Password Listener
才知道Oracle的Listener可以远程连接;有可以通过remote manage Listener来获得dba的权限。
在本地$TNS_ADMIN目录下编辑listener.ora文件,加上远程数据库的连接信息,包括IP和Port。
host-cshell$> cat listener.ora
binzhang =
(DESCRIPTION =
(ADDRESS =
(PROTOCOL = TCP)
(Host =
(Port = 1521)
)
)
然后就可以使用set current_listener;status;services等获得Listener信息,并且可以设置logfile到可以读取或者修改的目录或文件。
host-cshell$> lsnrctl
LSNRCTL for Solaris: Version 8.1.6.2.0 - Production on 04-JUN-2007 00:40:18
(c) Copyright 1998, 1999, Oracle Corporation. All rights reserved.
Welcome to LSNRCTL, type “help” for information.
LSNRCTL> set current_listener binzhang
Current Listener is binzhang
LSNRCTL> status
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(Host=oradb)(Port=1521)))
STATUS of the LISTENER
————————
Alias ORADB_LISTENER
Version TNSLSNR for Solaris: Version 9.2.0.5.0 - Production
Start Date 30-MAR-2006 00:28:27
Uptime 466 days 0 hr. 20 min. 37 sec
Trace Level off
Security OFF
SNMP OFF
Listener Parameter File /oracle/ORADB/home/products/9205/network/admin/listener.ora
Listener Log File /oracle/ORADB/home/products/9205/network/log/ORADB_listener.log
Services Summary…
ORADB has 1 service handler(s)
ORADB has 41 service handler(s)
The command completed successfully
LSNRCTL> version
Connecting to (DESCRIPTION=(ADDRESS=(PROTOCOL=TCP)(Host=oradb)(Port=1521)))
TNSLSNR for Solaris: Version 9.2.0.5.0 - Production
TNS for Solaris: Version 9.2.0.5.0 - Production
Unix Domain Socket IPC NT Protocol Adaptor for Solaris: Version 9.2.0.5.0 - Production
Oracle Bequeath NT Protocol Adapter for Solaris: Version 9.2.0.5.0 - Production
TCP/IP NT Protocol Adapter for Solaris: Version 9.2.0.5.0 - Production,,
The command completed successfully
设置密码并且禁止远程管理,就可以避免如上情况。如果Listener处于”裸奔”的情况下,则Oracle数据库就十分危险了。
See more at