Ksh Shell script security question.

Thu Feb 15 00:08:56 UTC 2007

Hi Freebsd

I am am puzzled how to secure this code when this shell script is being
executed.

${ORACLE_HOME}/bin/sqlplus -s  <<EOF | tee -a  ${RESTOREFILE}
        connect system/ugo8990d
        set heading off
        set feedback off
        set pagesize 500
        select 'SCN_TO_USE | '||max(next_change#)   from V\$LOG_HISTORY;
        quit
EOF

When I run this code from shell script in /tmp directory it spews file
called /tmp/sh03400.000
in that  I have this entire code visible.

connect system/ugo8990d
set heading off
        set feedback off
        set pagesize 500
        select 'SCN_TO_USE | '||max(next_change#)   from V\$LOG_HISTORY;
        quit

How do I secure that part of code, between
those EOF start and end.

It is just terrible to see the password all shown by the temporary  file the
shell creates,    just for security reasons  I dont want any other users in
the system to view my code which contains the password.

If I have long running sql or large program anything I put in between EOF is
shown by these /tmp/sh*  files

Any idea how to secure this

Thanks
Dak