Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
![]() |
![]() |
Home -> Community -> Usenet -> c.d.o.server -> Re: Import bug
Chuck wrote:
> I believe this is a new 9i feature. The database in question here is 8i.
> Sorry for not making that clear before. Such an operation is illegal on all
> versions prior to 9i.
>
> That said, I am shocked that such a gaping security hole would be
> intentionally programmed into 9i. Would I as a user want my highly sensitive
> data to be seen by eyes other than the DBA and those to whom I explicitly
> gave it too? I think not. My HR users don't even like DBAs being able to see
> that data let alone DBAs granting access to it to whomever they wish. Access
> to the users data should be controlled by the user. But that's a different
> thread to start some day.
> --
> Chuck
>
My apology for prolonging the agony one more posting but if "Access to the users
data
should be controlled by the user" then you can be very sure that all users would
immediately
hide everything they didn't want others to know about.
Perhaps that is the way things were done at Enron and Worldcom, and a few other companies but most of us prefer the security rules the way the currently are.
Daniel Morgan Received on Mon Jul 01 2002 - 15:07:42 CDT
![]() |
![]() |