Auditing an Oracle database for security issues is very important. PeteFinnigan.com provides all of the information and tools that you will need Click here for details of PeteFinnigan.com Limited's detailed Oracle database security audit service Click here for details of PeteFinnigan.com Limited's Oracle Security Training Courses
There are 35 visitors online    

Pete Finnigan's Oracle security weblog


Home » Archives » November 2006 » 10gR2 and failed_login_attempts

[Previous entry: "Oracle password crackers"] [Next entry: "UKOUG starts tomorrow"]

10gR2 and failed_login_attempts

November 8th, 2006 by Pete

Post to del.icio.us   Post to Furl   Digg!

There was a nice post on the pythian group today about the fact that Oracle since 10.2.0.2 has set a value for the failed_login_attempts parameter of the DEFAULT profile. This caused an issue for Alex Gorbachev. Its an interesting conflict between adding security to Oracle and causing problems with existing systems and migrations. Also note my comments on defining specific values for profiles for different groups of users. The post is titled "Oracle 10.2 Migrations – Account LOCKED(TIMED) and FAILED_LOGIN_ATTEMPTS"


November 2006
SMTWTFS
   1234
567891011
12131415161718
19202122232425
2627282930  

About

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

Search weblog

Home and Archives

Weblog Home
Weblog Archives

Recommended reading

Oracle Security Step-by-Step (Version 2.0)

Useful links

Home
Oracle Security Tools page
Oracle security papers
Oracle Security alerts

Other useful blogs

Web Development
SQL Server Security

Syndication - Feeds

RSS 1.0 FEED
RSS 2.0 FEED
Atom 0.3 FEED
Powered by gm-rss 2.0.0

Other Links


Valid XHTML 1.0!