Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Running Batch Jobs without Exposing User ID/Passwords or Source of SQL statements?!

Running Batch Jobs without Exposing User ID/Passwords or Source of SQL statements?!

From: John <John_at_nospam.com>
Date: Sat, 3 Jul 2004 22:29:17 -0400
Message-ID: <1YJFc.6003$pY2.2768@lakeread01> 





Hi.



I have a number of batch jobs that are ran nightly on our Windows 2000 based
Oracle 8.1.7 (soon to be 9i) server.  I have these designed just right, so
the Windows Scheduled Tasks runs them and then a parser goes through the
output and, in case of errors, sends me a page...



The database is our financial system which requires users to login using
Oracle based user ID / Password.



Here are two concerns:



    
  
  1.   Right now, the batch files used to schedule the processes, parse the
output and generate Emails, have a set of Oracle User ID/Password hardcoded
in them. Ideally, I would want to use Windows authentication to schedule the
jobs so that passwords are not visible to others.

  
  2.   Of course, the source of the batch process is visible in SQL format and
can be viewed and, worse yet, modified by malicious hackers... Ideally, I
guess, most of the SQL processing could move to stored procedures...






Dare I mention SQLServer 2000?!  I had to recently pick that up to help
manage several other projects and am quite impressed by the way one creates
Jobs and processes that remain pretty much secure from these kind of issues.
I know Oracle must have similar features, but I am not familiar enough with
them and hope you can make appropriate suggestions...  How do others
approach these problems?



Thanks.
Received on Sat Jul 03 2004 - 21:29:17 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US