Re: Security jaw dropper

From: onedbguru <onedbguru_at_yahoo.com>
Date: Fri, 27 Apr 2012 14:56:07 -0700 (PDT)
Message-ID: <16213720.11.1335563767123.JavaMail.geo-discussion-forums_at_vbkv21>

On Thursday, April 26, 2012 5:53:47 PM UTC-4, joel garry wrote:
> http://seclists.org/fulldisclosure/2012/Apr/343
>
> jg
> --
> _at_home.com is bogus.
> http://en.wikipedia.org/wiki/D.O.A._%281950_film%29

Try copying an init.ora file for a RAC system to a new system and start up the instance (restore control files and just mount the database for database restore). Wait a bit - and then try to connect to the original database service name (example: sqlplus user/password_at_original:1521/ORCL. Database is ORCL with instances ORCL{n}. You will eventually start getting ORA-01033 errors - database is starting up or shutting down. It will drive you mad until you realize that (and search MOS) the new database has registered with the original listener and it is the only one the SCAN tries to send the new connections. Can we say DoS!!! Luckily, the "original" in this case was a TEST cluster! Received on Fri Apr 27 2012 - 16:56:07 CDT

This message: [ Message body ]
Next message: joel garry: "Re: Index Organized table - hanging on selects"
Previous message: joel garry: "Re: My RMAN script of full backup"
In reply to: joel garry: "Security jaw dropper"
Next in thread: Noons: "Re: Security jaw dropper"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message