Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: sysdba privileges and shutdown

Re: sysdba privileges and shutdown

From: Niall Litchfield <n-litchfield_at_audit-commission.gov.uk>
Date: Fri, 7 Mar 2003 17:10:07 -0000
Message-ID: <3e68d26f$0$6294$ed9e5944@reading.news.pipex.net> 





"Rachel Wilson" <wilsonr_at_logica.com> wrote in message
news:936259dc.0303070841.2cf8a6cf_at_posting.google.com...


> i am also wondering why the unix group of dba is allowed sysdba rights

> as a matter of course - is this not a bit of a security risk?




I'll let others answer the rest of this but here's my tuppence on the above.



    
  
  1.   the dba group is only allowed sysdba rights if remote_login_password_file
is not set to exclusive (IIRC). If it is set to exclusive you'd need to
supply a password file. and
  
  2.   You only allow DBA's into the DBA os group surely. If your DBAs are a
security risk you have real problems.






--
Niall Litchfield
Oracle DBA
Audit Commission UK


Received on Fri Mar 07 2003 - 11:10:07 CST












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US