Re: SQL script without password

There is a balance here - I agree that having the sys password in a plain text script is bad, to an extent. If you security is 'good' then only folks that should have access, have access to reading the script, but if the script moves to another box, there are problems.

I code a $SYSPASS into my (our) scripts. Then set this at login.

SYSPASS=manager; export SYSPASS

at the command line.

(there is also a hidden file in /etc that I use for crontab items, that will set the env variable). This way my scripts are transportable (db to db, machine to machine), and I minimize the security risk.

I also clear the variable in setenv - this keeps things clean.

On Sat, 12 May 2001 04:40:57 GMT, robertch_at_mindspring.com (Robert Chung) wrote:

>
>Is there some way for SQL scripts to connect to database without
>password? We have many scripts that calls sqlplus and issue SQL
>commands, and we want to avoid hard-coded passwords in the scripts.
>We do not want to use OS authentication method, because the scripts
>need to be run from remote machines and using OS authentication from
>remote machine can open up security hole. Thank you in advance.
>
>
Received on Sun May 13 2001 - 08:08:49 CDT