HA! I just had an epiphany of sorts while sitting here going through mindnumbing whitepapers on SQLnet. Why should I bother even addressing SQLnet directly, why not explain to them best practices on database security, i.e. why it's NEVER a good idea to allow direct access to the database itself. I found a really interesting read on that approach from MasterCard (which is good because we are a financial institution also) that has some good ammo for this meeting I have to go to on this in a bit.

Anyway, if you folks want to give information from this point forward feel free. More minds, and more information, the better for me. Thanks for reading my exceedingly boring posts today.