Oracle Security is easier if you design for it
View Profile | WWW | Email
password for listener still needed?
« on: Sep 22nd, 2005, 3:07pm »
Quote | Modify
In 10g the listener is by default protected:
Security ON: Local OS Authentication
This means that only oracle (and maybe other in the dba/oinstall group?) can stop/start the listener. In older oracle releases (7,8, and 9i) I allways use a password to protect the listener and so I did for my new 10gr2 installation and when I ask for the status of the listener I get:
Security ON: Password or Local OS Authentication
But now I'm wondering if it is a good idea. If some other ordinary user gets to know my listener password he/she can stop it by doing a 'set password' first. So my preliminary conclusion is that a listener without a password is safer! Is this true or am I missing something?