Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: Auditing DBAs
Noons wrote:
> Sybrand Bakker <sybrandb_at_hccnet.nl> wrote in message news:<i7fim0hkloumfrmbn068fs28hma1cgasaf_at_4ax.com>...
>
>
>>>What are some best practices vis-a-vis auditing DBAs? I initially >>>enabled FGA due to some concerns about DBAs seeing certain data sets >>>that they should not be seeing, but direct path export does not export >>>FGA and a DBA could simply delete the trail from sys.fga_log$ anyway. >> >> >>By design the DBA can see everything. If you don't trust your DBAs >>fire them.
Maybe you can't ... but the corporate management can ... and should.
Sybrand's point is valid.
-- Daniel A. Morgan University of Washington damorgan_at_x.washington.edu (replace 'x' with 'u' to respond)Received on Sun Oct 10 2004 - 21:03:48 CDT