What should our DBA know? - Page 2
DBAsupport.com Forums - Powered by vBulletin
Page 2 of 2 FirstFirst 12
Results 11 to 16 of 16

Thread: What should our DBA know?

  1. #11
    Join Date
    Jan 2001
    Posts
    2,828
    Hi

    What happens if you are in the UK.
    I know that UK has something similar like SOX called FSA finacial Services Authority.

    Arent the UK dba's supposed to apply the security patches as per regulations .

    I am also curious about INDIA what happens there since they have massive databases owing to its population

    regards

  2. #12
    Join Date
    Mar 2006
    Location
    Charlotte, NC
    Posts
    865
    Majority of the Indian local shops don't like to disturb the Database as long is it is running smooth. Currently I am on site in Fiji Islands and here also management doesn't like to apply any patch unless until they hit a bug.

    Thanks,
    Vijay Tummala

    Try hard to get what you like OR you will be forced to like what you get.

  3. #13
    Join Date
    Sep 2002
    Location
    England
    Posts
    7,333
    not everyone is regulated by the FSA either - and no there is no rule to apply patches just because they exist

    there is a rule to protect the data

  4. #14
    Join Date
    Nov 2000
    Location
    Pittsburgh, PA
    Posts
    4,027
    Quote Originally Posted by davey23uk View Post
    not everyone is regulated by the FSA either - and no there is no rule to apply patches just because they exist

    there is a rule to protect the data
    So when there is a known bug that doesn't require authentication, thenwe as good DBA's should apply the patch? So its balancing between allowing for new bugs, and leaving vulnerabilities unpatched in a database that could be exploited by someone nefarious.
    this space intentionally left blank

  5. #15
    Join Date
    Sep 2002
    Location
    England
    Posts
    7,333
    balance risk and cost

    simple as that

  6. #16
    Join Date
    Sep 2001
    Location
    Ohio
    Posts
    334
    As an FYI... in the retail industry, patching is required per the PCI (Payment Card Industry) Standards. You have to have a good reason NOT to apply CPU patches.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  


Click Here to Expand Forum to Full Width