oracle profile password,Oracle Profile and PASSWORD_VERIFY_FUNCTION

最新推荐文章于 2021-09-10 09:59:43 发布
最新推荐文章于 2021-09-10 09:59:43 发布
阅读量178 收藏
点赞数
文章标签: oracle profile password
这篇博客介绍了如何在Oracle数据库中设置默认的密码管理参数,包括密码生命周期、宽限期、重用时间和复杂性检查。提供了一个名为MY_PASSWORD_VERIFY_FUNC的示例函数,用于验证密码是否符合最小复杂性要求,如长度、不包含用户名、不包含常见词汇等。此外,还展示了ALTER PROFILE语句用于启用这些策略。
摘要由CSDN通过智能技术生成

ALTER PROFILE default LIMIT

PASSWORD_LIFE_TIME 90

PASSWORD_GRACE_TIME 5

PASSWORD_REUSE_TIME 100

PASSWORD_REUSE_MAX 360

FAILED_LOGIN_ATTEMPTS 3

PASSWORD_VERIFY_FUNCTION MY_PASSWORD_VERIFY_FUNC;[@more@]Rem

Rem $Header: utlpwdmg.sql 31-aug-2000.11:00:47 nireland Exp $

Rem

Rem utlpwdmg.sql

Rem

Rem Copyright (c) Oracle Corporation 1996, 2000. All Rights Reserved.

Rem

Rem NAME

Rem utlpwdmg.sql - script for Default Password Resource Limits

Rem

Rem DESCRIPTION

Rem This is a script for enabling the password management features

Rem by setting the default password resource limits.

Rem

Rem NOTES

Rem This file contains a function for minimum checking of password

Rem complexity. This is more of a sample function that the customer

Rem can use to develop the function for actual complexity checks that the

Rem customer wants to make on the new password.

Rem

Rem MODIFIED (MM/DD/YY)

Rem nireland 08/31/00 - Improve check for username=password. #1390553

Rem nireland 06/28/00 - Fix null old password test. #1341892

Rem asurpur 04/17/97 - Fix for bug479763

Rem asurpur 12/12/96 - Changing the name of password_verify_function

Rem asurpur 05/30/96 - New script for default password management

Rem asurpur 05/30/96 - Created

Rem

-- This script sets the default password resource parameters

-- This script needs to be run to enable the password features.

-- However the default resource parameters can be changed based

-- on the need.

-- A default password complexity function is also provided.

-- This function makes the minimum complexity checks like

-- the minimum length of the password, password not same as the

-- username, etc. The user may enhance this function according to

-- the need.

-- This function must be created in SYS schema.

-- connect sys/ as sysdba before running the script

-- JackJiang: this function MY_PASSWORD_VERIFY_FUNC derive from VERIFY_FUNC in $ORACLE_HOME/rdbms/admin/utlpwdmg.sql

CREATE OR REPLACE FUNCTION MY_PASSWORD_VERIFY_FUNC

(username varchar2,

password varchar2,

old_password varchar2)

RETURN boolean IS

n boolean;

m integer;

differ integer;

isdigit boolean;

ischar boolean;

ispunct boolean;

digitarray varchar2(20);

punctarray varchar2(25);

chararray varchar2(52);

BEGIN

digitarray:= '0123456789';

chararray:= 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';

punctarray:='!"#$%&()``*+,-/:;<=>?_';

-- Check if the password is same as the username

IF NLS_LOWER(password) = NLS_LOWER(username) THEN

raise_application_error(-20001, 'Password same as or similar to user');

END IF;

-- Check for the minimum length of the password

IF length(password) < 8 THEN

raise_application_error(-20002, 'Password length less than 8');

END IF;

-- Check if the password is too simple. A dictionary of words may be

-- maintained and a check may be made so as not to allow the words

-- that are too simple for the password.

IF NLS_LOWER(password) IN ('welcome', 'database', 'account', 'user', 'password', 'oracle', 'computer', 'abcd') THEN

raise_application_error(-20002, 'Password too simple');

END IF;

-- Check if the password contains at least one letter, one digit and one

-- punctuation mark.

