Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: Password complexity Case Problem
Hi Glen,
This is easy to answer, you are wasting your time because Oracle is not case sensitive for passwords even if they are encased in quotes. I posted an answer on the ORACLE-L list a few weeks ago to a similar question that Jared Still was trying to find a solution for. Here is an example proving that passwords are not case sensitive:
<quote>
Oracle is not case sensitive for passwords even when
the password is set using quotes. See for example:
SQL> connect system/manager_at_zulia
Connected.
SQL> -- create a user no quotes lower case
SQL> create user jared identified by jared;
User created.
SQL> select password from dba_users where username='JARED';
PASSWORD
User altered.
SQL> select password from dba_users where username='JARED';
PASSWORD
User altered.
SQL> select password from dba_users where username='JARED';
PASSWORD
User altered.
SQL> select password from dba_users where username='JARED';
PASSWORD
User altered.
SQL> select password from dba_users where username ='JARED';
PASSWORD
User altered.
SQL> select password from dba_users where username='JARED';
PASSWORD
SQL> alter user jared identified by "£$%^";
User altered.
SQL> select password from dba_users where username='JARED';
PASSWORD
SQL> connect jared/"£$%^"@zulia
ERROR:
ORA-01045: user JARED lacks CREATE SESSION privilege; logon denied
Warning: You are no longer connected to ORACLE.
SQL> connect system/manager_at_zulia
Connected.
SQL> grant create session to jared;
Grant succeeded.
SQL> connect jared/"£$%^"@zulia
Connected.
SQL>
why then if it allows the whole character set including control
characters does it change letters to make ASCII letters case
insensitive?
Anyway the point is from above the original OP cannot force a password to be case sensitive as Oracle does not recognise case for passwords. </quote>
hope this clarifies your issue
kind regards
Pete
-- Pete Finnigan email:pete_at_petefinnigan.com Web site: http://www.petefinnigan.com - Oracle security audit specialists Book:Oracle security step-by-step Guide - see http://store.sans.org for details.Received on Fri Nov 21 2003 - 13:11:28 CST