Saturday, September 15, 2007

Oracle Application Server : Need of a Firewall

Oracle Application Server : Need of a Firewall

Rapid growth of application and operating system on internet has indirectly made network security a major concern. Network administrators need to spend more time on analysing the methods and ways to protect the network from threat.

What are the threats ?
Threats are to the confidential information and network resources.

Application Layer Attack
Some of the methods by which the application layer can be attacked are Sendmail , Postscripts , Telnet , File Transfer Protocol , HTML specifications, web browser functionality , HTTP protocols , Java Applets , ActiveX and more.

What is a firewall ?
A firewall is a hardware or software device which is configured to permit, deny, or proxy data through a computer network which has different levels of trust.

Added Security
Deploying a host firewall will be added security to the central firewall mechanism. This deployment will secure the server from the other hosted intranet servers. This is achived by denying and allowing ports between the servers.

Oracle Application Server is secured by itself. Customer running AS must check with Oracle on the CPUs that gets the vunlerability fixed. These CPUs are available on quaterly basis and it is the responsibilty of the Oracle Application Server Administrator to notify customer and apply it at the same quater as delaying will lead to huge backlogs of CPU Patches.

Tested Firewall: The following are the some of the tested firewall that are found to be working good with version 10.1.2 and 10.1.3.
Check Point FW1 NG [version 5.0 SP3]
Cisco Pix 520 [version 6.0(1)]

More information follow the link as the above information differ in future.

Popular Posts