Yaping's Weblog

January 9, 2009

Oracle password algorithm

Filed under: Oracle,Security — Yaping @ 5:11 am

Recently I read several Oracle security articles, they’re related to Oralce password algorithm.
In the article, it details how Oracle use DES algorithm in CBC mode to generate password hash value
and how Oracle process TNS native authentication.

You can find them with the following links.
The next level of Oracle attacks (http://freeworld.thc.org/papers/thc-orakelsniffert.pdf)
TNS native authentication (http://www.oxid.it/topics.html)
Oracle 9i TNS 3DES authentication details
Oracle 10g TNS AES-128 authentication details
Oracle 11g TNS AES-192 authentication details


1 Comment »

  1. Just passing by.Btw, your website have great content!

    Making Money $150 An Hour

    Comment by Mike — March 1, 2009 @ 12:48 pm | Reply

RSS feed for comments on this post. TrackBack URI

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Google+ photo

You are commenting using your Google+ account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )


Connecting to %s

Blog at WordPress.com.

%d bloggers like this: