Re: SQL*NET/orasrv security problem

From: Siqiao Li <sli_at_ascii.csc.lsu.edu>
Date: 6 Apr 1994 16:37:00 GMT
Message-ID: <2nuofc$2di8_at_te6000.otc.lsu.edu>

In article <2nu6lp$ng7_at_hafro.is> gunnaro_at_hafro.is (Gunnar Orvarsson) writes:
>We are running Oracle/7 and SQL*NET's orasrv on a Unix server. We would
>...
>This would be great, if we could allow connections from CERTAIN MACHINES
>MACHINES ONLY, i.e. those that are on our network or in our administrative
>domain. But unfortunantely, this doesn't seem to be the way orasrv works.
>Allowing this kind of access to workstations on our network seems to enable
>users with the same login name on ANY machine on the Internet to connect to
>our database.
>
>So my question is:
>Does anyone know a way to make orsrv allow connections from certain machines
>only? Are there any ways at all to prevent logins from machines from the
>outside (and staying on the Internet)? Might there exist some public domain
>security packages to take care of this?

Try to implement the 'firewall' in your router to interent so that you can restrict incoming packets on certain ports(ie. 1525 for oracle, 20 and 21 for ftp). At the software level, you can run something like Kerberos(not sure for the spelling) to authenticate internet machines.

ciao

--SQL Received on Wed Apr 06 1994 - 18:37:00 CEST

This message: [ Message body ]
Next message: Karel Sprenger: "Re: SQL*NET/orasrv security problem"
In reply to Gunnar Orvarsson: "SQL*NET/orasrv security problem"
Next in thread: Karel Sprenger: "Re: SQL*NET/orasrv security problem"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message