|
03/13/2010 12:46 AM
|
|
A paper on Sentrigo Hedgehog and Pete Finnigan webinar slides
|
|
I did two webinars this week with Sentrigo titled "The right way to Secure Oracle", these went well. The slides for the talks have been added to my Oracle Security white papers page . I have also written a short....[Read More] Posted by Pete On 12/03/10 At 01:59 PM
|
|
03/13/2010 12:46 AM
|
|
Blocking Tools from using the database
|
|
I saw Charles Hoopers post titled " Why DoesnâÂÂt This Trigger Work âÂ" No Developer Tools Allowed in the Database " via my Oracle blogs aggregator and read it with interest as its related to issues i come across with....[Read More] Posted by Pete On 10/03/10 At 11:08 AM
|
|
03/13/2010 12:46 AM
|
|
Pete Finnigan Webinar on Oracle Security
|
|
It has been quite a while since my last blog post; i keep promising to post more often and even worse I have a long list of things to blog about but I don't seem to get enough time recently....[Read More] Posted by Pete On 08/03/10 At 04:04 PM
|
|
03/13/2010 12:46 AM
|
|
SANS 2010 CWE/SANS Top 25 Most Dangerous Programming Errors
|
|
SANS, Mitre and a lot of security experts have just completed the top 25 most dangerous programming errors list. This is a really useful resource and anyone developing code not just against Oracle but in general should be concerned to....[Read More] Posted by Pete On 23/02/10 At 01:42 PM
|
|
03/13/2010 12:46 AM
|
|
SQL Injection and Java exploits
|
|
It has been a while since my last blog post as I have been extremely busy over the last weeks and this blog post is being posted straight after finishing a customer training session using the clients internet connection (with....[Read More] Posted by Pete On 17/02/10 At 04:01 PM
|
|
03/13/2010 12:46 AM
|
|
Approaches for Discovering Security Vulnerabilities in Software Applications
|
Hello, this is Denis Pilipchuk again. Hearing about a critical security issue in a product is one of the most feared situations for a product manager. Vulnerabilities, in addition to compromising the security postures of customers using the affected products,...
|
|
03/13/2010 12:46 AM
|
|
Security Alert For CVE-2010-0073 Released
|
Hi, this is Eric Maurice again. Oracle just released a Security Alert with a fix for the vulnerability CVE-2010-0073, which affects Oracle WebLogic Node Manager. This vulnerability was recently publicly disclosed and the organization that discovered this vulnerability did not...
|
|
03/13/2010 12:46 AM
|
|
January 2010 Critical Patch Update Released
|
Hi, this is Eric Maurice. Oracle today released the January 2010 Critical Patch Update (CPUJan2010). Today's Critical Patch Update (CPU) provides 24 new security fixes across the following product families: Oracle Database Server, Oracle Secure Backup, Oracle Application Server, Oracle...
|
|
03/13/2010 12:46 AM
|
|
Controlling Access To Security Vulnerability Information At Oracle
|
Hi, this is Shaomin Wang. I am sometimes asked how Oracle manages employee access to security vulnerability information. Obviously, technical information related to vulnerabilities in Oracle products is very sensitive; not only because this information may be related to unpatched...
|
|
03/13/2010 12:46 AM
|
|
October 2009 Critical Patch Update Released
|
Hello, this is Eric Maurice. Oracle released the October 2009 Critical Patch Update (CPUOct2009) today. In a previous blog entry, I explained why this Critical Patch Update had been moved. Today's Critical Patch Update (CPU) provides 38 new security fixes...
|
