Oracle Database 12c Technical Standard (EBS)

ORACLE DATABASE 12C TECHNICAL STANDARD (EBS)
Information Security Policies & Standards

Policy No.: TS - 02 Release Date: 04/30, 2020
Owner: Velchamy Sankarlingam, SVP Cloud Services
Custodian: Varinder Kumar, IT Director
TABLE OF CONTENTS
1. Introduction ………………………………………………………………………………………………………………………………………………….1
2. Purpose …………………………………………………………………………………………………………………………………………………………2
2.1 Testing …………………………………………………………………………………………………………………………………………………….2
2.2 Compliance Timeline ……………………………………………………………………………………………………………………………….2
3. Scope …………………………………………………………………………………………………………………………………………………………….2
4. VMware General Security Requirements ………………………………………………………………………………………………………3
5. Oracle Database 12C Technical standard: CIS Benchmark ………………………………………………………………………..…..5
6. Appendix……………………………………………………………………………………………………………………………………………………...47
6.1 VMware Oracle Database 12c Best Practices...………………………………………………………………………………………..47
6.2 Definitions ………………………………………………………………………………………………………………………………………………48
6.3 Revision History ………………………………………………………………………………………………………………………………………48
1. INTRODUCTION
The VMware Oracle Database 12c Technical Standard (EBS) consists of three sections a) VMWare General Security
Requirements b) Technical Standard: CIS Benchmark, and c) Best Practices. This standard has been developed to
strengthen and reinforce the VMWare’s overall security policy standard. These, along with several other associated
policies, procedures, standards, and guidelines are available on VMware’s internal website. The following diagram
describes the policy development workflow.
Policy Document Development Process
Planning Writing Review Publishing Implement Update
Concept Detailed Content/Lab Internal Phased Continual

Development Step by step Review/Testing Website Rollout Improvement
CIS (Center for Internet Security) publishes a wide range of security benchmarks for various operating systems. This
document has been adapted from CIS Oracle Database 12c Benchmark Version 2.1.0 dated 09.18.2018.
CONFIDENTIAL Page 1 of 48
Oracle Database 12c Technical Standard (EBS)
2. PURPOSE
At VMware, ensuring security, integrity, and privacy of Protected Health Information (PHI), Personally Identifiable
Information (PII), and all other sensitive data in the entire enterprise ecosystem are a high priority. This technical policy
document aimed to define one of the security control requirements for safeguarding the information technology services
in this organization. Its goal is to protect the VMware, its data, assets, and users against security threats that could
jeopardize their data privacy, integrity, availability, reputation, and business outcomes.
To help safeguard and secure VMware’s server assets and other information resources, all users expected to adhere to
these compliance & security policies, procedures, and standards. One of the primary methods for providing outstanding
data integrity and protection in a system is by implementing appropriate CIS benchmark standards to harden the system.
These system configurations, along with other VMware specific security requirements, help maximize enterprise security
posture, and significantly minimize security risks.
2.1 TESTING
Ensure a stable production environment. Test and validate all the following technical standard configurations in a testing
environment before implementing changes or updates on the production servers.
2.2 COMPLIANCE TIMELINE

All new systems deployed six months after VMWare technical standard is approved and released must comply. All other
systems are required to comply within one year of VMWare technical standard approved and release date.
3. SCOPE
The scope of the document is limited to all the systems running Oracle Darabase 12c (EBS) connected to the VMWare
network, including a cloud environment. Primarily, only production servers are in scope, test, and development
environments are encouraged to comply but not required.
4. VMWARE GENERAL SECURITY REQUIREMENTS
Requirement Description Additional

# information
Ensure all production environments adhere to VMWare Policies and

Standards. For more information on IT policies, follow the link:
https://source.vmware.com/policies/Pages/Home.aspx
The following are VMWare’s specific requirements (sourced from
VMWare’s policies). Applicable to all relevant systems, applications in on-
prem, and cloud environments.
4.1.1 Personally Identifiable Information (PII)

Description: If the DB (database) or DB instance or any other system is
processing or storing PII, PHI, or any other Restricted Data classification, a
database activity monitoring is required to monitor suspicious
activity. Changes to these databases reviewed timely to determine
whether the changes were authorized. Any identified or unauthorized
changes are investigated and remediated.
Applicability: All database systems collecting, processing, storing or
distributing Personally Identifiable Information (PII)
4.1.2 Data Storage Encryption
Description: All privacy related/protected information must be stored

encrypted.
Applicability: All systems handling PII (Personally Identifiable Information)
4.1.3 Mobile Data Encryption – Data in transit & Data at rest
Description: Mobile Devices: Must be encrypted while stored or in

transmission to/from the device. Mobile devices storing private
information must not be left unattended at any time unless the
information has encrypted.
Applicability: All mobile devices, including laptops, notepad, and

smartphones.
4.1.4 Logging & Monitoring
Description: Logging & Monitoring policy applies to all information

systems and applications owned, managed, and or operated by VMware in
both VMware and Third-party data centers and cloud environments. This
Requirement Description Additional

# information
includes, but not limited to, endpoints, network devices, security devices,
and all applications.
Applicability: All production information systems.
4.1.5 Data backup and replication
Description: Adequate backup/replication facilities established to ensure

that all essential information and software recovered quickly following a
disaster or media failure.
Applicability: all relevant production systems
4.1.6 AntiVirus Solution
Description: The Anti-Virus solution implemented in all systems to

prevent, detect, and protect against malware attacks.
Applicability: All systems including workstations (BYOD)
4.1.7 Security/Vulnerability Scanning
Description: VMWare shall implement processes to scan for vulnerabilities

across information systems and applications regularly and report new
vulnerabilities, potentially affecting VMWare information systems and
applications.
Applicability: All information systems.
4.1.8 Regulatory/ Security Controls - Compliance
Description: All information systems must be reviewed regularly for

compliance with VMWare information security policies and standards.
Applicability: All on-prem and cloud-based systems/applications
5. ORACLE DATABASE 12C TECHNICAL STANDARD
5.1 ORACLE DATABASE INSTALLATION AND PATCHING REQUIREMENTS
Ensure all production environments have a uniform password policy and follow the VMware corporate password policy for
password related configurations. For more information on password policies, follow the link:
Following CIS Benchmark password configurations are listed here for information purposes only.
Requirement CIS Description Additional information

# #
5.1.1 1.1 (L1) Ensure the Appropriate Version/Patches for Oracle
Software Is
Installed (Not Scored)
Adaptability: Level 1 - RDBMS using Traditional &
Unified Auditing
Description: The Oracle installation version and
patches should be the most recent that are compatible
with the organization's operational needs.
Remediation: Perform the following step for
remediation:
Download and apply the latest quarterly Critical Patch
Update patches.
5.1.2 1.2 (L1) Ensure All Default Passwords Are Changed (Scored)
Adaptability: Level 1 - RDBMS using Traditional &
Unified Auditing
Description: Default passwords should not be used by
Oracle database users.
Remediation: To remediate this recommendation, you
may perform either of the following actions:
• Manually issue the following SQL statement for each
USERNAME returned in the
Audit Procedure:
PASSWORD <username>
Execute the following SQL script to assign a randomly
generated password to each
account using a default password:
begin
for r_user in
(select username from dba_users_with_defpwd where
username not
like '%XS$NULL%')
loop
Requirement CIS Description Additional information

# #
DBMS_OUTPUT.PUT_LINE('Password for user
'||r_user.username||'
will be changed.');
execute immediate 'alter user
"'||r_user.username||'" identified
by "'||DBMS_RANDOM.string('a',16)||'"account lock
password expire';
end loop;
end;
5.2 ORACLE PARAMETER SETTINGS
5.2.1 2.1.1 (L1) Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora' (Scored)

Adaptability: Level 1 – Linux Host OS using Unified & Traditional
auditing. Windows Server Host OS using Unified & Traditional
Auditing.
Description: The SECURE_CONTROL_<listener_name> setting
determines the type of control connection
the Oracle server requires for remote configuration of the
listener.
Remediation: To remediate this recommendation:
Set the SECURE_CONTROL_<listener_name> for each defined
listener in the listener.ora
file.
5.2.2 2.1.2 (L1) Ensure 'extproc' Is Not Present in 'listener.ora' (Scored)

Auditing.
Description: extproc should be removed from the listener.ora to
mitigate the risk that OS libraries
can be invoked by the Oracle instance.
Remove extproc from the listener.ora file.
5.2.3 2.1.3 (L1) Ensure 'ADMIN_RESTRICTIONS_' Is Set to 'ON' (Scored)

Auditing
Description: The admin_restrictions_<listener_name> setting in

the listener.ora file can require
that any attempted real-time alteration of the parameters in the
listener via the set
command file be refused unless the listener.ora file is manually
altered, then restarted.
by a privileged user.
Use a text editor such as vi to set the
admin_restrictions_<listener_name> to the value
ON.
5.2.4 2.1.4 (L1) Ensure 'SECURE_REGISTER_' Is Set to 'TCPS' or 'IPC' (Scored)

