Skip to content
ATO Pathways
  Log In

Security Profile of Oracle Linux 7 for SAP

Rules and Groups employed by this XCCDF Profile

  • System Settings

    Contains rules that check correct system settings.
    Group
    Show

  • Installing and Maintaining Software

    The following sections contain information on security-relevant choices during the initial operating system installation process and the setup of s...
    Group
    Show

  • SAP Specific Requirement

    SAP (Systems, Applications and Products in Data Processing) is enterprise software to manage business operations and customer relations. The follow...
    Group
    Show

  • Package glibc Installed

    The package <code>glibc</code> is installed on Linux by default, but the <code>glibc</code> version might not be sufficient for SAP. Please refer t...
    Rule Medium Severity
    Show

  • Package uuidd Installed

    The package <code>uuidd</code> is not installed on normal Linux distribution by default. Applications require this package to avoid database incons...
    Rule Medium Severity
    Show

  • Only sidadm and orasid/oracle User Accounts Exist on Operating System

    SAP tends to use the server or virtual machine exclusively. There should be only SAP system users <code>sidadm</code> and <code>orasid</code> that ...
    Rule Medium Severity
    Show

  • File Permissions and Masks

    Traditional Unix security relies heavily on file and directory permissions to prevent unauthorized users from reading or modifying files to which t...
    Group
    Show

  • Verify Permissions on Important Files and Directories

    Permissions for many files on a system must be set restrictively to ensure sensitive information is properly protected. This section discusses impo...
    Group
    Show

  • Verify Permissions on Files with Local Account Information and Credentials

    The default restrictive permissions for files which act as important security databases such as <code>passwd</code>, <code>shadow</code>, <code>gro...
    Group
    Show

  • Verify Permissions on shadow File

    To properly set the permissions of /etc/shadow, run the command: 
    $ sudo chmod 0000 /etc/shadow
    Rule Medium Severity
    Show

Node 2

siemur/test-space

The content of the drawer really is up to you. It could have form fields, definition lists, text lists, labels, charts, progress bars, etc. Spacing recommendation is 24px margins. You can put tabs in here, and can also make the drawer scrollable.

Capacity
Modules