Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Auditing the Oracle server

Re: Auditing the Oracle server

From: Stephane Faroult <sfaroult_at_oriolecorp.com>
Date: Mon, 05 Apr 1999 19:57:48 -0700
Message-ID: <3709782C.6A33@oriolecorp.com> 





johnkoo wrote:


> 





> But is there any method to keep any log when someone(not


> you) truncate the SYS.AUD$ table ??


> 





When you truncate a table, whether it is SYS.AUD$ or any other, there is
nothing left in it ...


If your fear is that somebody else could empty the table, it's just a
matter of user management. SYS is to Oracle what 'root' is to a Unix
system. To truncate SYS.AUD$, one must either have been given explicitly
the right to do it, or the right to truncate any table (normally, only
DBAs have this right, and DBAs should not be made lightly) or connect as
SYS, which can be done either by giving SYS's password or connect to the
operating system as the oracle account and use Server Manager and the
CONNECT INTERNAL command. Do not give privileges inconsideratly, set the
password for SYS to something nobody, not even you, will ever remember,
keep the password for 'oracle' as secret as the the password for
root/SYSTEM/Administrator or whatever, and you can sleep quietly.



-- 


Regards,



  Stéphane Faroult


  Oriole Corporation




http://www.oriolecorp.com, designed by Oracle DBAs for Oracle DBAs


Received on Mon Apr 05 1999 - 21:57:48 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US