 Privilege problem in Oracle to make it more secure [message #319844] |
Tue, 13 May 2008 03:28  |
harry07
Messages: 61
Registered: June 2007
Location: now york
|
Member |
|
|
Hi All,
Consider a schema (X) that has select any table privilege but we want to exclude 1 or more schemas (Y,Z) that should not be accessed by the schema X.
Can you please let me know if this is possible?
In our case MGR_FPA is schema X and as MGR_FPA has SELECT ANY TABLE privilege If I create any secure schema that will be accessible to MGR_FPA user.
I would like to create a schema that is more secure and tables in that schema should be only accessible to that user.
Other alternative is that I will have to remove select any table privilege from MGR_FPA, but that is a costly alternative as many programs may fail and need immediate attention.
Please let me know if there is a way to make it happen.
[Updated on: Tue, 13 May 2008 03:49] by Moderator Report message to a moderator |
|
|
|
| Re: Privilege problem in Oracle to make it more secure [message #319849 is a reply to message #319844] |
Tue, 13 May 2008 03:51  |
 |
Michel Cadot
Messages: 68718
Registered: March 2007
Location: Saint-Maur, France, https...
|
Senior Member
Account Moderator |
|
|
| Quote: | Consider a schema (X) that has select any table privilege but we want to exclude 1 or more schemas (Y,Z) that should not be accessed by the schema X.
Can you please let me know if this is possible?
|
It is not possible.
SELECT ANY TABLE is ANY table.
| Quote: | I would like to create a schema that is more secure and tables in that schema should be only accessible to that user.
|
So grant it explicit object privileges and not generic system one.
Regards
Michel
|
|
|
|
] 
Blog
Search
Help
Members
Register
Login
Home
