Dear all. I'm sorry if this question has already been asked before. Are user id and password are encrypted during transmission of connection attempt from a unixODBC client to server? If they are, is that asymmetric encryption scheme? What is the encryption algorithm? Does it have any relation with TLS encryption parameter ? I do really appreciate your help.

regards, hb

asked 08 Mar '13, 07:54

henky's gravatar image

henky
96237
accept rate: 0%


Sensitive connection parameters (PWD, DBKEY, NEWPWD) are sent in an encrypted block. The block is encrypted with AES using a random key that is negotiated between the client and server, and is only used once. This happens on all connections, whether the connection itself is encrypted or not.

While this is far more secure than sending the password in plain text, it's not completely bulletproof. For the highest possible security, you should use TLS encryption.

permanent link

answered 08 Mar '13, 08:17

Graeme%20Perrow's gravatar image

Graeme Perrow
8.5k371109
accept rate: 52%

That behaviour has been in usage since version ...? And it applies to all connection links, too?

(08 Mar '13, 08:25) Volker Barth

Thank you Graeme. That is really help.

regards, henky

(08 Mar '13, 08:49) henky

Sorry , another question Graeme, is it AES 256 or AES 128 ?

Warm regards, henky

(08 Mar '13, 09:17) henky
1

@Volker: It's been there since version 11.x and it happens on both shared memory and TCP/IP. @henky: We use AES256.

(08 Mar '13, 09:19) Graeme Perrow

Thank you very much.

Warm regards, henky

(08 Mar '13, 09:22) henky
Your answer
toggle preview

Follow this question

By Email:

Once you sign in you will be able to subscribe for any updates here

By RSS:

Answers

Answers and Comments

Markdown Basics

  • *italic* or _italic_
  • **bold** or __bold__
  • link:[text](http://url.com/ "title")
  • image?![alt text](/path/img.jpg "title")
  • numbered list: 1. Foo 2. Bar
  • to add a line break simply add two spaces to where you would like the new line to be.
  • basic HTML tags are also supported

Question tags:

×128
×33

question asked: 08 Mar '13, 07:54

question was seen: 626 times

last updated: 08 Mar '13, 09:22