RE: Encrypting a password

Rick_Stephenson Tue, 31 Jul 2001 13:08:35 -0700

>From my understanding, the OS takes the unencrypted password, and encrypts
it.  It then compares that encrypted password with the password stored in
the /etc/passwd file to validate the user logging in.

After further review, it appears that I will have to use external
procedures to accomplish this.  Is there a good place or book to get more
information on creating libraries and external procedures in Oracle?

Thanks for your help,

Rick Stephenson
Oracle/Sybase Database Administrator
[EMAIL PROTECTED]
Ovid Technologies, Inc.
9350 South 150 East, Suite 300
Sandy, UT 84070
(801) 304-3000 ext. 2593


                                                                                       
                                  
                    "Deshpande, Kirti"                                                 
                                  
                    <kirti.deshpande@ve        To:     [EMAIL PROTECTED], 
[EMAIL PROTECTED]                    
                    rizon.com>                 cc:                                     
                                  
                                               Subject:     RE: Encrypting a password  
                                  
                    07/31/2001 12:24 PM                                                
                                  
                                                                                       
                                  
                                                                                       
                                  



           >So if the OS can't compare passwords with what is stored in the
database,
           >then nobody will be able to log into the Unix box.
I am sorry, but I can't understand this. How would this work?
When I type my password at the OS prompt, the password is not encrypted as
it goes on the wire. When the OS receives it, it will compare it with the
decrypted password for my userid from /etc/passwd (/etc/shadow etc) to
check
if it is valid or not.
How and where Oracle DB be accessed and by what type of process?
Are you writing some customized routines to intercept the OS login process
to something 'special' ?  Sounds very interesting if it is so..

Thanks,

Regards.

- Kirti Deshpande
  Verizon Information Services
   http://www.superpages.com

> -----Original Message-----
> From:         [EMAIL PROTECTED] [SMTP:[EMAIL PROTECTED]]
> Sent:         Tuesday, July 31, 2001 10:29 AM
> To:           Multiple recipients of list ORACLE-L
> Subject:           RE: Encrypting a password
>
> The problem is that I need one to encrypt a password in the same manner
as
> the Sun OS.  This is because we use the database to populate /etc/passwd.
> So if the OS can't compare passwords with what is stored in the database,
> then nobody will be able to log into the Unix box.
>
> Thanks for you help,
>
> Rick Stephenson
>
>
>




-- 
Please see the official ORACLE-L FAQ: http://www.orafaq.com
-- 
Author: 
  INET: [EMAIL PROTECTED]

Fat City Network Services    -- (858) 538-5051  FAX: (858) 538-5051
San Diego, California        -- Public Internet access / Mailing Lists
--------------------------------------------------------------------
To REMOVE yourself from this mailing list, send an E-Mail message
to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L
(or the name of mailing list you want to be removed from).  You may
also send the HELP command for other information (like subscribing).
RE: Encrypting a password

Reply via email to
