RE: password iin dba_users - Oracle 11

  • From: John Hallas <John.Hallas@xxxxxxxxxxxxxxxxxx>
  • To: Jared Still <jkstill@xxxxxxxxx>
  • Date: Wed, 21 Jan 2009 17:34:02 +0000

I saw that on my system Jared and didn't really understand it but I am sure I 
have head or read something that it is to do with migrating users.
I am happy to be corrected on the matter by anybody who knows better than me 
(which won't be that difficult)


From: Jared Still [mailto:jkstill@xxxxxxxxx]
Sent: 21 January 2009 17:28
To: John Hallas
Cc: Oracle-L Freelists
Subject: Re: password iin dba_users - Oracle 11

On Wed, Jan 21, 2009 at 5:48 AM, John Hallas 
<John.Hallas@xxxxxxxxxxxxxxxxxx<mailto:John.Hallas@xxxxxxxxxxxxxxxxxx>> wrote:


I understood that the old style password hash was there to support a database 
which has been migrated from 10g to 11g and converted to use the new case 
sensitive passwords.

As an ex 10g user changes his password or has an alter user command run against 
him he changes from the old hash to the new hash (which also includes case 
sensitivity) which is the reason why there is room to accommodate both hash 

I don't claim to know exactly why the hash and sha1 passwords are both included 
sys.user$, but that doesn't seem to fit the bill.

on an database

SQL> create user scott identified by tiger

SQL >select name, password, spare4
from sys.user$
where type#=1
and name = 'SCOTT';

NAME            PASSWORD             SPARE4
--------------- -------------------- 
SCOTT           F894844C34402B67     

Wm Morrison Supermarkets Plc is registered in England with number 358949. The 
registered office of the company is situated at Gain Lane, Bradford, West 
Yorkshire BD3 7DL. This email and any attachments are intended for the 
addressee(s) only and may be confidential. 

If you are not the intended recipient, please inform the sender by replying to 
the email that you have received in error and then destroy the email. 
If you are not the intended recipient, you must not use, disclose, copy or rely 
on the email or its attachments in any way. 

Wm Morrison Supermarkets PLC accepts no liability or responsibility for 
anything said in the email or its attachments and gives no warranty as to 
accuracy. It is the policy of Wm Morrison Supermarkets PLC not to enter into 
any contractual or other obligations by email. 

Although we have taken steps to ensure the email and its attachments are 
virus-free, we cannot guarantee this or accept any responsibility, 
and it is the responsibility of recipients to carry out their own virus checks. 

Other related posts: