2.2.15 Ensure '_trace_files_public' Is Set to 'FALSE'


The _trace_files_public setting determines whether or not the system's trace file is world readable. This setting should have a value of FALSE to restrict trace file access.


Making the file world readable means anyone can read the instance's trace file, which could contain sensitive information about instance operations.

NOTE: Please note that the assessment SQL relies on X_$ views which should be created per Appendix 7.


To remediate this setting, execute the following SQL statement.

ALTER SYSTEM SET '_trace_files_public' = FALSE SCOPE = SPFILE;

See Also