Re: Privileges by session
Date: Thu, 7 Jan 2010 15:57:59 -0600 (CST)
But you said management told you they were to no longer have such privileges. IOW - They don't need them.
Or are we missing something?
- Original Message ----- From: "William Blanchard" <wblanchard_at_societyinsurance.com> To: "Jared Still" <jkstill_at_gmail.com> Cc: oracle-l_at_freelists.org Sent: Thursday, January 7, 2010 3:49:35 PM GMT -06:00 US/Canada Central Subject: RE: Privileges by session
The application developers need the passwords for their applications. We have some old applications so there's no good way around this.
From: Jared Still [mailto:jkstill_at_gmail.com]
Sent: Thursday, January 07, 2010 3:48 PM
To: Blanchard, William
Subject: Re: Privileges by session
On Thu, Jan 7, 2010 at 12:21 PM, Blanchard, William < wblanchard_at_societyinsurance.com > wrote:
I have convinced management to allow me to grant read-only access to the developers. The problem is that they know the application passwords and have been using those passwords to circumvent my controls. Is there a way via a Is there some reason the obvious solution wont' work?
That is, change the passwords.
It would seem the applications in question are not subject to SarbanesOxley,
HIPAA, PCI or any number of other legislated security policies.
Certifiable Oracle DBA and Part Time Perl Evangelist Oracle Blog: http://jkstill.blogspot.com Home Page: http://jaredstill.com
Sr. Technical Consultant
Enkitec M: 214.912.3709
http://www.freelists.org/webpage/oracle-l Received on Thu Jan 07 2010 - 15:57:59 CST