Services
Oracle Audit / Hardening
Security Training
Consulting

Information
Oracle Security Blog
Published Alerts
Upcoming Alerts
Patch Information
Whitepaper
Presentations
Oracle Fact Sheets
Exploits
Tutorials
Videos
Scripts

News & Events
Events
News

Company
Contact
People
Partner
Impressum
Sitemap


Search



Search Red-Database-Security
Oracle TNS Listener Exploits


This section contains exploits for the TNS Listener. A protected listener (with password and parameter admin_restrictions) is immune.

TNS Listener set log_file- [Become DBA]
Stop TNS via lsnrctl [Denial of Service]
TNS Listener (Oracle RDBMS 10.2.0.3/11.1.0.6.0) [Trap in Listener process]



2009 by Red-Database-Security GmbH - last update 19-jun-2009

Hardening TNS-Listener

  • Use a strong password for all TNS listener
  • Disable local OS authentication on Oracle 10g
  • Disable remote administration
  • Enable listener log