secure SQL_PASSWORD environment variable?
Posted 07 November 2005 - 04:03 PM
currently the glovia user password is visible in plain text .. is there any way to secure it like the way the password appears in /etc/passwd?
Posted 07 November 2005 - 07:04 PM
There is no way to secure it when you set SQL_USERNAME and SQL_PASSWORD.
You will have to change to use O/S Authenication in Oracle.
Then Oracle uses your unix login to verify authentication.
Which means you dont need to store the password anywhere.
Posted 08 November 2005 - 03:29 AM
One of our very security conscious clients embedded the plain text password in such a fashion that it is hidden from the user's environment and written in a file that none but root have access to. (I forget if they specifically wrote it into /etc/pro4.ini or a different file.)
Any how, they were not able to encrypt the password, but were reasonably comfortable with their solution. If you want, I can get more specific details from them.
Posted 08 November 2005 - 10:54 AM
Reply to this topic
0 user(s) are reading this topic
0 members, 0 guests, 0 anonymous users