Re: Encryption??...

That's incorrect. Passwords have been encrypted since Oracle7 7.1.6.

Also, ora_encrypt_login is set in the init.ora file, not sqlnet.ora.

                                     Rick

"Al" <al_at_work> writes:

>
> Passwords are only encrypted with SQL*Net 2.3 at the client end. Note that
> SQL*Net will , by default, send a second attempt with an unencrypted
> password if the first logon attempt fails. Set the parameter
> ora_encrypt_login to TRUE in order to prevent this from happening. This is
> done in the SQLNET.ORA file for 16-bit, and in the registry for 32-bit.
>
> Prior releases of SQL*Net will not encrypt the passwords.
>
>
> rwessman_at_us.oracle.com wrote in message ...
> >"Doug Swanson" <104155.2074_at_compuserve.com> writes:
> >
> >>
> >> I've heard somewhere that Oracle supports or has it's own encryption
> >> algorithm. If this is true how would I invoke it and/or where is some
> >> information about encryption on Oracle. I need the ability to protect
> >> logon id's and passwords connecting to Oracle. Currently we're running
> >> Oracle 7.3 on a unix box. 2-tier powerbuilder client server applications
> >> accessing it across a lan.
> >>
> >> tia
> >> ds
> >I believe that you are referring the Advanced Networking Option. It's a
> >separate option that you need to order. Contact your Oracle sales
> >representative. He can assist you in ordering it.
> >
> >BTW, user passwords are always encrypted in Oracle, with or without ANO.
> >
> >
> >--
> > Rick
> > Rick Wessman
> > Middleware Security Products
> > Oracle Corporation
> > rwessman_at_us.oracle.com
Received on Mon Dec 29 1997 - 00:00:00 CST