Book Image

Oracle Database 12c Security Cookbook

By : Zoran Pavlovic, Maja Veselica
Book Image

Oracle Database 12c Security Cookbook

By: Zoran Pavlovic, Maja Veselica

Overview of this book

Businesses around the world are paying much greater attention toward database security than they ever have before. Not only does the current regulatory environment require tight security, particularly when dealing with sensitive and personal data, data is also arguably a company’s most valuable asset - why wouldn’t you want to protect it in a secure and reliable database? Oracle Database lets you do exactly that. It’s why it is one of the world’s leading databases – with a rich portfolio of features to protect data from contemporary vulnerabilities, it’s the go-to database for many organizations. Oracle Database 12c Security Cookbook helps DBAs, developers, and architects to better understand database security challenges. Let it guide you through the process of implementing appropriate security mechanisms, helping you to ensure you are taking proactive steps to keep your data safe. Featuring solutions for common security problems in the new Oracle Database 12c, with this book you can be confident about securing your database from a range of different threats and problems.
Table of Contents (18 chapters)
Oracle Database 12c Security Cookbook
Credits
About the Authors
About the Reviewers
www.PacktPub.com
Preface

Changing a user's password


Changing a user's password is easy. You will practice it by changing passwords for several users in this recipe.

Getting ready

To complete this recipe, you'll need an existing user who has alter user privilege (you may use OS-authenticated user who has the DBA role) and other existing users (for example, jessica and tom).

How to do it...

  1. Connect to the database as a user who has alter user privilege:

           $ sqlplus /
    
    
  2. Change the password for user jessica:

           SQL> password jessica;
    
    
  3. Enter a new password (for example, oracle_2) on a command line (note that typing will not be visible in the command line):

           New password:
    
    
  4. Retype the new password (for example, oracle_2) on the command line (note that typing will not be visible in the command line):

           Retype new password:
    
    
  5. Connect to the database as any user (for example, tom, to change their own password):

           $ sqlplus tom/"Qax7UnP!123*"
    
    
  6. Change the password using the following code:

           SQL> password
    
    
  7. Enter the old password (for example, Qax7UnP!123*) on the command line (note that typing will not be visible on the command line):

           Old password:
    
    
  8. Enter the new password (for example, oracle_123) on the command line (note that typing will not be visible on the command line):

           New password:
    
    
  9. Retype the new password (for example, oracle_123) on the command line (note that typing will not be visible on the command line):

           Retype new password:
    
    

How it works...

In step 1, you used OS authentication to connect to the database.

In steps 2 through 4, a privileged user changed jessica's password, where in steps 6 through 9, the user tom changed his own password.

There's more...

There is another way to change the user's password using the alter user statement as follows:

SQL> alter user jessica identified by oracle_2;

Tip

This approach is not recommended because password remains in the command-line history.

See also

  • Creating and using OS-authenticated users