Results 1 to 4 of 4

Thread: DB2 hardening

  1. #1
    Join Date
    Feb 2008
    Posts
    40

    Unanswered: DB2 hardening

    Hi guys,

    I want to harden DB2 on AIX, based on the following points :
    Installation
    Backup and Recovery
    Monitoring
    Auditing
    Security

    Can anyone let guide me or any valuable doc will be of gr8 help.

    regards,
    jay shah

  2. #2
    Join Date
    Jan 2009
    Location
    Zoetermeer, Holland
    Posts
    746
    The only things I can think of:
    - do not grant db2 access to "alive" users
    - only grant db2 access to "task" users and do not share the passwords
    - capture all housekeeping in scripts and grant execute rights by means of sudo
    - use static SQL only (if possible)
    - client application (really need their password) are only permitted to execute static SQL or only update the DB by means of Stored Procedures.
    - applications only access userviews, no real tables. This gives you the most control by means of triggers on tables, and "instead of" triggers on views.
    - do not expect to be liked by your IT collegues

  3. #3
    Join Date
    Feb 2008
    Posts
    40
    I am looking for a best practise document which will be a standard in case of any activity like installation, backup and recovery.
    For eg : Logretain should be on.......

  4. #4
    Join Date
    May 2003
    Location
    USA
    Posts
    5,737
    Quote Originally Posted by jayshah7 View Post
    I am looking for a best practise document which will be a standard in case of any activity like installation, backup and recovery.
    For eg : Logretain should be on.......
    I would check out the lazydba forum.
    M. A. Feldman
    IBM Certified DBA on DB2 for Linux, UNIX, and Windows
    IBM Certified DBA on DB2 for z/OS and OS/390

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •