| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Usenet -> c.d.o.server -> Re: database password
On May 16, 9:29 am, "fitzjarr..._at_cox.net" <fitzjarr..._at_cox.net> wrote:
> On May 16, 10:31 am, me <ma8..._at_gmail.com> wrote:
>
> > hi,
>
> > i have hundereds of scripts with 'sqlplus user/pass_at_database' and i
> > need to find a way to prevent online users seeing the password ( ps -
> > ef | grep sqlplus ).
>
> > changing scripts is not possible and all scripts run in a scheduler
> > with secure Unix user.
>
> > i am tempted to create an alias for sqlplus but i would like to hear
> > about alternatives.
>
> > thanks
> > Michael
>
> If changing the scripts isn't possible then why are you asking for a
> change?
>
> You do need to change the scripts to hide the user and password:
>
> sqlplus <<EOF
> connect user/pass_at_database
> <SQL script text here>
> EOF
>
> Such a change would hide the user and password from prying eyes via ps
> -ef.
>
> Of course, if you're not going to make that change you can't be that
> concerned with your security (in my opinion).
>
> David Fitzjarrell
i can overwrite sqlplus with an alias or script without changing all scripts , something like
mysqlplus
sqlplus /nolog <<
connect user/pass_at_database
etc...
changing original passwords to dummy values works . i am just wondering if there is global solution at Unix system level to hide all password ( including online users )
thanks
Michael
Received on Wed May 16 2007 - 13:27:56 CDT
 |
 |