Subject Re: [ib-support] dynamic roles
Author Ann W. Harrison
At 12:21 PM 12/30/2001 -0500, Mike Arace wrote:

>I heard that in Oracle there is a way of dynamically assigning roles at the
>application level to prevent malicious users from being able to log in to
>the database directly and see or do anything.

Could you run that by me again? How does Oracle know who's a baddy
and who's not? As long as the application lives on the client, it's
got to be considered suspect. If your application is on a trusted
server and the user has to provide credentials to the application,
then certainly the application can provide it's credentials to the
database, giving it rights that the user could not get directly.
Is that the sort of thing you're thinking of?


We have answers.