Yaping's Weblog

September 2, 2008

Oracle Security

Filed under: Oracle — Yaping @ 2:24 am
Tags:

If you can’t stop them getting in, catch them on the way out.

 

Topics

Password

DB Link

Password Cracking

Track Objects Changed/Accessed

SQL/Cursor Injection

Startup Files

Change Password with BBED

Vulnerable Packages

Network

 

Note: All test cases are done on Oracle 92040 or 92080 or 10203 or 11106 under RHEL AS 4 without CPU applied.

 

 

References

http://www.petefinnigan.com/

http://www.red-database-security.com/

http://www.databasesecurity.com/

http://www.ngssoftware.com/

http://www.toolcrypt.org/

http://www.freelists.org/

http://www.phenoelit.net/

http://www.soonerorlater.hu/

The Oracle Hacker’s Handbook: Hacking and Defending Oracle [by David Litchfield]

 

 

 

 

Advertisements

Leave a Comment »

No comments yet.

RSS feed for comments on this post. TrackBack URI

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

Blog at WordPress.com.

%d bloggers like this: