|
Oracle Security - Posted on August 28, 2008 at 17:10 pm
by Amit Satpute
Explain the security features in Oracle.
Data abstraction has been achieved in Oracle by separating the client and the
server side logic. Therefore the client applications cannot manipulate the
data. The triggers perform content based auditing and selectively disable
application updates.
Access control can be achieved in Oracle by allowing the users to manipulate the
data by using only their definer’s permitted previledges.
What are roles? How can we implement roles?
A role is a set or group of privileges that can be granted to users or another
role.
Following examples illustrate the way to create them:
CREATE ROLE role_user1;
This example simply creates a role called test_role.
CREATE ROLE role_user2
IDENTIFIED BY pass123;
This example creates the same role and has an associated password with it.
What is user Account in Oracle database?
A user account is a schema which is used to store database objects,
applications, and components, and to determine a user's database
privileges.
What is a trace file and how is it created ?
The files that are created when an oracle background process encounters an
exception are Trace files.
Processes like dbwr, lgwr, pmon, smon create them.
Trace files are also created by ORA-00600 error or due to some diagnostic dump
events.
What are Tablespace Quota and default tablespace?
A tablespace is a logical storage unit within an Oracle database because it is
not visible in the file system of the machine, the database resides on.
The Tablespace quotas are used to assign users with limited size on tablespaces.
Default tablespaces are used for users who are not configured with default
tablespaces.
What is Auditing? What are the different Levels of Auditing?
Auditing includes reading, writing and deleting the access on the objects at the
table level. The privileges granted to a user can be audited.
There are three levels of auditing:
Statement level
Object level
Privilege level
Explain Statement Auditing, Privilege Auditing, And Object Auditing.
There are three levels of auditing:
Statement level: Statements found in stmt_audit_option_map are
audited.
Object level: objects like tables, views, sequences, packages,
stored procedures, stored functions are sudited.
Privilege level: All system privileges that are found in
system_privilege_map are audited.
What are the steps to creating a password authentication file?
The steps are :
-
First set REMOTE_LOGIN_PASSWORDFILE=EXCLUSIVE in init.ora file
-
Then dbs$orapwd file=orapw$ORACLE_SID password=sys force=y
-
Then startup force;
-
Then grant sysdba to user(any user in the database);
-
Then conn user/user
-
Then conn user/user as sysdba
-
Then show user
|