I'd agree with your security people that you
a) change default passwords and b) don't use sys for admin tasks.
I'm not sure that I'd be convinced by the argument that system shouldn't be used, but that an identically privileged account should be setup instead.
Hi List,
I am working in an organization where security people asked us not keep the sys and system user passwords, rather create an dba authenticated user with dba prvileges. I know that the user with just dba privileges, can't shutdown and startup the database. However, I believe, on server, we can use 'connect / as sysdba' and do startup and shutdown. Is there anything significant difference between the sys user and a user with dba premission? I mean, dba administration point view.
Thanks for your time.
-- Best Regards, Syed Jaffar Hussain 8i,9i & 10g OCP DBA
I blog at :http://jaffardba.blogspot.com/
http://www.oracle.com/technology/community/oracle_ace/ace1.html#hussain
---------------------------------------------------------------------------------- "Winners don't do different things. They do things differently." -- //www.freelists.org/webpage/oracle-l
-- Niall Litchfield Oracle DBA http://www.orawin.info