It is long time I did not write any blog!! Coming back to R12 , I want you to introduce one feature of R12. In 11i and R12 we can say R12 very much advanced and much more secure . Below article will give small idea about these enhancements.
I am going to handle small security aspect of 11i which is improved and modified in R12.
In 11i you will find the these 2 files where password is hard coded without encryption.
1] iAS_TOP /Apache/modplsql/cfg/wdbsrv.app
2]ORACLE_HOME/reports60/server/CGIcmd.dat
In these two files you will find that password is hard coded and you can easily see apps password and get entry in the application.
Now in R12 you will not find these files. “modplsql” module is removed in R12 and you will not see these files with apps password.
There is one file called “ mapViewerConfig.xml “ ($INST_TOP/ora/10.1.3/j2ee/oafm/config/mapViewerConfig.xml) . When you change the mapviewer schema password you need change the password in this file and then in next oc4j start , this password will get picked up and get encrypted.
Below is the view how you will see that particular section in the file :
jdbc_host=”myhost.domain.com”
jdbc_sid =”r12test”
jdbc_port=”1521”
jdbc_user=”mdsys”
jdbc_password=”!mdsys”
jdbc_mode=”thin”
number of mappers=”3”
/>
0 comments:
Post a Comment