Critical E-Business Suite Release 11i Security Documentation


While I'm stepping (very gingerly) through the security minefield, I might as well dust this one off, too:

A number of customers have recently reported security issues which may have been
avoided if they had followed Oracle's published recommendations on securing
E-Business Suite Release 11i environments.  All E-Business Suite Release 11i system administrators and security professionals should have the following crucial documents committed to memory:
Even if you've read earlier versions of these documents, I'd strongly recommend taking another look at the latest versions.

Comments:

Just wonder if you going to implement the recommendations reflected in the highlighted documents using autoconfig/templates methodology?
So far it looks to me that those recommendations implementation require a lot of customisations.
If to implement those recommendations through supported autoconfig customization way we would end up with hard to support environment. In the other hand if you will implement those in templates/autoconfig you would make OEBS more secure automatically.

Just my 0.02£,
Yury

Posted by Yury Velikanov on May 07, 2006 at 12:52 PM PDT #

That's an interesting suggestion, Yury. I'm going to have to circulate this internally amongst our security architects. I'll post an update once this reemerges from the process.

Regards,
Steven

Posted by Steven Chan on May 08, 2006 at 02:59 AM PDT #

A quick update on this: Our AutoConfig and Security teams have confirmed that best-practices security recommendations that apply uniformly to all E-Business Suite customers are already implemented automatically by AutoConfig.  This is one of the reasons we encourage everyone to keep up-to-date with the latest AutoConfig template updates like the recently-released AutoConfig Template Rollup Patch M.There are a number of other security recommendations from the Best Practices guide that we're planning to implement automatically in AutoConfig; these might take more time to automate given their potential sensitivity to current environment configurations and customer requirements.  I'll be sure to announce these in this blog as they become automated.Regards,Steven

Posted by Steven Chan on May 26, 2006 at 05:58 AM PDT #

Post a Comment:
  • HTML Syntax: NOT allowed
About

Search

Categories
Archives
« April 2014
SunMonTueWedThuFriSat
  
1
4
5
6
7
8
9
10
11
12
13
14
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today