hi there!
we're actually looking for a way to restrict the access to our database using a selfwritten webprogram.
we found two main ways - either dynamically edit the local firewall on the host (which might end up in lots of troubles) or restrict the access via listener/sqlnet.ora configuration.
since we decided to go with option 2 i got two big questions i would like to state here:
1.) is tcp.validnode_checking and tcp_invited/blocked_nodes still state of the art and used or is there a better way to control access to the database via 1521?
2.) if 1.) is still a go, is there a way to put the invited nodes into an external file and not directly into sqlnet.ora?
i did some googling to my questions but the most things i found are "how-to"'s in general but no specific answers.
thx in advance and best regards,
dan
PS: db is 11.2.0.4