Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: Hiding password on the server side
I don't bother encrypting the passwords. I use mod 600 as someone else suggested.
If they can read the file, they are "oracle" and it rally doesn't matter a lot.
The "advantage" of my method is there is a single file for multple databases, userid and passwords. It looks something like this:
DBNAME,USERNAME,PASSWORD
db1,myid,mypassword db1,otheraccount,otherpassword db2, ...
Essentially the "manage_db_script" does the following:
grep myid passwordfile | grep db1 | awk -F: '{ print $3 }' -
(I think that's the syntax).
Joe Kazimierczyk wrote:
> Just curious - how does manage_db_pwd manage the password?
> Is it stored encrypted in a file? I'll be doing something
> similar soon, so any pointers would be welcome.
>
> Myron Wintonyk wrote:
> >
> > I "hate" scripts with imbedded passwords (they are s security risk and they
> > ALL need to be changed when the password changes).
> >
> > Therefore, I have a script which will return a password. Here is an example
> >
> > of it's use:
> >
> > pwd=`/dba/tools/manage_db_pwd GET $db $user`
> > sqlplus -s /nolog <<EOF
> > connect $db_user/$pwd
> > ... other commands
> > exit
> > EOF
> >
> > Hope this helps.
> >
> > SaraN wrote:
> >
> > > Currently I are running some Sql scripts for certain data feeds. While
> > > this is feed is on, users logged onto this machine are able view my
> > > database passwords by doing a ps - ef on the system.
> > >
> > > I would like to hide the password. I vaguely remember a hide.c function
> > > which would enable me to do this. Am I right. If I am where would I find
> > > it. Any help on this would be really appreciated.
> > >
> > > Thanks IA
> > >
> > > SaraN
> > > vishmayaa_at_yahoo.com
Received on Tue Feb 27 2001 - 18:47:52 CST