RE: Deleting from SYS tables

From: Powell, Mark <mark.powell2_at_hp.com>
Date: Fri, 25 Feb 2011 21:11:46 +0000
Message-ID: <7C4BF3B32B80CC44AE37D31B17241593745824E5C0_at_GVW1337EXC.americas.hpqcorp.net>

There used to be a line in the DBA Administration manual where the purge of the audit trail where Oracle made this statement. I did not check the DBA Administration Guide but I did find the following line in the Oracle Security manaul (10gR2) where the audit information has been moved to:

"SYS.AUD$ is the only SYS object that should ever be directly modified."

I would think this meets the OP request.

-----Original Message-----

From: oracle-l-bounce_at_freelists.org [mailto:oracle-l-bounce_at_freelists.org] On Behalf Of Daniel Fink Sent: Friday, February 25, 2011 1:05 PM
To: hostetter.jay_at_gmail.com; oracle-l_at_freelists.org Subject: RE: Deleting from SYS tables

I don't know of any specific documentation, though an SR w/Oracle Support would be pretty definitive. I've worked on issues where they had me directly update sys tables, but it was for specific bugs with specific instructions.

I recall (not sure where I came across this bit of stored information...though the name Tom Kyte is somehow attached to it) that sys tables, such as job$, are not read into the buffer cache for recursive sql, but are read into the dictionary cache and modified there. No read consistency, no option to rollback, etc. If there were two sessions updating jobs, one directly modifying the table (read into buffer cache) and one using the proper method (dbms_job, recursive sql and the dictionary cache), you would end up with a missing modification.

Regards,
Daniel Fink

Original Message ------- On 2/25/2011 4:53 PM Jay Hostetter wrote: I had a user that deleted records from DBA_JOBS. Unfortunately, the application gives the user DBA rights so this is beyond my control. *I* know it is bad practice to directly mess with SYS tables, but is there any documentation from Oracle that spells this out? Or do they assume that most apps aren't crazy enough to handout DBA rights? In any case, I need to steer some users towards APIs (like DBMS_JOB) instead of using a sledge hammer. I'd like a little documentation to back me up.

Thank you,
Jay
--

http://www.freelists.org/webpage/oracle-l

--

http://www.freelists.org/webpage/oracle-l Received on Fri Feb 25 2011 - 15:11:46 CST

This message: [ Message body ]
Next message: Stephens, Chris: "RE: dbms_xplan + allstats"
Previous message: TJ Kiernan: "RE: dbms_xplan + allstats"
In reply to: Daniel Fink: "RE: Deleting from SYS tables"
Next in thread: Goulet, Richard: "RE: Deleting from SYS tables"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message