msgbartop
News, views, tips and tricks on Oracle and other fun stuff
msgbarbottom

A Couple of Podcasts About PL/SQL and Oracle Security

SearchOracle.com has just published a couple of interesting podcasts.

The first, titled Expert says PL/SQL change needed in Oracle 11g, is an interview with Steven Feuerstein.

In the interview, Steven answers the following questions:

  • Considering how big OpenWorld has become, should there be a separate conference for PL/SQL developers?
  • Your session at the conference was entitled “Ten things you should never do with PL/SQL.” What was number one?
  • What do you think is the biggest problem or challenge that PL/SQL developers need to address?
  • Users are very conditioned to accept bugs. Does this need to change?
  • Can you tell us about your new free tool for testing code?
  • What do you think are the biggest deficiencies in the PL/SQL language itself?
  • You’ve written ten very well regarded books. What’s next?

Listen to Steven’s answers

The second podcast, titled Security expert sizes up Oracle patch policies, is an interview with Aaron Newman, author of “Oracle Security Handbook” and co-founder and chief technology officer of Application Security Inc.

In the interview, Aaron answers the following questions:

  • Is Oracle OpenWorld getting too big to be useful?
  • Can you explain the methodology behind what you call post-attack analytics?
  • You argue that improper use of Oracle security products can erase the trail of an attacker. Could you elaborate on that?
  • What do you think about the overall state of Oracle security these days?
  • Is patching vulnerabilities a problem for Oracle?
  • How does Oracle stack up against Microsoft and IBM in the area of patching?
  • What does your firm offer in terms of security that Oracle does not?
  • Will Oracle’s Fusion initiative be good or bad for Oracle security?
  • What have you heard about the upcoming Oracle Database 11g?
  • What are some of the pet peeves you have with Oracle DBAs when it comes to security?

Listen to Aaron’s answers


Filed in Oracle, Security on 09 Nov 06 | Tags: , ,


Reader's Comments

  1. |

    Steven’s take on design your test strategy before you code is certainly good – how much of it can I get my developers here to do is what I am not sure about – it is really getting them to change the way they do things.

  2. |

    Yes, you’re right vidya. Even though I have yet to implement it in my daily programming routine, I do find the “test before you code” programming methodology very appealing. In fact, it is one of the Extreme Programming rules: Code the Unit Test First.

    It’s very hard to change the habit of how you have been doing things for years. I guess that’s one of the things that differentiates a good programmer from a great programmer, the ability to adopt and adapt to new and better development methodologies.

    Of course, this requires defining the standards and the methodology and having the discipline to follow them, not to mention the support from the boss.

  3. |

    Haha – it sounds like Steven wrote his own questions! :)

    Or, at least someone who is intricately familiar with exactly what Steven is promoting.

    In any event, that doesn’t negate the fact that he’s a PL/SQL genius.

  4. |

    Are these podcasts available from somewhere else? 12MB at 20KB/s is w-a-a-a-y too slow but seems to be the tops searchoracle can do…

  5. |

    I’m afraid I do not know of any other place serving these podcasts. I’m getting a 55KB/sec. Better than 20 but still not fast enough.

    There is a neat feature in Google Reader and Bloglines that lets you listen to podcasts inline. I have found this feature to be invaluable as it lets you listen to podcasts immediately without waiting for the whole mp3 to download.