-- 1. Check for the digit

isdigit:=FALSE;

m := length(password);

FOR i IN 1..10 LOOP

FOR j IN 1..m LOOP

IF substr(password,j,1) = substr(digitarray,i,1) THEN

isdigit:=TRUE;

GOTO findchar;

END IF;

END LOOP;

END LOOP;

-- IF isdigit = FALSE THEN

-- raise_application_error(-20003, 'Password should contain at least one digit, one character and one punctuation');

-- END IF;

-- 2. Check for the punctuation

ispunct:=FALSE;

FOR i IN 1..length(punctarray) LOOP

FOR j IN 1..m LOOP

IF substr(password,j,1) = substr(punctarray,i,1) THEN

ispunct:=TRUE;

GOTO findchar;

END IF;

END LOOP;

END LOOP;

-- IF ispunct = FALSE THEN

-- raise_application_error(-20003, 'Password should contain at least one

-- digit, one character and one punctuation');

-- END IF;

-- password must contain at least one alphabetic and one non-alphabetic

-- runs to here, then the password doesn't have any non-alphabetic.

raise_application_error(-20003, 'Password must contain at least one alphabetic and one non-alphabetic');

-- 3. Check for the character

<>

ischar:=FALSE;

FOR i IN 1..length(chararray) LOOP

FOR j IN 1..m LOOP

IF substr(password,j,1) = substr(chararray,i,1) THEN

ischar:=TRUE;

END IF;

END LOOP;

END LOOP;

IF ischar = FALSE THEN

raise_application_error(-20003, 'Password must contain at least one alphabetic and one non-alphabetic');

END IF;

-- Everything is fine; return TRUE ;

RETURN(TRUE);

END;

/

-- This script alters the default parameters for Password Management

-- This means that all the users on the system have Password Management

-- enabled and set to the following values unless another profile is

-- created with parameter values set to different value or UNLIMITED

-- is created and assigned to the user.

ALTER PROFILE default LIMIT

PASSWORD_LIFE_TIME 90

PASSWORD_GRACE_TIME 5

PASSWORD_REUSE_TIME 100

PASSWORD_REUSE_MAX 360

FAILED_LOGIN_ATTEMPTS 3

PASSWORD_VERIFY_FUNCTION MY_PASSWORD_VERIFY_FUNC;

来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/14377/viewspace-1060108/,如需转载,请注明出处,否则将追究法律责任。

