| Accessing Oracle DB from UNIX OS [message #601232] |
Mon, 18 November 2013 15:14  |
 |
chbrandt
Messages: 3
Registered: November 2013
|
Junior Member |
|
|
|
I work on Oracle DB access testing as a part of annual audits and had a question that was outside of my knowledge area. I've always been told that you should look at access to an application, the DB that supports and, and the OS boxes that the App and DB sit on. Specifically, I've been told that if you have an account on the OS, want to do harm, and know what you're doing, that you could technically access the Oracle DB with the right tools, even if you don't have an account on the Oracle DB. Is this true? If so, how can I explain how this is possible? It seems like if you really did have access to the OS that you'd be able to somehow get into the DB, although you might be looking at fragmented data that you couldn't make sense of. I've searched on Oracle's docs and only found that they suggest locking down the OS accounts to the minimum privileges necessary for user's to do their job, but I couldn't find exactly why. Thanks in advance for your reply.
|
|
|
|
|
|
|
|
|
|
|
|
|
|
| Re: Accessing Oracle DB from UNIX OS [message #601319 is a reply to message #601313] |
Tue, 19 November 2013 10:30  |
cookiemonster
Messages: 13963
Registered: September 2008
Location: Rainy Manchester
|
Senior Member |
|
|
chbrandt wrote on Tue, 19 November 2013 15:31She would first say that a regular user on the OS couldn't 'obtain root access'
Fair enough but what you need isn't really root, it's a user in the dba group (like the oracle user), root just gives you a way to access / create such an account. If people have access on an os account in the dba group (they shouldn't but you need to check) then root is unnecessary.
|
|
|
|
] 
Blog
Search
Help
Members
Register
Login
Home
Thanks!