Shulou(Shulou.com)06/01 Report--

Today, the editor will bring you an article on the password policy setting of Oracle. The editor thinks it's pretty good, so I'll share it for you as a reference. Let's follow the editor and have a look.

$sqlplus / as sysdba

SQL*Plus: Release 11.2.0.4.0 Production on Mon Sep 18 18:16:19 2017

Copyright (c) 1982, 2013, Oracle. All rights reserved.

Connected to:

Oracle Database 11g Enterprise Edition Release 11.2.0.4.0-64bit Production

With the Partitioning, Real Application Clusters, Automatic Storage Management, OLAP

Data Mining and Real Application Testing options

SQL > show parameter resource_limit

NAME TYPE VALUE

Resource_limit boolean FALSE-default

SQL >

SQL > set linesize 160

SQL > select * from dba_profiles order by 1pm 3pm 2

PROFILE RESOURCE_NAME RESOURCE LIMIT

-

DEFAULT COMPOSITE_LIMIT KERNEL UNLIMITED

DEFAULT CONNECT_TIME KERNEL UNLIMITED

DEFAULT CPU_PER_CALL KERNEL UNLIMITED

DEFAULT CPU_PER_SESSION KERNEL UNLIMITED

DEFAULT IDLE_TIME KERNEL UNLIMITED

DEFAULT LOGICAL_READS_PER_CALL KERNEL UNLIMITED

DEFAULT LOGICAL_READS_PER_SESSION KERNEL UNLIMITED

DEFAULT PRIVATE_SGA KERNEL UNLIMITED

DEFAULT SESSIONS_PER_USER KERNEL UNLIMITED

DEFAULT FAILED_LOGIN_ATTEMPTS PASSWORD 10

DEFAULT PASSWORD_GRACE_TIME PASSWORD 7

PROFILE RESOURCE_NAME RESOURCE LIMIT

-

DEFAULT PASSWORD_LIFE_TIME PASSWORD 180

DEFAULT PASSWORD_LOCK_TIME PASSWORD 1

DEFAULT PASSWORD_REUSE_MAX PASSWORD UNLIMITED

DEFAULT PASSWORD_REUSE_TIME PASSWORD UNLIMITED

DEFAULT PASSWORD_VERIFY_FUNCTION PASSWORD NULL

MONITORING_PROFILE COMPOSITE_LIMIT KERNEL DEFAULT

MONITORING_PROFILE CONNECT_TIME KERNEL DEFAULT

MONITORING_PROFILE CPU_PER_CALL KERNEL DEFAULT

MONITORING_PROFILE CPU_PER_SESSION KERNEL DEFAULT

MONITORING_PROFILE IDLE_TIME KERNEL DEFAULT

MONITORING_PROFILE LOGICAL_READS_PER_CALL KERNEL DEFAULT

PROFILE RESOURCE_NAME RESOURCE LIMIT

-

MONITORING_PROFILE LOGICAL_READS_PER_SESSION KERNEL DEFAULT

MONITORING_PROFILE PRIVATE_SGA KERNEL DEFAULT

MONITORING_PROFILE SESSIONS_PER_USER KERNEL DEFAULT

MONITORING_PROFILE FAILED_LOGIN_ATTEMPTS PASSWORD UNLIMITED

MONITORING_PROFILE PASSWORD_GRACE_TIME PASSWORD DEFAULT

MONITORING_PROFILE PASSWORD_LIFE_TIME PASSWORD DEFAULT

MONITORING_PROFILE PASSWORD_LOCK_TIME PASSWORD DEFAULT

MONITORING_PROFILE PASSWORD_REUSE_MAX PASSWORD DEFAULT

MONITORING_PROFILE PASSWORD_REUSE_TIME PASSWORD DEFAULT

MONITORING_PROFILE PASSWORD_VERIFY_FUNCTION PASSWORD DEFAULT

32 rows selected.

Test 1: whether FAILED_LOGIN_ATTEMPTS=10 is valid

SQL > create user roidba identified by roidba

User created.

SQL > grant connect,resource,dba to roidba

Grant succeeded.

SQL > exit

Omit. After ten landings.

$sqlplus roidba/roidbaa

SQL*Plus: Release 11.2.0.4.0 Production on Mon Sep 18 18:26:37 2017

Copyright (c) 1982, 2013, Oracle. All rights reserved.

ERROR:

ORA-28000: the account is locked

Enter user-name:

ERROR:

ORA-01017: invalid username/password; logon denied

Enter user-name:

Experiments show that whether resource_limit is true or not, password-related restrictions are effective, and other password-related users can test it themselves.

DEFAULT FAILED_LOGIN_ATTEMPTS PASSWORD 10-the password is entered ten times is an error, the user locks

DEFAULT PASSWORD_LOCK_TIME PASSWORD 1-automatically unlock after one day of lock

DEFAULT PASSWORD_LIFE_TIME PASSWORD 180-password life cycle 180 days, after which the password expires

DEFAULT PASSWORD_GRACE_TIME PASSWORD 7-extension of grace period, login will be prompted during the grace period.

After installing the database, password_life_time is usually set to unlimited.

SQL > alter profile default limit password_life_time unlimited

Profile altered.

Continue testing 2:

SQL > create profile sess limit

2 SESSIONS_PER_USER 2

Profile created.

SQL > alter user roidba profile sess

User altered.

SQL > alter system set resource_limit=true

System altered.

Open three windows, the first two are successfully logged in, the third appears the following error.

$sqlplus roidba/roidba

SQL*Plus: Release 11.2.0.4.0 Production on Mon Sep 18 18:48:24 2017

Copyright (c) 1982, 2013, Oracle. All rights reserved.

ERROR:

ORA-02391: exceeded simultaneous SESSIONS_PER_USER limit

Enter user-name:

These are the details of the password policy setting of Oracle. Have you learned anything after reading it? If you want to know more about it, you are welcome to follow the industry information!

Welcome to subscribe "Shulou Technology Information " to get latest news, interesting things and hot topics in the IT industry, and controls the hottest and latest Internet news, technology news and IT industry trends.