Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Oracle versus Sqlserver

Re: Oracle versus Sqlserver

From: Steffen Ramlow <s.ramlow_at_gmx.de>
Date: Fri, 25 Jan 2002 23:45:43 +0100
Message-ID: <a2sn7p$13sdnf$1@ID-54600.news.dfncis.de> 






"kc" <kc_news2000_at_yahoo.com> wrote in message
news:a20fe1ab.0201250737.61d608a8_at_posting.google.com...



> critical. It is harder to crack an Oracle box because of the general

> background of Oracle DBAs. I have encountered many SQL server machines

> that do not have a password for "SA" account (Is that part of the

> MCDBA training?? It always amazes me when I find this.). I have never

> encountered an Oracle box that did not have a password for the "SYS"

> or "SYSTEM" account.




i have found many ora installations with internal - oracle, system -
manager, sys - change..




> Oracle on something other than Windows is a very

> good bet for security.




why?



> SQL server on Windows can be a major problem

> waiting to happen.




why?



> Fact: The majority of credit card thefts from

> Ecommerce Sites are successful by exploiting a SQL Server/Windows

> vulnerability or misconfiguration.




how to?



> I know for a fact that the Oracle Authorized Training goes into depth

> about limiting access, roles, network security, etc. I have not

> attended any SQL server classes but suspect that type of material is

> not covered.




 wrong



> I know in my MCSE classes security was not even covered.




bad training company?



> Meanwhile the script kiddies are pillaging the weak and

> misconfigured.......




not only on mss
Received on Fri Jan 25 2002 - 16:45:43 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US