Database links must be authorized for use.

Severity	Group ID	Group Title	Version	Rule ID	Date	STIG Version
medium	V-270522	SRG-APP-000516-DB-000363	O19C-00-008700	SV-270522r1064844_rule	2025-02-14	1

Description
Database links define connections that may be used by the local database to access remote Oracle databases. These links provide a means for a compromise to the local database to spread to remote databases in the distributed database environment. Limiting or eliminating use of database links where they are not required to support the operational system can help isolate compromises to the local or a limited number of databases.

Description

Database links define connections that may be used by the local database to access remote Oracle databases. These links provide a means for a compromise to the local database to spread to remote databases in the distributed database environment. Limiting or eliminating use of database links where they are not required to support the operational system can help isolate compromises to the local or a limited number of databases.

ℹ️ Check
Use the following query to get a list of database links. From SQL*Plus: select owner\|\|': '\|\|db_link from dba_db_links; If no records are returned, this is not a finding. Confirm all database links listed are documented and approved. If any are not, this is a finding.

✔️ Fix
Document all authorized connections from the database to remote databases. Remove all unauthorized remote database connection definitions from the database. From SQL*Plus: drop database link [link name]; OR drop public database link [link name]; Review remote database connection definitions periodically and confirm their use is still required and authorized.