Re: Oracle security question

Don,
  The users need acces to the data that is in the database or what is the purpose of the database?
 I would change the privileges of the users to "CREATE SESSION" only and revoke all others. Then I would use "ROLES" that have select privileges on the tables that they need acces to. By creating roles and granting the role to a user the user can select from the tables. If different groups need acces to different tables you can create different roles and grant them as needed.
 Roles are an easy method of controlling acces to table data and if changes are needed then you change the role's privileges and all users of the role are effected.
Ron

>>> donyu_at_jhu.edu 07/11/03 03:44PM >>>

Hi,

I have a security question about Oracle database. Recently I have taken
full control an Oracle database in my department. Now I would like to make sure that no other people except myself can update data in that database. Can somebody tell me what it is necessary steps to do that? Any comments are highly appreciated. Thanks!

Don

-- 
Please see the official ORACLE-L FAQ: http://www.orafaq.net 
-- 
Author: Don Yu
  INET: donyu_at_jhu.edu 

Fat City Network Services    -- 858-538-5051 http://www.fatcity.com 
San Diego, California        -- Mailing list and web hosting services
---------------------------------------------------------------------
To REMOVE yourself from this mailing list, send an E-Mail message
to: ListGuru_at_fatcity.com (note EXACT spelling of 'ListGuru') and in
the message BODY, include a line containing: UNSUB ORACLE-L
(or the name of mailing list you want to be removed from).  You may
also send the HELP command for other information (like subscribing).