Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.misc -> Re: Calculated passwords ?

Re: Calculated passwords ?

From: Daniel Morgan <dmorgan_at_exesolutions.com>
Date: Thu, 15 Aug 2002 18:07:57 GMT
Message-ID: <3D5BEDF8.15528265@exesolutions.com> 





Andreas Koch wrote:



> TurkBear wrote:

> > Neither the peeking nor the sniffing are 'logging in via other apps'

>

>  >>And i'd like to prevent people knowing that password from

>  >>login in via other apps.

>

> read: And i'd like to prevent people, who know that password,

> from login in via other apps.

>

> --

>                                                    Andreas

> To boldly go where no sane person has gone before




Gladly. Give me five seconds as SYS writing an AFTER LOGON trigger and I
can render that a complete impossibility. I can force a single userid and
password to only work with a single IP address using a single network
protocol, using a single front-end appilcation, from a single named
workstation. And lock them out of the database forever if they fail.



And sniffing on a network looking for Oracle passwords will get you
something ... but it will not get you the passwords.



Daniel Morgan
Received on Thu Aug 15 2002 - 13:07:57 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US