Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
![]() |
![]() |
Home -> Community -> Usenet -> c.d.o.server -> Re: Alert log
"Christian Antognini" <christian.antognini_at_trivadis.com> wrote in message news:<40ff6c50_at_post.usenet.com>...
> **** Post for FREE via your newsreader at post.usenet.com ****
>
> Hi Burt
>
> > Only DBAs should be allowed to login to the server.
> >
> > But, I could see the DBA copying a session trace (udump) to some place
> > outside the server if a Developer wants to run tkprof on a traced session.
>
> I'll never understand why DBA don't consider to give read only accounts to
> access the files under udump and bdump!!! It makes live easier for both, the
> DBA and the developer...
>
> Chris
>
Chris, trace files can and often do contain sensitive data (when bind variable traces are in effect). Allowing wide open access to the trace directories is a security hole and an audit hit if your firm has competent auditors.
HTH -- Mark D Powell -- Received on Thu Jul 22 2004 - 10:05:21 CDT
![]() |
![]() |