1 / 20

Controlling Access to the Oracle Listener

Controlling Access to the Oracle Listener. Objectives. After completing this lesson, you should be able to do the following: Secure the listener Enable TCP valid node checking Remove default EXTPROC entry Add a separate listener to handle external procedure calls. sqlnet.ora.

jbrassard
Download Presentation

Controlling Access to the Oracle Listener

An Image/Link below is provided (as is) to download presentation Download Policy: Content on the Website is provided to you AS IS for your information and personal use and may not be sold / licensed / shared on other websites without getting consent from its author. Content is provided to you AS IS for your information and personal use only. Download presentation by click this link. While downloading, if for some reason you are not able to download a presentation, the publisher may have deleted the file from their server. During download, if you can't get a presentation, the file might be deleted by the publisher.

E N D

Presentation Transcript

  1. Controlling Access to the Oracle Listener

  2. Objectives • After completing this lesson, you should be able to do the following: • Secure the listener • Enable TCP valid node checking • Remove default EXTPROC entry • Add a separate listener to handle external procedure calls

  3. sqlnet.ora tnsnames.ora listener.ora Oracle Net Services Review Application Oracle Net RDBMS Oracle Net Listener TCP/IP network Client Database server

  4. Listener Password Authentication • In Oracle Database 10g, the listener is secure by default. • Operating system authentication is used. • Listener passwords are still supported if needed. • Use listener control utility lsnrctl • Use EM Database Control • Use Oracle Net Manager

  5. Setting Listener Password • Using Enterprise Manager

  6. Setting Listener Password with Net Manager

  7. Set Password with lsnrctl Utility • Using the lsnrctlCHANGE_PASSWORD command: $ lsnrctl LSNRCTL> CHANGE_PASSWORD Old password: ******* New Password: 1tsaSafe1 Reenter new password: 1tsaSafe1 LSNRCTL> SAVE_CONFIG

  8. Controlling Database Access

  9. Oracle Net Services External Procedures • External procedures that are called from a program, but are written in a different language • The listener must be configured to listen for external procedure calls • Listener starts an external procedure agent • Default agent name is EXTPROC

  10. Overview of the EXTPROC Agent • It services execution of external procedures for the duration of the session until the user logs off. • Each session uses a different EXTPROC agent to execute external procedures. • The listener must be configured to allow the server to be associated with the EXTPROC agent. • The listener must be on the same machine as the server.

  11. PL/SQL Calling a C External Procedure 3 Listenerprocess 2 4 6 EXTPROCagent 7 5 PL/SQL subprogram Aliaslibrary BEGIN myproc 1 Userprocess Externalprocedure Shared library

  12. Default Configuration for External Procedure Calls • Listener is configured to accept requests for external procedures by Oracle Net Configuration Assistant during installation. • A net service name is configured in the tnsnames.ora file. EXTPROC_CONNECTION_DATA= (DESCRIPTION= (ADDRESS=(PROTOCOL=ipc)(KEY=extproc)) (CONNECT_DATA= (SID=plsextproc)))

  13. Modifying the Configuration forExternal Procedure Calls • Remove the external procedure entries for the default listener. • Configure a separate listener dedicated to servicing external procedures. • Configure listener to run with privileges lower than those of the listener for the database. • Restrict the DLLs that the EXTPROC agent can load.

  14. Remove Default EXTPROC Entry • Using Enterprise Manager:

  15. Remove Default EXTPROC Entry • Using Net Manager

  16. Configure a Dedicated Listener for External Procedure Calls • Using Enterprise Manager

  17. Configure a Dedicated Listener for External Procedure Calls • Using Enterprise Manager

  18. Configure a Dedicated Listener for External Procedure Calls • Using Net Manager

  19. Summary • In this lesson, you should have learned how to: • Secure the listener • Enable TCP valid node checking • Remove default EXTPROC entry • Add a separate listener to handle external procedure calls

  20. Practice 3 Overview: Controlling Access to the Listener • This practice covers the following topics: • Password protecting listener management tasks • Removing the default EXTPROC listener service • Creating a dedicated listener for external procedures • Controlling database access

More Related