Auditing
Description: The SECURE_REGISTER_<listener_name> setting
specifies the protocols used to connect to
the TNS listener. Each setting should have a value of either TCPS
or IPC based on the needs
for its protocol.
Use a text editor such as vi to set the
SECURE_REGISTER_<listener_name>=TCPS or
SECURE_REGISTER_<listener_name>=IPC for each listener found
in
$ORACLE_HOME/network/admin/listener.ora.
5.2.5 2.2.1 L1) Ensure 'AUDIT_SYS_OPERATIONS' Is Set to 'TRUE' (Scored)

Adaptability: Level 1 – RDMS using Traditional Auditing.
Description: The AUDIT_SYS_OPERATIONS setting provides for
the auditing of all user activities conducted
under the SYSOPER and SYSDBA accounts. The setting should be
set to TRUE to enable this auditing.
Remediation: To remediate this setting, execute the following
SQL statement.
ALTER SYSTEM SET AUDIT_SYS_OPERATIONS = TRUE
SCOPE=SPFILE;
5.2.6 2.2.2 (L1) Ensure 'AUDIT_TRAIL' Is Set to 'DB', 'XML', 'OS', 'DB,EXTENDED',
or 'XML,EXTENDED' (Scored)
Adaptability: Level 1 – RDMS using Traditional Auditing.
Description: The audit_trail setting determines whether or not
Oracle's basic audit features are
enabled. It can be set to "Operating System"(OS); DB;
DB,EXTENDED; XML; or XML,EXTENDED.
The value should be set according to the needs of the
organization.
Remediation: To remediate this setting, execute one of the

following SQL statements.
ALTER SYSTEM SET AUDIT_TRAIL = DB, EXTENDED SCOPE =
SPFILE;
ALTER SYSTEM SET AUDIT_TRAIL = OS SCOPE = SPFILE;
ALTER SYSTEM SET AUDIT_TRAIL = XML, EXTENDED SCOPE =
SPFILE;
ALTER SYSTEM SET AUDIT_TRAIL = DB SCOPE = SPFILE;
ALTER SYSTEM SET AUDIT_TRAIL = XML SCOPE = SPFILE;
5.2.7 2.2.3 (L1) Ensure 'GLOBAL_NAMES' Is Set to 'TRUE' (Scored)
Adaptability: Level 1 – RDBMS using Unified & Traditional
Auditing.
Description: The global_names setting requires that the name of
a database link matches that of the
remote database it will connect to. This setting should have a
value of TRUE.
SQL statement.
ALTER SYSTEM SET GLOBAL_NAMES = TRUE SCOPE = SPFILE;
5.2.8 2.2.4 (L1) Ensure 'O7_DICTIONARY_ACCESSIBILITY' Is Set to 'FALSE'
(Scored)
Adaptability: Level 1 – RDMS using Unified & Traditional
Auditing.
Description: The O7_dictionary_accessibility setting is a database
initialization parameter that
allows/disallows access to objects with the * ANY * privileges
(SELECT ANY TABLE, DELETE
ANY TABLE, EXECUTE ANY PROCEDURE, etc.). This functionality
was created for the ease of migration from Oracle 7 databases to
later versions. The setting should have a value of FALSE.
SQL statement.
ALTER SYSTEM SET O7_DICTIONARY_ACCESSIBILITY=FALSE SCOPE
= SPFILE;
5.2.9 2.2.5 (L1) Ensure 'OS_ROLES' Is Set to 'FALSE' (Scored)

Auditing.
Description: The os_roles setting permits externally created
groups to be applied to database management.
SQL statement.
ALTER SYSTEM SET OS_ROLES = FALSE SCOPE = SPFILE;
5.2.10 2.2.6 (L1) Ensure 'REMOTE_LISTENER' Is Empty (Scored)
Auditing.
Description: The remote listener setting determines whether or

not a valid listener can be established
on a system separate from the database instance. This setting
should be empty unless the
organization specifically needs a valid listener on a separate
system.
SQL statement.
ALTER SYSTEM SET REMOTE_LISTENER = '' SCOPE = SPFILE;
5.2.12 2.2.8 (L1) Ensure 'REMOTE_OS_AUTHENT' Is Set to 'FALSE' (Scored)
Adaptability: Level 1 - RDMS using Unified & Traditional Auditing.
Description: The remote_os_authent setting determines whether
or not OS 'roles' with the attendant
privileges are allowed for remote client connections. This setting
should have a value of FALSE.
SQL statement.
ALTER SYSTEM SET REMOTE_OS_AUTHENT = FALSE SCOPE =
SPFILE;
5.2.13 2.2.9 (L1) Ensure 'REMOTE_OS_ROLES' Is Set to 'FALSE' (Scored)

Description: The remote_os_roles setting permits remote
users' OS roles to be applied to database
management. This setting should have a value of FALSE.
SQL statement.
ALTER SYSTEM SET REMOTE_OS_ROLES = FALSE SCOPE = SPFILE;
5.2.14 2.2.10 Ensure 'UTL_FILE_DIR' Is Empty (Scored)
(L1) Adaptability: Level 1 - RDMS using Unified & Traditional Auditing.
Description: The utl_file_dir setting allows packages like utl_file
to access (read/write/modify/delete) files specified in utl_file_dir.
This setting should have an empty value.
SQL statement.
ALTER SYSTEM SET UTL_FILE_DIR = '' SCOPE = SPFILE;
5.2.15 2.2.11 Ensure 'SEC_CASE_SENSITIVE_LOGON' Is Set to 'TRUE' (Scored)

Description: The SEC_CASE_SENSITIVE_LOGON information
determines whether or not case-sensitivity is
required for passwords during login.
SQL statement.
ALTER SYSTEM SET SEC_CASE_SENSITIVE_LOGON = TRUE SCOPE =
SPFILE;
5.2.16 2.2.12 Ensure 'SEC_MAX_FAILED_LOGIN_ATTEMPTS' Is '3' or Less

(L1) (Scored)
Description: The SEC_MAX_FAILED_LOGIN_ATTEMPTS parameter
determines how many failed login
attempts are allowed before Oracle closes the login connection.
SQL statement.
ALTER SYSTEM SET SEC_MAX_FAILED_LOGIN_ATTEMPTS = 3
SCOPE = SPFILE;
5.2.17 2.2.13 Ensure 'SEC_PROTOCOL_ERROR_FURTHER_ACTION' Is Set to

(L1) 'DROP,3' (Scored)
Description: The SEC_PROTOCOL_ERROR_FURTHER_ACTION
setting determines the Oracle's server's
response to bad/malformed packets received from the client.
This setting should have a
value of DROP,3, which will cause a connection to be dropped
after three bad/malformed
packets.
Remediation: To remediate this setting, execute one of the
following SQL statement.
ALTER SYSTEM SET SEC_PROTOCOL_ERROR_FURTHER_ACTION =
'DROP,3' SCOPE =
SPFILE;
5.2.18 2.2.14 Ensure 'SEC_PROTOCOL_ERROR_TRACE_ACTION' Is Set to 'LOG'

(L1) (Scored)
Description: The SEC_PROTOCOL_ERROR_TRACE_ACTION setting
determines the Oracle's server's logging
response level to bad/malformed packets received from the
client by generating ALERT, LOG, or TRACE levels of detail in the
log files. This setting should have a value of LOG unless
the organization has a compelling reason to use a different value
because LOG should cause the necessary information to be
logged. Setting the value as TRACE can generate an
enormous amount of log output and should be reserved for
debugging only.
SQL statement.
ALTER SYSTEM SET SEC_PROTOCOL_ERROR_TRACE_ACTION=LOG
SCOPE = SPFILE;
5.2.19 2.2.15 Ensure 'SEC_RETURN_SERVER_RELEASE_BANNER' Is Set to

(L1) 'FALSE' (Scored)

Description: The information about patch/update release
number provides information about the exact patch/update
release that is currently running on the database. This is sensitive
information that should not be revealed to anyone who requests
it.
SQL statement.
ALTER SYSTEM SET SEC_RETURN_SERVER_RELEASE_BANNER =
FALSE SCOPE = SPFILE;
5.2.20 2.2.16 Ensure 'SQL92_SECURITY' Is Set to 'TRUE' (Scored)

Description: The SQL92_SECURITY parameter setting TRUE
requires that a user must also be granted the SELECT object
privilege before being able to perform UPDATE or DELETE
operations on tables that have WHERE or SET clauses. The setting
should have a value of TRUE.
SQL statement.
ALTER SYSTEM SET SQL92_SECURITY = TRUE SCOPE = SPFILE;
5.2.21 2.2.17 Ensure '_trace_files_public' Is Set to 'FALSE' (Scored)

Description: The _trace_files_public setting determines whether
or not the system's trace file is
world readable. This setting should have a value of FALSE to
restrict trace file access.
SQL statement.
ALTER SYSTEM SET "_trace_files_public" = FALSE SCOPE = SPFILE;
5.2.22 2.2.18 Ensure 'RESOURCE_LIMIT' Is Set to 'TRUE' (Scored)

Description: RESOURCE_LIMIT determines whether resource
limits are enforced in database profiles.
This setting should have a value of TRUE.
SQL statement.
ALTER SYSTEM SET RESOURCE_LIMIT = TRUE SCOPE = SPFILE;
5.3 ORACLE CONNECTION AND LOGIN RESTRICTIONS
Requirement CIS Description Additional

