Re: Sticky bit set on linux password file

From: Niall Litchfield <niall.litchfield_at_gmail.com>
Date: Wed, 2 Jul 2008 12:48:56 +0100
Message-ID: <7765c8970807020448j7873418apbed23c42878020f4@mail.gmail.com>

What's the exact 10g version? I haven't checked but bear in mind that data vault changes the passwordfile (I had assumed just format but security on the file would seem to be an obvious target as well). If you have DV in place that might explain the difference.

Niall

On Tue, Jul 1, 2008 at 10:12 PM, Robyn <robyn.sands_at_gmail.com> wrote:

> Looks like it was fixed in 10gR2. From the same RHEL5 server:
>
> MKTDMO> sid
> Your oracle_sid variable is set to: ORACLE_SID=MKTDMO
> Your oracle_home variable is set to: ORACLE_HOME=/u01/oracle/product/9.2.0
> MKTDMO> ls -l
> total 2404
> ...
> -rwSr----- 1 oracle orainventory 2048 Jun 24 13:05 orapwCAPDMO
> -rwSr----- 1 oracle orainventory 2048 Jun 24 14:54 orapwMKTDMO
>
> MKT10G> sid
> Your oracle_sid variable is set to: ORACLE_SID=MKT10G
> Your oracle_home variable is set to: ORACLE_HOME=/u01/oracle/product/10.2.0
> MKT10G> ls -l
> total 12396
> ...
> -rw-r----- 1 oracle orainventory 2048 Jul 1 13:20 orapwCAP10G
> -rw-r----- 1 oracle orainventory 2048 Jun 26 08:51 orapwMKT10G
>
> I never noticed before this post ... Robyn
>
>
> On Tue, Jul 1, 2008 at 3:39 PM, Stefan Knecht <knecht.stefan_at_gmail.com>
> wrote:
>
>> Hey Jared
>>
>> It's not the sticky bit, it's the SETUID bit.
>>
>> But SETUID on a file, and not a directory, without the execute bit, has no
>> effect.
>>
>> So "why" is a good question.
>>
>>
>>
>>
>> On Tue, Jul 1, 2008 at 8:58 PM, Jared Still <jkstill_at_gmail.com> wrote:
>>
>>> On Tue, Jul 1, 2008 at 11:56 AM, Jared Still <jkstill_at_gmail.com> wrote:
>>>
>>>>
>>>>>
>>>> I hit SEND just a bit too soon.
>>>>
>>>>
>>> Gotta stop this stream of consciousness thing. :)
>>>
>>> Resetting the privs on the password file to 640 while the database is up,
>>> and doing a remote logon as SYSDBA will cause the sticky bit to again
>>> be set.
>>>
>>>
>>> --
>>> Jared Still
>>> Certifiable Oracle DBA and Part Time Perl Evangelist
>>>
>>
>>
>>
>> --
>> =========================
>>
>> Stefan P Knecht
>> Senior Consultant
>> Infrastructure Managed Services
>>
>> Trivadis AG
>> Europa-Strasse 5
>> CH-8152 Glattbrugg
>>
>> Phone +41-44-808 70 20
>> Fax +41-808 70 12
>> Mobile +41-79-571 36 27
>> stefan.knecht_at_trivadis.com
>> http://www.trivadis.com
>>
>> OCP 9i/10g SCSA SCNA
>> =========================
>
>
>
>
> --
> I may not have gone where I intended to go, but I think I have ended up
> where I needed to be.
> Douglas Adams

-- 
Niall Litchfield
Oracle DBA
http://www.orawin.info

--
http://www.freelists.org/webpage/oracle-l

Received on Wed Jul 02 2008 - 06:48:56 CDT

This message: [ Message body ]
Next message: Asif Momen: "Re: LAST_DDL_TIME from ALL_OBJECTS"
Previous message: Ian Cary: "Re: RMAN backups - physical standby"
In reply to: Robyn: "Re: Sticky bit set on linux password file"
Next in thread: Robyn: "Re: Sticky bit set on linux password file"
Reply: Robyn: "Re: Sticky bit set on linux password file"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message