Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Encrypting tnsnames.ora Using OAS

Re: Encrypting tnsnames.ora Using OAS

From: sybrandb <sybrandb_at_gmail.com>
Date: 15 Aug 2006 07:34:17 -0700
Message-ID: <1155652457.533863.149150@m73g2000cwd.googlegroups.com> 






Nick wrote:


> Hi everyone,

>

> We've encrypted a link between our 10g R2 database and 10g AS R3, using

> 256-bit AES.  To test the encryption, we've sniffed packets on the

> wire.  We've noticed that we cannot encrypt the tnsnames.ora

> information being passed during initial login, pw change, and when our

> connection pool is used up, thus creating a new connection.  Does

> anyone have experience with this?  I speculate that this information is

> passed in the clear b/c the key negotiation has not occured yet?

> Naturally, tnsnames information is critical and we would like to

> encrypt it if possible.  I've seen the ssh port forwarding option, but

> we'd like to encrypt the data using AES, not ssh.

>

> TIA,


>

> //NC




Proper encryption can be arranged by using the proper tools, which is
Oracle Advanced Networking Option. This can encrypt all traffic and is
available as an extra option for the Enterprise Edition.


-- 
Sybrand Bakker
Senior Oracle DBA


Received on Tue Aug 15 2006 - 09:34:17 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US