| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Usenet -> c.d.o.server -> Re: How to Forbid sqlplus connecting to ORACLE
That's not what you want ?! But it was in fact what you asked
for....Take the time to formulate the question, it pays off :-)
Anyway, *forget the whole thing*. Every user having a basic Oracle client installed on his PC can connect via SQL*PLUS, TOAD or any free interface downloadable from the internet. If you try to trap these with Logon Triggers, periodic checks of v$session or something third, users can easily bypass it by renaming the client program or other hacks, e.g. on W2K :
C:\>copy c:\oracle\ora92\bin\sqlplus.exe c:\oracle\ora92\bin\hack.exe C:\> c:\oracle\ora92\bin\hack.exe
SQL> select program from v$session;
PROGRAM
ORACLE.EXE ORACLE.EXE ORACLE.EXE ORACLE.EXE ORACLE.EXE ORACLE.EXE
If connection via SQL*PLUS is so obviously dangerous/inappropriate, you should have no problem explaining that to the users.
On Wed, 18 Jun 2003 16:56:35 +0800, "Grant" <goddabao_at_yahoo.com> wrote:
>OOPS, That's not what I want!
>If I stop the listner, my Client application will not work, they are
>connected to the Oracle Server via ODBC. In fact, I just want the user can
>only using our Client Program instead of using sqlplus to operate the DB
>directly.
>
><Kenneth Koenraadt> wrote in message
>news:3ef02148.2921160_at_news.inet.tele.dk...
>> On Wed, 18 Jun 2003 15:50:16 +0800, "Grant" <goddabao_at_yahoo.com>
>> wrote:
>
>> Hi Grant,
>>
>> Odd request, I hope you are aware that Svrmgrl is gone with 9i ?!
>>
>> Anyway, if you only want connection with Svrmgrl from the Host, simply
>>
>> 1) Turn off the listener for the instance, thus forcing users to
>> connect from the host only (by setting ORACLE_SID)
>>
>> 2) Remove sqlplus from the host.
>>
>> .....Think twice !
>>
>> - Kenneth Koenraadt
>
>
>
Received on Wed Jun 18 2003 - 10:12:57 CDT
 |
 |