Tenable Nessus scan on the Oracle DB/Enforce server will have recommendation to remove world-writable files on the directory/files.
search cancel

Tenable Nessus scan on the Oracle DB/Enforce server will have recommendation to remove world-writable files on the directory/files.

book

Article ID: 229672

calendar_today

Updated On:

Products

Data Loss Prevention

Issue/Introduction

A Tenable Nessus scan on the Oracle DB/Enforce server will have recommendation to remove world-writable files on the directory/files below. A question might arise if the folder/files below removed will have any impact on the DLP server functionality, or are they supposed to be whitelisted?

--------------------------
Information: Remove unauthorized world-writable files.

51395024   24 -rwxrwxrwx   1 oracleadmin oinstall    22852 Jan 30  2018 /opt/oracle/product/19.3.0.0/client_1/stage/products.xsd
1617008   24 -rwxrwxrwx   1 oracleadmin oinstall    21263 Apr 17  2019 /opt/oracle/product/19.3.0.0/client_1/stage/UserActions/oracle.client/UnixActions/makedeps.xml
35254000    4 -rwxrwxrwx   1 oracleadmin oinstall     1173 Apr 17  2019 /opt/oracle/product/19.3.0.0/client_1/stage/properties/oracle.client_Administrator.properties
35254001    4 -rwxrwxrwx   1 oracleadmin oinstall     1173 Apr 17  2019 /opt/oracle/product/19.3.0.0/client_1/stage/properties/oracle.client_Runtime.properties
35254004    4 -rwxrwxrwx   1 oracleadmin oinstall     1173 Apr 17  2019 /opt/oracle/product/19.3.0.0/client_1/stage/properties/oracle.client_Custom.properties
35254005    4 -rwxrwxrwx   1 oracleadmin oinstall      760 Apr 17  2019 /opt/oracle/product/19.3.0.0/client_1/stage/properties/oracle.client_InstantClient.properties
19323565   20 -rwxrwxrwx   1 oracleadmin oinstall    20467 Apr 17  2019 /opt/oracle/product/19.3.0.0/client_1/stage/cvu/cvu_prereq.xml
51246463   24 -rwxrwxrwx   1 oracleadmin oinstall    22852 Jan 30  2018 /opt/oracle/ora19client/client/stage/products.xsd
1621412   24 -rwxrwxrwx   1 oracleadmin oinstall    21263 Apr 17  2019 /opt/oracle/ora19client/client/stage/UserActions/oracle.client/UnixActions/makedeps.xml
35255784    4 -rwxrwxrwx   1 oracleadmin oinstall     1173 Apr 17  2019 /opt/oracle/ora19client/client/stage/properties/oracle.client_Administrator.properties
35255785    4 -rwxrwxrwx   1 oracleadmin oinstall     1173 Apr 17  2019 /opt/oracle/ora19client/client/stage/properties/oracle.client_Runtime.properties
35255788    4 -rwxrwxrwx   1 oracleadmin oinstall     1173 Apr 17  2019 /opt/oracle/ora19client/client/stage/properties/oracle.client_Custom.properties
35255789    4 -rwxrwxrwx   1 oracleadmin oinstall      760 Apr 17  2019 /opt/oracle/ora19client/client/stage/properties/oracle.client_InstantClient.properties
19303649   20 -rwxrwxrwx   1 oracleadmin oinstall    20467 Apr 17  2019 /opt/oracle/ora19client/client/stage/cvu/cvu_prereq.xml

Resolution

  • /opt/oracle/product/19.3.0.0/client_1: In a typical 3 tier architecture, it is requirement to have an oracle client installed on the Enforce Server, hence "/opt/oracle/product/19.3.0.0/client_1" is the default install location on server and this can be whitelisted.

  • /opt/oracle/ora19client/: This location is generally used to unpack the oracle client zip file, you can check with server admin what is inside this location and if needed you can remove the files/folder if being highlighted in the scan.
Powered by Wolken Software