转载于:http://blog.itpub.net/14377/viewspace-1060108/

Zeldovich Yakov
关注
oracle password_verify_function,使用PASSWORD_VERIFY_FUNCTION设置用户密码复杂度
weixin_39917046的博客
04-05 3275
依据PASSWORD_VERIFY_FUNCTION可以设置oracle用户的密码复杂度,比如密码长度>=10,必须包含字母/数字等首先需要创建一个密码验证的function,然后设置profilePASSWORD_VERIFY_FUNCTION即可SQL> select TEXT from dba_source where NAME='VERIFY_JUSTIN_USER';TEX...
Oracle Profile Password Limit
wcacer的博客
10-20 604
1 Profile 介绍 profile是限制数据库用户使用资源的一种手段; profile中的资源可分为系统资源和密码资源,可通过profile文件分别对用户的系统资源和密码资源做limit; 数据库中默认的profile为DEFAULT,也就是说如果没有为用户指定profile,则默认用DEFAULT中的内容来 限定用户资源; 拥有create profile权限的用户可以创建Pro...
Oracle Profile and PASSWORD_VERIFY_FUNCTION
congfen4131的博客
01-15 468
ALTER PROFILE default LIMIT PASSWORD_LIFE_TIME 90 PASSWORD_GRACE_TIME 5 PASSWORD_REUSE_TIME 100 PASSWORD...
oracle password_verify_function,Oracle Profile and PASSWORD_VERIFY_FUNCTION
weixin_39692557的博客
04-05 250
ALTER PROFILE default LIMITPASSWORD_LIFE_TIME 90PASSWORD_GRACE_TIME 5PASSWORD_REUSE_TIME 100PASSWORD_REUSE_MAX 360FAILED_LOGIN_ATTEMPTS 3PASSWORD_VERIFY_FUNCTION MY_PASSWORD_VERIFY_FUNC;[@more@]RemRem...
oracle profile password,ORACLE profile系列3 --resource_parameters以及password_parameters
weixin_36048947的博客
04-07 154
本篇主要说一下使用proffile做资源管理和密码管理时用到的resource_parameters和password_parameters:resource_parametersSESSIONS_PER_USERSpecify the number of concurrent sessions to which you want to limit the user.##SESSIONS_PER_...
Oracle 11gR2创建PASSWORD_VERIFY_FUNCTION对应密码复杂度验证函数步骤.doc
09-30
例如,你可以创建一个名为`资源文件名`的配置,设置`FAILED_LOGIN_ATTEMPTS`为10,`PASSWORD_LIFE_TIME`为180天,并且使用`PASSWORD_VERIFY_FUNCTION`指定我们即将创建的验证函数`verify_function_11G`。 ```sql ...
oracle11G密码策略,Oracle11g R2创设PASSWORD_VERIFY_FUNCTION对应密码复杂度验证函数步骤...
weixin_32149443的博客
04-03 1639
Oracle11g R2创建PASSWORD_VERIFY_FUNCTION对应密码复杂度验证函数步骤Oracle11g R2创建PASSWORD_VERIFY_FUNCTION对应密码复杂度验证函数步骤运行测试环境:数据库服务器Oracle Linux 5.8 + Oracle 11g R2数据库相关工具:PL/SQL软件(连接Linux下的Oracle数据库),SecureCRT软件(远程连接...
12c oracle profile_oracle 11g/12c 密码复杂度验证设置
weixin_39646695的博客
01-11 941
##################################################################################### 11g #####################################################################################1、开启密码复杂度验证函数sqlplus / as...
oracle password_verify_function,启用Linux云平台oracle数据库实口令复杂性函数:PASSWORD_VERIFY_FUNCTION=NULL...
weixin_39792475的博客
04-05 457
第一步:采用putty.exe登录数据库服务器。输入IP后点击“Open”按钮: 第二步:登录对应的数据库实例。执行:# su – oracle查找:$ps -ef | grep pmon 找到对应的实例名后:执行:$export ORACLE_SID=**oadb1执行:$sqlplus / as sysdba执行:SQL> @?/rdbms/admin/utlpwdmg.sqlFunct...
Oracle11g R2创建PASSWORD_VERIFY_FUNCTION对应密码复杂度验证函数步骤
热门推荐
xqf222的专栏
12-11 3万+
Oracle11g R2创建PASSWORD_VERIFY_FUNCTION对应密码复杂度验证函数步骤 运行测试环境:数据库服务器Oracle Linux 5.8 + Oracle 11g R2数据库相关工具:PL/SQL软件(连接Linux下的Oracle数据库),SecureCRT软件(远程连接Linux服务器)详细步骤:1、连接上Linux数据库服务器,切换到Oracle数据库用户桌面,打开
ORACLE 密码验证函数
cuandai0232的博客
10-25 1208
开发人员发来报错: SQL>alterusercinteridentifiedbycinter; alterusercinteridentifiedbycinter ORA-2800...
PASSWORD_VERIFY_FUNCTION(口令复杂性验证)
君子不怨天的博客
09-10 1万+
PASSWORD_VERIFY_FUNCTION(口令复杂性验证) 在官方文档中该参数的阐述: PASSWORD_VERIFY_FUNCTION子句允许PL/SQL密码复杂性验证脚本作为参数传递给CREATEPROFILE语句 一、PASSWORD_VERIFY_FUNCTION参数语法: 语法: ALTER PROFILE profile LIMIT { resource_parameters | password_parameters } ... ; password_parameters
oracle用户密码复杂度查询,Oracle 11gR2创建PASSWORD_VERIFY_FUNCTION对应密码复杂度验证函数步骤...
weixin_30083369的博客
04-03 774
Oracle 11gR2创建PASSWORD_VERIFY_FUNCTION对应密码复杂度验证函数步骤运行测试环境:数据库服务器Oracle Linux 5.8 + Oracle 11g R2数据库相关工具:PL/SQL软件(连接Linux下的Oracle数据库),SecureCRT软件(远程连接Linux服务器)详细步骤:1、连接上Linux数据库服务器,切换到Oracle数据库用户桌面,打开终...
oracle数据库密码复杂度查询,Oracle 11gR2创建PASSWORD_VERIFY_FUNCTION对应密码复杂度验证函数步骤...
