Re: Sqlplus for Windows

From: Miron Berlin <Miron.Berlin2_at_verizon.net>
Date: Sat, 06 Apr 2002 12:13:49 GMT
Message-ID: <1EBr8.7834$7F1.2739_at_nwrddc02.gnilink.net>

Hi,

I think dos shell is not a secure environment. I am afraid it sends you to the point 'A', sorry, but when you speak of security, and you are serious, and in the context of dos shell the only honest answer is - change the shell or use some tool. The bright spot is to use "Scheduled Task" tool conveniently provided by the Control Panel. It is a nice wizard like tool that will let you save a windows password in a location that is encoded by host operating system so well that only very determined and highly trained professional can get it out after long hours of work on the actual box. Once scheduled task is setup it will run the sqlplus under windows account of your choice. This brings us back to using the ops accounts, but in the context of "Scheduled Task" it is 99.999 safe. In order for remote account to be useful client and server need to be on the same ( or trusted ) domain and share accounts with sufficient privileges, possible issues include proxies and firewall setup to allow connection over TCP/IP port 1521 or the one used in real environment.
This should solve it, hopefully, may be not as nicely as I would like to, but no new tools, no code, and good security.

Thanks,
Miron.

"Mark Styles" <news_at_lambic.co.uk> wrote in message news:pnpu9uscsjfa6gmo3hqdosnir4p4vvuj55_at_4ax.com...
> On Mon, 25 Mar 2002 18:36:26 +0100, Sybrand Bakker
> <postbus_at_sybrandb.demon.nl> wrote:
> >The convention is to use the DOS variant of sql*plus in .BAT files
> >so plus33.exe
>
> oh ok, because it behaves more like unix sqlplus?
>
> >(You'd better not use hardcoded execution paths in your
> >.BAT, please make sure your PATH is correct
>
> Yeah, just laziness on my part :)
>
> >and I don't see why you are using start, that isn't necessary either)
>
> I was using start because the command window disappears once the GUI
> starts, instead of hanging around. If I should use the command line
> sqlplus though, then start is indeed unnecessary.
>
> >The default database can be set using the LOCAL environment variable
> >or string value in HKLM\software\oracle, to the service name in your
> >tnsnames.ora
>
> Thanks.
>
> >You can always use ops$ accounts, so you can connect using a / only,
> >so no security hole.
>
> Hmm, I'm using a remote database, which precludes the use of ops$,
> doesn't it? Anyway, the powers that be here are very paranoid about
> security and would probably keel over clutching their chest at the
> suggestion of using ops$ accounts.
>
>
Received on Sat Apr 06 2002 - 14:13:49 CEST

This message: [ Message body ]
Next message: FC: "Re: Installing on win98"
Previous message: funkcity: "Re: Installing on win98"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message