The point that Brian made can not be overstated.
Your requirements as stated can not be accurate.
If you put data in the database, it is so somebody can access it.
If you grant connect permission to somebody, then it must be so they
can either enter new data or view existing data.
There are many options; Fine Grain Auditing, VPD, single column
encryption, just to name a few.
What you probably need is a combination of some of the above, but you
need to be clear on what you want to achieve (each option has it's
purpose). Auditing for example is very usefull for monitoring DBA
account uses - since you don't neccesarily want to (or can) restrict
what they can do.
hth
Received on Tue Sep 12 2006 - 12:36:46 CDT
