Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Noob Oracle Question

Re: Noob Oracle Question

From: bernardbosvark.com <bernard_at_bosvark.com>
Date: 18 Aug 2006 02:05:48 -0700
Message-ID: <1155891948.357867.169050@m73g2000cwd.googlegroups.com> 






CJM wrote:



> >> I gave the user SELECT ANY TABLE privileges and the used the following

> >> command:

> >>

> >> Select * from IFSAPP.MyTable;




>From the SQL Reference Guide:



SELECT ANY TABLE: Query tables, views, or materialized views in ANY
schema.


Thus a VERY powerful privilege.



Good database security is based on (a) Security by design (b) Defence
in Depth and (c) Least Privileges.





The last one "Least Privileges" is the easiest to maintain, and the
easiest to neglect. Anyway, what you want to grant is SELECT on the
specific table to the specific user that requires it.



As user IFSAPP do:


grant SELECT on MYTABLE to <user_that_requires_select_priv>;



This will grant only what is need to whom requires it.



Regards


Bernard
Received on Fri Aug 18 2006 - 04:05:48 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US