O112-BP-026600 - The SQLNet SQLNET.ALLOWED_LOGON_VERSION parameter must be set to a value of 12 or higher.

Information

Unsupported Oracle network client installations may introduce vulnerabilities to the database. Restriction to use of supported versions helps to protect the database and helps to enforce newer, more robust security controls.

Solution

: Deploy Oracle 11.2.0.4 with the January 2014 CPU patch.

Edit the SQLNET.ORA file to add or edit the entry:

SQLNET.ALLOWED_LOGON_VERSION = 12

Set the value to 12 or higher.

For more information on sqlnet.ora parameters refer to the following document:
'Database Net Services Reference'
https://docs.oracle.com/cd/E11882_01/network.112/e10835/sqlnet.htm#NETRF006

See Also

https://dl.dod.cyber.mil/wp-content/uploads/stigs/zip/U_Oracle_Database_11-2g_V2R3_STIG.zip

Item Details

Category: CONFIGURATION MANAGEMENT

References: 800-53|CM-6b., CAT|II, CCI|CCI-000366, Rule-ID|SV-219746r401224_rule, STIG-ID|O112-BP-026600, STIG-Legacy|SV-68317, STIG-Legacy|V-54077, Vuln-ID|V-219746

Plugin: Unix

Control ID: a3185b3cc33a58aa2dfc1af2aa3366cae69898df2981e10488568d460c19afdb