| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Mailing Lists -> Oracle-L -> Re: passwords in clear text and password protected roles bypass
In article <0HUM00CKWSBVWE_at_sys98048.heb.com>, Ravi Kulkarni
<kulkarni.ravi_at_heb.com> writes
>Great hint, Thank you.
>Is there a way to avoid(/defer) clear-text-passwords when Creating users ?
Hi,
When creating users the password is also sent in clear text. I have added another new "short" page to my site for this scenario. Two thoughts spring to mind, either encrypt the connection or set the password to "password" and set it to be expired so that the user needs to set a new password using the "password" function or better set it to expired and locked.
the new page is
http://www.petefinnigan.com/ramblings/create_user_in_clear_text.htm
Thanks Ravi
kind regards
Pete
-- Pete Finnigan email:pete_at_petefinnigan.com Web site: http://www.petefinnigan.com - Oracle security audit specialists Book:Oracle security step-by-step Guide - see http://store.sans.org for details. ---------------------------------------------------------------- Please see the official ORACLE-L FAQ: http://www.orafaq.com ---------------------------------------------------------------- To unsubscribe send email to: oracle-l-request_at_freelists.org put 'unsubscribe' in the subject line. -- Archives are at http://www.freelists.org/archives/oracle-l/ FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html -----------------------------------------------------------------Received on Mon Mar 15 2004 - 14:44:11 CST
 |
 |