Home > Ask the Oracle Database / Applications Experts > Questions & Answers > Securing username and password
Ask The Oracle Expert: Questions & Answers
EMAIL THIS

Securing username and password

Dan Norris EXPERT RESPONSE FROM: Dan Norris

Pose a Question
Other Oracle Categories
Meet all Oracle Experts
Become an Expert for this site
>
QUESTION POSED ON: 19 May 2004
Can you tell me an easy way to secure managing username and password for an application in the Windows platform? We use them to connect to the Oracle server and I don't want to put them in the code. Also I want to trace the changes made by users on the database tables by date and time and who... can you help with that?

>
The best way to secure a password is to not use a password at all. You may want to investigate the possibility of allowing your application to login to the database using operating system authentication if it is a 3-tier application. If you have a 2-tier application, then you can use database user accounts as the login for each user. While this isn't a popular choice, I don't know why more people continue to bypass the security in the database product that you've already purchased.

As for DML changes to database tables, that's what the auditing subsystem is meant to record. If you're looking for tracking changes to the schema (like ALTER), then you can use a system event trigger on the ALTER statements in the database to create your own audit trail of those changes (and even prevent them if you'd like).


Digg This!    StumbleUpon Toolbar StumbleUpon    Bookmark with Delicious Del.icio.us   



RELATED RESOURCES
2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems
Search Bitpipe.com for the latest white papers and business webcasts
Whatis.com, the online computer dictionary



Search and Browse the Expert Answer Center
Search and browse more than 25,000 question and answer pairs from more than 250 TechTarget industry experts.
Browse our Expert Advice



Oracle White Papers: Fusion Middleware
HomeNewsTopicsTipsAsk the ExpertsMultimediaWhite PapersProductsBlogs
About Us  |  Contact Us  |  For Advertisers  |  For Business Partners  |  Site Index  |  RSS
SEARCH 
TechTarget provides technology professionals with the information they need to perform their jobs - from developing strategy, to making cost-effective purchase decisions and managing their organizations' technology projects - with its network of technology-specific websites, events and online magazines.

TechTarget Corporate Web Site  |  Media Kits  |  Site Map




All Rights Reserved, Copyright 2003 - 2009, TechTarget | Read our Privacy Policy 		  TechTarget - The IT Media ROI Experts