Re: Privileges by session
From: Jared Still <jkstill_at_gmail.com>
Date: Tue, 12 Jan 2010 08:49:13 -0800
Message-ID: <bf46381001120849rdb3101emaede5193cea8cb58_at_mail.gmail.com>
On Tue, Jan 12, 2010 at 4:54 AM, Yechiel Adar <adar666_at_inter.net.il> wrote:
Date: Tue, 12 Jan 2010 08:49:13 -0800
Message-ID: <bf46381001120849rdb3101emaede5193cea8cb58_at_mail.gmail.com>
On Tue, Jan 12, 2010 at 4:54 AM, Yechiel Adar <adar666_at_inter.net.il> wrote:
>
> 2) Put in a login trigger that will fail all logon with the application
> user but with other programs like SQLPLUS or TOAD.
>
Any developer worth employing can circumvent a trigger that checks executable names.
Jared Still
Certifiable Oracle DBA and Part Time Perl Evangelist
Oracle Blog: http://jkstill.blogspot.com
Home Page: http://jaredstill.com
-- http://www.freelists.org/webpage/oracle-lReceived on Tue Jan 12 2010 - 10:49:13 CST