Re: Packet Filtering/security between Oracle servers

From: Lee E Parsons <lparsons_at_world.std.com>
Date: Wed, 16 Nov 1994 19:33:08 GMT
Message-ID: <CzDKz8.5q6_at_world.std.com>

Rick Wessman <rwessman_at_rwessman.us.oracle.com> wrote:
>>(If thay have passwords that is and we all know how easy those are to get :)
>
>I would like to point out that as of 7.1, all passwords are encrypted.

Ok fair enough. I wasn't attempting to criticize Oracle's use of sqlnet. It is true however that oracle password control has not been looked at as long and as hard as Unix passwords.

ie) how do you force a sql user to change his password every 30 days

or require a 6 character passwd with atleast one non-alpha.

Again, I'm not trying to slam oracle here. I'm not really sure we even need those type of features. But if the orginal poster is serious enough about security to put in a packet filter then he should make sure that realizes password security on Oracle accounts may not be what he expects.

-- 
Regards, 

Lee E. Parsons                  		
Systems Oracle DBA	 			lparsons_at_world.std.com

Received on Wed Nov 16 1994 - 20:33:08 CET

This message: [ Message body ]
Next message: Hans van Leeuwen: "Re: Optimizer problems 7.0.16.4, Solaris"
Previous message: Rick Wessman: "Re: Packet Filtering/security between Oracle servers"
Maybe in reply to: Paul Blair: "Packet Filtering/security between Oracle servers"
In reply to Lee E Parsons: "Re: Packet Filtering/security between Oracle servers"
Next in thread: Hans van Leeuwen: "Re: Optimizer problems 7.0.16.4, Solaris"
Reply: Paul Blair: "Re: Packet Filtering/security between Oracle servers"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message