Re: Grant execute on DBMS_SYSTEM

From: Martin Berger <martin.a.berger_at_gmail.com>
Date: Sat, 7 May 2011 21:44:26 +0200
Message-Id: <F82C14F9-BA15-4579-A197-2B3D69A22F58_at_gmail.com>



At least, I'd suggest to setup a proper auditing! Let the do whatever they want, but once a month, they ahve to show their cards and argue, what's going on.

by such a ruleset, it's not perfect, but often fair to do so.

Am 03.05.2011 um 16:53 schrieb GBA-DBA:

> Hello list,
>
> I have a Websphere Portal admin facing some issues with the product and in his research of the problem he found a support note from IBM saying that all the default portal schemas (portal_comm, portal_cust, portal_fdbkdb, portal_jcrdb, portal_likeminds, portal_release) stored in an Oracle 11g R2 database need execute permissions on the DBMS_SYSTEM package.
>
> These are internal schemas used by the product and no one should be playing with them but I feel I shouldn't grant this privilege without a proper explanation on why is required, how is being used by the product and potential issues that it nay cause.
>
> Are there any security threats related to this privilege? Has anyone received a request like this from an application development/deployment perspective?

--
http://www.freelists.org/webpage/oracle-l
Received on Sat May 07 2011 - 14:44:26 CDT

Original text of this message