# # information
5.3.1 3.1 (L1) Ensure 'FAILED_LOGIN_ATTEMPTS' Is Less than or Equal to '5'
(Scored)
Description: The FAILED_LOGIN_ATTEMPTS setting determines how
many failed login attempts are
permitted before the system locks the user's account. While
different profiles can have
different and more restrictive settings, such as USERS and APPS, the
minimum(s)
recommended here should be set on the DEFAULT profile.
Remediation: Remediate this setting by executing the following
SQL statement for each PROFILE returned
by the audit procedure.
ALTER PROFILE <profile_name> LIMIT FAILED_LOGIN_ATTEMPTS 5;
5.3.2 3.2 (L1) Ensure 'PASSWORD_LOCK_TIME' Is Greater than or Equal to '1'

(Scored)
Description: The PASSWORD_LOCK_TIME setting determines how
many days must pass for the user's account to be unlocked after
the set number of failed login attempts has occurred. The
suggested value for this is one day or greater.
SQL statement for each PROFILE returned by the audit procedure.
ALTER PROFILE <profile_name> LIMIT PASSWORD_LOCK_TIME 1;
5.3.3 3.3 (L1) Ensure 'PASSWORD_LIFE_TIME' Is Less than or Equal to '90' Refer Corp Policy
(Scored)
Description: The PASSWORD_LIFE_TIME setting determines how
long a password may be used before the user is required to be
change it. The suggested value for this is 90 days or less.
ALTER PROFILE <profile_name> LIMIT PASSWORD_LIFE_TIME 90;
5.3.4 3.4 (L1) Ensure 'PASSWORD_REUSE_MAX' Is Greater than or Equal to '20'
(Scored)
Description: The PASSWORD_REUSE_MAX setting determines how
many different passwords must be used before the user is allowed
to reuse a prior password. The suggested value for this is 20
passwords or greater.
ALTER PROFILE <profile_name> LIMIT PASSWORD_REUSE_MAX 20;
5.3.5 3.5 (L1) Ensure 'PASSWORD_REUSE_TIME' Is Greater than or Equal to '365'
(Scored)
Description: The PASSWORD_REUSE_TIME setting determines the
amount of time in days that must pass before the same password
may be reused. The suggested value for this is 365 days or greater.
ALTER PROFILE <profile_name> LIMIT PASSWORD_REUSE_TIME
365;
5.3.6 3.6 (L1) Ensure 'PASSWORD_GRACE_TIME' Is Less than or Equal to '5'
(Scored)
Description: The PASSWORD_GRACE_TIME setting determines how
many days can pass after the user's password expires before the
user's login capability is automatically locked out. The
suggested value for this is five days or less.
ALTER PROFILE <profile_name> LIMIT PASSWORD_GRACE_TIME 5;
5.3.7 3.7 (L1) Ensure 'DBA_USERS.PASSWORD' Is Not Set to 'EXTERNAL' for Any
User (Scored)
Description: The password='EXTERNAL' setting determines whether
or not a user can be authenticated by a remote OS to allow access
to the database with full authorization. This setting should not be
used.
Remediation: To remediate this setting execute the following SQL
statement.
ALTER USER <username> INDENTIFIED BY <password>;
5.3.8 3.8 (L1) Ensure 'PASSWORD_VERIFY_FUNCTION' Is Set for All Profiles
(Scored)
Description: The PASSWORD_VERIFY_FUNCTION determines
password settings requirements when a user password is changed
at the SQL command prompt. It should be set for all profiles. Note
that this setting does not apply for users managed by the Oracle
password file.
Remediation: Create a custom password verification function which
fulfills the password requirements of
the organization.
5.3.10 3.10 (L1) Ensure No Users Are Assigned the 'DEFAULT' Profile (Scored)
Description: Upon creation database users are assigned to the
DEFAULT profile unless otherwise
specified. No users should be assigned to that profile.
Remediation: To remediate this recommendation, execute the
following SQL statement for each user
returned by the audit query using a functional-appropriate profile.
ALTER USER <username> PROFILE <appropriate_profile>;
5.4 ORACLE USER ACCESS AND AUTHORIZATION RESTRICTIONS
Ensure all production environments have a uniform password policy and follow the VMware corporate password policy for
password related configurations. For more information on password policies, follow the link:
Following CIS Benchmark password configurations are listed here for information purposes only.

# # information
5.4.1 4.1.1 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_ADVISOR'

(Scored)
Applicability: Level 1 – RDMS using Traditional & unified Auditing.
Description: The Oracle database DBMS_ADVISOR package can be
used to write files located on the server
where the Oracle instance is installed. The user PUBLIC should not
be able to execute
DBMS_ADVISOR.
Remediation: To remediate this setting, execute the following SQL
statement.
REVOKE EXECUTE ON DBMS_ADVISOR FROM PUBLIC;
5.4.2 4.1.2 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_CRYPTO'

(Scored)
Description: The DBMS_CRYPTO settings provide a toolset that
determines the strength of the encryption algorithm used to
encrypt application data and is part of the SYS schema. The DES
(56-bit key), 3DES (168-bit key), 3DES-2KEY (112-bit key), AES
(128/192/256-bit keys), and RC4 are available. The user PUBLIC
should not be able to execute DBMS_CRYPTO.
statement.
REVOKE EXECUTE ON DBMS_CRYPTO FROM PUBLIC;
5.4.3 4.1.3 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_JAVA'

(Scored)
Description: The Oracle database DBMS_JAVA package can run
Java classes (e.g. OS commands) or grant
Java privileges. The user PUBLIC should not be able to execute
DBMS_JAVA.
statement.
REVOKE EXECUTE ON DBMS_JAVA FROM PUBLIC;
5.4.4 4.1.4 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_JAVA_TEST'

(Scored)

# # information
Description: The Oracle database DBMS_JAVA_TEST package can

run Java classes (e.g. OS commands) or grant Java privileges. The
user PUBLIC should not be able to execute DBMS_JAVA_TEST.
statement.
REVOKE EXECUTE ON DBMS_JAVA_TEST FROM PUBLIC;
5.4.5 4.1.5 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_JOB'

(Scored)
Description: The Oracle database DBMS_JOB package schedules
and manages the jobs sent to the job queue and has been
superseded by the DBMS_SCHEDULER package, even though
DBMS_JOB has been retained for backwards compatibility. The user
PUBLIC should not be able to execute DBMS_JOB.
statement.
REVOKE EXECUTE ON DBMS_JOB FROM PUBLIC;
5.4.6 4.1.6 (L2) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_LDAP'

(Scored)
Description: The Oracle database DBMS_LDAP package contains
functions and procedures that enable programmers to access data
from LDAP servers. The user PUBLIC should not be able to execute
DBMS_LDAP.
statement.
REVOKE EXECUTE ON DBMS_LDAP FROM PUBLIC;
5.4.7 4.1.7 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_LOB'

(Scored)
Description: The Oracle database DBMS_LOB package provides
subprograms that can manipulate and read/write on BLOBs, CLOBs,
NCLOBs, BFILEs, and temporary LOBs. The user PUBLIC should
not be able to execute DBMS_LOB.
statement.
REVOKE EXECUTE ON DBMS_LOB FROM PUBLIC;
5.4.8 4.1.8 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on

# # information
'DBMS_OBFUSCATION_TOOLKIT' (Scored)
Description: The DBMS_OBFUSCATION_TOOLKIT provides one of
the tools that determine the strength of the encryption algorithm
used to encrypt application data and is part of the SYS schema.
The DES (56-bit key) and 3DES (168-bit key) are the only two types
available. The user PUBLIC should not be able to execute
DBMS_OBFUSCATION_TOOLKIT.
statement.
REVOKE EXECUTE ON DBMS_OBFUSCATION_TOOLKIT FROM
PUBLIC;
5.4.9 4.1.9 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_RANDOM'

(Scored)
Description: The Oracle database DBMS_RANDOM package is used
for generating random numbers but
should not be used for cryptographic purposes. The user PUBLIC
should not be able to
execute DBMS_RANDOM.
statement.
REVOKE EXECUTE ON DBMS_RANDOM FROM PUBLIC;

'DBMS_SCHEDULER' (Scored)
Description: The Oracle database DBMS_SCHEDULER package
schedules and manages the database and operating system jobs.
The user PUBLIC should not be able to execute DBMS_SCHEDULER.
statement.
REVOKE EXECUTE ON DBMS_SCHEDULER FROM PUBLIC;
5.4.11 4.1.11 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_SQL'

(Scored)
Description: The Oracle database DBMS_SQL package is used for
running dynamic SQL statements. The
user PUBLIC should not be able to execute DBMS_SQL.

