SSWUG has removed my content from their site!

February 29, 2008

It worked!

All you need to do is threaten them!

They have removed the links to my content.

We’re Sorry – We Were Unable to Locate The Article You Requested.It’s possible that this article is no longer available, has been reported as a bad link or is currently being reviewed/edited by its author.

We apologize for the inconvenience! Please use the menu system or the search boxes to locate other items that may be of interest.

If you feel there has been an error, please contact us and let us know about the issue and we’ll get on it immediately!

;-)

Leave a Comment » | Uncategorized | Permalink
Posted by Lutz Hartmann

A thief disguised as a USERGROUP

February 28, 2008

Yesterday I got informed that the “Wordlwide SQL SERVER USERGROUP” has again added content from my blog to their site.

This is the second time already that this strange organization steals my posts and demands money from their “MEMBERS” to look at it. I had them remove my posts already in 2006.

This so call usergroup does not have any publications of its own and there are no meetings of the members (if they had any, a lot of people would show up there and yell at their chairman I think). Their members seem to be just people who are not able to search the web by themselves and pay for a compilation of links to stolen content they could have for free in the web.

 It seems to be  basically just one person behind this organization:

Steve Wynkoop:

The SQL Server Worldwide User’s Group (SSWUG.ORG)
Bits on the Wire, Inc.
8987 E. Tanque Verde #309-269
Tucson
Arizona 85749

I think that the expression usergroup should be a protected expression by law and that it should be possible to screw such crooks for making money with the intellectual property of other people.

6 Comments | my articles | Permalink
Posted by Lutz Hartmann

vandalism in the blogging community

February 10, 2008

Looking at my list of referrers to my blog I recently found a link comming in to one of my posts.

I followed the link and found a website where someone had a blog which justs consists of stolen posts. He just had added my post to his blog and did not even mention me. His name is, oh no! I am not even going to mention it here because this would only increase his daily hits!

I contacted him by email and asked him to remove my post right away – nothing ever happened since more than a week now.

Theft of intellectual property seems to become a more and more fashionable practice.

Here is a link to a list of some recent popular cases of this kind of vandalism.

I am not sure if I want to continue blogging in the future.

Let’s publish books again
and let people pay for it!

10 Comments | Uncategorized | Permalink
Posted by Lutz Hartmann

Tutorial on defending against SQL injection

February 9, 2008

Today I have received a comment on my last post from my friend Jean Francois Verrier.
J.F. Is a courseware developer at Oracle Corporation and we have met in San Francisco and Utrecht a couple of times.
He is responsible for the New Features and RAC courseware which Oracle University uses in their courses.

 I had a look at his profile and found a very interesting link there, which I want to share here.
It is a website from Oracle Server Technologies. It gives very intersing information about how to protect against SQL injection, one of the most serios threats for DBAs.

Have a look here! You will like it!

 =;-)

Lutz

3 Comments | my Oracle news | Permalink
Posted by Lutz Hartmann

being a blind eyed Oracle instructor – system partitioning in 11g

February 8, 2008

Tonight I met with Laurent Schneider and we had a couple of beers together.

laurent_schlachthof.jpg We chatted about God and the world and we had lots of fun.

Amoung others we talked about things in Oracle 11g which do not really work yet and¦or are undocumented or documented wrong.
I was lucky to be able to tell him about things which he did not know about yet
like the not yet documented parameter DDL_LOGGING, see my post here.  I think that Oracle development just forgot to document it.

It is hard to catch up with Laurent sometimes!

I am the reviewer of Laurent’s yet to be published book on 11g SQL for advanced developers and DBAs and he demonstrated some features he had filed a BUG for in the last days.

Of course Oracle 11g was a big topic and we have found out some interesting things about system partitioning ( it is more that he found out than me, altough I teach the stuff to people in my New Features courses !!!!)

He  talked about something in one of the chapters in his book which he had found about system partitioning in 11g and which did not work. 

I got suspicious because I was so sure that it was possible, since it was something I teach to my students in my 1day 11g New Features Overview classes.
But I had to back down and confess again that I did not really verify every single bit of code of the Oracle Coureseware.

