Re: Intercept sql statement

From: joel garry <joel-garry_at_home.com>
Date: Thu, 30 Jul 2009 12:20:52 -0700 (PDT)
Message-ID: <71b2da71-e383-43ba-844f-7b8823640b00_at_o9g2000prg.googlegroups.com>

On Jul 30, 10:59�am, "Gerard H. Pille" <g..._at_skynet.be> wrote:
> Zabuti Maxim schreef:
>
> > Hi,
> > I need a way to intercept and modify SQL statement with parameters
> > sent by .NET application. It should be transparently, I mean I don't
> > want application to be recompiled. Is there any simple way to do this?
> > Thanks
>
> There is nothing more simple than that. �Oracle calls it their VPD:
>
> http://www.oracle.com/technology/obe/obe10gdb/security/vpd/vpd.htm

That only places a very limited modification to see a subset of the data or audit actions. If the secret reasons the OP can't talk about aren't that, it's not applicable. Also see Pete Finnegan's VPD security pdf and various other row level security docs on the net, as well as special code needed for things like weblogic and bugs with some tools. http://download.oracle.com/docs/cd/B19306_01/network.102/b14266/apdvpoli.htm#CHDECFBF for how it applies to different access models. There's other things like sys being exempt, you need to make others exempt to get a complete export, parsing and optimizer issues can occur (sometimes things may go faster if the data is limited properly - but additional administration is necessary regardless), and a lot of other more obscure issues may need to be addressed.

--
_at_home.com is bogus.
http://www.xconomy.com/san-diego/2009/07/30/the-untold-story-of-saic-network-solutions-and-the-rise-of-the-web-part-2/

Received on Thu Jul 30 2009 - 14:20:52 CDT

This message: [ Message body ]
Next message: Mark D Powell: "Re: External Tables"
Previous message: Gerard H. Pille: "Re: Intercept sql statement"
Maybe in reply to: Zabuti Maxim: "Intercept sql statement"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ]

Original text of this message