Password Case Is In-Sensitive For Proxy Authentication Over Thin JDBC Connection (Doc ID 2436884.1)

Last updated on MAY 01, 2019

Applies to:

Oracle Database - Enterprise Edition - Version 11.2.0.3 and later
Information in this document applies to any platform.

Symptoms

NOTE: In the images and/or the document content below, the user information and data used represents fictitious data from the Oracle sample schema(s) or Public Documentation delivered with an Oracle database product. Any similarity to actual persons, living or dead, is purely coincidental and not intended in any manner.

Password sensitivity is not enforced for thin JDBC connections for proxy authentication in other words if the proxy user password is "proxypassword", authenticating the proxy connection with the password "PROXYPASSWORD" succeeds.

This behaviour is observed only for JDBC thin connections and not over thick connections(OCI) and can be reproduced with the following steps:

Changes

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Password Case Is In-Sensitive For Proxy Authentication Over Thin JDBC Connection (Doc ID 2436884.1)

Applies to:

Symptoms

Changes

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!