Categories
- All Categories
- 15 Oracle Analytics Sharing Center
- 16 Oracle Analytics Lounge
- 216 Oracle Analytics News
- 43 Oracle Analytics Videos
- 15.7K Oracle Analytics Forums
- 6.1K Oracle Analytics Idea Labs
- Oracle Analytics User Groups
- 79 Oracle Analytics Trainings
- 15 Oracle Analytics Data Visualizations Challenge
- Find Partners
- For Partners
Hide DB_PASSWORD from OS when running XDOLoader
Summary
Hide DB_PASSWORD from OS when running XDOLoader
Content
Hi All,
We are using XDOLoader in a script to download our BI templates from E-Bus. There are two parameters used to connect to the DB, these are DB_USERNAME and DB_PASSWORD.
I have an issue that when the loader is running on Unix/Linux, a ps -ef | grep XDOLoader command reveals the password provided to download the templates.
How can we run XDOLoader and hide the password from the OS?
Answers
-
Ohh sorry for my confusion , I got your issue....but in my point of you we are not exposing password from application , one level down who has access to unix specially DBAs who has unix access can see the password.
But still its interesting to investigate and will let you know if find something...
You can get more response of this if you post this to DBAs or Unix forum.
Regards,
brajesh
0 -
That's what I was trying to say....
While you pass password to variable PASS in unix use the 'stty' command that will hide your password to display
0 -
How you are running XDOLoader command? do you have some shell script ?
0 -
Please don't hard code the password in download script. You can pass is at runtime.
0 -
I hope you are running XDOLoader from unix...so once you enter password you can use setty command to hide the password charcters
e.g.
echo -n "Enter Apps schema password: "
stty -echo
read APPSPWD
stty echo
echo ""
after this your password will store in variable APPSPWD and you can use in your download script
0 -
Thanks for the tip. I'll try again on the other forums.
0 -
Hi Brajesh,
I appreciate your help, but the issue is not typing the password in. Please check my previous post again.
We read the password into the script using the following commands:
echo -n "Enter the password: "
read -s PASS
Whatever password we type secretly into PASS, it is displayed when using the ps -ef command....
0 -
Yes, the shell script contains this command:
java oracle.apps.xdo.oa.util.XDOLoader \
DOWNLOAD \
-DB_USERNAME apps \
-DB_PASSWORD ${PASS} \
-LOB_TYPE DATA_TEMPLATE \
-APPS_SHORT_NAME ${APP} \
-LOB_CODE "${PROG}" \
-LCT_FILE $XDO_TOP/patch/115/import/xdotmpl.lct \
-LOG_FILE ${PROG// /_}_rt_template.log \
-JDBC_CONNECTION ${JDBC_CONN}
When we use ps -efx we see this:
appltest@myhost:/home/appltest $ ps -efx | grep XDOLoader
appltest 7868 7232 0 09:46:21 pts/0 0:00 grep XDOLoader
appltest 7866 7304 7 09:46:21 pts/1 0:00 /u01/apps/tech_st/10.1.3/....../java oracle.apps.xdo.oa.util.XDOLoader DOWNLOAD -DB_USERNAME apps -DB_PASSWORD ap55p455w0rd -LOB_TYPE DATA_TEMPLATE -APPS_SHORT_NAME FND -LOB_CODE FND_TEST -LCT_FILE /u01/apps/apps_st/appl/xdo/12.0.0/patch/115/import/xdotmpl.lct -LOG_FILE FND_TEST_dt_template.log -JDBC_CONNECTION (DESCRIPTION=(ADDRESS_LIST=(LOAD_BALANCE=YES)(FAILOVER=YES)(ADDRESS=(PROTOCOL=tcp)(HOST=myhost)(PORT=1234)))(CONNECT_DATA=(SERVICE_NAME=DB_TEST)))
* This is not the real password.
0 -
Hi Brajesh,
Thanks for the swift answer, but this is not a solution to the problem I described. The password is revealed using ps -ef | grep XDOLoader when the loader process is running. I want to hide this information after the process has started.
0