Skip to content

Category Archives: Uncategorized

The Root of The Problem

Summer in Idaho is treasured all the more since it is all too brief. We had a long, cold spring – my lilacs were two months behind those of friends and family on the east coast – and some flowers…

Posted 02 September 2010 mary.ann.davidson § Comments Off °

Which number takes more space in an Oracle row?

So, which number takes more bytes inside an Oracle row? A: 123 B:  1000000000000000000000000000000000000 And the correct answer is … (drumroll) … B! The “big” number 1000000000000000000000000000000000000 actually takes less space than the “small” 123! Let’s verify this: SQL> select vsize(123) A, vsize(1000000000000000000000000000000000000) B from dual; A B ———- ———- 3 2 WTF? Why does such [...]

Posted 02 September 2010 Tanel Poder § Comments Off °

Pete Finnigan will be teaching Oracle Security in Tallinn, Estonia and speaking at UKOUG Unix SIG at TVP

I have just added another public training date to my upcoming Oracle security trainings calendar. This is for November 4th and 5th in Tallinn, Estonia which I am really looking forwards to. I have also just agreed to do two….[Read More] Posted b…

Posted 02 September 2010 Pete Finnigan's Oracle security weblog § Comments Off °

59 Security bugs fixed, 28 remotely expolitable, 13 in the database

Oracle yesterday released the latest in its series of quarterly security patches known as CPU’s Critical Patch Updates. Oracle released an advisory detailing the fixes. The patch set contains 59 new security fixes. For me the interesting part are th…

Posted 02 September 2010 Pete Finnigan's Oracle security weblog § Comments Off °

The second IOUG / Oracle Security Assurance Survey

I wrote about the first IOUG joint security survey with Oracle two years ago here in my blog in a post titled ” An Oracle Security Survey by The IOUG and Oracle ” and I encouraged participation on the survey….[Read More] Posted by Pete On 27/07/…

Posted 02 September 2010 Pete Finnigan's Oracle security weblog § Comments Off °

Data Breach Survey Results

Lindsay Hamilton of Cervello Consultants has just started a new blog aimed at data security, data breaches and data security vulnerability scanning and activity monitoring. This should be worth watching as data breaches are certainly an in topic sub…

Posted 02 September 2010 Pete Finnigan's Oracle security weblog § Comments Off °

Hacking Oracle over the web and exploiting Database Vault

The BlackHat USA event in Caesars Palace Las vegas was on at the end of July and now the papers have been put up on the BlackHat site. I saw that Sumit Siddharth had posted his slides a couple of….[Read More] Posted by Pete On 06/08/10 At 06:00 PM

Posted 02 September 2010 Pete Finnigan's Oracle security weblog § Comments Off °

Would You Like A Job in Database Security?

Lindsay from Cervello Consultants has asked me to promote a job he is recruiting for. Lindsays company specialises in data security assurance and particularly in designing, deploying, integrating and testing database security vulnerability scanning,…

Posted 02 September 2010 Pete Finnigan's Oracle security weblog § Comments Off °

Alex Hutton Podcast on data breach

Lindsay blogged about the recent data breach report from Verizon last week. Alex Hutton, one of the authors has just re-tweeted DennisF’s tweet that he has done a podcast about the data breach report . Enjoy! EDITED: I incorrectly added….[Read Mor…

Posted 02 September 2010 Pete Finnigan's Oracle security weblog § Comments Off °

Oracle Security

A few things to report about Oracle Security after we have had a short break for familly holidays and also because of a lot of work being done over the last few months. It is nice to be busy in….[Read More] Posted by Pete On 02/09/10 At 02:27 PM

Posted 02 September 2010 Pete Finnigan's Oracle security weblog § Comments Off °