Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Mailing Lists -> Oracle-L -> RE: Restricting access via sqlplus

RE: Restricting access via sqlplus

From: Jamadagni, Rajendra <Rajendra.Jamadagni_at_espn.com>
Date: Wed, 09 Jul 2003 11:50:51 -0700
Message-ID: <F001.005C4197.20030709114424@fatcity.com> 









Something what I have used in past ...





DROP TABLE SYSTEM.SQLPLUS_COMMANDS CASCADE CONSTRAINTS

/




CREATE TABLE SYSTEM.SQLPLUS_COMMANDS



(

  COMMAND  VARCHAR2(20 BYTE)                        NULL


)


TABLESPACE TOOLS


PCTUSED    0
PCTFREE    10
INITRANS   1
MAXTRANS   255
STORAGE    (
            INITIAL          40K
            MINEXTENTS       1
            MAXEXTENTS       2147483645
            PCTINCREASE      0
            BUFFER_POOL      DEFAULT
           )




LOGGING 



NOCACHE



NOPARALLEL



MONITORING



/

INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'COPY'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'EDIT'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'EXECUTE'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'GET'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'HOST'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'PASSWORD'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'RUN'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'SAVE'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'SET'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'SPOOL'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'START'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'ALTER'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'ANALYZE'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'AUDIT'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'CONNECT'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'CREATE'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'DELETE'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'DROP'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'GRANT'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'INSERT'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'LOCK'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'NOAUDIT'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'RENAME'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'REVOKE'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'SELECT'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'SET ROLE'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'SET TRANSACTION'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'TRUNCATE'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'UPDATE'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'BEGIN'); 
INSERT INTO SQLPLUS_COMMANDS ( COMMAND ) VALUES ( 'DECLARE'); 


COMMIT;



PROCEDURE restrict_sqlplus


  (SPLUS_USERID VARCHAR2)



IS


--



CURSOR C1 IS SELECT B.COMMAND CMD_TXT FROM SQLPLUS_COMMANDS B;



--



BEGIN



--



FOR C1REC IN C1 LOOP



EXIT WHEN C1%NOTFOUND;



EXECUTE IMMEDIATE 'INSERT INTO PRODUCT_USER_PROFILE VALUES(''SQL*Plus'','||

                   ''''||SPLUS_USERID||''''||','||''''||C1REC.CMD_TXT||''''||


                                   ', NULL, NULL, ''DISABLED'', NULL, NULL)';



END LOOP;



COMMIT;



--



END restrict_sqlplus;


--



/







Rajendra dot Jamadagni at nospamespn dot com
All Views expressed in this email are strictly personal.
QOTD: Any clod can have facts, having an opinion is an art !





-----Original Message-----



From: Schauss, Peter [mailto:[EMAIL PROTECTED]]
Sent: Wednesday, July 09, 2003 3:30 PM


To: Multiple recipients of list ORACLE-L
Subject: Restricting access via sqlplus





Is there a way to prevent end users from connecting directly
to the database via sqlplus without restricting access of those
same users via application code.  The application is a third party
package which prompts for an id and password and then uses that
id/password to connect to the database.




I found a note the the archives which suggested making an entry into
the SQLPLUS_PRODUCT_PROFILE table, but I have not been able to make
this work.




Oracle version:  8.1.7


AIX 4.3.3



Thanks,


Peter Schauss


-- 



Please see the official ORACLE-L FAQ: http://www.orafaq.net


-- 



Author: Schauss, Peter


  INET: [EMAIL PROTECTED]




Fat City Network Services    -- 858-538-5051 http://www.fatcity.com
San Diego, California        -- Mailing list and web hosting services


---------------------------------------------------------------------

To REMOVE yourself from this mailing list, send an E-Mail message


to: [EMAIL PROTECTED] (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L
(or the name of mailing list you want to be removed from).  You may
also send the HELP command for other information (like subscribing).




*********************************************************************This e-mail 


message is confidential, intended only for the named recipient(s) above and may 
contain information that is privileged, attorney work product or exempt from 
disclosure under applicable law. If you have received this message in error, or are 
not the named recipient(s), please immediately notify corporate MIS at (860) 766-2000 
and delete this e-mail message from your computer, Thank 

you.*********************************************************************1


Received on Wed Jul 09 2003 - 13:50:51 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US