Home » RDBMS Server » Security » Security policies for products (Oracle 10g)
Security policies for products [message #455541] Wed, 12 May 2010 01:43 Go to next message
Richard2009
Messages: 21
Registered: October 2009
Location: London
Junior Member
Hi Experts,

Some of the products recommend to create a user with powerful system privileges (alter any
table, lock any table) for a user setup and we could not grant these permissions to the user. How
do we enforce security policy in this situation?

Please shed some light on this. Thanks in advance.

Re: Security policies for products [message #455549 is a reply to message #455541] Wed, 12 May 2010 02:09 Go to previous messageGo to next message
Michel Cadot
Messages: 68625
Registered: March 2007
Location: Nanterre, France, http://...
Senior Member
Account Moderator
Create a procedure that checks, executes and logs such actions and grant privilege to execute this procedure to your "super user".

Regards
Michel
Re: Security policies for products [message #458048 is a reply to message #455549] Thu, 27 May 2010 00:38 Go to previous message
Kevin Meade
Messages: 2103
Registered: December 1999
Location: Connecticut USA
Senior Member
Put your third party software on a different database that does not have any actual busniness data on it. EVen consider a different host machine as well. This way you can pretty much do whatever you want with your tools and no one cares.

Kevin x79427
Previous Topic: Oracle not asking for password
Next Topic: Roles not active after update to 10.2.0.5
Goto Forum:
  


Current Time: Thu Mar 28 19:46:31 CDT 2024