How do you handle logins for applications that log into the database
using a common login? I've seen it handled through hard-coded
username/pass in the app, password file in 'secure' directories and
ops$ account with remote_os_authent set to true on a server being
accessed from a 3rd tier web
Our method was as follows:
1. Give each user an ID on the system.. a very limited ID.
2. The ID would have roles that were given to it but were password
protected . This way the user could not log into something like SQL+ and
see the tables (it was secured radiation dose level