Re: Keeping Passwords Secure

From: Morris Galloway <mmgall_at_admin.presby.edu>
Date: Fri, 16 Sep 1994 21:59:33 GMT
Message-ID: <Cw8t3B.H8A_at_presby.edu>

In article <358u4n$kql_at_lorne.stir.ac.uk>, Sam Nelson <sam_at_cs.stir.ac.uk> wrote:
> I had some useful suggestions by email
> from David Rolfe (of Sun, apparently?) involving adding some
> whitespace to the front of `username/password' strings until they
> disappear off the end of the command line quoted by `ps'. This
> strategy looks promising. It still doesn't get me past the `looking
> over the shoulder' problem though, and I find it difficult to believe
> that this hasn't been a significant problem elsewhere, let alone
> remained completely unaddressed by Oracle all these years. --

Yes, it is a problem. The whitespace idea is new to me. I've known folks to disable ps, or install a custom one that omits arguments.

I've also recently read that Oracle is looking at some sort of public key or other authentication scheme. Anyone know more about this?

Has anyone seen a way to use a Secure ID smart card with Oracle (other than by relying on OPS$)?

Morris Galloway Jr.                         Internet:  mmgall_at_presby.edu 
Dean, Administrative Services                     Phone:  1-803-833-8217
Presbyterian College       503 S. Broad St.      Clinton, SC  29325  USA

Received on Fri Sep 16 1994 - 23:59:33 CEST

This message: [ Message body ]
Next message: Kjartan Gudmundsson: "Re: Keeping Passwords Secure"
Previous message: Warren Van-Wyck: "Re: Keeping Passwords Secure"
Maybe in reply to: Michael Nolan: "Re: Keeping Passwords Secure"
In reply to Sam Nelson: "Re: Keeping Passwords Secure"
Next in thread: Kjartan Gudmundsson: "Re: Keeping Passwords Secure"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message