Penetration Testing mailing list archives

Re: oracle tool

From: "Yvan Laverdiere" <laverdiy () videotron ca>
Date: Thu, 7 Jun 2001 12:43:13 -0400

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Be careful with brute-force attacks on Oracle databases. If the DBA
correctly configures the database instance, he/she will set the
FAILED_LOGIN_ATTEMPTS to a low value, which leads to a locked account
if you brute-force it. You then have to wait until the
PASSWORD_LOCK_TIME value expires to try it again....


Yvan

- ----- Original Message ----- 
From: "Paulo Braga" <pbx2k () excite com>
To: <pen-test () securityfocus com>
Sent: Thursday, June 07, 2001 12:01 PM
Subject: oracle tool

Hello all!

Anybody have any tools to perform a brute-force atack on oracle
databases? I have use ISS Database Scanner but I want other tool on
command line.  

Thanks,






_______________________________________________________
Send a cool gift with your E-Card
http://www.bluemountain.com/giftcenter/


-----BEGIN PGP SIGNATURE-----
Version: PGPfreeware 7.0.3 for non-commercial use <http://www.pgp.com>

iQA/AwUBOx+vHphS/wkrcBK6EQJvvACcDW93CcQVhf67GL7wHERlTXyrfT4AnRw6
sOKppqfK0QnxG4+jcuyHhEsi
=DerJ
-----END PGP SIGNATURE-----

Current thread:

oracle tool Paulo Braga (Jun 07)
- Re: oracle tool Yvan Laverdiere (Jun 07)
- Re: oracle tool Talisker (Jun 07)
- Re: oracle tool James W. Abendschan (Jun 07)
  - Re: oracle tool Tom Vandepoel (Jun 08)
- Re: oracle tool spi (Jun 07)