[CALUG] Putting a Oracle User ID and Password in the Perl Script.
Jason Dixon
jason at dixongroup.net
Wed Mar 25 16:07:54 EDT 2009
On Wed, Mar 25, 2009 at 04:00:31PM -0400, Dustin J. Mitchell wrote:
> On Wed, Mar 25, 2009 at 3:53 PM, Eldon Ziegler <eldonz at atlanticdb.com> wrote:
> > If Python is an option, you can leave only the compiled script installed
> > and a bit of mangling will keep the ID and password from showing up in a
> > dump.
>
> To be fair, you can do the same thing in perl (Acme::Bleach).
>
> You could do it in shell with a simple rot13 'tr' invocation, too.
>
> Obfuscation is not the same thing as security.
Maybe I'm missing something, but has someone pointed out why my original
recommendation is not sufficient?
* chown <nobody-type-user> script
* chmod 700 script
* allow %script-users to execute /path/to/script in sudoers
--
Jason Dixon
DixonGroup Consulting
http://www.dixongroup.net/
More information about the CALUG
mailing list