# # information

statement.
REVOKE EXECUTE ON DBMS_SQL FROM PUBLIC;
5.4.12 4.1.12 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_XMLGEN'

(Scored)
Description: The DBMS_XMLGEN package takes an arbitrary SQL
query as input, converts it to XML format, and returns the result as
a CLOB. The user PUBLIC should not be able to execute
DBMS_XMLGEN.
statement.
REVOKE EXECUTE ON DBMS_XMLGEN FROM PUBLIC;

'DBMS_XMLQUERY' (Scored)
Description: The Oracle package DBMS_XMLQUERY takes an
arbitrary SQL query, converts it to XML format, and returns the
result. This package is similar to DBMS_XMLGEN. The user PUBLIC
should not be able to execute DBMS_XMLQUERY.
statement.
REVOKE EXECUTE ON DBMS_XMLQUERY FROM PUBLIC;
5.4.14 4.1.14 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_FILE' (Scored)
Description: The Oracle database UTL_FILE package can be used to
read/write files located on the
server where the Oracle instance is installed. The user PUBLIC
should not be able to execute
UTL_FILE.
statement.
REVOKE EXECUTE ON UTL_FILE FROM PUBLIC;
5.4.15 4.1.15 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_INADDR'

(Scored)

# # information
Description: The Oracle database UTL_INADDR package can be

used to create specially crafted error messages or send information
via DNS to the outside. The user PUBLIC should not be able to
execute UTL_INADDR.
statement.
REVOKE EXECUTE ON UTL_INADDR FROM PUBLIC;
5.4.16 4.1.16 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_TCP' (Scored)
Description: The Oracle database UTL_TCP package can be used to
read/write file to TCP sockets on the server where the Oracle
instance is installed. The user PUBLIC should not be able to execute
UTL_TCP.
statement.
REVOKE EXECUTE ON UTL_TCP FROM PUBLIC;
5.4.17 4.1.17 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_MAIL'

(Scored)
Description: The Oracle database UTL_MAIL package can be used
to send email from the server where
the Oracle instance is installed. The user PUBLIC should not be able
to execute UTL_MAIL.
statement.
REVOKE EXECUTE ON UTL_MAIL FROM PUBLIC;
5.4.18 4.1.18 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_SMTP'

(Scored)
Description: The Oracle database UTL_SMTP package can be used
to send email from the server where
the Oracle instance is installed. The user PUBLIC should not be able
to execute UTL_SMTP.
statement.
REVOKE EXECUTE ON UTL_SMTP FROM PUBLIC;

# # information
5.4.19 4.1.19 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_DBWS'

(Scored)
Description: The Oracle database UTL_DBWS package can be used
to read/write file to web-based
applications on the server where the Oracle instance is installed.
This package is not
automatically installed for security reasons. The user PUBLIC should
not be able to execute
UTL_DBWS.
statement.
REVOKE EXECUTE ON UTL_DBWS FROM 'PUBLIC';
5.4.20 4.1.20 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_ORAMTS'

(Scored)
Description: The Oracle database UTL_ORAMTS package can be
used to perform HTTP requests. This could be used to send
information to the outside. The user PUBLIC should not be able to
execute UTL_ORAMTS.
statement.
REVOKE EXECUTE ON UTL_ORAMTS FROM PUBLIC;
5.4.21 4.1.21 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'UTL_HTTP'

(Scored)
Description: The Oracle database UTL_HTTP package can be used
to perform HTTP requests. This could be used to send information
to the outside. The user PUBLIC should not be able to execute
UTL_HTTP.
statement.
REVOKE EXECUTE ON UTL_HTTP FROM PUBLIC;
5.4.22 4.1.22 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'HTTPURITYPE'

(Scored)

# # information
Description: The Oracle database HTTPURITYPE object type can be

used to perform HTTP requests. The user PUBLIC should not be able
to execute HTTPURITYPE.
statement.
REVOKE EXECUTE ON HTTPURITYPE FROM PUBLIC;
5.4.23 4.1.23 (L1) Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'DBMS_XMLSTORE'

(Scored)
Description: The DBMS_XLMSTORE package provides XML
functionality. It accepts a table name and XML as input to perform
DML operations against the table. The user PUBLIC should not be
able to execute DBMS_XLMSTORE.
statement:
REVOKE EXECUTE ON DBMS_XMLSTORE FROM PUBLIC;
5.4.24 4.1.24 (L1) Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'DBMS_XMLSAVE'

(Scored)
Description: The DBMS_XLMSTORE package provides XML
functionality. It accepts a table name and XML as input and then
inserts into or updates that table. The user PUBLIC should not be
able to execute DBMS_XLMSAVE.
statement
REVOKE EXECUTE ON DBMS_XMLSAVE FROM PUBLIC;
5.4.25 4.1.25 (L1) Ensure 'EXECUTE' is revoked from 'PUBLIC' on 'DBMS_REDACT'

(Scored)
Description: The DBMS_REDACT package provides an interface to
Oracle Data Redaction, which enables you to mask (redact) data
that is returned from queries issued by low-privileged users or
an application. The user PUBLIC should not be able to execute
DBMS_REDACT.
statement
REVOKE EXECUTE ON DBMS_REDACT FROM PUBLIC;
5.4.26 4.2.1 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_SYS_SQL'

# # information
(Scored)
Description: The Oracle database DBMS_SYS_SQL package is
shipped as undocumented. The user PUBLIC should not be able to
execute DBMS_SYS_SQL.
statement.
REVOKE EXECUTE ON DBMS_SYS_SQL FROM PUBLIC;
5.4.27 4.2.2. (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on

'DBMS_BACKUP_RESTORE' (Scored)
Description: The Oracle database DBMS_BACKUP_RESTORE
package is used for applying PL/SQL commands to the native RMAN
sequences. The user PUBLIC should not be able to execute
DBMS_BACKUP_RESTORE.
statement.
REVOKE EXECUTE ON DBMS_BACKUP_RESTORE FROM PUBLIC;

'DBMS_AQADM_SYSCALLS' (Scored)
Description: The Oracle database DBMS_AQADM_SYSCALLS
package is shipped as undocumented. The user PUBLIC should not
be able to execute DBMS_AQADM_SYSCALLS.
statement.
REVOKE EXECUTE ON DBMS_AQADM_SYSCALLS FROM PUBLIC;

'DBMS_REPCAT_SQL_UTL' (Scored)
Description: The Oracle database DBMS_REPCAT_SQL_UTL package
is shipped as undocumented and allows to run SQL commands as
user SYS. The user PUBLIC should not be able to execute
DBMS_REPCAT_SQL_UTL.
statement.
revoke execute on DBMS_REPCAT_SQL_UTL FROM PUBLIC;

# # information
5.4.30 4.2.5 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'INITJVMAUX'

(Scored)
Description: The Oracle database INITJVMAUX package is shipped
as undocumented and allows to run SQL commands as user SYS.
The user PUBLIC should not be able to execute INITJVMAUX.
statement.
REVOKE EXECUTE ON INITJVMAUX FROM PUBLIC;

'DBMS_STREAMS_ADM_UTL' (Scored)
Description: The Oracle database DBMS_STREAMS_ADM_UTL
package is shipped as undocumented and allows to run SQL
commands as user SYS. The user PUBLIC should not be able to
execute DBMS_STREAMS_ADM_UTL.
statement.
REVOKE EXECUTE ON DBMS_STREAMS_ADM_UTL FROM PUBLIC;

'DBMS_AQADM_SYS' (Scored)
Description: The Oracle database DBMS_AQADM_SYS package is
shipped as undocumented and allows to run SQL commands as
DBMS_AQADM_SYS.
statement.
REVOKE EXECUTE ON DBMS_AQADM_SYS FROM PUBLIC;

'DBMS_STREAMS_RPC' (Scored)
Description: The Oracle database DBMS_STREAMS_RPC package is
DBMS_STREAMS_RPC.
statement.

# # information
REVOKE EXECUTE ON DBMS_STREAMS_RPC FROM PUBLIC;
5.4.34 4.2.9 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_PRVTAQIM'

(Scored)
Description: The Oracle database DBMS_PRVTAQIM package is
DBMS_PRVTAQIM.
statement.
REVOKE EXECUTE ON DBMS_PRVTAQIM FROM PUBLIC;
5.4.35 4.2.10 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'LTADM' (Scored)
Description: The Oracle database LTADM package is shipped as
undocumented. It allows privilege escalation if granted to
unprivileged users. The user PUBLIC should not be able to execute
LTADM.
statement.
REVOKE EXECUTE ON LTADM FROM PUBLIC;

'WWV_DBMS_SQL' (Scored)
Description: The Oracle database WWV_DBMS_SQL package is
shipped as undocumented. It allows Oracle
Application Express to run dynamic SQL statements.
statement.
REVOKE EXECUTE ON WWV_DBMS_SQL FROM PUBLIC;

'WWV_EXECUTE_IMMEDIATE' (Scored)
Description: The Oracle database WWV_EXECUTE_IMMEDIATE
package is shipped as undocumented. It allows Oracle Application
Express to run dynamic SQL statements. The user PUBLIC should
not be able to execute WWV_EXECUTE_IMMEDIATE.

