Re: Auditing DBAs

Jan van Mourik wrote:

> We have this problem too, brought on by the Sarbanes-Oxley
> legislation. Our auditors are pressing for individual accountability
> for all the Oracle DBAs. So Sybrand's solution isn't applicable to our
> situation... One small step we're taking is creating individual unix
> accounts for all dbas, then have them su to oracle when necessary. But
> what then? In 9i we can set that nice parameter "audit_sys_operations"
> which is probably enough. But I'm not sure yet what to do in 8i.
>
> Any suggestions (and no, we can't fire the auditors Sybrand!)
>
> jan

Use database level triggers. Basic auditing may not catch SYS ... but you can do anything without an entry in v_$session from which you can be tracked.

-- 
Daniel A. Morgan
University of Washington
damorgan_at_x.washington.edu
(replace 'x' with 'u' to respond)