Securing DB Listener: EXTPROC
I am trying to understand the proceedure that should be followed to
secure the EXTPROC listener on Oracle 10b DB.
Many documents suggest that if you must use external calls in your
database you should secure the EXTROC listener... they say things like
"If you need to support external procedures, it's best to configure
the extproc listener to run as an unprivileged user; for example, the
"nobody" user on UNIX. By default, the process runs with the
privileges of the database listener. By following this configuration
suggestion, the risks associated with a compromised external procedure
are significantly diminished."
Many web pages quote this type of advice but dont say what you do to
So my question is what do you actually do to make the extproc listener
to run as an unprivileged user?? files to be edited, commands etc??
i have the job of testing that design have implemented this feature
they are suggesting without them actually understanding how to do it
Any help appreciated.