This system is for the use of authorized users only.

Database Management and Performance Security, Compliance and Identity Management
| Jan 31, 2012 09:13 +0000

How to bypass the login banners?
There is actually more than one banner to bypass. One of the them is the message of the day banner, commonly located in /etc/motd. Typically friendly, example in AIX
****************************************************…

My name is Scott and I have a pet tiger

Database Applications Development Security, Compliance and Identity Management
| Jan 27, 2012 01:55 +0000

It seems I drafted this one about 18 months ago, worth sharing…Me (back in 2000):”Hi, my name’s Scott. I’m your new developer”My First DBA:”Here’s your db account, just don’t change your password to ‘tiger’”Well, it wasn’t quite like that, but it was…

Fundamental Oracle Flaw Revealed (Part II)

Database Management and Performance Security, Compliance and Identity Management
| Jan 26, 2012 04:49 +0000

In my previous blog, I tried to explain why the fundamental Oracle flaw is dangerous. On the other hand, in my tests I couldn't find a way to pass a higher SCN to a target DB to crash it. Since then, I'm trying to verify that this flaw can be c…