Subject Re: dynamic roles
Author Aage Johansen
Mike Arace wrote:
> I heard that in Oracle there is a way of dynamically assigning
> roles at the application level to prevent malicious users from
> being able to log in to the database directly and see or do
> anything. ...

You could scramble the passwords when you add users, and use the same
scrambling in your apps (don't scramble the password for SYSDBA, though -
that will prove a nuisance). This way your users can only access the
database through the apps that you provide. If a user legitimately needs
direct access you could give that user a new username/password pair (with
unscrambled password).
Would this solve your problem?

Aage J.