Update WordPress Installations to >4.7.2

This post is applicable for hosted wordpress installations where auto-updates are disabled. Yesterday, I noticed there was blog post “Hacked by Unknown” on Askdba blog. Post was written by White Hat Hacker who exploited the Content injection vulnerability in 4.7.0 and 4.7.1. This vulnerability allows any visitor (unauthorized user) to assume role to edit/create blog…

Oracle Critical Patch Update January 2012

I guess most of us having My Oracle Support have got email from Oracle mentioning that Critical Patch Update January 2012 has been released. Main reason behind this is Security bug found by Infoworld which can make database run out of SCN. You can read the article here Summary There is bug 12371955 which causes scn…

Database Security: Transparent Data Encryption

Data in the database is secured by using authentication, authorization and auditing mechanism, but the information stored in the datafiles can be read using any hex-editor tools or other OS level utilities, which is causing threat to sensitive  data. To overcome this limitation TDE is used to secure sensitive data, in database columns, stored in…

How To Change/Restore User Password in 11G

Oracle 11g introduces Case-sensitive passwords for database authentication. Along with this if you wish to change the password (temporarily) and reset it back to old , you will find that password field in dba_users is empty. Prior to 11g we could use following technique to change/restore password SQL> create user amit identified by amit; User…

Solving ORA-1031 while connecting as “/ as sysdba” :

Many times we see an issue like this: SQL> conn / as sysdba ERROR: ORA-01031: insufficient privileges This is a very common and frequent error that can occur after the new oracle software install or due to some permissions changes at OS level. I will dicuss the approach to solve ORA-1031 error on UNIX environment.…