Unlike older releases, Oracle 11g sets password expiry by default. That’s really annoying
for SYS and SYSTEM: nobody wants to regularly change (and forget) them.
for any accounts that are used by application servers: the password is usually configured in a data source file, nobody would ever want to change it
if some superusers directly access the DB and keep forgetting the password, the automatic locking will lock your application out: not great for your up time.
So let’s get rid of these annoyances with:
ALTER PROFILE DEFAULT LIMIT
FAILED_LOGIN_ATTEMPTS UNLIMITED
PASSWORD_LIFE_TIME UNLIMITED;
And also let’s turn off the default auditing:
NOAUDIT ALL;
DELETE FROM SYS.AUD$;
