Re: Security Question
Date: Thu, 5 Feb 2009 09:16:47 -0800
The following google search...
... found several methods for dumping blocks with 'alter sesssion';
Certifiable Oracle DBA and Part Time Perl Evangelist
On Thu, Feb 5, 2009 at 8:55 AM, Newman, Christopher <cjnewman_at_uillinois.edu>wrote:
> Pete Finnigan recently (yesterday) wrote a blog entry regarding
> instrumentation and security
> (http://www.petefinnigan.com/weblog/entries/index.html) . In one
> section it states "...Imagine that most users have the ALTER SESSION
> system privilege and therefore they can dump data blocks; imagine that
> we have secure some data in the table using VPD; this same method allows
> bypass of VPD."
> It was my understanding that ALTER SYSTEM was needed to dump blocks,
> *not* ALTER SESSION. Can anyone clarify?
> Thanks - Chris