Hi!

Your post did say under which OS, but I will assume UNIX.

The most secure way to run scripts with SQL*Plus and hide crudentials is to use the OS based authentifiation.

Very Simple...

Create an Oracle user OP$name, where "name" is your Unix username. For example if your script starts under the Unix user BATCH then you create an Oracle user called OPS$BATCH. Give all suffisant privileges to the new Oracle user.

Now, start SQL*Plus like this:

$ sqlplus / @yourscript.sql

/ Represents a default logon using operating system authentication and SQL*plus will automatically try to connect using the user OPS$name. Since you're logged in under Unix, Oracle assumes you're already authenticated and lets you in without password prompting.

This also has the good side of turning your script into a maintenance free and user independant process.

Hope this clears it up for ya!

Regards

AT