Database Software

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Filtering username and client IP addresses in LISTENER

952725Jul 30 2012 — edited Jul 31 2012

Hi everybody.

I'm pretty new to Oracle so bear with me if I'm asking a silly question :-)

I'm using Oracle Database 11g Enterprise Edition (11.2.0.3.0) under RedHat ES Linux 6.3 (x86_64) and I've been asked, for security reasons, to filter access to the dbase based on both username and client IP addresses.

By editing SQLNET.ORA and adding the "TCP.VALIDNODE_CHECKING = YES" along with the TCP.INVITED_NODES one I've been able to restrict access to only the nodes listed in the last parameter but the idea would be to further check the provided DB username and DENY/ALLOW access based on both the username and the client IP address.

I can change neither the client application nor the GRANTs given at the DB level so I was thinking about the LISTENER process.

Ideas/suggestions greatly appreciated.

Thanks,
Rob

Locked Post

New comments cannot be posted to this locked post.

Locked on Aug 28 2012

Added on Jul 30 2012

#database-security, #database-security-general

2 comments

1,335 views