Oracle FAQ Your Portal to the Oracle Knowledge Grid
HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US
 

Home -> Community -> Usenet -> c.d.o.server -> Re: want solution

Re: want solution

From: DA Morgan <damorgan_at_psoug.org>
Date: Tue, 18 Apr 2006 09:12:50 -0700
Message-ID: <1145376768.321671@yasure.drizzle.com>


Anthony wrote:
> Why do you need to worry about users being able to export your data
> unless the application and the database is not setup properly. By
> default, only the user of the tables or a DBA can export its own tables
> and I do not think we can prevent a user from exporting
> their data (not that I know of).
> There is a database privilige called exp_full_database. If you do not
> grant this privilges out, you should be okay.
> Of course, you can remove the export binaries or make it non-executable.

Lets replace the phrase "users" with "schema owners." They can be prevented from doing so and, in a production environment, they should be prevented from doing so. Anything less is a security violation.

-- 
Daniel A. Morgan
http://www.psoug.org
damorgan_at_x.washington.edu
(replace x with u to respond)
Received on Tue Apr 18 2006 - 11:12:50 CDT

Original text of this message

HOME | ASK QUESTION | ADD INFO | SEARCH | E-MAIL US