Re: Database Links and security

From: David Thornewill von Essen <ttg242_at_newton.sps.mot.com>
Date: Wed, 4 Aug 1993 00:41:39 GMT
Message-ID: <1993Aug4.004139.2790_at_newsgate.sps.mot.com>


In article mla_at_132.203.6.11, mla_at_132.203.6.11 (Michel Lalonde) writes:
>If we create the database link with the 'connect to' option,
>password changing for those super-users can by managed by a dba
>but then, anyone who can read the data dictionnary ('select any
>table' is so practical for developers), can read the password ...
>Is there any known solution ...
>

How are they going to read the password??? Only the DBA has access to encrypted values of the password (not the password itsself), and I wouldn't recommend placing production tables in a DBA account, or am I missing something??

Regards,
David TvE

---
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-
David Thornewill von Essen                           Sr. Systems Analyst
Motorola ASIC Division                            I don't speak for Mot.
Chandler, AZ-85224                                   fax: (602) 814-4451
email: ttg242_at_email.sps.mot.com                      tel: (602) 814-4395
+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-+-
Received on Wed Aug 04 1993 - 02:41:39 CEST

Original text of this message