Simpler Navigation for Servers and Operating Systems - Please Update Your Bookmarks
Completed: a much simpler Servers and Operating Systems section of the Community. We combined many of the older boards, so you won't have to click through so many levels to get at the information you need. Check the consolidated boards here as many sub-forums are now single boards.
If you have bookmarked forums or discussion boards in Servers and Operating Systems, we suggest you check and update them as needed.
General
cancel
Showing results for 
Search instead for 
Did you mean: 

Informix Database -- How to secure

nibble
Super Advisor

Informix Database -- How to secure

guys, can anyone point me on some docs on how to secure or apply security measures with Informix DAtabase Servers? ive tried searching, but to no avail.

tnx,
5 REPLIES
Peter Godron
Honored Contributor

Re: Informix Database -- How to secure

Hi,
could you expand a bit on what you want to do? Do you want to secure the UNIX side or try and improve Informix security?
What sort of threat do you want to secure against?
Basics would be :
Seperate dba userid
Tight file/directory access protection
Mirroring of db file disks
Password strengthening
Regards
Ranjith_5
Honored Contributor

Re: Informix Database -- How to secure

Hi ,

The following would be helpful to you.

http://www.governmentsecurity.org/articles/DatabaseSecurityPart1.php


Regards,
Syam
JJ_4
Frequent Advisor

Re: Informix Database -- How to secure

What version of IBM Informix are you running?

There are several scripts within the 9.40.xC6 products that secure certain aspects ...

$INFORMIXDIR/etc/make-informixdir-secure

and

$INFORMIXDIR/bin/ibmifmx_security.sh

but (as previously said) you need to expand on what you want to make secure :D

Not enough Zappa makes you sad.
Bill Hassell
Honored Contributor

Re: Informix Database -- How to secure

This is a really complex question. It all depends on what security you are trying to accomplish. Are you trying to meet HIPAA requirements or just trying to improve things? For a really secure solution, you have to move the database (the data) and the engine to another computer which is virtually inaccessible from any other network. Separation of user access from the database server is always a good idea. Make sure the DBAs haven't messed with devicefile permissions and ownerships. Raw data volumes must never be 666 or 777. And Informix (any database system) design/maintenance should never require root access. Ideally, all sysadmins must use sudo so root logins occur very seldom.

Check out Chris Wong's book on HP-UX Security. The real difficulty is locking down an existing system. Bad habits and poor code will cause problems as security is tightened.


Bill Hassell, sysadmin
nibble
Super Advisor

Re: Informix Database -- How to secure

actually, its not on the OS side. its the informix database itself. i need only the standard security measures for Informix Database Server. same with standard C2/hardening compliance with OS.