Pete Finnigan's Oracle security weblog http://www.petefinnigan.com/weblog/entries PeteFinnigan.com's weblog is the only weblog dedicated to Oracle security. en-gb Copyright PeteFinnigan.com Ltd 2005, All rights reserved. All trademarks are the property of their respective owners and are hereby acknowledged 2024-02-19T13:45:13Z Pete Finnigan (mailto:webmaster\@petefinnigan.com) Pete Finnigan (mailto:pete\@petefinnigan.com) PeteFinnigan.com's weblog is the only weblog dedicated to Oracle security. Pete Finnigan's Oracle security weblog Pete Finnigan's Oracle security weblog http://www.petefinnigan.com/images/company_logo_1.gif http://www.petefinnigan.com/weblog/entries How to Secure all of Your Oracle Databases - Part 1 http://www.petefinnigan.com/weblog/archives/00001562.htm How do you know how secure your Oracle databases are? How secure should your Oracle databases be? These are interesting questions that we will cover in this three part post. This first part is going to cover the high level....<a href="http://www.petefinnigan.com/weblog/archives/00001562.htm">[Read More]</a> <p>Posted by Pete On 19/02/24 At 01:43 PM</p> Happy 21st Birthday to PeteFinnigan.com Limited http://www.petefinnigan.com/weblog/archives/00001561.htm My company PeteFinnigan.com Limited is 21 years old today!! It seems that time has gone so fast. When I started the company my oldest son was a baby and now he is almost 22 years old and works here in....<a href="http://www.petefinnigan.com/weblog/archives/00001561.htm">[Read More]</a> <p>Posted by Pete On 12/02/24 At 11:28 AM</p> Securing APEX http://www.petefinnigan.com/weblog/archives/00001560.htm I have liked APEX for many years and been involved in auditing and securing Oracle databases that include APEX for many years. What surprises me sometimes is that those deploying and developing an APEX application treat it like a box....<a href="http://www.petefinnigan.com/weblog/archives/00001560.htm">[Read More]</a> <p>Posted by Pete On 29/01/24 At 03:35 PM</p> Investigate an Oracle Database Breach http://www.petefinnigan.com/weblog/archives/00001559.htm I have investigated a number of possible and later proved data breaches in Oracle databases over the years and more recently just before Christmas I was doing the same again for a client. I cannot talk about any specifics of....<a href="http://www.petefinnigan.com/weblog/archives/00001559.htm">[Read More]</a> <p>Posted by Pete On 23/01/24 At 02:35 PM</p> Happy New Year for 2024 http://www.petefinnigan.com/weblog/archives/00001558.htm It has been a while since my last blog on the 29th December on the ACCESSIBLEBY Clause in PL/SQL . We had a well earned break after the New Year and myself, my wife and my youngest son visited New....<a href="http://www.petefinnigan.com/weblog/archives/00001558.htm">[Read More]</a> <p>Posted by Pete On 17/01/24 At 03:50 PM</p> ACCESSIBLE BY Clause in PL/SQL http://www.petefinnigan.com/weblog/archives/00001557.htm Over many years I have advocated using security in PL/SQL that checks that a caller is coming from the right place. For many years we have been able to do this with the call stack and test on our PL/SQL....<a href="http://www.petefinnigan.com/weblog/archives/00001557.htm">[Read More]</a> <p>Posted by Pete On 29/12/23 At 03:14 PM</p> Oracle Permissions and Statements or Actions http://www.petefinnigan.com/weblog/archives/00001556.htm If you look at the permissions in the database that are possible for a PL/SQL procedure then it looks, at first site to be a little odd. Lets see the possible permissions for PL/SQL (Procedure) SQL> select * from system_privilege_map....<a href="http://www.petefinnigan.com/weblog/archives/00001556.htm">[Read More]</a> <p>Posted by Pete On 28/12/23 At 10:05 AM</p> Cracking APEX Passwords http://www.petefinnigan.com/weblog/archives/00001555.htm As part of any security audit we want to test the security or strength of passwords as well as any password management settings. We test database passwords of course with PL/SQL crackers and also C based crackers. We test RAS....<a href="http://www.petefinnigan.com/weblog/archives/00001555.htm">[Read More]</a> <p>Posted by Pete On 22/12/23 At 12:53 PM</p>