Learning is not a spectator sport
Connor McDonald on SQL and the Oracle Database
Tag: security
Quick and easy masking
I had a request from a client a while back regarding masking of data. They had an application with sensitive data in the Production environment (where access and audit were very tightly controlled) but the issue was how to respect that sensitivity in non-Production…
Connections with a wallet – redux
Wow…it is nearly 4 years ago now that I wrote an article on connecting to the database via a wallet to avoid having to hard code passwords into script. That article is here: https://connor-mcdonald.com/2015/09/21/connection-shortcuts-with-a-wallet/ So I went to do a similar exercise on my…
My APEX was fine and then it wasn’t
I got a nasty shock this morning when I fired up my local Application Expression installation. It had been working fine and all of a sudden…just dead. I sounded like all of those family members that as I.T practitioners we have to deal with…
Your New Years Resolution
Aligning roughly with the calendar year, based on the Chinese zodiak we’re about to go from the year of the dog to the year of the pig. But for me, in the “Information Technology Zodiak” , 2018 was the year of the hack, just…
The strange place for INHERIT PRIVILEGES
A while back in an Office Hours session, I touched on a relatively new privilege in the database called INHERIT PRIVILEGES which is designed to avoid erroneous privilege escalation via AUTHID CURRENT_USER routines. You can watch the full video below But in a nutshell,…
Choosing a password scheme for the database
In the Security Guide there is a section to assist you with the decisions about what rules you might want to have in place when users choose passwords, namely attributes like the minimum length of a password, the types of characters it must (and…
Quick tip–database link passwords
If you are relying on database links in your application, think carefully about how you want to manage the accounts that you connect with, in particular, when it comes to password expiry. With a standard connect request to the database, if your password is…
