Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Mailing Lists -> Oracle-L -> Re: Oracle client security
On Sat, 2004-08-07 at 20:33, Alex Feinstein wrote:
> Rich,
>
> Parameter ORA_ENCRYPT_LOGIN used only for client 7.1+ connecting to 7.0
> database.
> In all other cases its value irelevant.
> See note 271825.1
>
This explains why the 'feature' exists, but the use of ORA_ENCRYPT_LOGIN is hardly irrelevant.
For versions of Oracle client < 9i, setting ORA_ENCRYPT_LOGIN is still not a bad idea, as a failure to connect will still result in a password being sent in the clear.
Jared
-- Archives are at http://www.freelists.org/archives/oracle-l/ FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html -----------------------------------------------------------------Received on Sun Aug 08 2004 - 09:59:49 CDT