OPERA Database Alert "Oracle TNS Listener Remote Poisoning" (Doc ID 2278929.1)

APPLIES TO:

Oracle Hospitality OPERA 5 Property Services - Version 5.4.0 and later
Information in this document applies to any platform.

GOAL

The document will explain how to correct the alert Vulnerability issue name as "Oracle TNS Listener Remote Poisoning" which is high alert in the version 11.2.0.4

This should be done to version 11.2.0.4 and above on the Database server and Dataguard server. The oracle versions below should run oracle patch. So don’t use it for other versions.

If the version is below 11.2.0.4: you need to run a patch to go to 11.2.0.4 and then apply the solution.

SOLUTION

This should be done to version 11.2.0.4 and above on the Database server and Dataguard server.

The oracle versions below should run oracle patch. So don’t use it for other versions.

 

• How to check the Database Version:

To check the version you can open SQLPLUS in CMD line and see the banner with version. But basically you will be able to see it in the oracle folder under d: drive

• How to fix the issue for version 11.2.0.4 and above

Please find the instructions on what to do, this should be done by local oracle office or local IT manager.

1. • Add the COST TCP protocol restriction "SECURE_REGISTER_LISTENER = (TCP)" to the listener.ora.

This is example of how the line should look in listener.ora file located in d:\oracle\11204\network\admin\ folder

LISTENER =
(DESCRIPTION_LIST =
(DESCRIPTION =
(ADDRESS = (PROTOCOL = TCP)(HOST = <server name>)(PORT = 1551))
)
)
SECURE_REGISTER_LISTENER = (TCP)

1. • After the changes made, Restart the listener.

You can restart the service from services system screen.

If the version is below 11.2.0.4: you need to run the patch to go to 11.2.0.4 and then apply the above solution.