Quick Questions

[Chucks_k]

Hello all,

A question on the /as sysdba login. Is there anyway this can be more secure? This has caused a security issue with us as anyone who knows this loop-hole can log into the database as with dba privs!.

My second question is, are there any logs/views for info on things like user password changes during a particular window??

Many Thanks in advance,
Chucks_k.

[davey23uk]

/ as sysdba only works if you are in the correct group, i.e. dba on UNIX, if you are not in the correct group then this wont let you in.

To stop anyone doing it you can set something in the init.ora file, forget what it is off hand, will look it up.

[jmodic]

Originally posted by Chucks_k
A question on the /as sysdba login. Is there anyway this can be more secure? This has caused a security issue with us as anyone who knows this loop-hole can log into the database as with dba privs!.

What security loop-hole? I can't see any loop-hole if you are managing your system corectly.

My second question is, are there any logs/views for info on things like user password changes during a particular window??

Database auditing (either the built-in one or "home made" one based on database event triggers).