Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: granting privileges on other user

Re: granting privileges on other user

From: John <johnbagnell_at_hotmail.com>
Date: 2000/03/01
Message-ID: <89ksap$rfn$1@bcrkh13.ca.nortel.com>#1/1 






Of course you (as the DBA) can still change the user's password, perform
whatever grants you wish on their objects, then change the password back.  The
user really can't control this.



Using SELECT username, password FROM dba_users;  (and saving the encrypted
password)


ALTER USER username IDENTIFIED BY passwd;



{Then connecting as that user and performing your grants}



Then:



ALTER USER username IDENTIFIED BY VALUES
'theencryptedpasswordstringyousavedfromtheearlierquery';



You can assume a user's identity and do whatever you like, without ever knowing
the user's password.







Bob Beilstein wrote:



> <<stuff>>

>

> Basically, the idea is that while a user cannot prevent a DBA (or a user

> with SELECT ANY TABLE role) from seeing the data in his/her tables (or a

> user with UPDATE ANY TABLE from changing it, etc.), (s)he still retains

> control over granting privileges to "ordinary mortals" unless (s)he

> specifically decides to allow another user to do so.

>

>

Received on Wed Mar 01 2000 - 00:00:00 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US