permissions on redo log files
I have received complain from people responsible for security of SAP data that redo log files have permission 755 (everyone can read from them)
I would like to get your input on the following :
- Is this a material risk?? In other words, how u201Ceasyu201D would it be to reconstruct something meaningful out of the redo-logs provided that you know exactly in which tables certain business data is stored ?
- This is apparently a SAP standard (can it be confirmed ?) Are there plans with SAP, as of certain release, to change this to a more secure file permission ?
- Is there any risk in changing these permissions to something more restrictive and what are the challenges ?