Call: +44 (0)1904 557620 Call
Blog

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "A nice post about risk based security"] [Next entry: "9.2.0.8 is to be a terminal release"]

Laurent on mod_plsql



I saw a post by Laurent over a week ago with a simple example of how to use mod_plsql and the Apache web server. Laurent's post is titled "mod_plsql". This is fantastic technology, I run a website and install and configure software. I write software in many languages when i get any chance to do so, I appreciate how easy it is to create a web based application with Oracle. This is so easy that its scary, the problem for me is the security risks. If you can expose a database to a network and create nice browser based applications this easily there have to be risks. Take a look at laurents post, its interesting reading. Look for the obvious security problem.