For client/server encrypted communications, look at Oracle's Advanced Security and Networking Options. All of my Oracle servers required encrypted communication, else they won't allow the communication link. This is all setup by modifying the sqlnet.ora parameter files on all of the clients and on the database server. Specifically, the SQLNET.ENCRYPTION_CLIENT, SQLNET.ENCRYPTION_TYPES_CLIENT, SQLNET.CRYPTO_CHECKSUM_CLIENT, and SQLNET.CRYPTO_CHECKSUM_TYPES_CLIENT options. There are similar options for the server environment. One caveat: test all versions of the Oracle client software version you use or support (8.1.6, 8.1.7, 9.0.1, 9.2.0) versus the target database server to ensure all your encryption choices work correctly. Sam Hillaire MCSE, MCDBA, OCA9i --- bsecat_private wrote: > How can programmers securely pass user ids and passwords from their > applications into an Oracle database. I understand that for web based > applications they could simply use SSL; however, for client/server > applications, are there any good solutions out there? > > Thanks in advance, > Brett > > > > __________________________________________________ Do You Yahoo!? Yahoo! Health - Feel better, live better http://health.yahoo.com
This archive was generated by hypermail 2b30 : Mon Aug 05 2002 - 15:55:17 PDT