Hmmmm...just thinking. How much of the sensitive info is encrypted to/from the client? If us SA/DBA folks can't get around system-level and DB-level audits (made more difficult in 9i), network snooping and forging of unencrypted data right from the DB server could be another hole to exploit (one reason why my paranoia prevents me from viewing my paycheck online and unencrypted here at work).
BTW, I can't find any hint of a BBDE program on 9iR2/Winders nor 8.1.7 on HP. I would like it to learn more about block level storage (on our TEST DBs, obviously!). Anyone with more info on this? Rich Rich Jesse System/Database Administrator [EMAIL PROTECTED] Quad/Tech International, Sussex, WI USA > -----Original Message----- > From: Mercadante, Thomas F [mailto:[EMAIL PROTECTED]] > Sent: Wednesday, November 27, 2002 10:20 AM > To: Multiple recipients of list ORACLE-L > Subject: RE: Oracle OS level security > > > Let's face it. The SA's have all the privs in the world. > > Finally, with 9i, and connect internal going away, we can prevent > unauthorized connections to the database to prevent data > snooping. But we > all know that there are ways around everything in this world. > > It comes down to this simple point: > The organization has to trust someone with the keys to the > treasury. It is > unavoidable. > > Tom Mercadante > Oracle Certified Professional -- Please see the official ORACLE-L FAQ: http://www.orafaq.com -- Author: Jesse, Rich INET: [EMAIL PROTECTED] Fat City Network Services -- 858-538-5051 http://www.fatcity.com San Diego, California -- Mailing list and web hosting services --------------------------------------------------------------------- To REMOVE yourself from this mailing list, send an E-Mail message to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing).