This is why I want to share the lecture I had to take tonight (luckily with a couple of beers!):

Oracle has introduced a number of new partitioning algorithms with release 11g.  One of these new features is called SYSTEM PARTITIONING. This is very handy if you want to partition a table but cannot make uo your mind about a partitioning key for some reason. Maybe there is only one column holding xml data in the table or what so ever.

The current version of the courseware for the 11g New  Features Courses says that the following syntax is valid and Laurent showed me that it is not:

– I create a table which is system partitioned:

SYS AS SYSDBA @ orcl SQL> create table lutz.t3 (col1 number, col2 number)
  2  partition by system
  3  (partition p1);
Table created.

– I create a bind varable (first time a number second time a string)
– which I want to use to tell Oracle which partition to user for an INSERT
–and assign it the value 1 and try an INSERT:

SYS AS SYSDBA @ orcl SQL> var par number
SYS AS SYSDBA @ orcl SQL> exec :par:=1
SYS AS SYSDBA @ orcl SQL> insert into lutz.t3 partition (:par) values (1,2);
insert into lutz.t3 partition (:par) values (1,2)
                               *
ERROR at line 1:
ORA-14108: illegal partition-extended table name syntax

– I try another time with a bid variable of type string:

SYS AS SYSDBA @ orcl SQL> var par varchar2(2)
SYS AS SYSDBA @ orcl SQL> exec :par:=’p1′
SYS AS SYSDBA @ orcl SQL> insert into lutz.t3 partition (:par) values (1,2);
insert into lutz.t3 partition (:par) values (1,2)
                               *
ERROR at line 1:
ORA-14108: illegal partition-extended table name syntax

– I try it for a last time and now I try to use the partition number directly:

SYS AS SYSDBA @ orcl SQL> insert into lutz.t3 partition (1) values (1,2);
insert into lutz.t3 partition (1) values (1,2)
                               *
ERROR at line 1:
ORA-14108: illegal partition-extended table name syntax

The same error pops up!

And here is the explanation of the error:

[oracle@rhas4 ~]$ oerr ora 14108
14108, 00000, “illegal partition-extended table name syntax”
// *Cause:  Partition to be accessed may only be specified using its name.
//          User attempted to use a partition number or a bind variable.
// *Action: Modify statement to refer to a partition using its name

You can only reference a system partition with its name not by its number or even via a bind variable! At least not in 11.0.6!!!

Sorry people but I just could not yet test all of the more than 500 New Features in the courseware. But I will keep on hitting the road, for sure!

=;-)

4 Comments | Oracle 11g features posts | Permalink
Posted by Lutz Hartmann

Steven Feuerstein launches new PL/SQL forum

February 4, 2008

“Making PL/SQL a better language”. This is Steven Feuerstein’s obsession.

In his courses he always encourages his students to send their comments to Bryn Llewellyn the project manager for PL/SQL at Oracle.

A while ago Steven already has launched a PL/SQL forum in OTN where people can directly ask him questions.

Now Steven has put together a website to make it really easy for developers to communicate their concerns and priorities to Bryn (with his support, of course).

 Seems to become an interesting place and I will add it to my blogrole. 

1 Comment | Uncategorized | Permalink
Posted by Lutz Hartmann

Upgrading Cern IT to 11g

February 1, 2008

This week I was in Geneva again to deliver another compressed course for the IT department of CERN and again it was just a pleasure to squeeze a five day training into three days. These CERN people are so highly motivated and hungry for new features. It is always fun to teach them.

I was especially pleased to see that almost all of the delegates had already attented at least one or two trainings from me last year, so we were already familiar with each other.

Since I did not have the chance to attend the UK Oracle Usergroup meeting it was nice to have Luca Canali again in the class. He had delivered a speach about the ASM internal  in Birmingham last December and I would have really loved to listen to it. He is one of the few persons I know who can really tell about the limits of ASM from real life experience.

Also I was so happy to meet Christopher Lambert again. He just seems to know everything about Oracle Enterprise Manager and I always learn from him.

Here are a few snapshots from the classroom I have taken with my cellphone.

 I hope that I was able to meet their expectations once again and will be invited again.

It is a great honor for me to deliver for you guys!

Leave a Comment » | CERN, my special courses | Permalink
Posted by Lutz Hartmann