 |
|
Oracle Tips by Burleson |
Chapter 8 General Oracle Auditing
independent of the setting in the audit_trail parameter.
It is done through the initialization parameter audit_sys_operations.
By default it is set to FALSE. The following setting in the
initialization parameter file will enable SYSDBA auditing:
audit_sys_operations = TRUE
This is a static parameter that cannot be set
using the ALTER SYSTEM command since the database must be bounced
for it to take effect.
When this is set to TRUE, all actions by the
user connected as SYSDBA and SYSOPER are audited in the operating
system file. Some very important points must be observed in this
regard, and are perhaps better explained through examples.
Let’s create three users with three different
privileges as follows.
create user sysdba1 identified by sysdba1
/
grant create session, sysdba to sysdba1
/
create user sysoper1 identified by sysoper1
/
grant create session, sysoper to sysoper1
/
create user regulardba1 identified by
regulardba1
/
grant create session, dba to regulardba1
/
The above text is
an excerpt from:
Oracle Privacy Security Auditing
The
Final Word on Oracle Security
This is the only authoritative
book on Oracle Security, Oracle Privacy, and Oracle Auditing written
by two of the world’s leading Oracle Security experts.
This indispensable book is only $39.95 and has an
immediate download of working security scripts:
http://rampant-books.com/book_2003_2_audit.htm
|
Download your Oracle scripts now:
www.oracle-script.com
The
definitive Oracle Script collection for every Oracle professional DBA
|
|
