Re: Role passwords

From: Amar Kumar Padhi <amar.padhi_at_gmail.com>
Date: Tue, 05 Feb 2008 19:18:32 +0400
Message-ID: <47A87E48.9060101@gmail.com>

Hi Jason,
you can also consider using application based roles, these are enabled based on rules and checks you define in a program unit that is then locked with the role. I have got an article on my site.

http://www.amar-padhi.com/oradb_secure_app_roles.html

Thanks!
amar

Jason Heinrich wrote:
> According to the documentation, role passwords are designed to prevent
> users from directly accessing application data without going through
> the application interface. Has anyone used them on human-oriented
> roles, such as DBA? We have a requirement to protect all "critical"
> roles with passwords, but given their shortcomings (no password
> management through profiles, multiple people may need to know the
> password, etc.), it seems to me that they would be more of a
> hinderance than a help. Thoughts?
>
> --
> Jason Heinrich

--
http://www.freelists.org/webpage/oracle-l

Received on Tue Feb 05 2008 - 09:18:32 CST

This message: [ Message body ]
Next message: kathy duret: "RE: Implementing ADDRESS WINDOWING EXTENSIONS (AWE) for increased memory"
Previous message: ryan_gaffuri_at_comcast.net: "performance improvements from putting tables and indexes on seperate disks?"
Maybe in reply to: Jared Still: "Re: Role passwords"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message