COMPGROUPS.NET | Search | Post Question | Groups | Stream | About | Register

Bequeath connections

  • Follow


I have been given access to a certain database at Oracle level, but no
UNIX access.
Is it possible to determine whether a connection (Oracle session) is
Bequeath connection or connection through listener by looking at V$
views?
Thanks
0
Reply vsevolod.afanassiev (47) 1/28/2010 2:18:19 AM 

On Jan 27, 9:18=A0pm, vsevolod afanassiev
<vsevolod.afanass...@gmail.com> wrote:
> I have been given access to a certain database at Oracle level, but no
> UNIX access.
> Is it possible to determine whether a connection (Oracle session) is
> Bequeath connection or connection through listener by looking at V$
> views?
> Thanks

Possibly:

select username, osuser, process, program
from v$session
where username is not null
and machine =3D (select host_name from v$instance);

You may see some emagent sessions which won't be listed as BEQ
connections (at least not by ps -ef) but it will show you all of the
local connections bearing actual user names.


David Fitzjarrell
0
Reply ddf 1/28/2010 6:26:52 AM 


Hi David,

Thanks for responding

The query that you provided will show connections coming from the same
server
where the database is running. However this is not the same as
Bequeath
connection.
0
Reply vsevolod 1/28/2010 7:45:23 AM 

On 28.01.2010 03:18, vsevolod afanassiev wrote:
> I have been given access to a certain database at Oracle level, but no
> UNIX access.
> Is it possible to determine whether a connection (Oracle session) is
> Bequeath connection or connection through listener by looking at V$
> views?
> Thanks

You can look at v$session_connect_info:

SQL> connect system
Enter password: ******
Connected.
SQL> select network_service_banner from v$session_connect_info where 
sid=sys_context('userenv','sid');

NETWORK_SERVICE_BANNER
----------------------------------------------------------------------------------------------------
Oracle Bequeath NT Protocol Adapter for Linux: Version 10.2.0.4.0 - 
Production
Oracle Advanced Security: authentication service for Linux: Version 
10.2.0.4.0 - Production
Oracle Advanced Security: encryption service for Linux: Version 
10.2.0.4.0 - Production
Oracle Advanced Security: crypto-checksumming service for Linux: Version 
10.2.0.4.0 - Production

SQL> connect system@emrep
Enter password: ******
Connected.
SQL> select network_service_banner from v$session_connect_info where 
sid=sys_context('userenv','sid');

NETWORK_SERVICE_BANNER
----------------------------------------------------------------------------------------------------
TCP/IP NT Protocol Adapter for Linux: Version 10.2.0.4.0 - Production
Oracle Advanced Security: encryption service for Linux: Version 
10.2.0.4.0 - Production
Oracle Advanced Security: crypto-checksumming service for Linux: Version 
10.2.0.4.0 - Production
Oracle Advanced Security: crypto-checksumming service for Linux: Version 
10.2.0.4.0 - Production


Best regards

Maxim
0
Reply Maxim 1/28/2010 7:48:53 AM 

On Jan 28, 2:48=A0am, Maxim Demenko <mdeme...@gmail.com> wrote:
> On 28.01.2010 03:18, vsevolod afanassiev wrote:
>
> > I have been given access to a certain database at Oracle level, but no
> > UNIX access.
> > Is it possible to determine whether a connection (Oracle session) is
> > Bequeath connection or connection through listener by looking at V$
> > views?
> > Thanks
>
> You can look at v$session_connect_info:
>
> SQL> connect system
> Enter password: ******
> Connected.
> SQL> select network_service_banner from v$session_connect_info where
> sid=3Dsys_context('userenv','sid');
>
> NETWORK_SERVICE_BANNER
> -------------------------------------------------------------------------=
--=AD-------------------------
> Oracle Bequeath NT Protocol Adapter for Linux: Version 10.2.0.4.0 -
> Production
> Oracle Advanced Security: authentication service for Linux: Version
> 10.2.0.4.0 - Production
> Oracle Advanced Security: encryption service for Linux: Version
> 10.2.0.4.0 - Production
> Oracle Advanced Security: crypto-checksumming service for Linux: Version
> 10.2.0.4.0 - Production
>
> SQL> connect system@emrep
> Enter password: ******
> Connected.
> SQL> select network_service_banner from v$session_connect_info where
> sid=3Dsys_context('userenv','sid');
>
> NETWORK_SERVICE_BANNER
> -------------------------------------------------------------------------=
--=AD-------------------------
> TCP/IP NT Protocol Adapter for Linux: Version 10.2.0.4.0 - Production
> Oracle Advanced Security: encryption service for Linux: Version
> 10.2.0.4.0 - Production
> Oracle Advanced Security: crypto-checksumming service for Linux: Version
> 10.2.0.4.0 - Production
> Oracle Advanced Security: crypto-checksumming service for Linux: Version
> 10.2.0.4.0 - Production
>
> Best regards
>
> Maxim

