Re: Would this work? Security
Date: Fri, 8 Sep 2000 09:31:16 +0100
Message-ID: <4t1u5.21854$r4.11599_at_news.indigo.ie>
[Quoted] Hi Mike,
look through your Oracle Documentation for PRODUCT_USER_PROFILE, basically what this does is to allow an administrator select which commands [Quoted] are available to users for specific products.
to quote from the sqlplus user manual
"PRODUCT_USER_PROFILE Table
Various Oracle products use PRODUCT_USER_PROFILE, a table in the SYSTEM
[Quoted] account, to provide product-level security that supplements the user-level
[Quoted] security provided by the SQL GRANT and REVOKE commands and user roles. (SET
ROLE requires Oracle7.)
Overview
[Quoted] DBAs can use PRODUCT_USER_PROFILE to disable certain SQL and SQL*Plus
commands in the SQL*Plus environment on a per-user basis. SQL*Plus--not
[Quoted] Oracle--enforces this security. DBAs can even restrict access to the GRANT,
[Quoted] REVOKE, and SET ROLE commands to control users' ability to change their
database privileges.
[Quoted] SQL*Plus reads restrictions from PRODUCT_USER_PROFILE when a user logs in to
[Quoted] SQL*Plus and maintains those restrictions for the duration of the session.
[Quoted] Changes to PRODUCT_USER_PROFILE will only take effect the next time the
[Quoted] affected users log in to SQL*Plus."
HTH Conan Received on Fri Sep 08 2000 - 10:31:16 CEST