Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> RE: new paper on direct access in C to the SGA

RE: new paper on direct access in C to the SGA

From: Goulet, Dick <DGoulet_at_vicr.com>
Date: Tue, 15 Jun 2004 14:27:12 -0400
Message-ID: <4001DEAF7DF9BD498B58B45051FBEA650146C3CA@25exch1.vicorpower.vicr.com> 





Well, I know some folks here are not going to like me very much, but I for one have little respect for those who publish such hacks and not too much more for those vendors that use them.  As I've said before, if you can read a memory chunk you sure as heck can write to it as well thereby introducing a backdoor for malicious code.  BTDT, under supervision of course but damn it was fun.



Dick Goulet


Senior Oracle DBA


Oracle Certified 8i DBA



-----Original Message-----



From: Pete Finnigan [mailto:oracle_list_at_peterfinnigan.demon.co.uk]
Sent: Tuesday, June 15, 2004 4:03 AM


To: oracle-l_at_freelists.org


Subject: new paper on direct access in C to the SGA




Hi,



If anyone is interested Miladin Modrakovic (who wrote the recent
oradebug paper) has written a new paper on direct access to the SGA in
C. This is extending Kyle Haileys earlier presentation on the same
subject. 



Miladin has presented a Pro*C program that demonstrates access to the
SGA by sampling session waits hundreds of times per second and storing
the results in an Oracle table for later analysis. The paper gives a
good practical example of how to use this technique.



The paper can be found at http://www.petefinnigan.com/other.htm - there
is also a link there to Kyles earlier presentation.



kind regards



Pete


-- 



Pete Finnigan


email:pete_at_petefinnigan.com


Web site: http://www.petefinnigan.com - Oracle security audit specialists
Book:Oracle security step-by-step Guide - see http://store.sans.org for details.





Please see the official ORACLE-L FAQ: http://www.orafaq.com




To unsubscribe send email to:  oracle-l-request_at_freelists.org
put 'unsubscribe' in the subject line.


--



Archives are at http://www.freelists.org/archives/oracle-l/

FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html


-----------------------------------------------------------------

----------------------------------------------------------------

Please see the official ORACLE-L FAQ: http://www.orafaq.com


----------------------------------------------------------------

To unsubscribe send email to:  oracle-l-request_at_freelists.org


put 'unsubscribe' in the subject line.


--



Archives are at http://www.freelists.org/archives/oracle-l/
FAQ is at http://www.freelists.org/help/fom-serve/cache/1.html


Received on Tue Jun 15 2004 - 13:24:11 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US