logo-monin
  • Home
  • About
  • Solutions
  • Cases
  • News
  • Careers
  • Contact
  • Emergency request
  • Privacy Policy
  • enEnglish
+32 (0)3 450 67 89
info@monin-it.be

Author: Dries

15 posts, 0 comments

Carelessly running Oracle, even on VMware and Nutanix

September 27, 2019Dries

Important detail about the Oracle and VMware partnership announced during Oracle Open World 2019 During Oracle Open World 2019, a partnership between Oracle and VMware was announced. From now on customers can extend or migrate their VMware operations to bare metal server clusters on the Oracle Cloud while maintaining full control of the environment (this…

Peter and Jelle’s first year @ Monin

August 22, 2019Dries

Meet Peter and Jelle Peter and Jelle, two junior Oracle database engineers at Monin, each with their own journey. Where Peter, 25 years old, already had some work experience in marketing automation, he had no experience with databases at all. Peter searched for a vacancy which better fitted his personality, talents and interests and not…

Major change Oracle 19c: No RAC for Standard Edition anymore!

June 3, 2019Dries

History Since December 2015, Oracle released Oracle Standard Edition 2 (SE2), replacing the previous Standard Edition (SE) and Standard Edition One (SE1) releases. Customers on versions before 12.1.0.2 (running Standard Edition or Standard Edition One (SE1)), and who want to upgrade to a more recent version, will have to switch to Standard Edition Two (SE2)….

Zombieload, RIDL & Fallout and Store-to-Leak Forwarding vulnerabilities for Oracle Linux, Oracle VM and Microsoft Windows (collectively referred to as Microarchitectural Data Sampling (mds))

May 16, 2019Dries

Again 4 new execution side-channel vulnerabilities were disclosed by Intel on May 14th. Each of them has its own name but collectively they are referred as Microarchitectural Data Sampling (mds): CVE-2019-11091: Microarchitectural Data Sampling Uncacheable Memory (MDSUM): part of RIDL CVE-2018-12126: Microarchitectural Store Buffer Data Sampling (MSBDS): part of Fallout CVE-2018-12127: Microarchitectural Load Port Data…

Do you suddenly need a payed subscription for using (Oracle) Java?

March 1, 2019Dries

Last update: September 6th 2019 IMPORTANT: information provided is purely informative and has no legal value Update September 2nd 2019: inform your JAVA users they should not just install the latest update, which can easily be done by pressing “Install” or “Next” after following window appears It shows the user a separate license is needed…

How-to make yourself a SYSADMIN “very easily” on Microsoft SQL Server (exploit)

October 10, 2018Dries

Within Microsoft SQL Server databases, some fixed server-level roles are defined, providing a certain level of access and functionality. The role with the highest access and functionality is the SYSADMIN role. Only privileged users or administrators within the company are granted this role. Eddy Van Heghe, one of our experienced Microsoft SQL DBA’s, discovered a…

L1TF Intel Processor vulnerabilities for Oracle Linux, Oracle VM and Microsoft Windows (Foreshadow)

August 16, 2018Dries

After the Spectre & Meltdown vulnerabilities (see https://monin-it.be/2018/01/17/meltdown-spectre-solution-linux-windows/) at the beginning of 2018, Intel now tackled 3 applications of another big vulnerability in their microcode: the L1 Terminal Fault (L1TF) vulnerabilities. All three applications of L1TF are speculative execution side channel cache timing vulnerabilities: CVE-2018-3615: Affecting Intel Software Guard Extensions (SGX): CVSS score 7.9/10 CVE-2018-3620:…

Urgently patch your Oracle database or get held hostage (CVE-2018-3110)!

August 16, 2018Dries

Oracle just released a security alert and is urging users to patch their oracle database installations to plug a critical security issue (this one even got CVSS score 9.9/10, which is really high and shows the importance to patch). The vulnerability can result in complete compromise of the Oracle Database and shell access to the…

Will Oracle Database links really stop working after April 2019 (or June 2019)? What needs to be done?

March 15, 2018Dries

UPDATED November 2018 On February 15th 2018 Oracle published note 2361478.1 (“Oracle Databases Need to be Patched to a Minimum Patchset/PSU/RU level before April 2019”), stating that database versions prior to 12.1.0.2 (except for 11.2.0.4) will need additional patching in order to be able to use database links after April 2019. This caused some confusion…

FINALLY! How to solve the Meltdown & Spectre vulnerabilities on Oracle Linux, Oracle VM and Microsoft Windows

January 17, 2018Dries

IMPORTANT UPDATE (January 31st 2018): both hardware and software vendors released patches for the Metldown and Spectre vulnerabilities. However, after a while they all found out the performance impact was bigger than expected. In some cases the patched systems even started to reboot unexpectedly from time to time. That’s why most vendors ask to wait…

Posts navigation

1 2 >

Search

Recent Posts

  • Carelessly running Oracle, even on VMware and Nutanix
  • Peter and Jelle’s first year @ Monin
  • Major change Oracle 19c: No RAC for Standard Edition anymore!
  • Zombieload, RIDL & Fallout and Store-to-Leak Forwarding vulnerabilities for Oracle Linux, Oracle VM and Microsoft Windows (collectively referred to as Microarchitectural Data Sampling (mds))
  • SQL Server 2008: end of support

Recent Comments

    Archives

    • September 2019
    • August 2019
    • June 2019
    • May 2019
    • April 2019
    • March 2019
    • October 2018
    • August 2018
    • March 2018
    • January 2018
    • June 2017
    • November 2016
    • October 2016

    Categories

    • Microsoft
    • Microsoft SQL Server
    • Monin
    • Oracle
    • Security
    • Solutions

    Meta

    • Log in
    • Entries RSS
    • Comments RSS
    • WordPress.org