Re: A Query about GRANT ALL PRIVILEGES in ORACLE

Hi,

Try this;

Connected to:
Personal Oracle9i Release 9.2.0.1.0 - Production With the Partitioning, OLAP and Oracle Data Mining options JServer Release 9.2.0.1.0 - Production

SQL>
SQL> sho user
USER is "SYSTEM"
SQL> select * from system_privilege_map
  2 where name like '%PRIV%';

 PRIVILEGE NAME                                       PROPERTY
---------- ---------------------------------------- ----------


      -167 GRANT ANY PRIVILEGE                               0


      -244 GRANT ANY OBJECT PRIVILEGE                        0



SQL> 
SQL> -- Create a new user with just create session (to log on) and grant 

SQL> -- because we want to test this privilege create a second user to 
SQL> -- test it with
SQL> create user zulia identified by zulia;

SQL> select count(*),grantee
  2 from dba_sys_privs
  3 where grantee in ('MDSYS','EMIL','ZULIA')   4* group by grantee
SQL> /   COUNT(*) GRANTEE

---------- ------------------------------
         2 EMIL
       139 MDSYS
       139 ZULIA

SQL> We used MDSYS as a checkpoint as MDSYS has all privileges granted to it by default in a default installation of Oracle. The privilege you need therefore is GRANT ANY PRIVILEGE.

I should ask WHY?, it is not a good idea to grant all privileges to any user in the database. Just grant the privileges that are needed by your user. Use the least privilege principle.

hth

kind regards

Pete

-- 
Pete Finnigan
email:pete_at_petefinnigan.com
Web site: http://www.petefinnigan.com - Oracle security audit specialists
Book:Oracle security step-by-step Guide - see http://store.sans.org for details.