Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: Encrypting tnsnames.ora Using OAS
Nick wrote:
> Hi everyone,
>
> We've encrypted a link between our 10g R2 database and 10g AS R3, using
> 256-bit AES. To test the encryption, we've sniffed packets on the
> wire. We've noticed that we cannot encrypt the tnsnames.ora
> information being passed during initial login, pw change, and when our
> connection pool is used up, thus creating a new connection. Does
> anyone have experience with this? I speculate that this information is
> passed in the clear b/c the key negotiation has not occured yet?
> Naturally, tnsnames information is critical and we would like to
> encrypt it if possible. I've seen the ssh port forwarding option, but
> we'd like to encrypt the data using AES, not ssh.
>
> TIA,
>
> //NC
Proper encryption can be arranged by using the proper tools, which is Oracle Advanced Networking Option. This can encrypt all traffic and is available as an extra option for the Enterprise Edition.
-- Sybrand Bakker Senior Oracle DBAReceived on Tue Aug 15 2006 - 09:34:17 CDT