Leighton Nelson asked an interesting Oracle security question via Twitter yesterday regarding Oracle’s built-in password verification functions and whether or not it can be bypassed by changing the way you create a user: Does updating password via alter user identified by values "<encrypted value>" bypass profile settings in 11.2.03? I
