Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.misc -> Re: Oracle10g SYS Logon - Urgent

Re: Oracle10g SYS Logon - Urgent

From: Pete Finnigan <plsql_at_petefinnigan.com>
Date: Thu, 29 Jul 2004 14:52:45 +0100
Message-ID: <ZXsa$zAtEQCBRxE$@peterfinnigan.demon.co.uk> 





Hi,



It sounds like you are using OEM. There is an option in the login screen
to choose AS SYSDBA. This is what you should choose to connect as SYS.
When O7_DICTIONARY_ACCESSIBILITY is set to FALSE you cannot connect to
SYS as though its a normal user, only as a privileged connection.



Do not change the value of O7_DICTIONARY_ACCESSIBILITY to TRUE. This is
a security risk as it opens up the dictionary again to any user with
EXECUTE ANY and SELECT ANY privileges. The its possible to steal
password hashes or to escalate your privileges to DBA. Check out a
couple of good security checklists, links are available on my site from
http://www.petefinnigan.com/orasec.htm



kind regards



Pete

-- 
Pete Finnigan
email:pete_at_petefinnigan.com
Web site: http://www.petefinnigan.com - Oracle security audit specialists
Book:Oracle security step-by-step Guide - see http://store.sans.org for details.


Received on Thu Jul 29 2004 - 08:52:45 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US