TAILIEUCHUNG - Applied Oracle Security: Developing Secure Database and Middleware Environments- P15
Applied Oracle Security: Developing Secure Database and Middleware Environments- P15:Computer security is a field of study that continues to undergo significant changes at an extremely fast pace. As a result of research combined with increases in computing capacity, computer security has reached what many consider to be “early adulthood.” From advances in encryption and encryption devices to identity management and enterprise auditing, the computer security field is as vast and complex as it is sophisticated and powerful | 114 Part II Oracle Database Vault executed by the SYS account or enabling OS authentication changing the database dump destinations. A complete list of security sensitive database initialization parameters that are protected follows 07_DICTIONARY_ACCESSIBILITY core_dump_dest optimizer_secure_view_merging _dynamic_rls_policies core_dump_dest os_roles _system_trig_enabled db_create_file_dest plsql_debug audit_file_dest db_create_online_log_dest_1 recyclebin audit_sys_operations db_create_online_log_dest_2 remote_os_roles audit_syslog_level db_create_online_log_dest_3 shadow_core_dump audit_trail db_create_online_log_dest_4 sql92_security background_core_dump db_create_online_log_dest_5 user_dump_dest background_dump_dest db_recovery_file_dest user_dump_dest background_dump_dest job_queue_processes utl_file_dir control_files max_dump_file_size Another control that is installed by DBV is the restriction that a database superuser account cannot modify the DBV policy using the DBMS_MACADM PL SQL package or even grant the account the roles DV_OWNER or DV_ADMIN to use this package. system@aos -- attempt to use the DBV administration package system@aos -- using SYSTEM the default Oracle DBA system@aos -- to remove the DBV Realm for the database itself system@aos BEGIN Oracle Data Dictionary END Oracle Data Dictionary ERROR at line 2 ORA-06550 line 2 column 8 PLS-00904 insufficient privilege to access object ORA-06550 line 2 column 2 PL SQL Statement ignored system@aos -- attempt to grant the DBV owner role to SYSTEM which system@aos -- would offer control over the DBV policy configuration system@aos GRANT dv_owner TO system GRANT dv_owner TO system ERROR at line 1 ORA-00604 error occurred at recursive SQL level 1 ORA-47401 Realm violation for grant role privilege on DV_OWNER. ORA-06512 at line 55 ORA-06512 at line 31 With this triad of database .
đang nạp các trang xem trước