Re: Pete Finnigan's Oracle database password checker
From: Bradd Piontek <piontekdd_at_gmail.com>
Date: Tue, 7 Oct 2008 15:36:43 -0500
Message-ID: <e9569ef30810071336h2887a28fs11d8873281e68c25@mail.gmail.com>
Date: Tue, 7 Oct 2008 15:36:43 -0500
Message-ID: <e9569ef30810071336h2887a28fs11d8873281e68c25@mail.gmail.com>
Maybe it is just me, but I would never run something 'new' against a
production database without first seeing what it does (either by reviewing
the code or by testing it against a non-prod environment). Even from a
trusted source like Mr. Finnagan
Bradd Piontek
"Next to doing a good job yourself,
the greatest joy is in having someone else do a first-class job under your direction."
- William Feather
On Tue, Oct 7, 2008 at 7:41 AM, Andre van Winssen <dreveewee_at_gmail.com>wrote:
> Hi,
>
> It's worth running against your (SOx) production databases to find out
> about weak database passwords that might put in danger Confidentiality,
> Integrity and/or Availability.
>
>
-- http://www.freelists.org/webpage/oracle-lReceived on Tue Oct 07 2008 - 15:36:43 CDT