I had forgotten all about this view.  It is pretty easy to modify the
where clause using a like to find all connections using TCP/IP or
Bequeath.

HTH -- Mark D Powell --
0
Reply Mark 1/28/2010 7:15:06 PM 

Thanks for this information. It seems that there are 4 lines in this
view for each session.
If session connected through listener then first line has
network_service_banner = 'TCP/IP NT Protocal Adapter'
If session connected through Bequeath then first line has
network_service_banner = 'Oracle Bequeath Network Protocol Adapter'

What's about next 3 lines? They start from 'Oracle Advanced
Security...' - I thought that
Advanced Security is separately licensed option - and we don't even
install it!
0
Reply vsevolod 1/29/2010 2:30:45 AM 

Op 29-1-2010 3:30, vsevolod afanassiev schreef:
> Thanks for this information. It seems that there are 4 lines in this
> view for each session.
> If session connected through listener then first line has
> network_service_banner = 'TCP/IP NT Protocal Adapter'
> If session connected through Bequeath then first line has
> network_service_banner = 'Oracle Bequeath Network Protocol Adapter'
>
> What's about next 3 lines? They start from 'Oracle Advanced
> Security...' - I thought that
> Advanced Security is separately licensed option - and we don't even
> install it!
>
>
>
Then maybe your DBA forgot to deactivate it. If you don't do so, the 
License Police may require you to pay the license.... even if you NEVER 
used it.

Shakespeare
0
Reply Shakespeare 1/29/2010 9:47:28 AM 

On Jan 29, 1:47=A0am, Shakespeare <what...@xs4all.nl> wrote:
> Op 29-1-2010 3:30, vsevolod afanassiev schreef:> Thanks for this informat=
ion. It seems that there are 4 lines in this
> > view for each session.
> > If session connected through listener then first line has
> > network_service_banner =3D 'TCP/IP NT Protocal Adapter'
> > If session connected through Bequeath then first line has
> > network_service_banner =3D 'Oracle Bequeath Network Protocol Adapter'
>
> > What's about next 3 lines? They start from 'Oracle Advanced
> > Security...' - I thought that
> > Advanced Security is separately licensed option - and we don't even
> > install it!
>
> Then maybe your DBA forgot to deactivate it. If you don't do so, the
> License Police may require you to pay the license.... even if you NEVER
> used it.
>
> Shakespeare

Hmmm, I see the four entries per connection, but I don't see anything
about Advanced Security in DBA_FEATURE_USAGE_STATISTICS or V_$OPTION
(10.2.0.4).

Maybe this is evidence of one of those things that are there for
Oracle internal usage but not generally seen unless you install it?  I
don't have an Advanced Security to check.  Given the high visibility
of security issues, I would hope the base product would be secure...

jg
--
@home.com is bogus.
The perfectability of spam
http://www.newscientist.com/article/mg20527446.000-to-beat-spam-turn-its-ow=
n-weapons-against-it.html?haasFormId=3D46aa9eea-8158-4b87-8d70-3994c2a1bd64=
&haasPage=3D0
0
Reply joel 1/29/2010 5:17:11 PM 

