Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: insufficient priviliges

Re: insufficient priviliges

From: <fitzjarrell_at_cox.net>
Date: 13 Jul 2006 06:07:57 -0700
Message-ID: <1152796077.901230.206090@s13g2000cwa.googlegroups.com> 





Comments embedded.


Sybrand Bakker wrote:


> On 12 Jul 2006 15:49:32 -0700, "newbie" <rjngh2005_at_gmail.com> wrote:

>

> >Oracle Version 8.1.7.4.1

> >

> >Yes, The changing password method is my last resort.

> >

> >I would like to attempt any other method to enable either user sys or

> >system

> >to grant permission to user test select permission to objects of schema

> >abc

> >

> >Thanks.....I look forward to more suggestions

>

> First suggestion: stop top-posting

> Second suggestion : stop top-posting

> Third suggestion: Always mention your version in order to avoid

> wasting people's time, as in 8i you can't use David Fitzjarell's

> suggestion.

>




Hmmm, MY suggestion was this:



"You use the user 'abc'  to grant privileges on the objects OWNED by
'abc'.  It's that simple.  Possibly you created this 'abc' user to test



things; since  you DO have access as SYS as SYSDBA you can CHANGE the
password for 'abc':



SQL> alter user abc identified by somepasswordicanremember;




And, then, by the magic of Oracle you can connect as 'abc':




SQL> connect abc/somepasswordicanremember
Connected.


SQL> select * from pqr;




[all sorts of results here] "



Explain how 'alter user xxx identified by yyyy;' isn't available in 8i,
please, as I've been using it since Oracle 6 to change user passwords
(yes, even in the latest releases as the user community can't wrap
their minds around the 'password' function).



Chuck offered the solution which is release-specific (any release from
9i onwards); possibly you misread the thread and attributed comments to
me which should have been attributed elsewhere.



> There is a very nasty tric to help you do it.

>

> As sys or system

> create or replace procedure <table_owner>.do_sql(sqlstr in varchar2)

> is

> begin

> execute immediate sqlstr;

> end;

> /

>

> Now as sys or system

> execute <table_owner>.do_sql('grant .... etc')

>

> Works like a charm, and demonstrates whoever know the SYS or SYSTEM

> password (or any other privileged account) can control the entire

> database.

> 

> --

> Sybrand Bakker, Senior Oracle DBA





David Fitzjarrell
Received on Thu Jul 13 2006 - 08:07:57 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US