For client/server encrypted communications, look at Oracle's Advanced Security and Networking Options. All of my Oracle servers required encrypted communication, else they won't allow the communication link. This is all setup by modifying the sqlnet.ora parameter files on all of the clients and on the database server. Specifically, the SQLNET.ENCRYPTION_CLIENT, SQLNET.ENCRYPTION_TYPES_CLIENT, SQLNET.CRYPTO_CHECKSUM_CLIENT, and SQLNET.CRYPTO_CHECKSUM_TYPES_CLIENT options. There are similar options for the server environment. One caveat: test all versions of the Oracle client software version you use or support (8.1.6, 8.1.7, 9.0.1, 9.2.0) versus the target database server to ensure all your encryption choices work correctly. Sam Hillaire MCSE, MCDBA, OCA9i --- bsecat_private wrote: > How can programmers securely pass user ids and passwords from their > applications into an Oracle database. I understand that for web based > applications they could simply use SSL; however, for client/server > applications, are there any good solutions out there? > > Thanks in advance, > Brett > > > > __________________________________________________ Do You Yahoo!? Yahoo! Health - Feel better, live better http://health.yahoo.com --------------------------------------------------------------------- This message (including any attachments) contains confidential information intended for a specific individual and purpose, and is protected by law. If you are not the intended recipient, you should delete this message and are hereby notified that any disclosure, copying, or distribution of this message, or the taking of any action based on it, is strictly prohibited.
This archive was generated by hypermail 2b30 : Wed Aug 07 2002 - 09:41:20 PDT