We leave the permissions just the way Oracle sets them. With the addition of
the requirement to use ACL with mail and so forth most of the serious security
issues potentially created by Oracle's default grants to public have been
eliminated IMHO.
________________________________
From: oracle-l-bounce@xxxxxxxxxxxxx <oracle-l-bounce@xxxxxxxxxxxxx> on behalf
of Jeff Chirco <backseatdba@xxxxxxxxx>
Sent: Tuesday, August 9, 2016 7:42:27 PM
To: oracle-l@xxxxxxxxxxxxx
Subject: setting up a new database - remove any permissions?
Wondering if any of you have basic scripts you run everytime you create a new
database. What do you configure? Do you remove any permissions from PUBLIC? I
know I have experimented with removing certain objects from PUBLIC but found
that it came back to bite me when applying patches and updates. Patches would
either fail or cause some components to not be valid.
What do any of you do.
Thanks,
Jeff
--
//www.freelists.org/webpage/oracle-l