While I totally agree that sys and system don't need to be given to anyone other than the primary DBA and then sealed in an envelope hidden away in a safe, I am not so clear on why granting select any dictionary is as big a concern. As far as I know, this only allows view access to the data dictionary, which pretty much anyone doing any tuning or monitoring probably needs. Even OEM assumes a non-sys/non-system account with this level of privilege which is used for monitoring. Is there a specific reason not to let people have select any dictionary? Just curious. -----Original Message----- From: "Goulet, Dick" <DGoulet@xxxxxxxx> Sent: Jun 9, 2005 10:35 AM To: ranko.mosic@xxxxxxxxx, oracle-l@xxxxxxxxxxxxx Subject: RE: Password for sys, system account - Uncooperative client Assuming that you made the request of the client using the same tone as here, I'm not surprised. Why do you need an account with such priviledges? In general NO one outside of the DBA group here has access to SYS or SYSTEM, including internal folks. Dick Goulet Senior Oracle DBA Vicor Corporation Andover, MA USA=20 -----Original Message----- From: oracle-l-bounce@xxxxxxxxxxxxx [mailto:oracle-l-bounce@xxxxxxxxxxxxx] On Behalf Of Ranko Mosic Sent: Thursday, June 09, 2005 10:27 AM To: oracle-l@xxxxxxxxxxxxx Subject: Password for sys, system account - Uncooperative client Hi all,=3D20 I need password for account with select dictionary privileges - client is=3D =3D20 not too cooperative.=3D20 Regards, Ranko. -- //www.freelists.org/webpage/oracle-l -- //www.freelists.org/webpage/oracle-l ------------------------------------------------------- He has showed you, O man, what is good. And what does the LORD require of you? To do justice and to love mercy and to walk humbly with your God. Micah 6:8 -- //www.freelists.org/webpage/oracle-l