Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: The user can still connect even after CREATE SESSION privilege is revoked

Re: The user can still connect even after CREATE SESSION privilege is revoked

From: DA Morgan <damorgan_at_psoug.org>
Date: Sat, 18 Jun 2005 16:23:09 -0700
Message-ID: <1119137004.442093@yasure> 





lanegroups_at_go.com wrote:


> I want to prevent UserA to connect to databaseX, so I used userAdmin to

> connect to databaseX, and userAdmin issued

> set role none;

> Role set.

> commit;

> 

> If userA has to issue these 3 commands to prevent itself from

> connection, it's odd.

> 

> So after userAdmin issued the 3 command above, UserA can still connect

> to database.

> 

> What else is missing?

> Or this indeed a bug in Oracle 10g?




User likely is a member of the DBA group (UNIX) or ORA_DBA group
(Windows).



Personally this what I'd do:


SQL> ALTER USER <user_name> ACCOUNT LOCK;



If they then get in you have a problem that requires HR or the
police.

-- 
Daniel A. Morgan
http://www.psoug.org
damorgan_at_x.washington.edu
(replace x with u to respond)


Received on Sat Jun 18 2005 - 18:23:09 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US