Comments on: Daily Roundup of News, Tips and Tricks for 2010-02-04 http://awads.net/wp/2010/02/04/daily-roundup-of-news-tips-and-tricks-for-2010-02-04/ News, views, tips and tricks on Oracle and other fun stuff Thu, 17 Jun 2010 03:52:30 +0000 hourly 1 http://wordpress.org/?v=3.0 By: Eddie Awad http://awads.net/wp/2010/02/04/daily-roundup-of-news-tips-and-tricks-for-2010-02-04/comment-page-1/#comment-53521 Eddie Awad Fri, 05 Feb 2010 17:20:06 +0000 http://awads.net/wp/2010/02/04/links-for-2010-02-04/#comment-53521 <p>Don, do you want the DBAs to be in the dark about this exploit?</p> <p>In the past 24 hours alone there have been thousands of dedicated (not only links to) posts about this all over the Internet http://bit.ly/apQFMt I don't know why you just pick on me.</p> <p>One of these posts is Alexander Kornbrust's http://bit.ly/c1MDDn in which he mentioned a workaround: "For security reasons you should revoke the PUBLIC privileges from DBMS_JVM_EXP_PERMS, DBMS_JAVA and DBMS_JAVA_TEST".</p> Don, do you want the DBAs to be in the dark about this exploit?

In the past 24 hours alone there have been thousands of dedicated (not only links to) posts about this all over the Internet http://bit.ly/apQFMt I don’t know why you just pick on me.

One of these posts is Alexander Kornbrust’s http://bit.ly/c1MDDn in which he mentioned a workaround: “For security reasons you should revoke the PUBLIC privileges from DBMS_JVM_EXP_PERMS, DBMS_JAVA and DBMS_JAVA_TEST”.

]]> By: Donald K. Burleson http://awads.net/wp/2010/02/04/daily-roundup-of-news-tips-and-tricks-for-2010-02-04/comment-page-1/#comment-53520 Donald K. Burleson Fri, 05 Feb 2010 14:18:03 +0000 http://awads.net/wp/2010/02/04/links-for-2010-02-04/#comment-53520 <p>A computer security expert has uncovered what he says are flaws in widely used software from Oracle Corp that could let hackers remotely access sensitive information in corporate and government databases.</p> <p>Eddie, why on earth would an Oracle ACE publish links that help crimimals find new ways to hacking Oracle and stealing data?</p> <p>You are doing a tremendous disservice to the Oracle community, it's not a nice thing to do . . .</p> <p>Helping the bad guys find hacks is called aiding an abetting . . .</p> <p>You don't need to post this, I only hope that you have the good sense to remove that link, at least until the fix is published. .</p> A computer security expert has uncovered what he says are flaws in widely used software from Oracle Corp that could let hackers remotely access sensitive information in corporate and government databases.

Eddie, why on earth would an Oracle ACE publish links that help crimimals find new ways to hacking Oracle and stealing data?

You are doing a tremendous disservice to the Oracle community, it’s not a nice thing to do . . .

Helping the bad guys find hacks is called aiding an abetting . . .

You don’t need to post this, I only hope that you have the good sense to remove that link, at least until the fix is published. .

]]>