On 29.01.2010 18:17, joel garry wrote:
> On Jan 29, 1:47 am, Shakespeare<what...@xs4all.nl>  wrote:
>> Op 29-1-2010 3:30, vsevolod afanassiev schreef:>  Thanks for this information. It seems that there are 4 lines in this
>>> view for each session.
>>> If session connected through listener then first line has
>>> network_service_banner = 'TCP/IP NT Protocal Adapter'
>>> If session connected through Bequeath then first line has
>>> network_service_banner = 'Oracle Bequeath Network Protocol Adapter'
>>
>>> What's about next 3 lines? They start from 'Oracle Advanced
>>> Security...' - I thought that
>>> Advanced Security is separately licensed option - and we don't even
>>> install it!
>>
>> Then maybe your DBA forgot to deactivate it. If you don't do so, the
>> License Police may require you to pay the license.... even if you NEVER
>> used it.
>>
>> Shakespeare
>
> Hmmm, I see the four entries per connection, but I don't see anything
> about Advanced Security in DBA_FEATURE_USAGE_STATISTICS or V_$OPTION
> (10.2.0.4).
>
> Maybe this is evidence of one of those things that are there for
> Oracle internal usage but not generally seen unless you install it?  I
> don't have an Advanced Security to check.  Given the high visibility
> of security issues, I would hope the base product would be secure...
>
> jg
> --
> @home.com is bogus.
> The perfectability of spam
> http://www.newscientist.com/article/mg20527446.000-to-beat-spam-turn-its-own-weapons-against-it.html?haasFormId=46aa9eea-8158-4b87-8d70-3994c2a1bd64&haasPage=0

Afaik, in the base product secured is only password transfer, nothing 
more, if you want your data to be transferred secure, you'll need either 
use secure channel (ipsec,tunnel over ssh,etc) or enable advanced 
security option. To my knowledge, ASO is installed, if you select 
enterprise edition, you can only deselect it if you choose custom 
install. The fact, that it is not reflected in 
dba_feature_usage_statistics is explained in the Note 843077.1
<quote>
The code changes in 10.2.0.4 has isolated Oracle Advanced Security 
options as a set of adapters rather than feature in the database , due 
to which ASO should not be seen in DBA_FEATURE_USAGE_STATISTICS itself .
</quote>
However, due to bug 5475037 it still may be shown there.

Whether the ASO is installed, can be verified with the shell script 
adapters, which yield output similar to

oracle$ adapters

Installed Oracle Net transport protocols are:

     IPC
     BEQ
     TCP/IP
     SSL
     RAW
     SDP/IB

Installed Oracle Net naming methods are:

     Local Naming (tnsnames.ora)
     Oracle Directory Naming
     Oracle Host Naming
    Error!!!   Oracle Names Server Naming is not completely installed!

Installed Oracle Advanced Security options are:

     RC4 40-bit encryption
     RC4 56-bit encryption
     RC4 128-bit encryption
     RC4 256-bit encryption
     DES40 40-bit encryption
     DES 56-bit encryption
     3DES 112-bit encryption
     3DES 168-bit encryption
     AES 128-bit encryption
     AES 192-bit encryption
     AES 256-bit encryption
     MD5 crypto-checksumming
     SHA-1 crypto-checksumming
     Kerberos v5 authentication
     RADIUS authentication


I think, to install ASO is not a violation against license terms, if it 
is not used, however i'm not sure, how oracle track the usage of it (as 
opposite to options in dba_feature_usage_statistics).

To deinstall ASO the most straightforward way would be via launch 
runInstaller.
There is a Note 1020065.102 which describes, how to remove all external 
references to authentication adapters for Oracle 7.3, which basically 
consists of regeneration of nautab.o (the script genautab produces the 
code) and recompilation all oracle components (rdbms, network, etc), 
but, it seems, genautab is no more included since oracle 9i (in Oracle 
8i it is still here), and, maybe the process doesn't fully apply to 
recent Oracle versions, so the Oracle Installer would be the right choice.

