Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> How to trap the user's login program and disallow if Windows based?

How to trap the user's login program and disallow if Windows based?

From: Andy <enzoweb_at_hotmail.com>
Date: 4 Jun 2002 16:03:48 -0700
Message-ID: <8d4033cd.0206041503.4c37138e@posting.google.com> 





Oracle RDBMS V8.0.6 on Solaris 2.7



I can remember that there is a way to trap the program name a user is
logging into the database with, and disallow it if it is something
like TOAD or ACCESS.



Here is the problem:



We have an application which connects into the database with the
password hard-coded and which everyone knows. This application userid
is also the schema owner. The developers also use TOAD. We can change
the application password but it is hard coded in plain text and
everyone knows how to see it. So the Developers have a habit of
signing on to TOAD as the application owner and therefore have total
access to the tables.



I know that I can create a trigger at logon to run some SQL, but 



    
  
  1.   Not sure if it works on the V806 we are running.
  
  2.   Don't know how to code it.






So, I want it to go - 



login - check program name - if user = schema.owner and program !=
program.name then kill session (and maybe issue a nasty message).



Does anyone have an example of this I can use?



Thanks.
Received on Tue Jun 04 2002 - 18:03:48 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US