Re: Security Question

From: Connor McDonald <mcdonald.connor_at_gmail.com>
Date: Fri, 6 Feb 2009 22:33:42 +0900
Message-ID: <5e3048620902060533h54211batdcb9a0894e4a2931_at_mail.gmail.com>

On Fri, Feb 6, 2009 at 6:22 PM, Pete Finnigan <pete_at_petefinnigan.com> wrote:

> Hi Christopher,
>
> Thanks for your email. Yes you are right of course. I actually didnt
> mean to suggest that block dumps were possible with alter session but
> added the word block because of brain fade.
> Alex also picked up the same issue.
>
> I have edited the post and replied to Alex's comment. The post is
> http://www.petefinnigan.com/weblog/archives/00001232.htm#comments
>
> Thanks for keeping me honest
>
> kind regards
>
> Pete
>
>

Either way...when you see what's possible in oraus.msg with "alter session set events" its not the kind of privilege you want to be handing out on a whim... If possible, wrap the desired command up in a controlled proc and give access to that.

-- 
Connor McDonald
===========================
email: connor_mcdonald_at_yahoo.com
web:   http://www.oracledba.co.uk

"Semper in excremento, sole profundum qui variat"

--
http://www.freelists.org/webpage/oracle-l

Received on Fri Feb 06 2009 - 07:33:42 CST

This message: [ Message body ]
Next message: Schauss, R. Peter (IT): "RE: Tracing an ORA-01410 error"
Previous message: Stefan Knecht: "Re: APEX SLOW"
In reply to: Pete Finnigan: "Re: Security Question"
Next in thread: Pete Finnigan: "Re: Security Question"
Reply: Pete Finnigan: "Re: Security Question"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message