Yes this is an issue but OS level privileges should take care of it. Wallet
created with mkstore command has read/write permissions granted to owner
only. Also you can use ACL on filesystems to grant read permissions to
additional users. It's not perfect - I know, but still better than dot
files.
--romas
On 3/6/08, Yechiel Adar <adar666@xxxxxxxxxxxx> wrote:
>
> The trouble with this method is:
> If he can see your scripts on the server, he can do sqlplus
> /@production_database on the server, the same as you.
> The wallet does not care who use it and in effect it is like using the
> user name and password on the server.
>
> I am preparing some scripts for a new server and I would like advice how
> to overcome this problem.
>
> Adar Yechiel
> Rechovot, Israel
>
>
>
> Roman Podshivalov wrote:
> > Joe,
> >
> > Oracle Secure External Password Store feature.
> >
> http://download.oracle.com/docs/cd/B19306_01/network.102/b14266/cnctslsh.htm#i1006413
> >
> >
> --
> http://www.freelists.org/webpage/oracle-l
>
>
>
