Re: Database Links and security
From: David Thornewill von Essen <ttg242_at_newton.sps.mot.com>
Date: Wed, 4 Aug 1993 00:41:39 GMT
Message-ID: <1993Aug4.004139.2790_at_newsgate.sps.mot.com>
Date: Wed, 4 Aug 1993 00:41:39 GMT
Message-ID: <1993Aug4.004139.2790_at_newsgate.sps.mot.com>
In article mla_at_132.203.6.11, mla_at_132.203.6.11 (Michel Lalonde) writes:
>If we create the database link with the 'connect to' option,
>password changing for those super-users can by managed by a dba
>but then, anyone who can read the data dictionnary ('select any
>table' is so practical for developers), can read the password ...
>Is there any known solution ...
>
How are they going to read the password??? Only the DBA has access
to encrypted values of the password (not the password itsself), and
I wouldn't recommend placing production tables in a DBA account,
or am I missing something??
Regards,
David TvE
--- +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+- David Thornewill von Essen Sr. Systems Analyst Motorola ASIC Division I don't speak for Mot. Chandler, AZ-85224 fax: (602) 814-4451 email: ttg242_at_email.sps.mot.com tel: (602) 814-4395 +-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-Received on Wed Aug 04 1993 - 02:41:39 CEST