Re: SQLnet security/access question
From: Tony Damon <bfntd_at_aimnet.com>
Date: 1996/03/20
Message-ID: <4ipguv$t21_at_news.aimnet.com>#1/1
Date: 1996/03/20
Message-ID: <4ipguv$t21_at_news.aimnet.com>#1/1
Jim Smith (jim_at_jimsmith.demon.co.uk) wrote:
:
[snip]
: Only the second role is enabled by default, so that if users log on
: through SQL*Plus they only have read access.
:
: In each official application, you need some startup code to enable the
: full role for the duration of the current session.
:
: There are a lot of problems with this such as how do you prevent
: knowledgable users enabling the role themselves, but the basic idea
: works.
:
You can add a password to the role. Then the application supplies the correct password when enabling the role. The password is unknown by the users.
Somethine like: SET ROLE XYZ IDENTIFIED BY XYZPASSWORD
Tony Damon Received on Wed Mar 20 1996 - 00:00:00 CET