Call: +44 (0)1904 557620 Call

Pete Finnigan's Oracle Security Weblog

This is the weblog for Pete Finnigan. Pete works in the area of Oracle security and he specialises in auditing Oracle databases for security issues. This weblog is aimed squarely at those interested in the security of their Oracle databases.

[Previous entry: "Some testing of orabf (Oracle password cracker) speed by Marcel-Jan"] [Next entry: "Happy first birthday to my Oracle security blog!"]

Oracle Proxy Users

I made a note a couple of weeks ago to have a look at a post on the IT-Eye blog titled "Oracle Proxy Users". I finally had a chance to have a quick look this evening. The post by talks about Lucas Jellema's post on the Amis blog where he talked about getting rid of USER. A lot of security code depends on USER already. Many web based applications use connection pooling and proxy users. Lucas talked about getting rid of USER and setting the user in application contexts. This IT-Eye post talks about using proxy users in 10g instead and the fact that USER works properly still. This is a good post and includes quite a lot of good links.