Friday, March 10, 2006
Fame at last! Oracle WTF has accepted my first submission. This was a suggestion in an OTN forum thread on recovering passwords; the poster proposed amending the password verification function to store the username and password in a normal table. It takes a rare kind of mind to come up with ideas like that, subverting the password checker to ensure that every password is long, strong and known to everyone with SELECT ANY TABLE privilege.