| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Usenet -> c.d.o.server -> Re: Getting password for an enabled role in user session
You cannot find the password
it (AFAIK) is not stored anywhere - the encrypted (sorry, hashed) value is what is stored since that is what is required to secure the system. (And there is NO decipher package internally or externally. It is not needed)
Time for security approach rethink (methinks)
PS You really CAN'T find the password. Believe me.
"Daniel Morgan" <dmorgan_at_exesolutions.com> wrote in message
news:3DD3D637.6640B491_at_exesolutions.com...
> David Fowler wrote:
>
> > Environment Oracle 8.1.7.3
> >
> > Trying to get the role password for an enabled role (which was already
> > required by user to enable).
> >
> > Need this with the enabled existing roles along with a new role.
> >
> > This string will be sent to dbms_session.set_role( ); e.g. string
> > 'enabledrole1,enabledrole2 identified by <pwd>, newrole'
> >
> > dba_roles has required_password column. Where is the password kept.?
> >
> > Looked thru the manual for it.
> >
> > Process will be run to run is in invoker rights package procedure takes
the
> > roletring as argument.
> > calls dbms_session.set_role(rolestring)
> >
> > any ideas on how to build up the role string of existing roles enabled.
> >
> > tia,
> >
> > dave Fowler
> > oracle developer/dba
>
> When you say "trying to get the role password" do you mean something I'm
not
> getting or do you really think Oracle security is so lax that you can
decipher
> passwords?
>
> Daniel Morgan
>
Received on Fri Nov 15 2002 - 06:58:50 CST
 |
 |