Question: I have a
[problem where the "ps -ef" command shows all SQL*Plus sessions,
including the user ID's and passwords! As the DBA, how can
I mask the passwords so that they cannot be seen from UNIX or
Linux?
Answer: There are
several methods for hiding or suppressing the SQL*Plus and other
command line utilities passwords (SQL*Loader, RMAN, Data Pump).
The most obvious way to mask the Oracle command line password is
to not specify it from the command line:
root> sqlplus /nolog
SQL> connect scott/tiger
But for batch jobs, you must have the
passwords in a file somewhere. One common method is to
hide the password into a protected flat file with 700
permissions:
echo mysecretpassword > /tmp/mypass
chomd 700 /tmp/mypass
cat /tmp/mypass | sqlplus -s $USER <<
eoj >> $LOGFILE 2>&1
