Re: Grant execute on DBMS_SYSTEM
- From: Martin Berger <martin.a.berger@xxxxxxxxx>
- To: gba.oraclel@xxxxxxxxx
- Date: Sat, 7 May 2011 21:44:26 +0200
At least, I'd suggest to setup a proper auditing!
Let the do whatever they want, but once a month, they ahve to show their cards
and argue, what's going on.
by such a ruleset, it's not perfect, but often fair to do so.
Am 03.05.2011 um 16:53 schrieb GBA-DBA:
> Hello list,
>
> I have a Websphere Portal admin facing some issues with the product and in
> his research of the problem he found a support note from IBM saying that all
> the default portal schemas (portal_comm, portal_cust, portal_fdbkdb,
> portal_jcrdb, portal_likeminds, portal_release) stored in an Oracle 11g R2
> database need execute permissions on the DBMS_SYSTEM package.
>
> These are internal schemas used by the product and no one should be playing
> with them but I feel I shouldn't grant this privilege without a proper
> explanation on why is required, how is being used by the product and
> potential issues that it nay cause.
>
> Are there any security threats related to this privilege? Has anyone received
> a request like this from an application development/deployment perspective?
--
//www.freelists.org/webpage/oracle-l
Other related posts:
