Call: +44 (0)1904 557620 Call
Blog

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Howard Rogers has a new ebook out"] [Next entry: "Patrik Karlsson releases OScanner - A new free Oracle security vulnerability scanner"]

Oracle passwords : A few not too well known facts



I found an interesting short paper this morning about some of the not too well known facts about passwords. The paper http://www.oriolecorp.com/papers/passwords.html - (broken link) Oracle passwords : A few not too well known facts covers things I knew about previously and have written about previously but this paper brings some good facts together in one place.

It shows the undocumented (but everyone knows about it) VALUES version of the ALTER USER statement, it also explains very well why the character set that can be used for passwords is limited and it also gives advice on embedding passwords in files by using control characters in the password.

A good short paper, worth reading.