| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Usenet -> c.d.o.server -> Re: Security Problem
Connor McDonald <mcdonald.connor.cs_at_bhp.com.au> wrote:
>Why not have two roles for the user, say, XXX_POWER_USER and
>XXX_SELECT_ONLY_USER. The user has both roles granted to them but only
>has the "SELECT_ONLY" enabled by default. So when they come in thru
>SQLPlus (or any other tool) they can only select.
>
>When they log on to the application, it just enables the role
>"POWER_USER" and off they go...Once they log out (ie disconnect) they
>will automatically resume just the "SELECT_ONLY" ability...
>
>The only real hole in this is if your users know how to issue their own
>"set role" commands .... which ours don't...
>
I have two question about this.
1.) How can I enable the role "POWER_USER"? I just can't get it work!
2.) What happens, if the user runs SQL*Plus while the application is running. Is the role also enabled in this session?
TIA
Thomas
e-mail to tm_at_meier.dinet.de
Received on Wed Apr 16 1997 - 00:00:00 CDT
 |
 |