weixin_32063439的博客
04-03 2244
Oracle 11gR2创建PASSWORD_VERIFY_FUNCTION对应密码复杂度验证函数步骤运行测试环境:数据库服务器Oracle Linux 5.8 + Oracle 11g R2数据库相关工具:PL/SQL软件(连接Linux下的Oracle数据库),SecureCRT软件(远程连接Linux服务器)详细步骤:1、连接上Linux数据库服务器,切换到Oracle数据库用户桌面,打开终...
Oracle Profile概要文件管理用户密码
路虽远行则将至,事虽难做则必成
03-27 550
目标:1.实现用户定期修改密码 2.控制用户密码的登录出错的次数 3.控制用户旧密码的生命周期 1.ProFile的概述 ProfileOracle提供的一种针对用户资源使用和密码管理的策略配置。借助Profile,可以实现特定用户资源上的限制和密码管理规则的应用。在实际的应用中,Profile可以帮助我们实现很多应用层面比较困难实现的需求。 ProfileOracle安全策略的一个
profile_oracle设置某用户password永只是期
weixin_34198797的博客
04-27 122
原创作品。出自 “深蓝的blog” 博客,深蓝的blog:http://blog.csdn.net/huangyanlong/article/details/46888139   oracle设置某用户password永只是期   为ETL_TEST用户设置password永只是期。 select  *  from  dba_users  where  username = 'E...
oracle密码设置建议标准,Profile设置高标准密码复杂度的方法
weixin_34526937的博客
04-03 908
ProfileOracle提供的一种针对用户资源使用和密码管理的策略配置。借助Profile,可以实现特定用户资源上的限制和密码管理规则的应用。在实际的应用中,Profile可以帮助我们实现很多应用层面比较困难实现的需求。默认情况下,用户连接数据库,形成会话,使用CPU资源和内存资源是没有限制的。在一些应用并发量很大,特别是多个应用部署在同一个数据库服务器上的时候,依据应用对企业重要程度的部分,...
oracle密码维护
数据库
04-10 1303
查看密码是否可以重复使用 SQL> select PROFILE,RESOURCE_NAME,LIMIT from dba_profiles where profile='DEFAULT' and resource_type ='PASSWORD'; PROFILE                        RESOURCE_NAME                    LIMIT -
Oracle数据库profile参数表限制用户资源和密码的管理
阿阿阿唱的博客
05-29 1405
Oracle 数据库profile参数表限制用户资源和密码的管理Oracle数据库profile参数表限制用户资源和密码的管理profile概述profile的查看、创建、修改等结尾 Oracle数据库profile参数表限制用户资源和密码的管理 此部分整理了oracle数据库中profile参数表的信息和相关配置过程,profile是口令限制,资源限制的命令集合,当建立数据库时,oracle会自动建立名称为default的profile。当建立用户没有指定profile选项时,那么oracle就会将def
oracle PASSWORD_VERIFY FUNCTION
最新发布
08-17
In Oracle, the PASSWORD_VERIFY_FUNCTION is a built-in function that allows you to enforce password complexity rules and policies when creating or altering user passwords. It helps to ensure that passwords meet certain requirements and enhances the security of the Oracle database. By default, Oracle provides a default password verification function called "ORA12C_STRONG_VERIFY_FUNCTION". This function enforces the following password complexity rules: 1. The password must be at least 8 characters long. 2. It must contain at least one uppercase letter. 3. It must contain at least one lowercase letter. 4. It must contain at least one numeric digit. 5. It must contain at least one special character (e.g., !@#$%^&*). You can view the details of this default password verification function by querying the DBA_USERS view: ```sql SELECT * FROM DBA_USERS; ``` To alter the password complexity rules or create a custom password verification function, you can use the DBMS_AUTHENTICATION package. Here's an example of how to create a custom password verification function in Oracle: ```sql CREATE OR REPLACE FUNCTION my_password_verify_function ( username IN VARCHAR2, password IN VARCHAR2, old_password IN VARCHAR2 ) RETURN BOOLEAN IS -- Custom password verification logic goes here BEGIN -- Return TRUE if the password meets the desired criteria, otherwise FALSE END; / ``` Once you have created your custom password verification function, you can set it as the current password verification function using the ALTER PROFILE statement: ```sql ALTER PROFILE my_profile LIMIT PASSWORD_VERIFY_FUNCTION my_password_verify_function; ``` This will enforce your custom password complexity rules for new passwords or when altering existing passwords for users associated with the specified profile. Remember to adjust the logic inside your custom password_verify_function to fit your specific requirements for password complexity and security.
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值