RE: Block db access by IP and username

From: "Goulet, Richard" <Richard.Goulet@xxxxxxxxxxx>
To: <gabriel.aragon@xxxxxx>, <oracle-l@xxxxxxxxxxxxx>
Date: Mon, 31 Aug 2009 16:00:53 -0400

"I was thinking about using an after logon trigger to detect username
and IP and kill session if it doest fit with required values, but I
think this is a little bit rude."
 
No it isn't.
 

Dick Goulet 
Senior Oracle DBA/NA Team Lead 
PAREXEL International 

 

________________________________

From: oracle-l-bounce@xxxxxxxxxxxxx
[mailto:oracle-l-bounce@xxxxxxxxxxxxx] On Behalf Of Aragon, Gabriel (GE,
Corporate, consultant)
Sent: Monday, August 31, 2009 3:53 PM
To: oracle-l@xxxxxxxxxxxxx
Subject: Block db access by IP and username


Hi all, 
 
long time no checking this list. I have a security question. I need to
block access to db by IP and username, let's say that I need that user
XXXX can connect ONLY from IP aaa.bbb.ccc.ddd, that is, if user XXXX
wants to connect from another IP, access will be denied.
 
I was thinking about using an after logon trigger to detect username and
IP and kill session if it doest fit with required values, but I think
this is a little bit rude. The other option I verified was using
sqlnet.ora configuration but this only filters by IP and I would have to
add all posssible IP's but doesnt filter users, and this is not what I
need.
 
Any ideas?
 
TIA
Gabriel

Follow-Ups:
- Re: Block db access by IP and username
  - From: vamshi krishna

References:
- Best practice for Dataguard in 10g?
  - From: dbvision@xxxxxxxxxxxx
- Re: Best practice for Dataguard in 10g?
  - From: Jack van Zanen
- Re: Best practice for Dataguard in 10g?
  - From: Nuno Souto
- Re: Best practice for Dataguard in 10g?
  - From: Don Seiler
- Re: Best practice for Dataguard in 10g?
  - From: Roger Xu
- Block db access by IP and username
  - From: Aragon, Gabriel (GE, Corporate, consultant)

RE: Block db access by IP and username

Other related posts: