Re: SQL*NET/orasrv security problem

From: Karel Sprenger <ks_at_ic.uva.nl>
Date: Thu, 7 Apr 1994 11:26:37
Message-ID: <ks.48.000B718F_at_ic.uva.nl>

In article <ks.45.000F01C3_at_ic.uva.nl> I wrote:
>Maybe tcp wrapper can be used to restrict incoming tcp calls on port 1525 to
>certain IP addresses only? I'll ask Wietse Venema, the author.
Wietse Vemema <wietse_at_wzv.win.tue.nl> replied (in Dutch) that tcp wrapper is suitable for processes that are started for an individual client. The securelib library (SunOS 4.x) is suitable for daemons that serve more than one client. Both can be found on ftp.win.tue.nl in /pub/security.

On reading the securelib.README file I thought this could indeed be a simple solution to Gunnar's problem.

As an alternative Wietse mentioned a filtering bridge or router that protect the serverfrom clients in "wrong" networks. There exist low-cost solutions for this(drawbridge from net.tamu.edu, karlbridge from ?? see archie listings), and of course commercial routers. These allow filtering per host or network port.

Regards,
Karel

| Karel Sprenger                              | Email: ks_at_ic.uva.nl    |
| Informatiseringscentrum                     | phone: +31-20-525 2302 |
| Universiteit van Amsterdam                  |        +31-20-525 2741 |

This message: [ Message body ]
Next message: Clay Jackson: "Re: SQL*NET/orasrv security problem"
Previous message: Michael Nolan: "Re: Page Break on ReportWriter 1.1"
Maybe in reply to: Gunnar Orvarsson: "SQL*NET/orasrv security problem"
In reply to Karel Sprenger: "Re: SQL*NET/orasrv security problem"
Next in thread: Clay Jackson: "Re: SQL*NET/orasrv security problem"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message