# # information

statement.
REVOKE EXECUTE ON WWV_EXECUTE_IMMEDIATE FROM PUBLIC;
5.4.38 4.2.13 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_IJOB'

(Scored)
Description: The Oracle database DBMS_IJOB package is shipped as
undocumented. It allows a user to run database jobs in the context
of another user. The user PUBLIC should not be able to
execute DBMS_IJOB.
statement.
REVOKE EXECUTE ON DBMS_IJOB FROM PUBLIC;

'DBMS_FILE_TRANSFER' (Scored)
Description: The Oracle database DBMS_FILE_TRANSFER package
allows a user to transfer files from one database server to another.
The user PUBLIC should not be able to execute
DBMS_FILE_TRANSFER.
statement.
REVOKE EXECUTE ON DBMS_FILE_TRANSFER FROM PUBLIC;
5.4.41 4.3.2 (L1) Ensure 'SELECT ANY TABLE' Is Revoked from Unauthorized
'GRANTEE' (Scored)
Description: The Oracle database SELECT ANY TABLE privilege
allows the designated user to open any
table, except SYS, to view it. Unauthorized grantees should not
have that privilege.
statement.
REVOKE SELECT ANY TABLE FROM <grantee>;
5.4.42 4.3.3 (L1) Ensure 'AUDIT SYSTEM' Is Revoked from Unauthorized 'GRANTEE'
(Scored)

# # information
Description: The Oracle database AUDIT SYSTEM privilege allows

changes to auditing activities on the system. Unauthorized grantees
should not have that privilege.
statement.
REVOKE AUDIT SYSTEM FROM <grantee>;
5.4.43 4.3.4 (l1) Ensure EXEMPT ACCESS POLICY' Is Revoked from Unauthorized
'GRANTEE'
(Scored)
Description: The Oracle database EXEMPT ACCESS POLICY keyword
provides the user the capability to access all the table rows
regardless of row-level security lockouts. Unauthorized grantees
should not have that keyword assigned to them.
statement.
REVOKE EXEMPT ACCESS POLICY FROM <grantee>;
5.4.44 4.3.5 (L1) Ensure 'BECOME USER' Is Revoked from Unauthorized 'GRANTEE'
(Scored)
Description: The Oracle database BECOME USER privilege allows
the designated user to inherit the rights of another user.
Unauthorized grantees should not have that privilege.
statement.
REVOKE BECOME USER FROM <grantee>;
5.4.46 4.3.7 (L1) Ensure 'ALTER SYSTEM' Is Revoked from Unauthorized 'GRANTEE'
(Scored)
Description: The Oracle database ALTER SYSTEM privilege allows
the designated user to dynamically alter the instance's running
operations. Unauthorized grantees should not have that privilege.
statement.
REVOKE ALTER SYSTEM FROM <grantee>;
5.4.47 4.3.8 (L1) Ensure 'CREATE ANY LIBRARY' Is Revoked from Unauthorized
'GRANTEE' (Scored)

# # information
Description: The Oracle database CREATE ANY LIBRARY privilege

allows the designated user to create objects that are associated to
the shared libraries. Unauthorized grantees should not have
that privilege.
statement.
REVOKE CREATE ANY LIBRARY FROM <grantee>;
5.4.48 4.3.9 (L1) Ensure 'CREATE LIBRARY' Is Revoked from Unauthorized

'GRANTEE' (Scored)
Description: The Oracle database CREATE LIBRARY privilege allows
the designated user to create objects that are associated to the
shared libraries. Unauthorized grantees should not have that
privilege.
statement.
REVOKE CREATE LIBRARY FROM <grantee>;
5.4.49 4.3.10 (L1) Ensure 'GRANT ANY OBJECT PRIVILEGE' Is Revoked from
Unauthorized 'GRANTEE' (Scored)
Description: The Oracle database GRANT ANY OBJECT PRIVILEGE
keyword provides the grantee the capability to grant access to any
single or multiple combinations of objects to any grantee
in the catalog of the database. Unauthorized grantees should not
have that keyword assigned to them.
statement.
REVOKE GRANT ANY OBJECT PRIVILEGE FROM <grantee>;
5.4.50 4.3.11 (L1) Ensure 'GRANT ANY ROLE' Is Revoked from Unauthorized
'GRANTEE' (Scored)
Description: The Oracle database GRANT ANY ROLE keyword
provides the grantee the capability to grant any single role to any
grantee in the catalog of the database. Unauthorized grantees
should not have that keyword assigned to them.
statement.
REVOKE GRANT ANY ROLE FROM <grantee>;

# # information
5.4.51 4.3.12 (L1) Ensure 'GRANT ANY PRIVILEGE' Is Revoked from Unauthorized
'GRANTEE' (Scored)
Description: The Oracle database GRANT ANY PRIVILEGE keyword
provides the grantee the capability to grant any single privilege to
any item in the catalog of the database. Unauthorized grantees
should not have that privilege.
statement.
REVOKE GRANT ANY PRIVILEGE FROM <grantee>;
5.4.52 4.4.1 (L1) Ensure 'DELETE_CATALOG_ROLE' Is Revoked from Unauthorized

'GRANTEE' (Scored)
Description: The Oracle database DELETE_CATALOG_ROLE provides
DELETE privileges for the records in the system's audit table
(AUD$). Unauthorized grantees should not have that role.
statement.
REVOKE DELETE_CATALOG_ROLE FROM <grantee>;
5.4.53 4.4.2 (L1) Ensure 'SELECT_CATALOG_ROLE' Is Revoked from Unauthorized

'GRANTEE' (Scored)
Description: The Oracle database SELECT_CATALOG_ROLE provides
SELECT privileges on all data dictionary views held in the SYS
schema. Unauthorized grantees should not have that role.
statement.
REVOKE SELECT_CATALOG_ROLE FROM <grantee>;
5.4.54 4.4.3 (L1) Ensure 'EXECUTE_CATALOG_ROLE' Is Revoked from Unauthorized

'GRANTEE' (Scored)
Description: The Oracle database EXECUTE_CATALOG_ROLE
provides EXECUTE privileges for a number of packages and
procedures in the data dictionary in the SYS schema. Unauthorized
grantees should not have that role.
statement.
REVOKE EXECUTE_CATALOG_ROLE FROM <grantee>;

# # information
5.4.55 4.4.4 (L1) Ensure 'DBA' Is Revoked from Unauthorized 'GRANTEE' (Scored)
Description: The Oracle database DBA role is the default database
administrator role provided for the allocation of administrative
privileges. Unauthorized grantees should not have that role.
statement.
REVOKE DBA FROM <grantee>;
5.4.56 4.5.1 (L1) Ensure 'ALL' Is Revoked from Unauthorized 'GRANTEE' on 'AUD$'
(Scored)
Description: The Oracle database SYS.AUD$ table contains all the
audit records for the database of the non-Data Manipulation
Language (DML) events, such as ALTER, DROP, and CREATE, and so
forth. (DML changes need trigger-based audit events to record data
alterations.) Unauthorized grantees should not have full access to
that table.
statement.
REVOKE ALL ON AUD$ FROM <grantee>;
5.4.57 4.5.2 (L1) Ensure 'ALL' Is Revoked from Unauthorized 'GRANTEE' on

'USER_HISTORY$' (Scored)
Description: The Oracle database SYS.USER_HISTORY$ table
contains all the audit records for the user's password change
history. (This table gets updated by password changes if the user
has an assigned profile that has a password reuse limit set, e.g.,
PASSWORD_REUSE_TIME set to other than UNLIMITED.)
Unauthorized grantees should not have full access to that table.
statement.
REVOKE ALL ON USER_HISTORY$ FROM <grantee>;
5.4.58 4.5.3 (L1) Ensure 'ALL' Is Revoked from Unauthorized 'GRANTEE' on 'LINK$'
(Scored)
Description: The Oracle database SYS.LINK$ table contains all the
user's password information and data table link information.

# # information

statement.
REVOKE ALL ON LINK$ FROM <grantee>;

'SYS.USER$' (Scored)
Description: The Oracle database SYS.USER$ table contains the
users' hashed password information. Unauthorized grantees should
not have full access to that table.
statement.
REVOKE ALL ON SYS.USER$ FROM <grantee>;

'SYS.SCHEDULER$_CREDENTIAL' (Scored)
Description: The Oracle database SCHEDULER$_CREDENTIAL table
contains the database scheduler credential information.
statement.
REVOKE ALL ON SYS.SCHEDULER4_CREDENTIAL FROM <username>;
5.4.62 4.5.7 (L1) Ensure 'SYS.USER$MIG' Has Been Dropped (Scored)

Description: The table sys.user$mig is created during migration and
contains the Oracle password hashes before the migration starts.
This table should be dropped.
statement.
DROP TABLE SYS.USER$MIG;
5.4.63 4.6 (L1) Ensure '%ANY%' Is Revoked from Unauthorized 'GRANTEE'

(Scored)
Description: The Oracle database ANY keyword provides the user
the capability to alter any item in the catalog of the database.
Unauthorized grantees should not have that keyword assigned to
them.
statement.

