RE: Block db access by IP and username
Date: Mon, 31 Aug 2009 16:00:53 -0400
Message-ID: <23C4836D8E9C5F4280A66C0C247BC16F2D138815_at_US-BOS-MX011.na.pxl.int>
"I was thinking about using an after logon trigger to detect username and IP and kill session if it doest fit with required values, but I think this is a little bit rude."
No it isn't.
Dick Goulet
Senior Oracle DBA/NA Team Lead
PAREXEL International
From: oracle-l-bounce_at_freelists.org
[mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Aragon, Gabriel (GE,
Corporate, consultant)
Sent: Monday, August 31, 2009 3:53 PM
To: oracle-l_at_freelists.org
Subject: Block db access by IP and username
Hi all,
long time no checking this list. I have a security question. I need to block access to db by IP and username, let's say that I need that user XXXX can connect ONLY from IP aaa.bbb.ccc.ddd, that is, if user XXXX wants to connect from another IP, access will be denied.
I was thinking about using an after logon trigger to detect username and IP and kill session if it doest fit with required values, but I think this is a little bit rude. The other option I verified was using sqlnet.ora configuration but this only filters by IP and I would have to add all posssible IP's but doesnt filter users, and this is not what I need.
Any ideas?
TIA
Gabriel
-- http://www.freelists.org/webpage/oracle-lReceived on Mon Aug 31 2009 - 15:00:53 CDT