Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Connect password obsfucation?

Re: Connect password obsfucation?

From: Rick Wessman <Rick.Wessman_at_oracle.com>
Date: 05 Feb 2002 05:01:22 -0800
Message-ID: <socd6zknkv1.fsf@rwessman-sun.us.oracle.com> 





The password is encrypted using a proprietary modified DES algorithm in
versions prior to 9i. It was changed to triple DES in 9i.



The algorithm used for a specific connection is dependent on the versions of
the client and server. For example, if an 8i client connects to a 9i server,
the 8i encryption method will be used.



                                     Rick





"Phil Cox" <phil.cox_at_systemexperts.com> writes:



> All,

> 

> I am trying to determine the method in which the username/password are

> obsfscated when being passed over the network in an SQLPlus connect

> statement? ANy pointers would be appreciated.

> 

> Phil

> 

> 



-- 
                                Rick Wessman
                                Security Assurance Group
                                Oracle Corporation
                                Rick.Wessman_at_oracle.com

     The opinions expressed above are mine and do not necessarily reflect
                         those of Oracle Corporation.


Received on Tue Feb 05 2002 - 07:01:22 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US