Edit D:\app\Administrator\product\11.2.0\dbhome_1\apex\images\doc\sec_items_risk.htm
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en"> <head> <meta http-equiv="Content-Type" content="text/html; charset=us-ascii" /> <meta http-equiv="Content-Style-Type" content="text/css" /> <meta http-equiv="Content-Script-Type" content="text/javascript" /> <title>Identifying At Risk Password Items</title> <meta name="generator" content="Oracle DARB XHTML Converter (Mode = ohj/ohw) - Version 5.1" /> <meta name="date" content="2009-04-14T16:11:31Z" /> <meta name="robots" content="noarchive" /> <meta name="doctitle" content="Identifying At Risk Password Items" /> <meta name="relnum" content="Release 3.2" /> <meta name="partnum" content="E11947-01" /> <link rel="copyright" href="dcommon/html/cpyr.htm" title="Copyright" type="text/html" /> <link rel="stylesheet" href="dcommon/css/blafdoc.css" title="Oracle BLAFDoc" type="text/css" /> <link rel="contents" href="toc.htm" title="Contents" type="text/html" /> <link rel="up" href="preface.htm" title="Home" type="text/html" /> <link rel="up" href="sec.htm" title="Managing Application Security" type="text/html" /> <link rel="up" href="sec_dev.htm" title="Understanding Developer Sec..." type="text/html" /> <link rel="up" href="sec_items_risk.htm" title="Identifying At Risk Passwor..." type="text/html" /> <link rel="prev" href="sec_item_password.htm" title="Previous" type="text/html" /> <link rel="next" href="sec_zero_sessionid.htm" title="Next" type="text/html" /> </head> <body> <p id="BREADCRUMBING"><a href="preface.htm" title="Home">Home</a> > <a href="sec.htm" title="Managing Application Security">Managing Application Security</a> > <a href="sec_dev.htm" title="Understanding Developer Sec...">Understanding Developer Sec...</a> > Identifying At Risk Passwor...</p> <table class="simple oac_no_warn" summary="" cellspacing="0" cellpadding="0" width="100%"> <col width="86%" /> <col width="*" /> <tr valign="bottom"> <td align="left"></td> <td align="center"><a href="sec_item_password.htm"><img src="dcommon/gifs/leftnav.gif" alt="Previous" /><br /> <span class="icon">Previous</span></a> </td> <td align="center"><a href="sec_zero_sessionid.htm"><img src="dcommon/gifs/rightnav.gif" alt="Next" /><br /> <span class="icon">Next</span></a></td> </tr> </table> <p><a id="CHDEJDHE" name="CHDEJDHE"></a></p> <div class="sect2"> <h1>Identifying At Risk Pa<a id="sthref1946" name="sthref1946"></a><a id="sthref1947" name="sthref1947"></a>ssword Items</h1> <p>At risk password items are those that either:</p> <ul> <li> <p>Do not use one of the password item types that does not save session state</p> </li> <li> <p>Store the value in session state un-encrypted</p> </li> </ul> <p>Use the Password Items, Security Profiles, and Password Items report to help identify at risk password item:</p> <p>To view reports that identify at risk password item types:</p> <ol> <li> <p>Navigate to the Workspace home page.</p> </li> <li> <p>Click the <span class="bold">Application Builder</span> icon.</p> </li> <li> <p>Select an application.</p> <p>The Application home page appears.</p> </li> <li> <p>On the Tasks list, click <span class="bold">Application Reports</span>.</p> </li> <li> <p>To view the Password Items report:</p> <ol> <li> <p>Select <span class="bold">Page Components</span>.</p> </li> <li> <p>Under Items, click <span class="bold">Password Items</span>.</p> <p>This report shows all of the password items within the application and indicates if they use encryption and whethere they save state. Password items that do neither are highlighted as <code>At Risk</code>.</p> </li> </ol> </li> <li> <p>To view the Security Profiles report:</p> <ol> <li> <p>Select <span class="bold">Cross Application</span>.</p> </li> <li> <p>Under Items, click <span class="bold">Password Items</span>.</p> </li> </ol> </li> <li> <p>To view the Password Items report:</p> <ol> <li> <p>Select <span class="bold">Cross Application</span>.</p> </li> <li> <p>Under Items, click <span class="bold">Security Profiles</span>.</p> <p>Notice the At Risk Password Items column.</p> </li> </ol> </li> </ol> <p>For pages that contain password items, set page attribute <span class="bold">Form Auto Complete</span> to <span class="bold">Off</span>. Setting that attribute to <span class="bold">Off</span> prevents the Web browser from attempting to auto complete items on the page. To learn more about this attribute, see <a href="bldr_pg_att_about.htm#CHDJHBCB">Table: Page Attributes: Security</a>.</p> </div> <!-- class="sect2" --> <!-- Start Footer --> <div class="footer"> <table class="simple oac_no_warn" summary="" cellspacing="0" cellpadding="0" width="100%"> <col width="86%" /> <col width="*" /> <tr> <td align="left"><span class="copyrightlogo">Copyright © 2003, 2009, Oracle and/or its affiliates. All rights reserved.</span><br /> <a href="dcommon/html/cpyr.htm"><span class="copyrightlogo">Legal Notices</span></a></td> <td align="center"><a href="sec_item_password.htm"><img src="dcommon/gifs/leftnav.gif" alt="Previous" /><br /> <span class="icon">Previous</span></a> </td> <td align="center"><a href="sec_zero_sessionid.htm"><img src="dcommon/gifs/rightnav.gif" alt="Next" /><br /> <span class="icon">Next</span></a></td> </tr> </table> </div> <!-- class="footer" --> </body> </html>
Ms-Dos/Windows
Unix
Write backup
jsp File Browser version 1.2 by
www.vonloesch.de