Re: Question About Oracle Security issue.....

From: Daniel A. Morgan <dmorgan_at_exesolutions.com>
Date: Thu, 05 Apr 2001 00:15:57 -0700
Message-ID: <3ACC1BAD.B926B0A_at_exesolutions.com>

I'd be fascinated to know why?

But the solution would be a database trigger such as:

CREATE OR REPLACE TRIGGER logon_trig
AFTER logon ON DATABASE
call log_proc;

where log_proc is a stored procedure that kills the session based upon the values in v$session.

But I must warn you about one thing with a trigger such as this. If the stored procedure becomes invalid no-one is going to log on ... no matter what they do ... until someone goes into Server Manager and either disables or drops the trigger.

Don't even think about writing a trigger like this unless you can get into the database through Server Manager or have someone standing by who can.

Daniel A. Morgan

Richard wrote:

> Hi,
>
> Is there any possible solution to prevent unauthorized client machines
> and/or unauthorized applications to access
> Oracle database, even with valid USER ID and PASSWORD ??
>
> Thanks,
>
> Richard
> richchen_at_ms6.hinet.net
Received on Thu Apr 05 2001 - 09:15:57 CEST

This message: [ Message body ]
Next message: C Palmer: "Re: Question About Oracle Security issue....."
In reply to Richard: "Question About Oracle Security issue....."
Next in thread: C Palmer: "Re: Question About Oracle Security issue....."

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message