Does Guardium A-TAP make any changes to the Oracle executable on Linux ?

Question & Answer

Question

Does Guardium A-TAP make any changes to the Oracle executable on Linux ? - eg on Oracle Database Appliance (ODA)

Cause

Some clarification is needed on exactly what changes (if any) the A-TAP makes to the Oracle executable when the A-TAP is activated.

Example environment for a DB Server that is to be monitored by Guardium Software :-

ODA version 12.1.2.1.0
Oracle Linux 5.10 with Linux kernel 2.6.39-400.214.3.el5uek

Answer

ATAP activation does not make any changes to the Oracle executable on Linux.

A copy of the original oracle binary is made to a new file called oracle-guard-original, it then creates an executor called oracle which does an LD_PRELOAD of the A-TAP libraries (so that the Guardium modified functions are called) and executes the oracle-guard-original binary.

The Guardium functions basically send a copy of the Oracle database traffic to K-TAP before calling the original Oracle function that's replaced by the LD_PRELOAD.

Please note that this action is completely reversed when deactivating the A-TAP since the Guardium replaces the oracle executor it created with the oracle-guard-original.

Related Information

Configuring the A-TAP

Using ATAP to collect Oracle encrypted traffic on Linux

[{"Product":{"code":"SSMPHH","label":"IBM Security Guardium"},"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Component":"Documentation","Platform":[{"code":"PF016","label":"Linux"}],"Version":"9.1;9.0;8.2;10.0;9.5","Edition":"","Line of Business":{"code":"LOB24","label":"Security Software"}}]

Tips

Does Guardium A-TAP make any changes to the Oracle executable on Linux ?

Question & Answer

Question

Cause

Answer

Related Information

Was this topic helpful?

Document Information

UID

Share your feedback

Need support?