Re: Security question: sqlplus and the ps cmd on Unix
From: Gary Gapinski <gary_at_wpogws.lerc.nasa.gov>
Date: 1995/03/30
Message-ID: <3lemu0$slu_at_sulawesi.lerc.nasa.gov>#1/1
Date: 1995/03/30
Message-ID: <3lemu0$slu_at_sulawesi.lerc.nasa.gov>#1/1
- Ask the users to run sqlplus without arguments, supplying their username and password when prompted, or
- Replace sqlplus with a script that invokes the real sqlplus without the username and password on the command line. This by itself won't hide the initial invocation from ps, but if they persist, have the script exit if any arguments are supplied.