The protecting wrapping across the programming language used to put in writing procedures and instructions within the Oracle Corp. database — PL/SQL — is not as ironclad as some would possibly count on, says Pete Finnigan, a well-known Oracle database safety guru and blogger. Actually, says Finnigan, who additionally serves as principal guide and head of database safety with Siemens Perception, it may be unraveled to provide hackers entry to delicate knowledge. On this SearchOracle.com podcast interview, Finnigan explains the precise nature of this downside and tells DBAs what they will do to guard their techniques.
|Oracle safety guru Peter Finnigan on the issue with PL/SQL|
- (00:38) Are you able to give us a short overview of the character of this PL/SQL safety downside as you see it?
- (03:42) It appears like a design downside fairly than one thing that may be simply patched. Is that this true?
- (04:57) What’s the worst case situation that might outcome from these issues?
- (06:20) Have you ever seen examples of oldsters exploiting these issues?
- (09:18) Oracle’s quarterly vital patch updates have been the topic of a lot criticism of late. What precisely is the issue right here and what do you suppose the corporate must do to repair it?
- (12:00) Oracle has had a repute for strong safety prior to now. Is that this nonetheless true right this moment?
- (13:45) What are among the largest safety issues going through Oracle DBAs right this moment, and what issues do you see on the horizon?
- Oracle knowledgeable warns of weak point in PL/SQL: A widely known Oracle bug hunter says the wrapping mechanism used for PL/SQL — the flagship language utilized in Oracle databases — could be unraveled, exposing delicate knowledge.
- Highlight on Oracle safety: A brand new one cease store for Oracle safety info.
- Mr. Know-IT-All’s Oracle Safety Problem: Let’s learn the way a lot you actually learn about Oracle safety.
Dig Deeper on Oracle enterprise intelligence and analytics