Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: cracking Oracle passwds

Re: cracking Oracle passwds

From: GC <assistant_madman_at_hotmail.com>
Date: 2000/03/09
Message-ID: <38C83610.EB533003@hotmail.com>#1/1 






"Adrian J. Shepherd" wrote:


> Only a matter of time before someone with select access on the underlying

> DBA_USERS table and web access start to guess paswords of the SYS account

> and lock the DBA out...just the start of a nightmare methinks.




Not necessarily - as long as you can authenticate to the database as a
user (that is, either connect internal or connect / as sysdba), you
could change your sys,system,dba,foo_users password to whatever you
choose. If you have the database and permissions set up properly, it can
be very difficult to lock out an important account (now, if you change
internals password and forget that, well, that's a different story :)



Cheers,


GC
Received on Thu Mar 09 2000 - 00:00:00 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US