RE: Security Issue in Oracle 9.2.0.3 DB

  • From: "Mark W. Farnham" <mwf@xxxxxxxx>
  • To: "ORACLE-L" <oracle-l@xxxxxxxxxxxxx>
  • Date: Wed, 20 Oct 2004 05:55:33 -0400

Do you really need anything more than separate schemas for company A, B,
...., Z,...., and each user account being granted select on the schemas they
are entitled to see?

Or do you have folks with DBA authority from both companies (for which I
have no solution short of outsourcing so that only a total stranger has
access to both companies.)

Regards,

mwf

-----Original Message-----
From: oracle-l-bounce@xxxxxxxxxxxxx
[mailto:oracle-l-bounce@xxxxxxxxxxxxx]On Behalf Of Charlotte Hammond
Sent: Wednesday, October 20, 2004 5:46 AM
To: ORACLE-L
Subject: Re: Security Issue in Oracle 9.2.0.3 DB


Hi,

If your application is simple/small enough (and you really only have A & B
and this will never grow to include C, D, E etc) then you should be able to
do what you need simply using Views and granting security on the Views (use
the CHECK option to prevent A updating data belonging to B and vice versa).

For anything more complex you should look at Fine-Grained Access Control
(FGAC) in the manuals.  This uses the DBMS_RLS package to define access
policies for tables.

Hope this helps,
- Charlotte

dear friends
we have one database on oracle9.2.0.3 and we have two compnies (Say A and B)
both are using the same database .
Now i want that A employess should not able to view or select or update or
insert any thing on B releted tables .
and vice versa ..
please guide me
With Best Wishes & Prayers,
Abhishek Saxena.
Mail - abhisheks@xxxxxxxxxxxxxxx
Tel - +91 20 25458277.
Mob - +91 20 33306103.
www.kpitcummins.com
(A SEI CMM Level 5 Company)

---------------------------------
Do you Yahoo!?
Express yourself with Y! Messenger! Free. Download now.

--
//www.freelists.org/webpage/oracle-l


--
//www.freelists.org/webpage/oracle-l

Other related posts: