Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
![]() |
![]() |
Home -> Community -> Mailing Lists -> Oracle-L -> Re: Is it possible???
The question of restricting users to the 'approved' applications only comes up every couple of months...
Yes, you can use PRODUCT_USER_PROFILE but remember: It only works Oracle SQL*Plus connections -
If you can control what your users can run on their PCs, why do you let them have SQL*Plus?
If you can't control what they can install and run on their own PCs, then it's a waste of your time to block SQL+ when there are so many other toolsthat will get round the restriction.
If you want security for your data, you may be able to use non-default Roles, with passwords if needed,to provide it. If you can't write the roles into the application, you can use logon triggers and auditing to provide some protection.
IMHO, PRODUCT_USER_PROFILE gives you a false sense of security, when what you need is enough understanding of Oracle to have a *real* sense of security.
Simon Anderson
--
Please see the official ORACLE-L FAQ: http://www.orafaq.com
--
Author:
INET: Simon.Anderson_at_scisys.co.uk
Fat City Network Services -- (858) 538-5051 FAX: (858) 538-5051 San Diego, California -- Public Internet access / Mailing Lists --------------------------------------------------------------------To REMOVE yourself from this mailing list, send an E-Mail message to: ListGuru_at_fatcity.com (note EXACT spelling of 'ListGuru') and in the message BODY, include a line containing: UNSUB ORACLE-L (or the name of mailing list you want to be removed from). You may also send the HELP command for other information (like subscribing). Received on Tue Jun 26 2001 - 13:15:24 CDT
![]() |
![]() |