| Subject | Re: dynamic roles |
|---|---|
| Author | Aage Johansen |
| Post date | 2001-12-30T20:56:28Z |
Mike Arace wrote:
scrambling in your apps (don't scramble the password for SYSDBA, though -
that will prove a nuisance). This way your users can only access the
database through the apps that you provide. If a user legitimately needs
direct access you could give that user a new username/password pair (with
unscrambled password).
Would this solve your problem?
Regards,
Aage J.
> I heard that in Oracle there is a way of dynamically assigningYou could scramble the passwords when you add users, and use the same
> roles at the application level to prevent malicious users from
> being able to log in to the database directly and see or do
> anything. ...
scrambling in your apps (don't scramble the password for SYSDBA, though -
that will prove a nuisance). This way your users can only access the
database through the apps that you provide. If a user legitimately needs
direct access you could give that user a new username/password pair (with
unscrambled password).
Would this solve your problem?
Regards,
Aage J.