Oracle 参数 SEC_MAX_FAILED_LOGIN_ATTEMPTS 官方解释,作用,如何配置最优化建议
本站中文解释
SEC_MAX_FAILED_LOGIN_ATTEMPTS是Oracle参数,用于设置登录时最大允许失败登录次数,可以防止攻击者对数据库的密码暴力破解。
设置步骤:
(1)登录sys用户,使用“alter system set sec_max_failed_login_attempts=3 scope=spfile”命令,将SEC_MAX_FAILED_LOGIN_ATTEMPTS参数设置为3,将该参数值存入spfile中。
(2)使用“shutdown immediate”命令,关闭数据库。
(3)使用“startup”命令,重启数据库。
(4)再次登录sys用户,使用“show parameter sec_max_failed_login_attempts”查看参数SEC_MAX_FAILED_LOGIN_ATTEMPTS的值,确保该参数值已经改变。
官方英文解释
SEC_MAX_FAILED_LOGIN_ATTEMPTS specifies the number of authentication attempts that can be made by a client on a connection to the server process.
| Property | Description |
|---|---|
|
Parameter type |
Integer |
|
Default value |
|
|
Modifiable |
No |
|
Modifiable in a PDB |
No |
|
Range of values |
An integer greater than or equal to |
|
Basic |
No |
These login attempts can be for multiple user accounts in the same connection. After the specified number of failure attempts, the connection will be automatically dropped by the server process, and the server process is terminated.
See Also:
Oracle Database Security
Guide for more information about this parameter
