Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> Funny sort of question re sys password

Funny sort of question re sys password

From: Nuno Souto <dbvision_at_optusnet.com.au>
Date: Wed, 10 Mar 2004 21:07:37 +1100
Message-ID: <008c01c40687$88a51b90$9b00a8c0@dcs001> 





Someone at work maintains that it takes them 10 minutes to 
break the Oracle SYS password security.



And the Sun boof-head (a different person and I use the 
term loosely...) assures me he's capable of doing so any time 
he wants.



Now, I've been away from this security stuff for a year or so and
I may well be wrong here, but breaking the password security 
means cracking the Oracle encryption.  While this may be possible,
I can't believe it only takes 10 minutes?



Wouldn't it rather be a case of social engineering at work?
Or just a plain vanilla "change_on_install" case?



<says he who used to change it to "changed", 
with the obvious funny consequences>


Cheers


Nuno Souto


nsouto_at_optusnet.com.au




Please see the official ORACLE-L FAQ: http://www.orafaq.com




To unsubscribe send email to:  oracle-l-request_at_freelists.org
put 'unsubscribe' in the subject line.


--



Archives are at http://www.freelists.org/archives/oracle-l/
FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html


Received on Wed Mar 10 2004 - 04:04:20 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US