| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Usenet -> c.d.o.misc -> Re: SECURITY ALERT: How to avoid snooping by SQL MONITOR
I don't know about how to stop the tool. However, Oracle passwords are always encrypted (as of Oracle7 7.1.6).
In addition, the Advanced Networking Option can encrypt all of the traffic between the client and the server.
Rick Rick Wessman rwessman_at_us.oracle.com
Nnoor_at_cris.com (NNOOR) writes:
>
>
> Hi,
> SQL MONITOR supplied with Borland Delphi C/S is a great
> little tool when it comes to debugging your application
> or to identify and understand the activity created by
> different SQL statements.
>
> Its a standalone application which, when run, lists every
> line of SQL command sent to the server and lists every bit
> of information received back.
>
> And that's where the problem begins. Using this tool, a
> user can "listen" to every bit of conversation carried on
> between the application and the server. AND THAT INCLUDES
> PASSWORD, among other things.
>
> Does someone know of any way to, optionally, disable the
> snooping by SQL Monitor and/or enrypt the traffice between
> the application and the server???
>
> Thanks a lot!!!
>
> Regards,
> Nasir (nnoor_at_cris.com)
Received on Fri Nov 14 1997 - 00:00:00 CST
 |
 |