# # information
REVOKE ‘<ANY Privilege>’ FROM <grantee>;
5.4.64 4.7 (L1) Ensure 'DBA_SYS_PRIVS.%' Is Revoked from Unauthorized

'GRANTEE' with 'ADMIN_OPTION' Set to 'YES' (Scored)
Description: The Oracle database WITH_ADMIN privilege allows the
designated user to grant another user the same privileges.
Unauthorized grantees should not have that privilege.
statement.
REVOKE <privilege> FROM <grantee>;
4.8 (L1) Ensure Proxy Users Have Only 'CONNECT' Privilege (Scored)
Applicability: Level 1 - RDMS using Traditional & unified Auditing.
Description: Do not grant privileges other than CONNECT directly
to proxy users.
statement for each [PRIVILEGE]
returned (other than CONNECT) by running the audit procedure.
REVOKE <privilege> FROM <proxy_user>;
5.4.65 4.9 (L1) Ensure 'EXECUTE ANY PROCEDURE' Is Revoked from 'OUTLN'
(Scored)
Description: Remove unneeded EXECUTE ANY PROCEDURE
privileges from OUTLN.
statement.
REVOKE EXECUTE ANY PROCEDURE FROM OUTLN;
5.4.66 4.10 (L1) Ensure 'EXECUTE ANY PROCEDURE' Is Revoked from 'DBSNMP'
(Scored)
Description: Remove unneeded EXECUTE ANY PROCEDURE
privileges from DBSNMP.
statement.
REVOKE EXECUTE ANY PROCEDURE FROM DBSNMP;
5.5 AUDIT/LOGGING POLICIES AND PROCERURES

# # information
5.5.2 5.1.2 (L1) Ensure the 'ROLE' Audit Option Is Enabled (Scored)
Applicability: Level 1 – RDMS using Traditional Auditing.
Description: The ROLE object allows for the creation of a set of
privileges that can be granted to users or other roles. Enabling the
audit option causes auditing of all attempts, successful or not, to
create, drop, alter or set roles.
Remediation: Execute the following SQL statement to remediate this
setting:
AUDIT ROLE;
5.5.3 5.1.3 (L1) Ensure the 'SYSTEM GRANT' Audit Option Is Enabled (Scored)
Description: Enabling the audit option for the SYSTEM GRANT object
causes auditing of any attempt, successful or not, to grant or revoke
any system privilege or role, regardless of privilege held by the user
attempting the operation.
setting.
AUDIT SYSTEM GRANT;
5.5.4 5.1.4 (L1) Ensure the 'PROFILE' Audit Option Is Enabled (Scored)
Description: The PROFILE object allows for the creation of a set of
database resource limits that can be assigned to a user, so that that
user cannot exceed those resource limitations. Enabling the
audit option causes auditing of all attempts, successful or not, to
create, drop or alter any profile.
setting.
AUDIT PROFILE;
5.5.5 5.1.5 (L1) Enabling the audit option for the DATABASE LINK object
causes all activities on database
links to be audited.
Applicability: Level 1 – RDMS using Traditiona Auditing.
Description: Enabling the audit option for the DATABASE LINK object
causes all activities on database
links to be audited.
setting.

# # information
AUDIT DATABASE LINK;
5.5.6 5.1.6 (L1) Ensure the 'PUBLIC DATABASE LINK' Audit Option Is Enabled
(Scored)
Description: The PUBLIC DATABASE LINK object allows for the
creation of a public link for an application-based "user" to access the
database for connections/session creation. Enabling the audit option
causes all user activities involving the creation, alteration, or
dropping of public links to be audited.
setting.
AUDIT PUBLIC DATABASE LINK;
5.5.7 5.1.7 (L1) Ensure the 'PUBLIC SYNONYM' Audit Option Is Enabled (Scored)
Description: The PUBLIC SYNONYM object allows for the creation of
an alternate description of an object. Public synonyms are accessible
by all users that have the appropriate privileges to the underlying
object. Enabling the audit option causes all user activities involving
the creation or dropping of public synonyms to be audited.
setting.
AUDIT PUBLIC SYNONYM;
5.5.8 5.1.8 (L1) Ensure the 'SYNONYM' Audit Option Is Enabled (Scored)
Description: The SYNONYM operation allows for the creation of an
alternative name for a database object such as a Java class schema
object, materialized view, operator, package, procedure, sequence,
stored function, table, view, user-defined object type, or even
another synonym. This synonym puts a dependency on its target and
is rendered invalid if the target object is changed/dropped. Enabling
the audit option causes all user activities involving the creation
or dropping of synonyms to be audited.
setting.
AUDIT SYNONYM;
5.5.9 5.1.9 (L1) Ensure the 'DIRECTORY' Audit Option Is Enabled (Scored)

# # information
Description: The DIRECTORY object allows for the creation of a

directory object that specifies an alias for
a directory on the server file system, where the external binary file
LOBs (BFILEs)/ table
data are located. Enabling this audit option causes all user activities
involving the creation
or dropping of a directory alias to be audited.
setting.
AUDIT DIRECTORY;
5.5.11 5.1.11 (L1) Ensure the 'GRANT ANY OBJECT PRIVILEGE' Audit Option Is
Enabled (Scored)
Description: GRANT ANY OBJECT PRIVILEGE allows the user to grant
or revoke any object privilege, which includes privileges on tables,
directories, mining models, etc. Enabling this audit option causes
auditing of all uses of that privilege.
setting.
AUDIT GRANT ANY OBJECT PRIVILEGE;
5.5.12 5.1.12 (L1) Ensure the 'GRANT ANY PRIVILEGE' Audit Option Is Enabled
(Scored)
Description: GRANT ANY PRIVILEGE allows a user to grant any
system privilege, including the most powerful privileges typically
available only to administrators - to change the security
infrastructure, to drop/add/modify users and more.
setting.
AUDIT GRANT ANY PRIVILEGE;
5.5.13 5.1.13 (L1) Ensure the 'DROP ANY PROCEDURE' Audit Option Is Enabled
(Scored)
Description: The AUDIT DROP ANY PROCEDURE command is auditing
the dropping of procedures. Enabling the option causes auditing of
all such activities.
setting.
AUDIT DROP ANY PROCEDURE;

# # information
5.5.14 5.1.14 (L1) Ensure the 'ALL' Audit Option on 'SYS.AUD$' Is Enabled (Scored)
Description: The logging of attempts to alter the audit trail in the
SYS.AUD$ table (open for read/update/delete/view) will provide a
record of any activities that may indicate unauthorized attempts to
access the audit trail. Enabling the audit option will cause these
activities to be audited.
setting.
AUDIT ALL ON SYS.AUD$ BY ACCESS;
5.5.15 5.1.15 (L1) Ensure the 'PROCEDURE' Audit Option Is Enabled (Scored)
Description: In this statement audit, PROCEDURE means any
procedure, function, package or library. Enabling this audit option
causes any attempt, successful or not, to create or drop any of
these types of objects to be audited, regardless of privilege or lack
thereof. Java schema objects (sources, classes, and resources) are
considered the same as procedures for the purposes of auditing SQL
statements.
setting.
AUDIT PROCEDURE;"
5.5.16 5.1.16 (L1) Ensure the 'ALTER SYSTEM' Audit Option Is Enabled (Scored)
Description: ALTER SYSTEM allows one to change instance settings,
including security settings and auditing options. Additionally, ALTER
SYSTEM can be used to run operating system commands using
undocumented Oracle functionality. Enabling the audit option will
audit all attempts to perform ALTER SYSTEM, whether successful or
not and regardless of whether or not the ALTER SYSTEM privilege is
held by the user attempting the action.
setting.
AUDIT ALTER SYSTEM;
5.5.17 5.1.17 (L1) Ensure the 'TRIGGER' Audit Option Is Enabled (Scored)
Description: A TRIGGER may be used to modify DML actions or
invoke other (recursive) actions when some types of user-initiated
actions occur. Enabling this audit option will cause auditing of

# # information
any attempt, successful or not, to create, drop, enable or disable any

schema trigger in any schema regardless of privilege or lack thereof.
For enabling and disabling a trigger, it covers both ALTER TRIGGER
and ALTER TABLE.
setting.
AUDIT TRIGGER;
5.5.19 5.2.1 (L1) Ensure the 'CREATE USER' Action Audit Is Enabled (Scored)
Applicability: Level 1 – RDMS using unified Auditing.
Description: The CREATE USER statement is used to create Oracle
database accounts and assign database properties to them. Enabling
this unified action audit causes logging of all CREATE USER
statements, whether successful or unsuccessful, issued by the users
regardless of the privileges held by the users to issue such
statements.
setting.
ALTER AUDIT POLICY CIS_UNIFIED_AUDIT_POLICY
ADD
ACTIONS
CREATE USER;
5.5.20 5.2.2 (L1) Ensure the 'ALTER USER' Action Audit Is Enabled (Scored)
Description: The ALTER USER statement is used to change database
users’ password, lock accounts, and expire passwords. In addition,
this statement is used to change database properties of user
accounts such as database profiles, default and temporary
tablespaces, and tablespace quotas. This unified audit action enables
logging of all ALTER USER statements, whether successful or
unsuccessful, issued by the users regardless of the privileges held by
the users to issue such statements.
setting.
ADD
ACTIONS
ALTER USER;
5.5.21 5.2.3 (L1) Ensue the 'DROP USER' Audit Option Is Enabled (Scored)
Applicability: Level 1 – unified Auditing.

