|
|
Archives of the TeradataForum
Message Posted: Fri, 25 Oct 2002 @ 13:11:13 GMT
Subj: | | Re: Security Issue and OLE LOAD... |
|
From: | | Shawn Shealy |
Hi Mohommod,
| We are using OLE Load to migrate data from ORACLE. | |
OleLoad is part of the OLE DB Access Module product.
| This utility encrypts the source login/passwords along other info in a file called '.amj'. Questions have been raised
regarding the security about these files, since username/password are hard coded in the script. | |
Username/password information is typically contained within the .AMJ files. This authentication information is not generally encrypted
so you should secure these files (the same goes for the utility scripts). The .AMJ files are binary files, so it is a bit difficult to look
at them. It is anticipated that version 7.0 of the Teradata Tools and Utilities will include a new version of the OLE DB Access Module. It
is expected that in this new version, if the authentication information is not saved within the .AMJ file, then the user will be prompted
when the .AMJ file is opened.
| The other issue regarding this '.amj' file is, each time when the source password expires or changes the '.amj' needs to be
recreated or build using the new password. | |
It is anticipated that in the new version of the OLE DB Access Module, .AMJ information will be saved in a human readable XML-based
format (instead of the existing binary format -- although the new version is expected to be able to open the existing .AMJ files). In this
new format, it may be easier to update the password.
I hope this helps!
-shawn :-)
| |