Re: Oracle password encryption algorithm?SKIP

From: <gur_at_hadassah.bitnet>
Date: 5 Jul 93 13:53:13 +0200
Message-ID: <1993Jul5.135313.1_at_hadassah.bitnet>

In article <1993Jul2.213313.16282_at_exlog.com>, lparsons_at_exlog.com (Lee Parsons) writes:
> In article <1993Jul1.134033.1_at_cbr.hhcs.gov.au> pihlab_at_cbr.hhcs.gov.au writes:
>>In article <1993Jun30.154324.1_at_cissys>, trahan_at_cissys.read.tasc.com (Dave Trahan) writes:
>>>
>>> Does anyone know what algorithm Oracle uses to encrypt user passwords?
>>
>>Hopefully, only Oracle and it's well guarded. If everyone knew the algorithm
>>then there would be no point in having a password because the encrypted value
>>is stored (visible) in the database and you could run a program to crack
>>anyone's account.
>

[. . .]

Just compare the situation with the VMS passwords. Not only the algorithm is known, but there is even a system service to encrypt a string using it. However the users authorization file is inaccessible to unprivileged mortals. Received on Mon Jul 05 1993 - 13:53:13 CEST

This message: [ Message body ]
Next message: PIOCH Nicolas: "Re: Oracle password encryption algorithm?SKIP"
Previous message: Alexander Koerner: "Re: TPC-A and -B Benchmarks"
Maybe in reply to: Lee Parsons: "Re: Oracle password encryption algorithm?SKIP"
Next in thread: PIOCH Nicolas: "Re: Oracle password encryption algorithm?SKIP"
Reply: Dan Wing: "Re: Oracle password encryption algorithm?SKIP"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message