Skip to Main Content
Forums

Database Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

frmservlet call - how to mask the clear text password

phdhagarMay 14 2019

Our developers call web forms using the format => http://mycomputer.com:7777/forms/frmservlet?userid=un/pw&form=hrapp

The clear text un/pw was found during a security scan.  I have searched and can not find a solution to mask the un/pw.  Is there any white papers, websites, or solutions that someone can provide to mask the un/pw that is in clear text?  I know of using the config= parameter, but do not want to use that.

Comments

User_FBVF9

If there is actual documentation that I can reference it would be best.

Instant Client is part of the Oracle Database suite. It's just a re-packaging of some database libraries so it has to follow the DB lifecycle. The DB lifecycle is shown in the Release Schedule of Current Database Releases at https://support.oracle.com/epmos/faces/DocumentDisplay?id=742060.1

1 - 2

Post Details

Added on May 14 2019
#database-security, #database-security-general
0 comments
140 views