Best regards

Maxim
0
Reply Maxim 1/29/2010 7:10:57 PM 

Op 29-1-2010 20:10, Maxim Demenko schreef:
> On 29.01.2010 18:17, joel garry wrote:
>> On Jan 29, 1:47 am, Shakespeare<what...@xs4all.nl> wrote:
>>> Op 29-1-2010 3:30, vsevolod afanassiev schreef:> Thanks for this
>>> information. It seems that there are 4 lines in this
>>>> view for each session.
>>>> If session connected through listener then first line has
>>>> network_service_banner = 'TCP/IP NT Protocal Adapter'
>>>> If session connected through Bequeath then first line has
>>>> network_service_banner = 'Oracle Bequeath Network Protocol Adapter'
>>>
>>>> What's about next 3 lines? They start from 'Oracle Advanced
>>>> Security...' - I thought that
>>>> Advanced Security is separately licensed option - and we don't even
>>>> install it!
>>>
>>> Then maybe your DBA forgot to deactivate it. If you don't do so, the
>>> License Police may require you to pay the license.... even if you NEVER
>>> used it.
>>>
>>> Shakespeare
>>
>> Hmmm, I see the four entries per connection, but I don't see anything
>> about Advanced Security in DBA_FEATURE_USAGE_STATISTICS or V_$OPTION
>> (10.2.0.4).
>>
>> Maybe this is evidence of one of those things that are there for
>> Oracle internal usage but not generally seen unless you install it? I
>> don't have an Advanced Security to check. Given the high visibility
>> of security issues, I would hope the base product would be secure...
>>
>> jg
>> --
>> @home.com is bogus.
>> The perfectability of spam
>> http://www.newscientist.com/article/mg20527446.000-to-beat-spam-turn-its-own-weapons-against-it.html?haasFormId=46aa9eea-8158-4b87-8d70-3994c2a1bd64&haasPage=0
>>
>
> Afaik, in the base product secured is only password transfer, nothing
> more, if you want your data to be transferred secure, you'll need either
> use secure channel (ipsec,tunnel over ssh,etc) or enable advanced
> security option. To my knowledge, ASO is installed, if you select
> enterprise edition, you can only deselect it if you choose custom
> install. The fact, that it is not reflected in
> dba_feature_usage_statistics is explained in the Note 843077.1
> <quote>
> The code changes in 10.2.0.4 has isolated Oracle Advanced Security
> options as a set of adapters rather than feature in the database , due
> to which ASO should not be seen in DBA_FEATURE_USAGE_STATISTICS itself .
> </quote>
> However, due to bug 5475037 it still may be shown there.
>
> Whether the ASO is installed, can be verified with the shell script
> adapters, which yield output similar to
>
> oracle$ adapters
>
> Installed Oracle Net transport protocols are:
>
> IPC
> BEQ
> TCP/IP
> SSL
> RAW
> SDP/IB
>
> Installed Oracle Net naming methods are:
>
> Local Naming (tnsnames.ora)
> Oracle Directory Naming
> Oracle Host Naming
> Error!!! Oracle Names Server Naming is not completely installed!
>
> Installed Oracle Advanced Security options are:
>
> RC4 40-bit encryption
> RC4 56-bit encryption
> RC4 128-bit encryption
> RC4 256-bit encryption
> DES40 40-bit encryption
> DES 56-bit encryption
> 3DES 112-bit encryption
> 3DES 168-bit encryption
> AES 128-bit encryption
> AES 192-bit encryption
> AES 256-bit encryption
> MD5 crypto-checksumming
> SHA-1 crypto-checksumming
> Kerberos v5 authentication
> RADIUS authentication
>
>
> I think, to install ASO is not a violation against license terms, if it
> is not used, however i'm not sure, how oracle track the usage of it (as
> opposite to options in dba_feature_usage_statistics).
>
> To deinstall ASO the most straightforward way would be via launch
> runInstaller.
> There is a Note 1020065.102 which describes, how to remove all external
> references to authentication adapters for Oracle 7.3, which basically
> consists of regeneration of nautab.o (the script genautab produces the
> code) and recompilation all oracle components (rdbms, network, etc),
> but, it seems, genautab is no more included since oracle 9i (in Oracle
> 8i it is still here), and, maybe the process doesn't fully apply to
> recent Oracle versions, so the Oracle Installer would be the right choice.
>
> Best regards
>
> Maxim

To my experience, Oracle LMS (License Management Services) checks if the 
option is unchecked in Enterprise Manager. I am not sure though, if this 
option still shows up there, have no installation available at the 
moment. For other options/packs: a check means installed means used 
means have to pay (according to Oracle).

