Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: user with administrative priviledges

Re: user with administrative priviledges

From: <frank.van.bortel_at_gmail.com>
Date: 10 Oct 2006 01:16:44 -0700
Message-ID: <1160468204.902401.205950@c28g2000cwb.googlegroups.com> 






fireball schreef:



> Uzytkownik "Frank van Bortel" <frank.van.bortel_at_gmail.com> napisal w

> wiadomosci

> > all other work should be done by a normal user

> would you please mention exact role/grants that means 'normal' user?

>




Whatever that user needs:


Example:



create user html_dev identified by &&htmldevpsw default tablespace
&&defts temporary tablespace temp;



grant create session, create table, create procedure, create
materialized view to html_dev;


grant create sequence, create any context to html_dev;
grant create synonym, create public synonym, create type to html_dev;
grant create view, create trigger to html_dev;
grant alter session to html_dev;


grant execute on dbms_session to html_dev;
grant execute on dbms_utility to html_dev;
grant execute on dbms_application_info to html_dev;





grant select on dba_directories to html_dev;



alter user html_dev quota unlimited on &&defts;



Note: not a single role (connect, resource or dba) is granted!
This html_dev user needs no more privileges that these mentioned.
In fact, create any context could be dropped (due to a change
in design) - and that's another possible security risk - forgetting to
revoke what's no loger needed... Mea culpa.
Received on Tue Oct 10 2006 - 03:16:44 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US