Fixes are available
APAR status
Closed as program error.
Error description
Persist Security Info if enabled allows applications to view sensitive information that was passed in the connection string like the password. The password is encrypted. This APAR will ensure the connection string password is not encrypted
Local fix
A possible workaround is to use a string variable to store the OLE DB connection string and pass this string variable while opening OLE DB connection and use the string variable for further processing in application code instead of using the OLE DB connection object string property.
Problem summary
"PERSIST SECURITY INFO=TRUE" WITH OLEDB CONNECTION IS ENCRYPTING THE PASSWORD IN THE CONNECTION STRING.
Problem conclusion
First fixed in DB2 UDB Version 9.1, FixPak 8
Temporary fix
A possible workaround is to use a string variable to store the OLE DB connection string and pass this string variable while opening OLE DB connection and use the string variable for further processing in application code instead of using the OLE DB connection object string property.
Comments
APAR Information
APAR number
JR32747
Reported component name
DB2 CASE WINDOW
Reported component ID
5724D5401
Reported release
910
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2009-04-17
Closed date
2009-10-08
Last modified date
2009-10-09
APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:
Fix information
Fixed component name
DB2 CASE WINDOW
Fixed component ID
5724D5401
Applicable component levels
R910 PSN
UP
[{"Business Unit":{"code":"BU058","label":"IBM Infrastructure w\/TPS"},"Product":{"code":"SSEPGG","label":"Db2 for Linux, UNIX and Windows"},"Component":"","ARM Category":[],"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"910","Edition":"","Line of Business":{"code":"LOB10","label":"Data and AI"}}]
Document Information
Modified date:
09 October 2009