Password Trick :-:Database Administrator
I am going to discuss one trick in database using which you can actually access to the account of any user in oracle database without the particular user getting informed about it. For that we require the dba privilige. so here are the few steps that we have to follow:-
1. login into oracle database as sysdba
sql> conn /as sysdba
connected
2. sql> create user testuser identified by testuser;
user created.
(here we assumed that there is no user , so we created new user )
username = testuser , password = testuser
3. now we need to login in database to check first that the username and password given is correct or not.
sql> conn testuser/testuser;
connected
now the actual trick begins
4. login into dba account using the previously discussed syntax
i.e conn / as sysdba
5. now , query the username and password from sys.user$ view
sql> select name , password from sys.user$;
6. now u have to copy the password for a particular user i.e testuser from the view and write it in notepad.
7. now change the password of the testuser by following command
sql> alter user testuser identified by password;
8. now login using new password
sql> conn testuser/password
connected
9. so we changed the password of the testuser.
inorder to restore the previous password of testuser , we have to again login as sysdba and run the following command
sql> alter user testuser identified by values '<old hashpassword>';
user altered
here we have to paste the password that we had copied from sys.user$ view
10. now check the user account by logging into database using old password
sql> conn testuser/testuser;
connected.
hence we can login into anyone's account by using the above procedure,
enjoy the script guys:)
1. login into oracle database as sysdba
sql> conn /as sysdba
connected
2. sql> create user testuser identified by testuser;
user created.
(here we assumed that there is no user , so we created new user )
username = testuser , password = testuser
3. now we need to login in database to check first that the username and password given is correct or not.
sql> conn testuser/testuser;
connected
now the actual trick begins
4. login into dba account using the previously discussed syntax
i.e conn / as sysdba
5. now , query the username and password from sys.user$ view
sql> select name , password from sys.user$;
6. now u have to copy the password for a particular user i.e testuser from the view and write it in notepad.
7. now change the password of the testuser by following command
sql> alter user testuser identified by password;
8. now login using new password
sql> conn testuser/password
connected
9. so we changed the password of the testuser.
inorder to restore the previous password of testuser , we have to again login as sysdba and run the following command
sql> alter user testuser identified by values '<old hashpassword>';
user altered
here we have to paste the password that we had copied from sys.user$ view
10. now check the user account by logging into database using old password
sql> conn testuser/testuser;
connected.
hence we can login into anyone's account by using the above procedure,
enjoy the script guys:)
Comments