Pete Finnigan

Subscribe to Pete Finnigan feed Pete Finnigan
PeteFinnigan.com's weblog is the only weblog dedicated to Oracle security.
Updated: 12 hours 9 min ago

New Video of Oracle Security Vulnerability Scanning

Thu, 2017-08-17 10:46
I have just made a new video of a sample session using PFCLScan our vulnerability / security scanner for the Oracle database. In the video I show how easy it is to get started with PFCLScan and scan an Oracle....[Read More]

Posted by Pete On 17/08/17 At 01:50 PM

Categories: Security Blogs

More Oracle Security Training Manuals for Sale

Wed, 2017-08-09 01:26
I advertised here some months ago a small number of printed manuals that I found in our company storage for some of my Oracle security classes. We had these printed over the years for various classes that I taught and....[Read More]

Posted by Pete On 08/08/17 At 01:57 PM

Categories: Security Blogs

New Oracle Security On-Line Training Dates Added

Mon, 2017-08-07 12:46
We have finally added new on-line training dates for some of our classes; the very popular two days "How to perform a security audit of an Oracle Database" is first followed by the one day class "Hardening and Securing Oracle....[Read More]

Posted by Pete On 07/08/17 At 06:30 PM

Categories: Security Blogs

Oracle Security Audit and Open Ports on a Database Server

Fri, 2017-07-07 23:26
As part of a detailed security audit of an Oracle database performed by our company we look at most areas that are related to two things; the security of the Oracle platform itself, i.e. the Oracle database and its software....[Read More]

Posted by Pete On 07/07/17 At 04:31 PM

Categories: Security Blogs

Oracle Security Training

Fri, 2017-05-26 05:06
Yesterday I made a short video to talk about my two day class " How to Perform a Security audit of an Oracle database " and added the video to YouTube. This class is going to be delivered at a....[Read More]

Posted by Pete On 26/05/17 At 09:39 AM

Categories: Security Blogs

O7_DICTIONARY_ACCESSIBILITY and UTL_FILE_DIR in Oracle 12c release 2

Tue, 2017-05-23 22:06
I was not in the beta program for Oracle database 12c release 2 but when I was discussing security changes in the new release with some people who were in the beta they told me that O7_DICTIONARY_ACCESSIBILITY and utl_file_dir parameters....[Read More]

Posted by Pete On 23/05/17 At 04:17 PM

Categories: Security Blogs

Oracle Security 12cR2 and Oracle Security Training Dates

Mon, 2017-05-08 16:06
I am going to be teaching my two day class "How to perform a security audit of an Oracle database" in Athens, Greece on the 30th and 31st May 2017. This is advertised on Oracle University website and you can....[Read More]

Posted by Pete On 08/05/17 At 03:51 PM

Categories: Security Blogs

Oracle 12cR2 Security - Listener Port

Mon, 2017-05-01 19:26
I downloaded Oracle 12cR2 from Oracle when it became available in March and installed a legacy SE2 database and also a single PDB multitenant database and started some investigations to discover and look at the new security features added in....[Read More]

Posted by Pete On 01/05/17 At 01:03 PM

Categories: Security Blogs

New Online Oracle Security PUBLIC Training Dates Including USA Time Zones

Wed, 2017-04-12 17:26
We have just agreed three new online classes to be taught in June and July. These are for my two day class How to perform a security audit of an Oracle database. The classes are two day events and will....[Read More]

Posted by Pete On 12/04/17 At 02:17 PM

Categories: Security Blogs

PeteFinnigan.com In The Top 60 Oracle Database Blogs

Tue, 2017-04-11 04:46
I got a couple of emails over the last couple of weeks from Anuj at FeedSpot to tell me that my blog (This Oracle Security blog) has been listed in the top 60 Oracle Database blogs on the Feedspot website....[Read More]

Posted by Pete On 11/04/17 At 09:37 AM

Categories: Security Blogs

Oracle Security Training Manuals For Sale

Wed, 2017-04-05 20:26
I had a reason today to go to our company storage for something today and whilst moving other things around to find what I needed I discovered two A4 boxes with printed manuals for some of our recent training classes....[Read More]

Posted by Pete On 05/04/17 At 02:22 PM

Categories: Security Blogs

How to Perform a Security Audit of an Oracle Database Training in Athens, Greece

Wed, 2017-04-05 02:06
I will be teaching my two days class How to Perform a Security Audit of an Oracle Database in Athens, Greece on May 16th and 17th 2017 organised by Oracle University. This is a great class that helps you understand....[Read More]

Posted by Pete On 04/04/17 At 02:45 PM

Categories: Security Blogs

Is SQL Injection A WebSite Problem?

Fri, 2017-03-31 12:06
I saw a post on RobLockards Facebook page this week where he said some people have suggested that his SQL Injection talk only shows calling a procedure from SQLCl and not a web page and he suggests that he may....[Read More]

Posted by Pete On 31/03/17 At 03:38 PM

Categories: Security Blogs

Can You Say That An Oracle Database is nn% secure?

Thu, 2017-03-23 21:26
I often get this type of question from customers and also from people I speak to and even a few times by email. The question is "can you tell us how secure our database is?", is it 10% secure, is....[Read More]

Posted by Pete On 23/03/17 At 03:22 PM

Categories: Security Blogs

PFCLScan - A Security Scanner For Oracle Databases - New Website

Thu, 2017-03-23 03:06
Our software product PFCLScan can be used to assess your Oracle databases for security issues that could make your data vulnerable to loss or attack. PFCLScan initially had its own website, PFCLScan.com but since the restyle and redesign of our....[Read More]

Posted by Pete On 22/03/17 At 08:24 PM

Categories: Security Blogs

Validating The Length Of An Oracle Database Hashed password?

Thu, 2017-03-16 06:06
Q: Can I validate the length of a password in the Oracle database from the password hash? I have been asked this question a number of times over the years. Even someone emailed me to confirm the answer to this....[Read More]

Posted by Pete On 15/03/17 At 07:52 PM

Categories: Security Blogs

Default Password Hashes for 11g Oracle Database

Tue, 2017-03-14 17:26
I often get Oracle Security related questions from people randomly sent to my inbox or occasionally on Social media and less on on this sites forum. I get questions on average probably 4 times per week in these ways. I....[Read More]

Posted by Pete On 14/03/17 At 06:16 PM

Categories: Security Blogs

12.2 is Available For Download For Linux And Solaris

Thu, 2017-03-02 11:06
The Oracle database 12.2 has been available on the cloud for some time but it has not been available for download so that you can install it on your own servers or virtual Machines. You can download from OTN or....[Read More]

Posted by Pete On 02/03/17 At 09:10 AM

Categories: Security Blogs

Delete from AUD$

Tue, 2017-02-28 22:26
We have been working on a new audit trail toolkit / product for some time now which is called PFCLATK - The PFCL means "P"ete"F"innigan."C"om "L"imited so most of our tools products end up with a consistent name starting PFCL....[Read More]

Posted by Pete On 28/02/17 At 01:06 PM

Categories: Security Blogs

Fourteenth Anniversary For PeteFinnigan.com Limited And New Website

Thu, 2017-02-23 14:26
Wow, has it really been fourteen years since I started PeteFinnigan.com Limited? - Time has gone so fast and business is getting better and better. We have great customers, great Oracle Security trainings and consulting projects meeting new people and....[Read More]

Posted by Pete On 23/02/17 At 06:33 PM

Categories: Security Blogs

Pages