Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: Auditing DBAs

Re: Auditing DBAs

From: Daniel Morgan <damorgan_at_x.washington.edu>
Date: Sun, 10 Oct 2004 19:03:48 -0700
Message-ID: <1097460312.967394@yasure> 





Noons wrote:



> Sybrand Bakker <sybrandb_at_hccnet.nl> wrote in message news:<i7fim0hkloumfrmbn068fs28hma1cgasaf_at_4ax.com>...

> 

> 


>>>What are some best practices vis-a-vis auditing DBAs?  I initially
>>>enabled FGA due to some concerns about DBAs seeing certain data sets
>>>that they should not be seeing, but direct path export does not export
>>>FGA and a DBA could simply delete the trail from sys.fga_log$ anyway.
>>
>>
>>By design the DBA can see everything. If you don't trust your DBAs
>>fire them.




> 

> 

> Can't.  They're all offshore...




Maybe you can't ... but the corporate management can ... and should.



Sybrand's point is valid.

-- 
Daniel A. Morgan
University of Washington
damorgan_at_x.washington.edu
(replace 'x' with 'u' to respond)


Received on Sun Oct 10 2004 - 21:03:48 CDT












Original text of this message













  HOME |
  ASK QUESTION |
  ADD INFO |
  SEARCH |
  E-MAIL US