# # information
Description: The DROP USER statement is used to drop Oracle

database accounts and schemas associated
with them. Enabling this unified action audit enables logging of all
DROP USER statements,
whether successful or unsuccessful, issued by the users regardless of
the privileges held by
setting.
ADD
ACTIONS
DROP USER;
5.5.22 5.2.4 (L1) Ensure the 'CREATE ROLE’ Action Audit Is Enabled (Scored)
Applicability: Level 1 – RDMS using Unified Auditing.
Description: An Oracle database role is a collection or set of
privileges that can be granted to users or
other roles. Roles may include system privileges, object privileges or
other roles. Enabling this unified audit action enables logging of all
CREATE ROLE statements, whether successful or unsuccessful, issued
by the users regardless of the privileges held by the users to issue
such statements.
setting.
ADD
ACTIONS
CREATE ROLE;
5.5.23 5.2.5 (L1) Ensure the 'ALTER ROLE’ Action Audit Is Enabled (Scored)
privileges that can be granted to users or other roles. Roles may
include system privileges, object privileges or other roles. The ALTER
ROLE statement is used to change the authorization needed to
enable a role. Enabling this unified action audit causes logging of all
ALTER ROLE statements, whether successful or unsuccessful, issued
by the users regardless of the privileges held by the users to issue
such statements.
setting.

# # information

ADD
ACTIONS
ALTER ROLE;
5.5.24 5.2.6 (L1) Ensure the 'DROP ROLE’ Action Audit Is Enabled (Scored)
privileges that can be granted to users or other roles. Roles may
include system privileges, object privileges or other roles. Enabling
this unified audit action enables logging of all DROP ROLE
statements, successful or unsuccessful, issued by the users
statements.
setting.
ADD
ACTIONS
DROP ROLE;
5.5.25 5.2.7 (L1) Ensure the 'GRANT' Action Audit Is Enabled (Scored)
Description: GRANT statements are used to grant privileges to
Oracle database users and roles, including the most powerful
privileges and roles typically available to the database
administrators. Enabling this unified action audit enables logging of
all GRANT statements, whether successful or unsuccessful, issued by
the users regardless of the privileges held by the users to issue such
statements.
setting.
ADD
ACTIONS
GRANT;
5.5.26 5.2.8 (L1) Ensure the 'REVOKE' Action Audit Is Enabled (Scored)
Description: REVOKE statements are used to revoke privileges from
Oracle database users and roles. Enabling this unified action audit
enables logging of all REVOKE statements, successful or

# # information

setting.
ADD
ACTIONS
REVOKE;
5.5.27 5.2.9 (L1) Ensure the 'CREATE PROFILE’ Action Audit Is Enabled (Scored)
Description: Oracle database profiles are used to enforce resource
usage limits and implement password policies such as password
complexity rules and reuse restrictions. Enabling this unified action
audit enables logging of all CREATE PROFILE statements, whether
successful or unsuccessful, issued by the users regardless of the
privileges held by the users to issue such statements.
setting.
ADD
ACTIONS
CREATE PROFILE;
5.5.28 5.2.10 (L1) Ensure the 'ALTER PROFILE’ Action Audit Is Enabled (Scored)
complexity rules and reuse restrictions. Enabling this unified action
audit enables logging of all ALTER PROFILE statements, whether
setting.
ADD
ACTIONS
ALTER PROFILE;
5.5.29 5.2.11 (L1) Ensure the 'DROP PROFILE’ Action Audit Is Enabled (Scored)

# # information

complexity rules and reuse restrictions. Enabling this
unified action audit enables logging of all DROP PROFILE statements,
the privileges held by the users to issue such statements.
setting.
ADD
ACTIONS
DROP PROFILE;
5.5.30 5.2.12 (L1) Ensure the 'CREATE DATABASE LINK’ Action Audit Is Enabled
(Scored)
Description: Oracle database links are used to establish database-to-
database connections to other databases. These connections are
available without further authentication once the link is
established. Enabling this unified action audit causes logging of all
CREATE DATABASE and CREATE PUBLIC DATABASE statements,
setting.
ADD
ACTIONS
CREATE DATABASE LINK;
5.5.31 5.2.13 (L1) Ensure the 'ALTER DATABASE LINK’ Action Audit Is Enabled
(Scored)
always available without further authentication once the link is
established. Enabling this unified action audit causes logging of all
ALTER DATABASE and ALTER PUBLIC DATABASE statements, whether
setting.

# # information
ADD
ACTIONS
ALTER DATABASE LINK;
5.5.32 5.2.14(L1) Ensure the 'DROP DATABASE LINK’ Action Audit Is Enabled
(Scored)
always available without further authentication once the
link is established. Enabling this unified action audit causes logging
of all DROP DATABASE and DROP PUBLIC DATABASE, whether
successful or unsuccessful, statements issued by the users regardless
of the privileges held by the users to issue such statements.
setting.
ADD
ACTIONS
DROP DATABASE LINK;
5.5.33 5.2.15 (L1) Ensure the 'CREATE SYNONYM’ Action Audit Is Enabled (Scored)
Description: An Oracle database synonym is used to create an
alternative name for a database object such as table, view,
procedure, java object or even another synonym, etc. Enabling this
unified action audit causes logging of all CREATE SYNONYM and
CREATE PUBLIC SYNONYM statements, whether successful or
setting.
ADD
ACTIONS
CREATE SYNONYM;
5.5.34 5.2.16 (L1) Ensure the 'ALTER SYNONYM’ Action Audit Is Enabled (Scored)
procedure, or java object, or even another synonym. Enabling this

# # information
unified action audit causes logging of all ALTER SYNONYM and ALTER
PUBLIC SYNONYM statements, whether successful or unsuccessful,
issued by the users regardless of the privileges held by the users to
issue such statements.
setting.
ADD
ACTIONS
ALTER SYNONYM;
5.5.35 5.2.17 (L1) Ensure the 'DROP SYNONYM’ Action Audit Is Enabled (Scored)
procedure, or java object, or even another synonym. Enabling his
unified action audit causes logging of all DROP SYNONYM and DROP
PUBLIC SYNONYM statements, whether successful or unsuccessful,
issue such statements.
setting.
ADD
ACTIONS
DROP SYNONYM;
5.5.37 5.2.19 (L1) Ensure the 'UNIFIED_AUDIT_TRAIL’ Access Audit Is Enabled

(Scored)
Description: The UNIFIED_AUDIT_TRAIL view holds audit trail
records generated by the database. Enabling this audit action causes
logging of all access attempts to the UNIFIED_AUDIT_TRAIL
view, whether successful or unsuccessful, regardless of the privileges
held by the users to issue such statements.
setting.
ADD
ACTIONS
ALL on SYS.UNIFIED_AUDIT_TRAIL;

# # information
4.5.38 5.2.20 (L1) Ensure the 'CREATE PROCEDURE/FUNCTION/PACKAGE/PACKAGE

BODY’ Action Audit Is Enabled (Scored)
Description: Oracle database procedures, function, packages, and
package bodies, which are stored within the database, are created
to perform business functions and access database as defined by
PL/SQL code and SQL statements contained within these objects.
Enabling this unified action audit causes logging of all CREATE
PROCEDURE, CREATE FUNCTION, CREATE PACKAGE and CREATE
PACKAGE BODY statements, successful or unsuccessful, statements
issue such statements
setting.
ADD
ACTIONS
CREATE PROCEDURE,
CREATE FUNCTION,
CREATE PACKAGE,
CREATE PACKAGE BODY;
5.5.39 5.2.21 (L1) Ensure the 'ALTER PROCEDURE/FUNCTION/PACKAGE/PACKAGE

Description: Oracle database procedures, functions, packages, and
to carry out business functions and access database as defined by
Enabling this unified action audit causes logging of all ALTER
PROCEDURE, ALTER FUNCTION, ALTER PACKAGE and ALTER
PACKAGE BODY statements, successful or unsuccessful, issued by
the users regardless of the privileges held by the users to issue such
statements
setting.
ADD
ACTIONS
ALTER PROCEDURE,
ALTER FUNCTION,
ALTER PACKAGE,
ALTER PACKAGE BODY;

# # information
5.5.40 5.2.22 (L1) Ensure the 'DROP PROCEDURE/FUNCTION/PACKAGE/PACKAGE

Description: Oracle database procedures, functions, packages, and
to carry out business functions and access database as defined by
Enabling this unified action audit causes logging of all DROP
PROCEDURE, DROP FUNCTION, DROP PACKAGE or DROP PACKAGE
BODY statements, successful or unsuccessful, issued by the users
statements.
setting.
ADD
ACTIONS
DROP PROCEDURE,
DROP FUNCTION,
DROP PACKAGE,
DROP PACKAGE BODY;
5.5.41 5.2.23 (L1) Ensure the 'ALTER SYSTEM’ Privilege Audit Is Enabled (Scored)
Description: The ALTER SYSTEM privilege allows the user to change
instance settings which could impact security posture, performance
or normal operation of the database. Additionally, the ALTER
SYSTEM privilege may be used to run operating system commands
using undocumented Oracle functionality. Enabling this unified audit
causes logging of activities that involve exercise of this privilege,
setting.
ADD
ACTIONS
ALTER SYSTEM;
5.5.42 5.2.24 (L1) Ensure the 'CREATE TRIGGER’ Action Audit Is Enabled (Scored)
Description: Oracle database triggers are executed automatically
when specified conditions on the underlying objects occur. Trigger

# # information
bodies contain the code, quite often to perform data validation,

ensure data integrity/security or enforce critical constraints on
allowable actions on data. Enabling this unified audit causes logging
of all CREATE TRIGGER statements, whether successful or
setting.
ADD
ACTIONS
CREATE TRIGGER;
5.5.43 5.2.25 (L1) Ensure the 'ALTER TRIGGER’ Action Audit IS Enabled (Scored)
of all ALTER TRIGGER statements, whether successful or
setting.
ADD
ACTIONS
ALTER TRIGGER;
5.5.44 5.2.26 (L1) Ensure the 'DROP TRIGGER’ Action Audit Is Enabled (Scored)
of all DROP TRIGGER statements, whether successful or
setting.

