Re: dumb++ security
From: Murray Watson (JunkDTectr@carolina.rr.com)Date: 02/21/02
- Next message: Anders Arnholm: "Re: Microsoft finally acknowledges the security drumbeats"
- Previous message: sigsimaack: "PF keywords,"
- In reply to: Buffy The Cache Coder: "dumb++ security"
- Next in thread: Nicholas Bachmann: "Re: dumb++ security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
From: JunkDTectr@carolina.rr.com (Murray Watson) Date: Thu, 21 Feb 2002 08:09:59 GMT
On 20 Feb 2002 13:50:51 -0800, In comp.security.unix,
buffcoder@hotmail.com says...
> Hello.
>
> I need some suggestions on how to make my company's product
> more secure from hackers. Currently our software
> consists of several batch programs that are usually run
> from the commandline.
>
> These programs read username/password from a text file in a
> user's home directory. This information is used into Oracle
> or Sybase database. If the user doesn't have permission
> to connect to either database, the program doesn't run.
Oracle has calls to accept the authentication performed by the OS,
whatever they logged in as becomes their Oracle user ID. No need to
pass anything.
Note the follow-up. While it's security, probably running on Unix,
really sounds like you're wanting database info.
-- Does the act of spamming drive companies out of business? or Do companies going out of business spam? There is a correlation. By spamming you are announcing to the world that you are going out of business.
- Next message: Anders Arnholm: "Re: Microsoft finally acknowledges the security drumbeats"
- Previous message: sigsimaack: "PF keywords,"
- In reply to: Buffy The Cache Coder: "dumb++ security"
- Next in thread: Nicholas Bachmann: "Re: dumb++ security"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
