Re: Oracle 12 : ORA-01950: no privileges on tablespace 'USERS'
- From: "Powell, Mark" <mark.powell2@xxxxxxx>
- To: "oracle-l@xxxxxxxxxxxxx" <oracle-l@xxxxxxxxxxxxx>, "gogala.mladen@xxxxxxxxx" <gogala.mladen@xxxxxxxxx>
- Date: Mon, 25 Feb 2019 19:06:17 +0000
All, Resource still has the traditional privileges except for UNLIMITED
Tablespace. On 11.2 CONNECT was reduced to only create session.
MPOWEL01> @db/version
Per dbms_utility.db_version the Version = 12.1.0.2.0 Compatibility = 12.1.0.2.0
MPOWEL01> select privilege from dba_sys_privs where grantee = 'RESOURCE' order
by 1;
PRIVILEGE
----------------------------------------
CREATE CLUSTER
CREATE INDEXTYPE
CREATE OPERATOR
CREATE PROCEDURE
CREATE SEQUENCE
CREATE TABLE
CREATE TRIGGER
CREATE TYPE
8 rows selected.
Per 12.1 Security manual UNLIMITED was removed and it is suggested you create
your own roles.
https://docs.oracle.com/database/121/DBSEG/authorization.htm#DBSEG004
Mark Powell
Database Administration
(313) 592-5148
________________________________
From: oracle-l-bounce@xxxxxxxxxxxxx <oracle-l-bounce@xxxxxxxxxxxxx> on behalf
of Mladen Gogala <gogala.mladen@xxxxxxxxx>
Sent: Saturday, February 23, 2019 9:39 PM
To: oracle-l@xxxxxxxxxxxxx
Subject: Re: Oracle 12 : ORA-01950: no privileges on tablespace 'USERS'
No. They got rid of it in version 10. Since version 10, the "RESOURCE"
role was granted no privileges. 11G continued this nice tradition.
On 2/21/19 7:35 AM, Kim Berg Hansen wrote:
I'm guessing your scripts have a GRANT RESOURCE role to the users?
Before version 12 this would also grant them unlimited tablespace,
which could be a bad thing.
Yes, I agree. Usually, it was a horrific disaster but it could be only a
bad thing.
--
Mladen Gogala
Database Consultant
Tel: (347) 321-1217
--
//www.freelists.org/webpage/oracle-l
DXC Technology Company - Headquarters: 1775 Tysons Boulevard, Tysons, Virginia
22102, USA.
DXC Technology Company -- This message is transmitted to you by or on behalf of
DXC Technology Company or one of its affiliates. It is intended exclusively for
the addressee. The substance of this message, along with any attachments, may
contain proprietary, confidential or privileged information or information that
is otherwise legally exempt from disclosure. Any unauthorized review, use,
disclosure or distribution is prohibited. If you are not the intended recipient
of this message, you are not authorized to read, print, retain, copy or
disseminate any part of this message. If you have received this message in
error, please destroy and delete all copies and notify the sender by return
e-mail. Regardless of content, this e-mail shall not operate to bind DXC
Technology Company or any of its affiliates to any order or other contract
unless pursuant to explicit written agreement or government initiative
expressly permitting the use of e-mail for such purpose. --.
Other related posts: