Quanwen Zhao, June 15, 2017 - 11:23 am UTC
Thanks a lot,Mr Connor. Configure wallet maybe is a good method,and is there any other better method? I think that configuring wallet is more complex.
June 17, 2017 - 1:16 am UTC
On *some* platforms you can do:
echo your_password | expdp userid=your_user dumpfile=....
some platform?Aix,HP-UX,Linux or Windows
A reader, June 18, 2017 - 9:13 am UTC
'echo your_password | expdp user of=username ......' is shown real password yet!!!!
I don't know what platform.
Thanks,Mr Connor!
June 19, 2017 - 3:03 am UTC
If you have that in a script, then the password will not be visible via a process listing.
If you dont want a record of the password *anywhere*, then use a wallet even if you " think that configuring wallet is more complex."
Quanwen Zhao, June 19, 2017 - 4:49 am UTC
I understand,now! Thanks your suggestion.
Another possible option...
J. Laurindo Chiappa, June 20, 2017 - 6:19 pm UTC
Hi : +1 here for the wallet option (it is very secure, easy to manage and can be promptly exported and imported between machines) but if due to any question the best option can not be used, another option could be to use the OPS$ / OS user identification - to do so, the sysadmin would create an account specifically to run scripts (call it SCRIPTRUNNER) and give to him all the privs needed to connect in the Oracle database, and inside the database the DBA would create an accont OPS$SCRIPTRUNNER and grant the neeed privileges to him... See
https://oracle-base.com/articles/misc/os-authentication for an example...
With this setup, the shell script would run on the SCRIPTRUNNER OS account and pass / as the password to connect in the database, such as :
sqlplus /@scriptrorun.sql
Using this, anyone looking will see only / as the password.... This technique works and I used the option many many times before, but the main issue here will be the Administration : the password for SCRIPTRUNNER will be yet another one to protect and maintain, and normally there is no built-in facilities to export the password or replicate it to the people that would need to know it.... The wallet is very different in this sense : it can act as a one-point repository, and thus anyone permissioned to use the wallet could/would use any of the many passwords stored in the wallet...
Best regards,
J. Laurindo Chiappa
June 21, 2017 - 1:20 am UTC
nice input