DBAsupport.com Forums - Powered by vBulletin
Results 1 to 4 of 4

Thread: Revvoking not possible

  1. #1
    Join Date
    Feb 2014
    Posts
    22

    Revvoking not possible

    Hi,

    I created a user whcih I gave rights to create any objects. He is not allowed to do a select on another schema. when I try to do a select on table A in another schema I get

    ora-00942:table or view does not exist.
    That is the way it should be.

    When I try a select on table B in the same schema as table A it will give me all data. I never granted him any permission on that table.

    How come he can still do a select on that table?
    How can I prevent him from reading the data from tables in another schema while not
    granted privileges?
    Last edited by gandolf989; 07-10-2014 at 03:11 PM.

  2. #2
    Join Date
    Sep 2002
    Location
    England
    Posts
    7,334
    well, he has the privilege else it wouldn't work, perhaps access is granted to any - look in user_tab_privs

  3. #3
    Join Date
    Feb 2014
    Posts
    22
    Unfortunately no such entry.

  4. #4
    Join Date
    Nov 2000
    Location
    Pittsburgh, PA
    Posts
    4,166
    You can use dynamic SQL passed into a stored procedure and run with execute immediate. Then you only need to grant execute privilege on the stored procedure. But the downside is you can't really control what DDL is run through the stored procedure. You are probably better off creating tables as the schema owner.

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  


Click Here to Expand Forum to Full Width