Re: How do you feel about allowing non-DBA's on your database servers?

• From: Jonathan Intner <jsidba@xxxxxxxxx>
• To: Michael.Coll-Barth@xxxxxxxxxxxxxxxxxxx
• Date: Wed, 29 Jul 2009 16:28:56 -0400

Hi Michael:
Yes, and some flavors of Linux are smart enough to mask it, and there are
other ways to clear the command line that I don't recall at the moment, but
I could find them, if you're interested, but that doesn't stop folks from
doing "sqlplus user/pwd@db", (or, exp user/pwd, or imp and so on...my
personal favorite are "here" documents (see below)) 'cause its
quick-and-easy!

There are lots of ways to avoid this...a few years ago, I wrote several
pages of instructions describing 2 or 3 different ways to avoid the
construct with tools like sqlplus, exp & imp and worked with DBAs in 3 or 4
countries to get their scripts changed...

Just my $.02,

Jonathan

Unix "here" document:

sqlplus user/pwd@db << EOF

select * from v\$instance;  (or whatever SQL you need to run)

exit
EOF

very quick, very easy, very familiar to most anyone on Unix servers and
causes the pwd to be displayed on the command-line (again, typically).

On Tue, Jul 28, 2009 at 7:37 AM, <Michael.Coll-Barth@xxxxxxxxxxxxxxxxxxx>wrote:

>
>
> > From: oracle-l-bounce@xxxxxxxxxxxxx
>
> > client on the network.  Also, far more information is easily
> > accessible, sometimes too easily accessible (ps -ef|grep plu
> > anyone? :) from the database server.
>
> Doesn't this work only if the UserID & Password are used on the command
> line when firing up sqlplus; "sqlplus UserID/Password@DBinstance" ?
> Isn't that a foolish way to do things to begin with? Particularly in
> Prod?
>
>
>
>
>
>
>
>
>
>
>
>
>
>
> The information contained in this message and any attachment may be
> proprietary, confidential, and privileged or subject to the work
> product doctrine and thus protected from disclosure.  If the reader
> of this message is not the intended recipient, or an employee or
> agent responsible for delivering this message to the intended
> recipient, you are hereby notified that any dissemination,
> distribution or copying of this communication is strictly prohibited.
> If you have received this communication in error, please notify me
> immediately by replying to this message and deleting it and all
> copies and backups thereof.  Thank you.
>
>
> --
> //www.freelists.org/webpage/oracle-l
>
>
>

• References:
  • Downgrading to Standard Edition
    • From: Schauss, R. Peter (IT Solutions)
  • Re: Downgrading to Standard Edition
    • From: Mathias Magnusson
  • How do you feel about allowing non-DBA's on your database servers?
    • From: Robert Freeman
  • RE: How do you feel about allowing non-DBA's on your database servers?
    • From: Michael . Coll-Barth

Other related posts:

• » How do you feel about allowing non-DBA's on your database servers?- Robert Freeman
• » RE: How do you feel about allowing non-DBA's on your database servers?- SHEEHAN, JEREMY
• » Re: How do you feel about allowing non-DBA's on your database servers?- Andrew Kerber
• » Re: How do you feel about allowing non-DBA's on your database servers?- Janine Sisk
• » RE: How do you feel about allowing non-DBA's on your database servers?- Zelli, Brian
• » RE: How do you feel about allowing non-DBA's on your database servers?- Clarke, Andrew
• » Re: How do you feel about allowing non-DBA's on your database servers?- David Barbour
• » Re: How do you feel about allowing non-DBA's on your database servers?- Joey D'Antoni
• » RE: How do you feel about allowing non-DBA's on your database servers?- Roberts, David (GSD - UK)
• » RE: How do you feel about allowing non-DBA's on your database servers?- Michael . Coll-Barth
• » Re: How do you feel about allowing non-DBA's on your database servers?- Michael Moore
• » RE: How do you feel about allowing non-DBA's on your database servers?- Joel.Patterson
• » Re: How do you feel about allowing non-DBA's on your database servers?- Rich Jesse
• » Re: How do you feel about allowing non-DBA's on your database servers?- Martin Berger
• » Re: How do you feel about allowing non-DBA's on your database servers?- dave
• » Re: How do you feel about allowing non-DBA's on your database servers?- Michael Moore
• » Re: How do you feel about allowing non-DBA's on your database servers?- Jonathan Intner
• » Re: How do you feel about allowing non-DBA's on your database servers?- Subodh Deshpande
• » Re: How do you feel about allowing non-DBA's on your database servers?- Nuno Souto
• » RE: How do you feel about allowing non-DBA's on your database servers?- Johnson, George
• » RE: How do you feel about allowing non-DBA's on your database servers?- Michael . Coll-Barth
• » Re: How do you feel about allowing non-DBA's on your database servers?- Subodh Deshpande
• » Re: How do you feel about allowing non-DBA's on your database servers?- Jared Still
• » Re: How do you feel about allowing non-DBA's on your database servers?- Rich Jesse
• » Re: How do you feel about allowing non-DBA's on your database servers?- Jared Still
• » Re: How do you feel about allowing non-DBA's on your database servers?- Niall Litchfield
• » Re: How do you feel about allowing non-DBA's on your database servers?- Tony van Lingen
• » Re: How do you feel about allowing non-DBA's on your database servers? - Jonathan Intner

1. Home
2. oracle-l
3. Archive
4. 07-2009

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---