| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Mailing Lists -> Oracle-L -> RE: Global temporary table security
Argh! "Easier"? Why not give everyone DBA privileges, then you never have to worry about grants!
Tell the other DBA that regardless of the fact that they're GTTs, privileges should be granted only as needed. Period.
Paul Baumgartel
CREDIT SUISSE
Information Technology
Securities Processing Databases Americas
One Madison Avenue
New York, NY 10010
USA
Phone 212.538.1143
paul.baumgartel_at_credit-suisse.com
www.credit-suisse.com
From: oracle-l-bounce_at_freelists.org [mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Sam Bootsma
Sent: Thursday, May 17, 2007 4:21 PM
To: oracle-l_at_freelists.org
Subject: Global temporary table security
Hello All,
Our Developers are creating Global Temporary tables then granting select, update, delete, and insert privileges to PUBLIC. These global temporary tables will contain sensitive HR data. I realize the data is only visible to the current session, but I still don't like having all privileges granted to PUBLIC. Can anybody tell me if there is a credible security risk to granting these tables to PUBLIC? For example, due to an Oracle bug or hacking? Or are there other disadvantages to granting everything to PUBLIC? Or is it standard practice to grant these tables to public?
I would like to grant access only to users that will need the table, but the other DBA prefers to grant PUBLIC, because it is easier.
Thanks for any comments!
Sam Bootsma
Oracle Database Administrator
Information Technology Services
George Brown College
Phone: 416-415-5000 x4933
Fax: 416-415-4836
E-mail: <mailto:sbootsma_at_georgebrown.ca> sbootsma_at_georgebrown.ca
http://www.credit-suisse.com/legal/en/disclaimer_email_ib.html
-- http://www.freelists.org/webpage/oracle-lReceived on Thu May 17 2007 - 15:55:00 CDT
 |
 |