Skip to Main Content
Forums

APEX

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Clear text passwords in ADMIN page - can I hide/remove them?

garywickeJul 24 2008 — edited Jul 24 2008
Environment:

APEX 3.1.1.00.09
Oracle 10.2.0.3 EE on AIX 5L

I discovered recently,quite by accident, that the user's authentication ID and password obtained from our LDAP server is shown in clear text on one of the ADMIN pages.

Even though the ADMIN password is controlled, this situation does not meet the standards set by our Security procedures. Every other environment can modify a user's password but none can see the existing password in clear text.

I need to find a way to remove or hide the clear text passwords.

Any suggestions are welcome.

Thanks very much.

Securely,

-gary
Comments
Locked Post
New comments cannot be posted to this locked post.
Post Details
Locked on Aug 21 2008
Added on Jul 24 2008
#apex-discussions
4 comments
734 views