Oracle FAQ | Your Portal to the Oracle Knowledge Grid |
Home -> Community -> Usenet -> c.d.o.server -> Re: Fine Grain Security and select... for update
Thomas Kyte wrote:
> In article <am7fka$47k$1_at_nntp-m01.news.aol.com>, "Ronnie says...
> >
> >Hi,
> >
> >I am in the process of implementing fine grain security on our databases and
> >it works great except for the fact that when it comes to Lobs it doesnt seem
> >to work, especially in case of updates.
> >
> >Is it a known issue or am I doing something wrong.
> >
> >In my database certain users can see a record but cannot update it.
> >
> >The problem is when trying to update a clob field I need to do a select
> >for... update and this selects the row for update irrespective of the
> >security on it. This is because the user has select rights on the row . But
> >the user should not be able to issue a select ... for update because he/she
> >does not have update rights on the row.
> >
> >Now using dbms_lobs.write the user can write into a lob field even if he
> >does not have priveleges to do it.
> >Please suggest.
> >
> >Thanks
> >Ronnie
> >
> >
>
> I filed a bug on this, 2597431 -- those with tars can update the tars with that
> bug# i suppose. It is an in progress bug now.
>
> --
> Thomas Kyte (tkyte@oracle.com) http://asktom.oracle.com/
> Expert one on one Oracle, programming techniques and solutions for Oracle.
> http://www.amazon.com/exec/obidos/ASIN/1861004826/
> Opinions are mine and do not necessarily reflect those of Oracle Corp
I can not find this bug# at metalink. Please verify the number.
Thanks,
Daniel Morgan Received on Mon Sep 30 2002 - 11:07:01 CDT