RE: Database Link Security et al
From: <oracle_at_ukcert.org.uk>
Date: Thu, 29 Nov 2012 08:10:23 +0000 (GMT)
Message-ID: <9xOV6u8B.1354176623.4724890.oracle_at_ukcert.org.uk>
Date: Thu, 29 Nov 2012 08:10:23 +0000 (GMT)
Message-ID: <9xOV6u8B.1354176623.4724890.oracle_at_ukcert.org.uk>
Hi,
Correct, 11.2.0.3 and above removes SELECT_CATALOG_ROLE access through ku$_dblink_view. BECOME USER priv can also be used to select pws as SYS (without SYSDBA). SYS security is an interesting area in general.
Cheers,
Paul
http://www.oracleforensics.com/wordpress/index.php/2012/11/29/sys-security/
-- http://www.freelists.org/webpage/oracle-lReceived on Thu Nov 29 2012 - 09:10:23 CET