Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Auditing actions done by the DBA.

Re: Auditing actions done by the DBA.

From: Sybrand Bakker <postbus_at_sybrandb.demon.nl>
Date: Tue, 29 May 2001 00:29:44 +0200
Message-ID: <th5k6ngf4rk69e@beta-news.demon.nl> 







"Orlando Amador" <oamador_at_psgapr.jnj.com> wrote in message
news:6e75aa9.0105281351.480107d4_at_posting.google.com...


> I'm looking at the Oracle documentation and found the following

> statement:

>

>   Audit records are never generated by sessions established by

>   the user SYS or connections with administrator privileges.

>   Connections by these users bypass certain internal features of

>   Oracle to allow specific administrative operations to occur

>   (for example, database startup, shutdown, recovery, and so on).

>

> Does this mean than a DBA could disable the audit trail, change

> tables, enable the audit trail and not leave a trace?

>

> is there any solutions to this?  Any 3rd party solutions that could

> address this limitation?

>

> Saludos,

> Orlando M. Amador

> oamador_at_psgapr.jnj.com




Somewhere it stops. If you don't trust your dba, why don't you just fire
him.



BTW, connect internal is audited and can't be disabled.



Hth,



Sybrand Bakker, Oracle DBA
Received on Mon May 28 2001 - 17:29:44 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US