Re: encrypting a remedy password.

Wed, 26 Sep 2012 05:52:18 -0700 

**
Hi,

If your programs only push data into a table, you can use an
unprivileged user (no group, read license, no password). This is the
best way to handle the password : don't use one. :)
If you need a privileged user then you could use an encryption lib like Base64.

On Wed, Sep 26, 2012 at 2:09 PM, Frex Popo <frexp...@yahoo.fr> wrote:
> **
>
> The sql log shows an insert statment with the password encrypted:
>
> INSERT INTO T30 (............C102,C101........) VALUES
> ('..............KKKKKKKKKKKKKKKK/BBBBBBB','user1'..............')
> SQL> select C101, C102 from aradmin.T30 where C101 = 'user1';
> C101
> --------------------------------------------------------------------------------
> C102
> --------------------------------------------------------------------------------
> user1
> KKKKKKKKKKKKKKKK/BBBBBBB
> But have not tried this yet.... Any thoughts will be appreciated.
>
> De : Frex Popo <frexp...@yahoo.fr>
> À : "arslist@ARSLIST.ORG" <arslist@ARSLIST.ORG>
> Envoyé le : Mercredi 26 septembre 2012 13h15
> Objet : encrypting a remedy password.
>
> Hi everyone ,
>
> Would anyone who has done something similar and encountered himself having
> the situation could give us some hints on how to resolve this issue with
> minimum effort i.e. without making any code changes.
> We have a set of Java API programs which connect to an ARS server and create
> some forms data. These scripts read a password from a flat file among other
> stuff (for easy maintenance so to say). So without making any changes to any
> of the Java code, is there an option of encrypting the password which the
> java could still read and pass to the API call which established the remedy
> connection?
> There are two places where I see the password references in every java
> script.
> remedypassword = prop.getproperty("remedypass");
> setpassword(remedypassword);
> This by the way  is a 7.1 server running on a Sun Solaris 5.10 and an Oracle
> 10.
> Any thoughts would be very much appreciated.
> frex
>
>
> _attend WWRUG12 www.wwrug.com ARSlist: "Where the Answers Are"_

_______________________________________________________________________________
UNSUBSCRIBE or access ARSlist Archives at www.arslist.org
attend wwrug12 www.wwrug12.com ARSList: "Where the Answers Are"

Reply via email to