Hi Everyone, I have just had a paper published on securityfocus entitled "Detecting SQL Injection on Oracle" that covers quite a few methods to extract information in Oracle that can indicate if a SQL injection attempt has taken place. I particularly was looking to give examples of how to use different methods such as snoop, internal trace, network trace, log miner etc and to show how useful they are. I thought people here with an interest in Oracle might be interested in it as its sort of logging related. You can find it on securityfocus or there is a link to it on my site at http://www.petefinnigan.com/orasec.htm - its the first paper listed. kind regards Pete -- Pete Finnigan email:peteat_private Web site: http://www.petefinnigan.com - Oracle security audit specialists Book:Oracle security step-by-step Guide - see http://store.sans.org for details. _______________________________________________ LogAnalysis mailing list LogAnalysisat_private http://lists.shmoo.com/mailman/listinfo/loganalysis
This archive was generated by hypermail 2b30 : Mon Jul 28 2003 - 17:41:22 PDT