Re: Network ACL or not

• From: Don Seiler <don@xxxxxxxxx>
• To: Andrew Kerber <andrew.kerber@xxxxxxxxx>
• Date: Tue, 8 Jul 2014 15:41:34 -0500

I guess it depends on how much you trust your PL/SQL developers. It's nice
to know you can block Oracle from potentially sending information outside
your network, which I'm sure some companies' security policies might
dictate.

Don.


On Tue, Jul 8, 2014 at 3:25 PM, Andrew Kerber <andrew.kerber@xxxxxxxxx>
wrote:

> I have not found any point in it.  You have to grant access to the
> specific procedures that access the network in any case (eg, utl_mail), so
> adding the additional level of required privilege is simply annoying.
> Plus, if they user is signing into the database in all probability they
> already have substantial network access, so all the ACL requirement does is
> restrict their access going through Oracle.
>
>
> On Tue, Jul 8, 2014 at 2:15 PM, Yong Huang <dmarc-noreply@xxxxxxxxxxxxx>
> wrote:
>
>> Are there any companies that don't see the value of 11g network ACL
>> (access control list) and open up completely so the database behaves like
>> pre-11g?
>>
>
>
>
> --
> Andrew W. Kerber
>
> 'If at first you dont succeed, dont take up skydiving.'
>



-- 
Don Seiler
http://www.seiler.us

• Follow-Ups:
  • Re: Network ACL or not
    • From: Jack van Zanen

• References:
  • Network ACL or not
    • From: Yong Huang
  • Re: Network ACL or not
    • From: Andrew Kerber

Other related posts:

• » Network ACL or not- Yong Huang
• » RE: Network ACL or not- Freeman, Donald G. CTR (ABL)
• » Re: Network ACL or not- Andrew Kerber
• » Re: Network ACL or not - Don Seiler
• » Re: Network ACL or not- Jack van Zanen
• » Re: Network ACL or not- Tim Hall
• » Re: Network ACL or not- Andrew Kerber
• » Re: Network ACL or not- Seth Miller
• » Re: Network ACL or not- Yong Huang

1. Home
2. oracle-l
3. Archive
4. 07-2014

---

• » Previous by Date
• » Next by Date
• » Related Posts
• » View list details
• » Manage your subscription

---