Firewalls: Re: TCP port used for Oracle SQLNet

Firewalls
(March 1995)

Indexed By Thread: [Previous] [Next]

Subject:	Re: TCP port used for Oracle SQLNet
From:	greep @ datatools . com (Steven Tepper)
Date:	Fri, 31 Mar 95 10:07:04 PST
To:	Firewalls @ GreatCircle . COM
Cc:	greep @ datatools . com
In-reply-to:	<199503301659 . IAA19989 @ c3p0> (vyau @ kerner . com)

> From: vyau @
 kerner .
 com (Vincent Yau)
> 	Wonder if anyone has knows about Sybase and
> 	whether it will also subject to similar sort of sniffing
> 	attacks?

It appears that Sybase does transmit clear-text passwords.  Since the
tcp port number is defined in the Sybase "interfaces" file rather than
in /etc/services, a security administrator may not know what ports are
vulnerable.  

-greep
 chief cyber-haruspex

References:

Re: TCP port used for Oracle SQLNet
From: vyau @ kerner . com (Vincent Yau)

Indexed By Date	Previous:	Re: 95% undetected? From: ches @ plan9 . att . com
Indexed By Date	Next:	Re: Anti Satan Tool From: rmck @ sandfiddler . paragon-systems . com (Bob McKisson)
Indexed By Thread	Previous:	Re: TCP port used for Oracle SQLNet From: vyau @ kerner . com (Vincent Yau)
Indexed By Thread	Next:	Routing problems on HP9000 running HP-UX version 9.05 From: Jorgen Bo Madsen <Jorgen . Bo . Madsen @ uni-c . dk>