http://www.petefinnigan.com/weblog/entries PeteFinnigan.com's weblog is the only weblog dedicated to Oracle security. en-gb Copyright PeteFinnigan.com Ltd 2005, All rights reserved. All trademarks are the property of their respective owners and are hereby acknowledged 2010-03-17T22:31:06Z Pete Finnigan (mailto:webmaster\@petefinnigan.com) Pete Finnigan (mailto:pete\@petefinnigan.com) PeteFinnigan.com's weblog is the only weblog dedicated to Oracle security. Pete Finnigan's Oracle security weblog http://www.petefinnigan.com/images/company_logo_1.gif http://www.petefinnigan.com/weblog/entries http://www.petefinnigan.com/weblog/archives/00001314.htm <p> I did two webinars this week with Sentrigo titled "The right way to Secure Oracle", these went well. The slides for the talks have been added to my Oracle Security white papers page . I have also written a short....<a href="http://www.petefinnigan.com/weblog/archives/00001314.htm">[Read More]</a> </p> <p>Posted by Pete On 12/03/10 At 01:59 PM</p> http://www.petefinnigan.com/weblog/archives/00001313.htm <p> I saw Charles Hoopers post titled " Why Doesn’t This Trigger Work â€" No Developer Tools Allowed in the Database " via my Oracle blogs aggregator and read it with interest as its related to issues i come across with....<a href="http://www.petefinnigan.com/weblog/archives/00001313.htm">[Read More]</a> </p> <p>Posted by Pete On 10/03/10 At 11:08 AM</p> http://www.petefinnigan.com/weblog/archives/00001312.htm <p> It has been quite a while since my last blog post; i keep promising to post more often and even worse I have a long list of things to blog about but I don't seem to get enough time recently....<a href="http://www.petefinnigan.com/weblog/archives/00001312.htm">[Read More]</a> </p> <p>Posted by Pete On 08/03/10 At 04:04 PM</p> http://www.petefinnigan.com/weblog/archives/00001311.htm <p> SANS, Mitre and a lot of security experts have just completed the top 25 most dangerous programming errors list. This is a really useful resource and anyone developing code not just against Oracle but in general should be concerned to....<a href="http://www.petefinnigan.com/weblog/archives/00001311.htm">[Read More]</a> </p> <p>Posted by Pete On 23/02/10 At 01:42 PM</p> http://www.petefinnigan.com/weblog/archives/00001310.htm <p> It has been a while since my last blog post as I have been extremely busy over the last weeks and this blog post is being posted straight after finishing a customer training session using the clients internet connection (with....<a href="http://www.petefinnigan.com/weblog/archives/00001310.htm">[Read More]</a> </p> <p>Posted by Pete On 17/02/10 At 04:01 PM</p> http://www.petefinnigan.com/weblog/archives/00001309.htm <p> I was away most of last week to teach my class How to perform a security audit of an Oracle database in Istanbul, Turkey including the travel out and back. It was a good class, very well attended and some....<a href="http://www.petefinnigan.com/weblog/archives/00001309.htm">[Read More]</a> </p> <p>Posted by Pete On 02/02/10 At 06:37 PM</p> http://www.petefinnigan.com/weblog/archives/00001308.htm <p> There has been a thread on my forum for a couple of years discussing the Oracle listener password algorithm. The thread is titled " Key and algo for encrypting the listener password ". This thread discussed the issue of being....<a href="http://www.petefinnigan.com/weblog/archives/00001308.htm">[Read More]</a> </p> <p>Posted by Pete On 01/02/10 At 07:39 PM</p> http://www.petefinnigan.com/weblog/archives/00001307.htm <p> Dennis has made two great posts about Oracle rootkits on his blog. The first is about creating a backdoor into the Oracle binaries and logon process/function by replacing the C library function kziaia() so that if the user presented is....<a href="http://www.petefinnigan.com/weblog/archives/00001307.htm">[Read More]</a> </p> <p>Posted by Pete On 20/01/10 At 02:06 PM</p>