Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.misc -> Re: Why is Oracle letting me do this? Security issue?

Re: Why is Oracle letting me do this? Security issue?

From: PMG <pete_g_at_2xtreme.net>
Date: Sun, 11 Apr 1999 05:49:16 GMT
Message-ID: <3710374F.1D0018C6@2xtreme.net> 





I'd love to find out what the official term for this, and the justification for
it. It seems to be a loophole in security, since I can indirectly modify a table
that I do not have direct permissions assigned.



Pete



Andrew Babb wrote:



> Hi,


>


> I think you will find that the trigger fires as the owner, and not as the


> person performing the initial insert. Therefore, it is the schema of table A


> performing the insert into table B, not User X performing the insert into


> table B.


>


> Oracle does have an official term for this, which someone might be able to


> provide, but I cannot remember immediately.


>


> Rgds


> Andrew


>



Received on Sun Apr 11 1999 - 00:49:16 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US