[20180316]改變oracle使用者口令時限.txt
[20180316]改變oracle使用者口令時限.txt
--//昨天看了一篇blog,Stop password for user accounts expiring on Exadata,連結:
--//https://blog.zeddba.com/2018/03/14/stop-password-for-user-accounts-expiring-on-exadata/
--//裡面提到oracle使用者的口令時限,關於這個問題實際上我已經在以前遭遇到這個問題.直接結果匯出
--//cron無法正常執行,自己也做一個記錄:
# chage -l oracle
Last password change : Aug 21, 2015
Password expires : May 16, 2018
Password inactive : never
Account expires : never
Minimum number of days between password change : 1
Maximum number of days between password change : 999
Number of days of warning before password expires : 7
--//實際上我已經修改過1次,要到2018/5/16號到期.
SCOTT@book> select to_date('2015/8/21','yyyy/mm/dd')+999 dd from dual ;
DD
-------------------
2018-05-16 00:00:00
--//正好一致.可以看看grid使用者,我沒有修改的情況:
# chage -l grid
Last password change : Oct 10, 2014
Password expires : Jul 05, 2017
Password inactive : never
Account expires : never
Minimum number of days between password change : 1
Maximum number of days between password change : 999
Number of days of warning before password expires : 7
--//可以發現grid使用者口令早已經到期.作者提供修改建議:
The manual page for chage explains the switches:
-d, --lastday LAST_DAY
Set the number of days since January 1st, 1970 when the password was last changed. The date may also be expressed in
the format YYYY-MM-DD (or the format more commonly used in your area). If the LAST_DAY is set to 0 the user is forced
to change his password on the next log on.
-E, --expiredate EXPIRE_DATE
Set the date or number of days since January 1, 1970 on which the user's account will no longer be accessible. The date
may also be expressed in the format YYYY-MM-DD (or the format more commonly used in your area). A user whose account is
locked must contact the system administrator before being able to use the system again.
Passing the number -1 as the EXPIRE_DATE will remove an account expiration date.
-m, --mindays MIN_DAYS
Set the minimum number of days between password changes to MIN_DAYS. A value of zero for this field indicates that the
user may change his/her password at any time.
-M, --maxdays MAX_DAYS
Set the maximum number of days during which a password is valid. When MAX_DAYS plus LAST_DAY is less than the current
day, the user will be required to change his/her password before being able to use his/her account. This occurrence can
be planned for in advance by use of the -W option, which provides the user with advance warning.
Passing the number -1 as MAX_DAYS will remove checking a password's validity.
# chage -d 9999 -E -1 -m 0 -M -1 oracle
# chage -l oracle
Last password change : May 18, 1997
Password expires : never
Password inactive : never
Account expires : never
Minimum number of days between password change : 0
Maximum number of days between password change : -1
Number of days of warning before password expires : 7
--//這樣永遠不會到期.感到奇怪的-d引數:
-d, --lastday LAST_DAY
Set the number of days since January 1st, 1970 when the password was last changed. The date may also be expressed in
the format YYYY-MM-DD (or the format more commonly used in your area). If the LAST_DAY is set to 0 the user is forced
to change his password on the next log on.
SCOTT@book> select to_date('1970/1/1','yyyy/mm/dd')+9999 dd from dual ;
DD
-------------------
1997-05-18 00:00:00
--//實際上這些與安全等保相互矛盾的.我不知道我們團隊是否知道.其實我上次已經跟實施等保人員講了這方面問題.
--//我不知道我們團隊的開發如何監測與管理的,對於這樣的團隊真心失望.
--//你要限制口令時限,必須要知道它可能帶來的後果.
來自 “ ITPUB部落格 ” ,連結:http://blog.itpub.net/267265/viewspace-2151926/,如需轉載,請註明出處,否則將追究法律責任。
相關文章
- [20180316]非同步IO和共享服務模式.txt非同步模式
- [20211203]演示job啟動時間改變的情況.txt
- [20180316]共享服務模式和直接路徑讀.txt模式
- [20220623]linux 口令expire問題.txtLinux
- 勵志偶像遊戲《改變》WeGame上架 OST限時免費送遊戲GAM
- [20201112]nid改變資料庫名字.txt資料庫
- [20211020]改變備庫的rman配置.txt
- [20211015]centos 7改變runlevels使用systemctl.txtCentOS
- [20211214]ezconnect輸入口令的問題.txt
- windows本地破解使用者口令Windows
- [20181203]改變檔案大小與檢查點.txt
- 時間可以改變一切
- Oracle 通過註釋改變執行計劃Oracle
- [20240816]oracle21c環境變數ORACLE_PATH與SQLPATH(linux).txtOracle變數SQLLinux
- vue 變數賦值同時改變的問題Vue變數賦值
- oracle 臨時表空間的增刪改查Oracle
- 實時渲染將如何改變工作方式
- [20201106]瞭解oracle資料庫啟動時間.txtOracle資料庫
- [20210203]19c登入連線改變一些引數.txt
- 使用RecyclerView動態改變item時遇到的坑View
- 服裝市場如何利用網際網路來改變當下的侷限?
- oracle ERROR: ORA-28002: 7 天之後口令將過期OracleError
- 後網紅營銷時代:COVID-19如何改變使用者內容消費習慣
- 改變自己,學好linux,什麼時候都不晚Linux
- 20180316不使用INDEX FULL SCAN (MIN/MAX)Index
- for while改變indexWhileIndex
- 改變行為
- 口令攻擊
- [20220321]探究oracle sequence.txtOracle
- 實時渲染如何改變影片製作和動畫製作動畫
- iOS UIButton之改變有效點選區域(改變熱區)iOSUI
- java 方法呼叫,形參改變,實參是否發生改變Java
- Oracle case when改寫SQLOracleSQL
- Oracle Rownum分頁改寫Oracle
- 為何Oracle Database 12R2輸入正確的使用者名稱密碼口令驗證依然不能透過?OracleDatabase密碼
- 站點背景改變
- js bind 改變toStringJS
- ORACLE job作業BROKEN狀態無法改變與ORA-12005&ORA-06550Oracle