It is the responsibility of the system administrator to establish a security policy or extend an existing one to include STEP.
Antivirus
Running antivirus software on the STEP server(s) is encouraged – except in the cases described below. Scanning the filesystems should be done outside office hours.
Filesystem exclusions
The filesystem exclusions described are for both 'on-demand' scans and the 'on-access' scans feature. On-demand scans may be run if the system is offline. On-access scans must be completely disabled.
|
Files |
Filesystems (default) |
On-demand scans |
On-access scans |
|---|---|---|---|
|
Database Server |
|||
|
Oracle Data files |
/database/db1 |
When the database and listener are offline |
Never |
|
Online redo log files |
/database/dbredo1 /database/dbredo2 |
||
|
Archive log files |
/database/dblog |
||
|
Database backup |
/database/backupspace |
||
|
$ORACLE_BASE |
/opt/oracle |
||
|
Application Server |
|||
|
Software installation directories |
/opt |
When STEP and third-party software are offline |
Never |
|
WorkArea |
/workarea |
||
|
Upload |
/upload |
||
|
Temp |
/tmp |
||
Note: In a single server setup – i.e., the database and application are on the same machine, all filesystems listed above must be excluded.