Client authentication
is also doable with SSL to validate the client, but setting up certificates may become a large
administrative effort.
Using SSL over TCP/IP requires only slight changes to the listener configuration by adding
another protocol (TCPS) at a different port number in the listener.ora file. In the following excerpt,
configured with Oracle Net Configuration Assistant (netca), the listener named LISTENER on the
server dw10g will accept traffic via TCP on port 1521 and SSL TCP traffic on port 2484:
# listener.ora Network Configuration File:
/u01/app/oracle/product/10.1.0/network/admin/listener.ora
# Generated by Oracle configuration tools.
SID_LIST_LISTENER =
(SID_LIST =
(SID_DESC =
(SID_NAME = PLSExtProc)
(ORACLE_HOME = /u01/app/oracle/product/10.1.0)
(PROGRAM = extproc)
)
(SID_DESC =
(GLOBAL_DBNAME = dw.world)
(ORACLE_HOME = /u01/app/oracle/product/10.1.0)
(SID_NAME = dw)
)
)
Chapter 9: Database Security and Auditing 285
LISTENER =
(DESCRIPTION_LIST =
(DESCRIPTION =
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = TCP)(HOST = dw10g)(PORT = 1521))
)
(ADDRESS_LIST =
(ADDRESS = (PROTOCOL = TCPS)(HOST = dw10g)(PORT = 2484))
)
)
)
Distributed Computing Environment
The Distributed Computing Environment (DCE) provides a number of services, such as remote
procedure calls, distributed file services, and distributed time service, in addition to a security
service. DCE supports distributed applications in a heterogeneous environment on all major
software and hardware platforms.
Pages:
457
458
459
460
461
462
463
464
465
466
467
468
469
470
471
472
473
474
475
476
477
478
479
480
481