# # information

ADD
ACTIONS
DROP TRIGGER;
5.5.45 5.2.27 (L1) Ensure the 'LOGON’ AND ‘LOGOFF’ Actions Audit Is Enabled
(Scored)
Description: Oracle database users log on to the database to
perform their work. Enabling this unified audit causes logging of all
LOGON actions, whether successful or unsuccessful, issued by the
users regardless of the privileges held by the users to log into the
database. In addition, LOGOFF action audit captures logoff activities.
This audit action also captures logon/logoff to the open database by
SYSDBA and SYSOPER.
setting.
ADD
ACTIONS
LOGON,
LOGOFF;
6. APPENDIX
6.1 BEST PRACTICES
Requirement Description Additional information

#
6.1 Ensure the Appropriate Version/Patches for Oracle Software

Is Installed
6.2 Ensure All Default Passwords Are Changed
6.3 Ensure All Sample Data And Users Have Been Removed
6.4 Ensure 'AUDIT_SYS_OPERATIONS' Is Set to 'TRUE'

#
6.5 Ensure 'REMOTE_LISTENER' Is Empty
6.6 Ensure 'DBA_USERS.PASSWORD' Is Not Set to 'EXTERNAL' for

Any User (Scored)
6.7 Ensure No Users Are Assigned the 'DEFAULT' Profile
6.8 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on

'DBMS_ADVISOR'
'DBMS_CRYPTO'
6.10 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_LDAP'
6.11 Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_LOB'

'DBMS_SYS_SQL'
'DBMS_BACKUP_RESTORE'
'DBMS_STREAMS_ADM_UTL' (Scored)
'WWV_DBMS_SQL'
'WWV_EXECUTE_IMMEDIATE'
'DBMS_FILE_TRANSFER' (
6.18 Ensure 'SELECT ANY TABLE' Is Revoked from Unauthorized
'GRANTEE'
6.19 Ensure 'CREATE_PROCEDURE' Is Revoked from Unauthorized
'GRANTEE'
6.20 Ensure 'CREATE ANY LIBRARY' Is Revoked from
Unauthorized 'GRANTEE'
6.21 Ensure 'GRANT ANY ROLE' Is Revoked from Unauthorized
'GRANTEE'
6.22 Ensure 'ALL' Is Revoked from Unauthorized 'GRANTEE' on
'DBA_%'

#
6.23 Ensure the 'USER' Audit Option Is Enabled
6.24 Ensure all production environments have a uniform password policy and
follow the VMware corporate password policy for password related
configurations. For more information on password policies, follow the link:
6.2 DEFINITIONS
Terminology Definition
Authorization Specifying individual’s privilege levels to access.
Availability The status of information is ready and suitable for use
Confidentiality The status of information kept in strict privacy
Integrity The status of information is accurate, complete, and consistent
Information Refers to the data and resources owned & protected by VMWare
Assets
CIS Center of Internet Security, a non-profit organization. Visit www.cisecurity.org for more details
L1 Level 1 – CIS Benchmark’s base recommendation
L2 Level 2 – CIS Benchmark’s advanced recommendation
Scored Refers to a scored requirement.
CIS # Refers to CIS Benchmark’s requirement number.
6.3 REVISION HISTORY

Always, use the current version. Describe in detail, the revision history in the following table.
Release Date Description Submitted By
08/12/2019 Origination Suresh Thangella
4/22/2020 Reviewed Jino Jose
4/22/2020 Reviewed Charlene Huang
4/22/2020 Reviewed Peter Chen
4/30/2020 Release Suresh Thangella

Oracle Database 12c Technical Standard (EBS)

Uploaded by

Document Information

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Oracle Database 12c Technical Standard (EBS)

Uploaded by

Copyright:

Available Formats

ORACLE DATABASE 12C TECHNICAL STANDARD (EBS)

Information Security Policies & Standards

Policy Document Development Process

Planning Writing Review Publishing Implement Update

Concept Detailed Content/Lab Internal Phased Continual

2.2 COMPLIANCE TIMELINE

4. VMWARE GENERAL SECURITY REQUIREMENTS

Requirement Description Additional

Ensure all production environments adhere to VMWare Policies and

4.1.1 Personally Identifiable Information (PII)

Description: All privacy related/protected information must be stored

Applicability: All systems handling PII (Personally Identifiable Information)

4.1.3 Mobile Data Encryption – Data in transit & Data at rest

Description: Mobile Devices: Must be encrypted while stored or in

Applicability: All mobile devices, including laptops, notepad, and

4.1.4 Logging & Monitoring

Description: Logging & Monitoring policy applies to all information

Requirement Description Additional

Applicability: All production information systems.

4.1.5 Data backup and replication

Description: Adequate backup/replication facilities established to ensure

Applicability: all relevant production systems

4.1.6 AntiVirus Solution

Description: The Anti-Virus solution implemented in all systems to

Applicability: All systems including workstations (BYOD)

4.1.7 Security/Vulnerability Scanning

Description: VMWare shall implement processes to scan for vulnerabilities

Applicability: All information systems.

4.1.8 Regulatory/ Security Controls - Compliance

Description: All information systems must be reviewed regularly for

Applicability: All on-prem and cloud-based systems/applications

5. ORACLE DATABASE 12C TECHNICAL STANDARD

5.1 ORACLE DATABASE INSTALLATION AND PATCHING REQUIREMENTS

Requirement CIS Description Additional information

Requirement CIS Description Additional information

5.2 ORACLE PARAMETER SETTINGS

5.2.1 2.1.1 (L1) Ensure 'SECURE_CONTROL_' Is Set In 'listener.ora' (Scored)

5.2.2 2.1.2 (L1) Ensure 'extproc' Is Not Present in 'listener.ora' (Scored)

5.2.3 2.1.3 (L1) Ensure 'ADMIN_RESTRICTIONS_' Is Set to 'ON' (Scored)

Description: The admin_restrictions_<listener_name> setting in

5.2.4 2.1.4 (L1) Ensure 'SECURE_REGISTER_' Is Set to 'TCPS' or 'IPC' (Scored)

5.2.5 2.2.1 L1) Ensure 'AUDIT_SYS_OPERATIONS' Is Set to 'TRUE' (Scored)

Remediation: To remediate this setting, execute one of the

5.2.9 2.2.5 (L1) Ensure 'OS_ROLES' Is Set to 'FALSE' (Scored)

Description: The remote listener setting determines whether or

5.2.13 2.2.9 (L1) Ensure 'REMOTE_OS_ROLES' Is Set to 'FALSE' (Scored)

5.2.15 2.2.11 Ensure 'SEC_CASE_SENSITIVE_LOGON' Is Set to 'TRUE' (Scored)

5.2.16 2.2.12 Ensure 'SEC_MAX_FAILED_LOGIN_ATTEMPTS' Is '3' or Less

5.2.17 2.2.13 Ensure 'SEC_PROTOCOL_ERROR_FURTHER_ACTION' Is Set to

5.2.18 2.2.14 Ensure 'SEC_PROTOCOL_ERROR_TRACE_ACTION' Is Set to 'LOG'

5.2.19 2.2.15 Ensure 'SEC_RETURN_SERVER_RELEASE_BANNER' Is Set to

Adaptability: Level 1 - RDMS using Unified & Traditional Auditing.

5.2.20 2.2.16 Ensure 'SQL92_SECURITY' Is Set to 'TRUE' (Scored)

5.2.21 2.2.17 Ensure '_trace_files_public' Is Set to 'FALSE' (Scored)

5.2.22 2.2.18 Ensure 'RESOURCE_LIMIT' Is Set to 'TRUE' (Scored)

5.3 ORACLE CONNECTION AND LOGIN RESTRICTIONS

Requirement CIS Description Additional

5.3.2 3.2 (L1) Ensure 'PASSWORD_LOCK_TIME' Is Greater than or Equal to '1'

5.4 ORACLE USER ACCESS AND AUTHORIZATION RESTRICTIONS

Requirement CIS Description Additional

5.4.1 4.1.1 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_ADVISOR'

5.4.2 4.1.2 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_CRYPTO'

5.4.3 4.1.3 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_JAVA'

5.4.4 4.1.4 (L1) Ensure 'EXECUTE' Is Revoked from 'PUBLIC' on 'DBMS_JAVA_TEST'