Shakespeare
0
Reply Shakespeare 1/29/2010 7:17:50 PM 

On Jan 29, 11:17=A0am, Shakespeare <what...@xs4all.nl> wrote:
> Op 29-1-2010 20:10, Maxim Demenko schreef:
>

[Excellent descriptions snipped]

Thanks guys!

jg
--
@home.com is bogus.
What's in a name?  http://www.ktla.com/news/landing/ktla-concrete-lotto,0,6=
757304.story
0
Reply joel 1/29/2010 9:05:44 PM
comp.databases.oracle.server 21487 articles. 9 followers.

10 Replies
467 Views

(page loaded in 0.169 seconds)

Similiar Articles:

Bequeath connections - comp.databases.oracle.server
I have been given access to a certain database at Oracle level, but no UNIX access. Is it possible to determine whether a connection (Oracle session) is Bequeath ...

Finding the PID given a TCP connection - comp.unix.programmer ...
Bequeath connections - comp.databases.oracle.server Finding the PID given a TCP connection - comp.unix.programmer ... Bequeath connections - comp.databases.oracle.server ...

Connecting to Oracle via tnsnames.ora - comp.soft-sys.math ...
Bequeath connections - comp.databases.oracle.server Connecting to Oracle via tnsnames.ora - comp.soft-sys.math ... I need to be able to connect to an Oracle database (11g ...

Oracle in OraHome92 ODBC Connection with Windows 7 64 Bit - comp ...
ODBC connection problem with matlab and windows 7 - comp.soft-sys ... ... OS ... bit Matlab with establishing connections to 64-bit ODBC ... Bequeath connections ...

Oracle JDBC and Kerberos - comp.protocols.kerberos
Bequeath connections - comp.databases.oracle.server Oracle JDBC and Kerberos - comp.protocols.kerberos Bequeath connections - comp.databases.oracle.server Oracle JDBC and ...

Ho to disconnect a TCP session - comp.os.ms-windows.programmer ...
Bequeath connections - comp.databases.oracle.server > There is a Note 1020065.102 which describes, how to remove all external ... Ho to disconnect a TCP session - comp.os ...

database connection to oracle - comp.unix.solaris
Bequeath connections - comp.databases.oracle.server I have been given access to a certain database at Oracle level, but no UNIX access. Is it possible to determine whether ...

Download bearings - comp.cad.solidworks
Bequeath connections - comp.databases.oracle.server Download bearings - comp.cad.solidworks Bequeath connections - comp.databases.oracle.server ... least not by ps -ef ...

TCP timeout on Solaris 9? - comp.unix.solaris
TCP timeout on Solaris 9? - comp.unix.solaris TCP timeout on Solaris 9? - comp.unix.solaris Bequeath connections - comp.databases.oracle.server Finding the PID given a TCP ...

Data exchange over modbus tcpip - comp.soft-sys.matlab
... and connection to access database - comp.soft-sys ..... comp.databases.oracle.server Database toolbox and connection to access database - comp.soft-sys ... Bequeath ...

Bequeath connections - comp.databases.oracle.server | Computer Group
I have been given access to a certain database at Oracle level, but no UNIX access. Is it possible to determine whether a connection (Oracle session) is Bequeath ...

How to setup BEQUEATH connection: bequeath, connection, oracle
How to configure BEQUEATH connection to an Oracle server. What do I need to add to my TNSNAMES.ORA file to establish a BEQUEATH connection to the server ...

7/23/2012 11:32:54 AM


Reply:



Privacy Policy | All Times Are GMT(UTC) | powered by