Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: Re: SQL script without password
[skipped]
> I code a $SYSPASS into my (our) scripts. Then set this at login.
>
> SYSPASS=manager; export SYSPASS
>
> at the command line.
Unfortunately this is also insecure. At least on Solaris where you still have BSD ps (/usr/ucb/ps). And it can show you other process environment. Try /usr/ucb/ps -wwe <pid>
> (there is also a hidden file in /etc that I use for crontab items,
> that will set the env variable). This way my scripts are
> transportable (db to db, machine to machine), and I minimize the
> security risk.
>
> I also clear the variable in setenv - this keeps things clean.
Doesn't really matter. Even if you clean both environments (parent-shell and child-script) there is moment when SYSPASS is visible.
Regards,
Igor.