Which has the higher priority in your organization: Deploying a new database or securing the ones you already have?
Looking for a website, and resources, dedicated solely to securing Oracle databases? Check out DBSecWorx.
Purpose
Default implementation of the custom package procedure that will be invoked to process a debug connection request that arrives in the form of an ORA_DEBUG_JDWP
AUTHID
CURRENT_USER
Dependencies
DBMS_DEBUG_JDWP
Documented
No
Exceptions
Error Code
Reason
ORA-20000
debug connection to this host not permitted
First Available
9.0
Security Model
Owned by SYS with EXECUTE granted to PUBLIC
Source
{ORACLE_HOME}/rdbms/admin/dbmsjdcu.sql
CONNECT_DEBUGGER
Connect the specified session to the debugger waiting at host:port
This demo performs added security checks to decide if the debug connection request is granted (for example, by verifying that the debugger is running on a trusted host)
Note: In 11gR1, and thereafter, an ACL must be created for this call to succeed (see links below)
dbms_debug_jdwp.connect_debugger(
host IN VARCHAR2,
port IN VARCHAR2,
debug_role IN VARCHAR2 := NULL,
debug_role_pwd IN VARCHAR2 := NULL,
option_flags IN PLS_INTEGER := 0,
extensions_cmd_set IN PLS_INTEGER := 128);
DECLARE
vhost VARCHAR2(40) := 'bigdog.mlib.org';
vport VARCHAR2(10) := '1521';
BEGIN
IF (utl_inaddr.get_host_address(vhost) != '192.168.1.42') THEN
RAISE_APPLICATION_ERROR(-20000, 'debug connection to this host not permitted');
ELSE
dbms_debug_jdwp_custom.connect_debugger(vhost, vport);
END IF;
dbms_debug_jdwp.disconnect;
END;
/
