| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
 |
 | |||
| Oracle FAQ | Your Portal to the Oracle Knowledge Grid | |
|
| |||
Home -> Community -> Mailing Lists -> Oracle-L -> privileges
This message is in MIME format. Since your mail reader does not understand
this format, some or all of this message may not be legible.
------_=_NextPart_001_01C02407.056E3FBA
Content-Type: text/plain;
charset="iso-8859-1"
I inherited a database and application that was developed using the famous 'smear' method of privileges. In other words, everybody has access to anything to do whatever they please.
It's time I cleaned this up. I have no guidelines to work from and quite honestly don't know the application too well - I have written a minute amount of code for this app. I'm thinking I could sift through dba_source as a starting point, to see whose procedures are accessing stuff outside their schema, etc. Man, this is going to be a big, tedious, messy trial-and-error nightmare.
If anyone has done anything similar and has any suggestions I would be very happy to hear them.
Thanks
Lisa Rutland Koivu
Oracle Database Administrator
Qode.com
4850 North State Road 7
Suite G104
Fort Lauderdale, FL 33319
V: 954.484.3191, x174 F: 954.484.2933 C: 954.658.5849
"The information contained herein does not express the opinion or position of Qode.com and cannot be attributed to or made binding upon Qode.com."
------_=_NextPart_001_01C02407.056E3FBA
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; =
charset=3Diso-8859-1">
<META NAME=3D"Generator" CONTENT=3D"MS Exchange Server version =
5.5.2650.12">
<TITLE>privileges</TITLE>
</HEAD>
<BODY>
<P><FONT SIZE=3D2 FACE=3D"Arial">I inherited a database and application =
that was developed using the famous 'smear' method of privileges. =
In other words, everybody has access to anything to do whatever they =
please. </FONT></P>
<P><FONT SIZE=3D2 FACE=3D"Arial">It's time I cleaned this up. I =
have no guidelines to work from and quite honestly don't know the =
application too well - I have written a minute amount of code for this =
app. I'm thinking I could sift through dba_source as a starting =
point, to see whose procedures are accessing stuff outside their =
schema, etc. Man, this is going to be a big, tedious, messy =
trial-and-error nightmare. </FONT></P>
<P><FONT SIZE=3D2 FACE=3D"Arial">If anyone has done anything similar =
and has any suggestions I would be very happy to hear them. </FONT>
</P>
<P><FONT SIZE=3D2 FACE=3D"Arial">Thanks</FONT>
</P>
<P><B><FONT SIZE=3D1 FACE=3D"Arial">Lisa Rutland Koivu</FONT></B>
<BR><FONT SIZE=3D1 FACE=3D"Arial">Oracle Database Administrator</FONT>
<BR><FONT SIZE=3D1 FACE=3D"Arial">Qode.com</FONT>
<BR><FONT SIZE=3D1 FACE=3D"Arial">4850 North State Road 7</FONT>
<BR><FONT SIZE=3D1 FACE=3D"Arial">Suite G104</FONT>
<BR><FONT SIZE=3D1 FACE=3D"Arial">Fort Lauderdale, FL =
33319</FONT>
</P>
<P><FONT SIZE=3D1 FACE=3D"Arial">V: 954.484.3191, x174</FONT>
<BR><FONT SIZE=3D1 FACE=3D"Arial">F: 954.484.2933 </FONT>
<BR><FONT SIZE=3D1 FACE=3D"Arial">C: 954.658.5849</FONT>
<BR><FONT SIZE=3D1 FACE=3D"Arial"><A HREF=3D"http://www.qode.com" =
TARGET=3D"_blank">http://www.qode.com</A></FONT>
</P>
<P><I><FONT COLOR=3D"#000000" SIZE=3D1 FACE=3D"Arial">"The =
information contained herein does not express the opinion or position =
of Qode.com and cannot be attributed to or made binding upon =
Received on Thu Sep 21 2000 - 15:03:33 CDT
 |
 |