => 'Tables_NAME', p_parent_guid => l_folder_guid, p_child_position => 2, p_description => 'Tables_DESC'); -- COMMIT; -- Restricted Access to SYS.AUD$ l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'SYSAud', p_rule_dname => 'SYSAud_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 1, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_AUD_Table', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'SYSAud_DESC', p_rationale => 'SYSAud_RATIONALE', p_fixtext => 'SYSAud_FIX'); -- COMMIT; -- Restricted Access to SYS.USER_HISTORY$ l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'SYSUserHistory', p_rule_dname => 'SYSUserHistory_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 2, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_USER_HISTORY_Table', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'SYSUserHistory_DESC', p_rationale => 'SYSUserHistory_RATIONALE', p_fixtext => 'SYSUserHistory_FIX'); -- COMMIT; -- Restricted Access to SYS.USER$ l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'SYSUser', p_rule_dname => 'SYSUser_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 3, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_USER_Table', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'SYSUser_DESC', p_rationale => 'SYSUser_RATIONALE', p_fixtext => 'SYSUser_FIX'); -- COMMIT; -- Restricted Access to SYS.SOURCE$ l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'SYSSource', p_rule_dname => 'SYSSource_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 4, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_SOURCE_Table', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'SYSSource_DESC', p_rationale => 'SYSSource_RATIONALE', p_fixtext => 'SYSSource_FIX'); -- COMMIT; -- Restricted Access to PERFSTAT.STATS$SQLTEXT l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'PERFSTATStatsSqlText', p_rule_dname => 'PERFSTATStatsSqlText_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 5, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_STATSSQLTEXT_Table', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'PERFSTATStatsSqlText_DESC', p_rationale => 'PERFSTATStatsSqlText_RATIONALE', p_fixtext => 'PERFSTATStatsSqlText_FIX'); -- COMMIT; -- Restricted Access to PERFSTAT.STATS$SQL_SUMMARY l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'PERFSTATStatsSqlSummary', p_rule_dname => 'PERFSTATStatsSqlSummary_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 6, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_LOW, p_test => 'Access_To_STATSSQL_SUMMARY_Table', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'PERFSTATStatsSqlSummary_DESC', p_rationale => 'PERFSTATStatsSqlSummary_RATIONALE', p_fixtext => 'PERFSTATStatsSqlSummary_FIX'); -- COMMIT; -- ********************************************************************* -- END Tables -- ********************************************************************* -- ********************************************************************* -- Packages -- ********************************************************************* l_nested_folder_guid := MGMT_CONFIG_STD.ADD_RULEFOLDER( p_cs_guid => l_cs_guid, p_rulefolder_iname => 'Packages', p_rulefolder_dname => 'Packages_NAME', p_parent_guid => l_folder_guid, p_child_position => 3, p_description => 'Packages_DESC'); -- COMMIT; -- Restricted Privilege to Execute UTL_FILE l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'UtlFile', p_rule_dname => 'UtlFile_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 1, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'EXECUTE_UTL_FILE_Privileges_To_PUBLIC', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'UtlFile_DESC', p_rationale => 'UtlFile_RATIONALE', p_fixtext => 'UtlFile_FIX'); -- COMMIT; -- Restricted Privilege to Execute UTL_TCP l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'UtlTcp', p_rule_dname => 'UtlTcp_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 2, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'Public_Exec_Priv_Utl_Tcp', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'UtlTcp_DESC', p_rationale => 'UtlTcp_RATIONALE', p_fixtext => 'UtlTcp_FIX'); -- COMMIT; -- Restricted Privilege to Execute UTL_HTTP l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'UtlHttp', p_rule_dname => 'UtlHttp_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 3, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'Public_Exec_Priv_Utl_Http', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'UtlHttp_DESC', p_rationale => 'UtlHttp_RATIONALE', p_fixtext => 'UtlHttp_FIX'); -- COMMIT; -- Restricted Privilege to Execute UTL_SMTP l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'UtlSmtp', p_rule_dname => 'UtlSmtp_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 4, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'Public_Exec_Priv_Utl_Smtp', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'UtlSmtp_DESC', p_rationale => 'UtlSmtp_RATIONALE', p_fixtext => 'UtlSmtp_FIX'); -- COMMIT; -- Restricted Privilege to Execute DBMS_JOB l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DbmsJob', p_rule_dname => 'DbmsJob_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 5, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'PUBLIC_Privileges_To_DBMS_JOB', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DbmsJob_DESC', p_rationale => 'DbmsJob_RATIONALE', p_fixtext => 'DbmsJob_FIX'); -- COMMIT; -- Restricted Privilege to Execute DBMS_SYS_SQL l_rule_guid := MGMT_CONFIG_STD.ADD_RULE( p_cs_guid => l_cs_guid, p_rule_iname => 'DbmsSysSql', p_rule_dname => 'DbmsSysSql_NAME', p_parent_guid => l_nested_folder_guid, p_child_position => 6, p_importance_level => MGMT_CONFIG_STD.G_IMPORTANCE_HIGH, p_test => 'PUBLIC_Privileges_To_DBMS_SYS_SQL', p_test_type => MGMT_CONFIG_STD.G_TEST_TYPE_POLICY, p_description => 'DbmsSysSql_DESC', p_rationale => 'DbmsSysSql_RATIONALE', p_fixtext => 'DbmsSysSql_FIX'); -- COMMIT; -- ********************************************************************* -- END Packages -- ********************************************************************* -- ********************************************************************* -- END Database Access Settings -- ********************************************************************* COMMIT; END; / SET DEFINE ON