Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Idea for DB Password in Shell Scripts
Top Forums Shell Programming and Scripting Idea for DB Password in Shell Scripts Post 302299618 by mode09 on Friday 20th of March 2009 02:15:27 PM
Old 03-20-2009
Bug Idea for DB Password in Shell Scripts
I work in an environment where we have a Oracle DB Server on a AIX box. There are several batch scripts that load and execute on the database. The DBA wants to periodically change the password. Ideally I would like to have one common place to maintain the database as it is changed. I was thinking the .profile, however I would like do do something more secure and less obvious. Does anyone have any suggestions on how to securely store a password to be used in shell scripts?
 

10 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

shell scripts

Hi! I have added a line into /etc/profile which looks like- date > $HOME/.lastloggedon This puts a file lastloggedon into everyones directory who has logged in recently. The trouble I am having is getting the information back out. I was hoping there was a command using find which brought... (1 Reply)
Discussion started by: karenshaw
1 Replies

2. Shell Programming and Scripting

Limitations of awk? Good idea? Bad idea?

Keeping in mind that I'm relatively comfortable with programming in general but very new to unix and korn/bourne shell scripts.. I'm using awk on a CSV file, and then performing calculations and operations on specific fields within specific records. The CSV file I'm working with has about 600... (2 Replies)
Discussion started by: yongho
2 Replies

3. AIX

Difference between writing Unix Shell script and AIX Shell Scripts

Hi, Please give me the detailed Differences between writing Unix Shell script and AIX Shell Scripts. Thanks in advance..... (0 Replies)
Discussion started by: haroonec
0 Replies

4. Shell Programming and Scripting

Echo escaped \c in SH Shell Any Idea

Hi All, I have got an echo statement with "\c" in it to avoid getting into a newline. Ths script is using #!\bin\sh Any idea what could make it to escape "\c" (4 Replies)
Discussion started by: asami
4 Replies

5. AIX

Shell Scripts

I would like to seek some expertise of all our AIX experts on board. 1) I would like know how to get a return exit code of a command. I found that there are exist code for each and every command run in AIX but I just can't get the return code from my scripts. A=`cp /home/abc/abc.txt... (7 Replies)
Discussion started by: kwliew999
7 Replies

6. Shell Programming and Scripting

b-shell: any better idea for this one?Thanks!!

I'm new to the script programming and I have this piece of code (repeatedly used) in my program: while : do ................ ans=`ckyorn -p "Do you want to continue?"` if || || || ; then break elif || ; then echo "Aborting..." exit... (2 Replies)
Discussion started by: bluemoon1
2 Replies

7. Shell Programming and Scripting

root password in SH scripts

Hi Everybody! I have to make my script more automatic as possible! In this, a have to mount a usb pen drive into a Blade (Solaris 2.8), and the only away I know to do it, is becoming a SuperUser (root). But unfortunately, when I become a SuperUser inside the script, it doesn't let me to put... (1 Reply)
Discussion started by: roosse77i
1 Replies

8. Shell Programming and Scripting

how to change root password using shell script with standard password

Hi Friends. I am new to scripting now i want to change the root password using the script with standard password. which is the easy scripting to learn for the beginner, Thanks in advance. (2 Replies)
Discussion started by: kurva
2 Replies

9. Shell Programming and Scripting

calling 'n' number of shell scripts based on dependency in one shell script.

Hello gurus, I have three korn shell script 3.1, 3.2, 3.3. I would like to call three shell script in one shell script. i m looking for something like this call 3.1; If 3.1 = "complete" then call 3.2; if 3.2 = ''COMPlete" then call 3.3; else exit The... (1 Reply)
Discussion started by: shashi369
1 Replies

10. Shell Programming and Scripting

1 Script Not Sending Password - Other Scripts OK

I am building FTP Script on my Bluehost VPS Server. I have several and all work great except this one.... I think there are two issues .. One with the command and One with "$" in the password. #!/bin/sh HOST=invtransfer@52.44.151.220 USER=invtransfer PASSWORD=XXX$XXX - $ is real in... (3 Replies)
Discussion started by: Wrjames2
3 Replies

LEARN ABOUT DEBIAN

chkey

chkey(1)                                                           User Commands                                                          chkey(1)

NAME

       chkey - change user's secure RPC key pair

SYNOPSIS

       chkey [-p] [-s nisplus | nis | files | ldap]  [-m <mechanism>]

DESCRIPTION

       chkey is used to change a user's secure RPC public key and secret key pair. chkey prompts for the old secure-rpc password and verifies that
       it is correct by decrypting the secret key. If the user has not already used keylogin(1) to decrypt and store  the  secret  key  with  key-
       serv(1M),  chkey registers the secret key with the local keyserv( 1M) daemon. If the secure-rpc password does not match the login password,
       chkey prompts for the login password. chkey uses the login password to encrypt the user's secret  Diffie-Hellman  (192  bit)  cryptographic
       key. chkey can also encrypt other Diffie-Hellman keys for authentication mechanisms configured using nisauthconf(1M).

       chkey ensures that the login password and the secure-rpc  password(s) are kept the same, thus enabling password shadowing. See shadow(4).

       The  key pair can be stored in the  /etc/publickey file (see publickey(4)), the NIS publickey map, or the NIS+ cred.org_dir table. If a new
       secret key is generated, it will be registered with the local keyserv(1M) daemon. However, only NIS+ can store  Diffie-Hellman  keys  other
       than 192-bits.

       Keys  for specific mechanisms can be changed or reencrypted using the -m option followed by the authentication mechanism name. Multiple  -m
       options can be used to change one or more keys. However, only mechanisms configured using nisauthconf(1M) can be changed with  chkey.

       If the source of the  publickey is not specified with the -s option,  chkey consults the  publickey entry in the name service  switch  con-
       figuration  file.   See  nsswitch.conf(4). If the  publickey entry specifies one and only one source, then chkey will change the key in the
       specified name service. However, if multiple name services are listed, chkey can not decide which source to  update  and  will  display  an
       error message. The user should specify the source explicitly with the -s option.

       Non root users are not allowed to change their key pair in the files database.

OPTIONS

       The following options are supported:

       -p                      Re-encrypt the existing secret key with the user's login password.

       -s nisplus              Update the  NIS+ database.

       -s nis                  Update the NIS database.

       -s files                Update the  files database.

       -s ldap                 Update the  LDAP database.

       -m <mechanism>          Changes or re-encrypt the secret key for the specified mechanism.

FILES

       /etc/nsswitch.conf

       /etc/publickey

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE         |      ATTRIBUTE VALUE        |
       +-----------------------------+-----------------------------+
       |Availability                 |SUNWcsu                      |
       +-----------------------------+-----------------------------+

SEE ALSO

       keylogin(1),   keylogout(1),   keyserv(1M),   newkey(1M),   nisaddcred(1M),  nisauthconf(1M),  nsswitch.conf(4),  publickey(4),  shadow(4),
       attributes(5)

NOTES

       NIS+ might not be supported in future releases of the SolarisTM Operating Environment. Tools to aid the migration from  NIS+  to  LDAP  are
       available in the Solaris 9 operating environment. For more information, visit http://www.sun.com/directory/nisplus/transition.html.

SunOS 5.10                                                          24 Jan 2002                                                           chkey(1)
All times are GMT -4. The time now is 08:13 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy