Re: is it ok to tighten up extproc security?

From: Bradd Piontek <piontekdd_at_gmail.com>
Date: Fri, 14 Nov 2008 09:12:13 -0600
Message-ID: <e9569ef30811140712v59023bdfw6cc45ec2a67f1133@mail.gmail.com>

I"m pretty sure you can check the listener log for any access to the EXTPROC process as well.

Bradd Piontek
"Next to doing a good job yourself,

        the greatest joy is in having someone
        else do a first-class job under your
        direction."

William Feather

On Fri, Nov 14, 2008 at 8:51 AM, Dan Norris <dannorris_at_dannorris.com> wrote:

> Sounds like everyone's recommending just removing it. Just in case you're
> the one site using extproc callouts, you might want to check dba_libraries
> to see if any have been registered. I'm not positive that an empty
> dba_libraries means that you're in the clear, but I'm pretty sure you'll see
> some obviously custom entries in there if someone has created a library for
> callouts.
>
> I don't believe that Peoplesoft uses any extproc callouts (it sort of
> violates their "database-independent implementation" style).
>
> Of course, you could just comment it out and wait for the phone to ring.
> That's probably what I'd do :).
>
> Dan
>

--
http://www.freelists.org/webpage/oracle-l

Received on Fri Nov 14 2008 - 09:12:13 CST

This message: [ Message body ]
Next message: Bellows, Bambi \(Comsys\): "RE: Change RAC name"
Previous message: Dan Norris: "Fwd: is it ok to tighten up extproc security?"
In reply to: Dan Norris: "Fwd: is it ok to tighten up extproc security?"
Next in thread: Michael Fontana: "RE: is it ok to tighten up extproc security?"
Reply: Michael Fontana: "RE: is it ok to tighten up extproc security?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message