Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.misc -> Re: SQL*net and secuity

Re: SQL*net and secuity

From: David Margrave <david.margrave_at_cybersafe.com>
Date: Tue, 03 Nov 1998 16:33:29 -0800
Message-ID: <363FA0D9.626B66DC@cybersafe.com> 






Brian,



If security is a major consideration, I'd suggest taking a look at Oracle
Advanced Networking Option.  CyberSafe is one of the supported 3rd party
authentication adapters, we provice for secure kerberos authentication,
exchanging a shared session key, and optionally enabling ANO to encrypt
the entire session.  In addition to enhanced security, there's also an
ease of use benefit since you're authentication with kerberos credentials
and not by entering your username/password.



David Margrave


Senior Research Engineer


CyberSafe Corporation


david.margrave_at_cybersafe.com


http://www.cybersafe.com





Brian Cameron wrote:



> Hi,


>


> We are looking at implementing sql*net access to some of our


> administrative systems and I have heard varying comments about


> SQL*Net and secuirty issues. eg


>


> "user names and password are passed over a network as clear text and is


> able to be accessed by a network sniffer"


>


> I would like to throw open discussion on SQL*Net and secuity to gater


> information.


>


> Any feedback or pointers to related information would be appreciated.


>


> TIA



>


> Brian


>


> bcamero5_at_metz.une.edu.au



Received on Tue Nov 03 1998 - 18:33:29 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US