OCP 17 Security New Features

Card Set Information

Author:
Tralala
ID:
213637
Filename:
OCP 17 Security New Features
Updated:
2013-04-15 09:32:53
Tags:
OCP 17 Security New Features
Folders:

Description:
OCP 17 Security New Features
Show Answers:

Home > Flashcards > Print Preview

The flashcards below were created by user Tralala on FreezingBlue Flashcards. What would you like to do?


  1. Which DBMS_NETWORK_ACL_ADMIN procedure should you use to assign a previously created ACL to specific hosts?
    The ASSIGN_ACL procedure
  2. When data from an encrypted tablespace is stored in undo and redo logs as a result of DML, does the data remain encrypted or is it decrypted?
    It remains encrypted.
  3. When creating an encrypted tablespace using the CREATE TABLESPACE statement, which clause should you include to specify the encryption algorithm?
    The ENCRYPTION USING clause
  4. Which three methods could you use to move data from an existing non-encrypted tablespace into an encrypted tablespace?
    Using Data Pump, an ALTER TABLE...MOVE statement, or a CREATE TABLE AS SELECT statement
  5. Which initialization parameter should you use to cause a client connection to be dropped if the connection has more than a specified number of failed login attempts?
    The SEC_MAX_FAILED_LOGIN_ATTEMPTS initialization parameter
  6. When calling the CREATE_ACL procedure of the DBMS_NETWORK_ACL_ADMIN package, which two optional parameters can you specify to indicate that the specified user or role should have the specified privilege for only a fixed period of time?
    The start_date and end_date parameters
  7. What is the effect of specifying a value for the SEC_MAX_FAILED_LOGIN_ATTEMPTS initialization parameter when a password profile is not enabled?
    The criteria for number of failed login attempts is enforced regardless.
  8. What does an ACL contain?
    A list of users and their privileges
  9. Which two values are allowed for the privilege parameter of the DBMS_NETWORK_ACL_ADMIN.CREATE_ACL procedure?
    connect and resolve
  10. When calling the CREATE_ACL procedure of the DBMS_NETWORK_ACL_ADMIN package, which parameter specifies the user or role to which access will be given?
    The principal parameter
  11. When data from an encrypted tablespace is read into memory as a result of DML, is it encrypted or not encrypted?
    Not encrypted
  12. In Oracle 11g, can the entire contents of a permanent, undo, and temporary tablespaces be encrypted?
    No, only permanent tablespaces
  13. Which two actions should you take to enable a complex password checking PL/SQL function?
    Create a PL/SQL function owned by SYS that performs the password checking and alter the default profile setting PASSWORD_VERIFY_FUNCTION to your function.
  14. Which initialization parameter must be set to YES to implement strong authentication for administrators?
    The LDAP_DIRECTORY_SYSAUTH initialization parameter
  15. If you have implemented strong authentication for administrators by granting an administrator role in OID and SSL and the password file are configured, what is used to authenticate administrators?
    The password file
  16. Which action should you take with your CREATE TABLESPACE statement to create an encrypted tablespace?
    Include the ENCRYPT option in the STORAGE clause.
  17. What is the result of issuing the ALTER SYSTEM SET SEC_PROTOCOL_ERROR_FURTHER_ACTION=DROP,40; statement?
    Future client connections that receive more than 40 bad packets from a remote system are temporarily terminated.
  18. By default, where is audit trail information stored?
    In the database
  19. Which option of the SEC_PROTOCOL_ERROR_FURTHER_ACTION initialization parameter should you use to cause clients requesting bad packets to be delayed for a specified number of seconds?
    The DELAY option
  20. When calling the ASSIGN_ACL procedure, what does the host parameter indicate?
    The name or IP address of the host to which the ACL is assigned
  21. Which package can you use to create an ACL that allows specific privileges for specific users or roles?
    The DBMS_NETWORK_ACL_ADMIN package
  22. When upgrading an Oracle 10g database to Oracle 11g, will existing users' passwords be case-sensitive or case-insensitive?
    Case-insensitive, until you manually change them with an ALTER USER statement
  23. With Oracle 11g TDE, which blocks and data are encrypted for a temporary or undo tablespace?
    All blocks and data created in the tablespace that originated from an encrypted tablespace
  24. When you specify a value for the SEC_MAX_FAILED_LOGIN_ATTEMPTS initialization parameter, for which users is the failed login restriction enforced?
    All users
  25. Which DBMS_NETWORK_ACL_ADMIN procedure should you use to create an ACL?
    The CREATE_ACL procedure
  26. When data from an encrypted tablespace is accessed using a JOIN or SORT operation, does the data remain encrypted or is it decrypted?
    It remains encrypted.
  27. Which initialization parameter can you set to instruct Oracle to store audit trail information in a location other than the default database location, the AUD$ table?
    The AUDIT_TRAIL initialization parameter
  28. By default, are all privileges audited?
    No, only a subset of privileges that are significant to database security are audited by default.
  29. Which DBMS_NETWORK_ACL_ADMIN procedure should you use to add a privilege for a user or role to a previously created ACL?
    The ADD_PRIVILEGE procedure
  30. When using the DROP option of the SEC_PROTOCOL_ERROR_FURTHER_ACTION initialization parameter, are clients terminated for exceeding the specified number of bad packets permanently or temporarily terminated?
    Temporarily, after which they can reconnect.
  31. To use Oracle 11g TDE, what must be true of the configured wallet?
    It must be open.
  32. Which three methods can you use in Oracle 11g to implement strong authentication for administrators?
    By granting the SYSDBA or SYSOPER role in Oracle Internet Directory (OID), using certificates over SSL, or using Kerberos tickets
  33. When you grant the connect privilege to a user, which other privilege is automatically implied?
    The resolve privilege
  34. In Oracle 11g, which two actions must you take to encrypt an existing non-encrypted tablespace?
    Create a new encrypted tablespace and then move the data in the existing tablespace into the encrypted tablespace.
  35. What is the result of attempting to create a table in an encrypted tablespace if the wallet is closed?
    An error occurs.

What would you like to do?

Home > Flashcards > Print Preview