[Previous entry: "Simple Oracle 11g Password check PL/SQL script"] [Next entry: "Does Oracle's Database Need More Security?"]
Memory resident backdoors in Oracle
October 31st, 2007 by PeteDavid emailed me last night to let me know about his paper for DeepSec in Vienna at the end of November. I for one am jealous to not be going over there, not just to hear David speak but also because I worked in Vienna for 18 months in the 1990's and enjoyed the city, people and work very much. We went over there last year around christmass for a holiday so got to re-aquaint with some people and also the city. It is a really nice place.
David has made a post on his blog about his talk titled "Memory-resident backdoors in Oracle / Deepsec conference", whilst there is not much detail in the actual post (we need to wait for the slides) its quite an interesting idea that i have mentioned a few times in the past. Modifying data in memory is a a good idea to avoid detection but there are still issues around the actual deployment of the backdoor in terms of a completely hidden backdoor / rootkit.
I have also added David's blog feed to my Oracle Blogs Aggregator so its now possible to pick up his posts there as well.
