Oracle 19c Network Sniffing

In the previous article, we looked at how to encrypt data passing through the network.  We’ve seen how to trace the “sqlnet.ora” file to show that we’re actually encrypting the data.

In this article, we will use the Wireshark product that listens to the network to see if the data is actually encrypted.

 

Oracle 19c Network Encryption

 

 

I will not mention the details and installation of Wireshark in this article.

I’m making the examples in the 19c database version on Oracle Virtual Box. The Virtual Box network setting works in the Host-only state.

Let’s start watching the network in Wireshark,

Connect to the database with SQL Developer and run a query,

select name from v$database;

 

Let’s come back to the Wireshark program and examine the results.

 

 

As you can see in the picture, the query we run has not made any encryption on the network.  So the query that we run clearly shows what it is.

This is not a safe situation at all.

 

Now let’s encrypt the traffic between the client and the server by changing the “sqlnet.ora” parameters on the client side.

The client side sqlnet.ora file should look like this,

 

The server-side file should look like this,

Let’s start monitoring the network with Wireshark and connect to SQL Developer and run a query,

select name from v$database;

 

As shown in the picture, the query appears encrypted after the query we run.  When we look at the traffic in the Wireshark program as before, the query executed on the client side became encrypted.

 

See you in next article..

 

Oracle Database Security Tutorial – Virtual Private Database

 

 

 

Do you want to learn Advanced Oracle database, then read the following articles.

 

https://ittutorial.org/advanced-oracle-database-tutorials/

About Deniz Parlak

Hi, i’m Security Data Scientist & Data Engineer at My Security Analytics. I have experienced Advance Python, Machine Learning and Big Data tools. Also i worked Oracle Database Administration, Migration and upgrade projects. For your questions [email protected]

Leave a Reply

Your email address will not be published. Required fields are marked *