Re: Oracle client security

  • From: Jared Still <jkstill@xxxxxxxxxx>
  • To: Oracle-L Freelists <oracle-l@xxxxxxxxxxxxx>
  • Date: Sun, 08 Aug 2004 08:13:48 -0700

On Sat, 2004-08-07 at 20:33, Alex Feinstein wrote:
> Rich,
> Parameter ORA_ENCRYPT_LOGIN used only for client 7.1+ connecting to 7.0
> database.
> In all other cases its value irelevant.
> See note 271825.1

This explains why the 'feature' exists, but the use 
of ORA_ENCRYPT_LOGIN is hardly irrelevant. 

For versions of Oracle client < 9i, setting ORA_ENCRYPT_LOGIN
is still not a bad idea, as a failure to connect will still
result in a password being sent in the clear.


Please see the official ORACLE-L FAQ:
To unsubscribe send email to:  oracle-l-request@xxxxxxxxxxxxx
put 'unsubscribe' in the subject line.
Archives are at
FAQ is at

Other related posts: