Re: SQL*NET protocol
Date: 1997/06/27
Message-ID: <33B47381.68DC_at_us.oracle.com>#1/1
Zachary Roger Amsden wrote:
>
> Does anyone know where I can get technical details on the SQL*NET
> protocol, specifically how it runs over TCP/IP? I would like to write
> a proxy for our firewall that will only allow specific SQL requests
> and only allow access to certain database tables.
>
> I tried looking at the dump from a sniffer, but the protocol initialization
> is too complicated to infer from the dump.
Now that I've stopped laughing, let me recommend that you don't even try this. You may figure out the SQL*Net layer, but inside that you will then need to decode the server-client layers, and that isn't even documented internally. It is very dependent on the release level, and changes frequently. Even if you can see a SELECT statement go by, there are lots of other things to worry about. I've got access to all the compiler .h files, I've been doing this for years, and I whenever I need to decode a message stream I go to the server developers for help.
-- Stuart Feigin Oracle Corp. Truckee, CA USA Nothing I say represents the revealed wisdom of Oracle Corporation. Larry does that.Received on Fri Jun 27 1997 - 00:00:00 CEST