limited DBA privileges

From: Cochran, Mark <Mark.Cochran_at_staples.com>
Date: Tue, 29 Apr 2008 18:27:15 -0400
Message-ID: <A6FBCFC9C078BA4F83E9C11231B90FC30105B986@nedexmb1.staplesams.com>

As part of a company-wide security initiative, I've been tasked with coming up an implementation of limited DBA privileges. Specifically, a set of database privileges that allow a user with these privileges to maintain the database (e.g., add/resize datafiles; create and modify tablespaces; create, alter and move tables; create, alter and rebuild indexes; query the data dictionary), while restricting that user from querying sensitive data in specific tables (e.g., credit card data). Has anyone encountered such a requirement before? Any suggestions? Can you point me toward any examples of how to create such a role?

Using Oracle Enterprise Version 10.2.0.3, we plan on keeping up with the latest security patches.

Mark Cochran
Oracle DBA, Staples, Inc.
508.253.8408

--
http://www.freelists.org/webpage/oracle-l

Received on Tue Apr 29 2008 - 17:27:15 CDT

This message: [ Message body ]
Next message: Sanjay Mishra: "RAC"
Previous message: LS Cheng: "Re: Oracle out the door"
Next in thread: Dennis Williams: "Re: limited DBA privileges"
Reply: Dennis Williams: "Re: limited DBA privileges"
Reply: Stefan Knecht: "Re: limited DBA privileges"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message