Apr 8, 2024 Miscellaneous- Audit deprecated.
- Metadata updated.
- References updated.
|
Jan 29, 2024 Functional Update- 3.1.1 Require Explicit Authorization for Cataloging (CATALOG_NOAUTH)
- 3.1.3 Set Diagnostic Logging to Capture Errors and Warnings (DIAGLEVEL)
- 3.1.6 Disable Client Discovery Requests (DISCOVER)
- 3.1.7 Disable Instance Discoverability (DISCOVER_INST)
- 3.1.8 Set Maximum Connection Limits (MAX_CONNECTIONS and MAX_COORDAGENTS) - MAX_CONNECTIONS
- 3.1.8 Set Maximum Connection Limits (MAX_CONNECTIONS and MAX_COORDAGENTS) - MAX_COORDAGENTS
- 3.1.9 Set Administrative Notification Level (NOTIFYLEVEL)
- 3.2.1 Specify Secure Remote Shell Command (DB2RSHCMD)
- 3.2.2 Turn Off Remote Command Legacy Mode (DB2RCMD_LEGACY_MODE)
- 3.2.3 Disable Grants During Restore (DB2_RESTORE_GRANT_ADMIN_AUTHORITIES)
- 3.2.4 Enable Extended Security (DB2_EXTSECURITY)
- 3.2.5 Limit OS Privileges of Fenced Mode Process (DB2_LIMIT_FENCED_GROUP)
- 4.1.10 Establish Retention Set Size for Backups (NUM_DB_BACKUPS)
- 4.1.11 Set Archive Log Failover Retry Limit (NUMARCHRETRY)
- 4.1.12 Set Maximum Number of Applications (MAXAPPLS)
- 4.1.13 Ensure a Secure Connect Procedure is Used (CONNECT_PROC)
- 4.1.14 Specify a Secure Location for External Tables (EXTBL_LOCATION)
- 4.1.15 Disable Database Discoverability (DISCOVER_DB)
- 4.1.2 Set Failed Archive Retry Delay (ARCHRETRYDELAY)
- 4.1.3 Auto-restart After Abnormal Termination (AUTORESTART)
- 4.1.4 Disable Database Discovery (DISCOVER_DB)
- 4.1.5 Secure Permissions for the Primary Archive Log Location (LOGARCHMETH1) - LOGARCHMETH1 Setting
- 4.1.6 Secure Permissions for the Secondary Archive Log Location (LOGARCHMETH2) - LOGARCHMETH2 Setting
- 4.1.7 Secure Permissions for the Tertiary Archive Log Location (FAILARCHPATH) - FAILARCHPATH Setting
- 4.1.8 Secure Permissions for the Log Mirror Location (MIRRORLOGPATH) - MIRRORLOGPATH Setting
- 4.1.9 Secure Permissions for the Log Overflow Location (OVERFLOWLOGPATH) - OVERFLOWLOGPATH Setting
- 5.1 Specify a Secure Connection Authentication Type (SRVCON_AUTH)
- 5.10 DB2AUTH Registry Variable
- 5.11 DB2CHGPWD_EEE Registry Variable
- 5.2 Specify a Secure Authentication Type (AUTHENTICATION)
- 5.3 Database Manager Configuration Parameter: ALTERNATE_AUTH_ENC
- 5.4 Database Manager Configuration Parameter: TRUST_ALLCLNTS
- 5.5 Database Manager Configuration Parameter: TRUST_CLNTAUTH
- 5.6 Database Manager Configuration Parameter: FED_NOAUTH
- 6.1.1 Secure SYSADM Authority
- 6.1.2 Secure SYSCTRL Authority
- 6.1.3 Secure SYSMAINT Authority
- 6.1.4 Secure SYSMON Authority
- 7.1.1 Disable the Audit Buffer
- 7.1.2 Disable Limited Audit of Applications (DB2_LIMIT_AUDIT_APPS)
- 7.1.4 Ensure Audit is Enabled Within the Instance
- 8.1.1 Configure a Server-side Key Store for TLS (SSL_SVR_KEYDB)
- 8.1.10 Enable TLS Communication Between HADR Primary and Standby Instances (HADR_SSL_LABEL)
- 8.1.11 Enable Remote TLS Connections to Db2 (DB2COMM)
- 8.1.2 Configure a Server-side Stash File for TLS (SSL_SVR_STASH)
- 8.1.3 Configure an Endpoint Certificate (SSL_SVR_LABEL)
- 8.1.4 Configure the Service Name for TLS (SSL_SVCENAME)
- 8.1.5 Configure a Secure TLS Version (SSL_VERSIONS)
- 8.1.6 Configure Secure TLS Cipher Suites (SSL_CIPHERSPECS)
- 8.1.7 Unset the Service Name for Plaintext Communication (SVCENAME)
- 8.1.8 Configure a Client-side Key Store for TLS (SSL_CLNT_KEYDB)
- 8.1.9 Configure a Client-side Stash File for TLS (SSL_CLNT_STASH)
Miscellaneous- Metadata updated.
- References updated.
Added- 3.1.2 Secure Permissions for Default Database File Path (DFTDBPATH) - DFTDBPATH OS Permissions
- 3.1.2 Secure Permissions for Default Database File Path (DFTDBPATH) - DFTDBPATH Setting
Removed- 3.1.2 Secure Ppermissions for Default Database File Path (DFTDBPATH) - DFTDBPATH OS Permissions
- 3.1.2 Secure Ppermissions for Default Database File Path (DFTDBPATH) - DFTDBPATH Setting
|
Apr 4, 2023 |
