Audit related query - Oracle Database

Former Member · ‎12-10-2008

Hi All,

We are running SAP on oracle 9i and o/s AIX. In our oracle database the parameter REMOTE_OS_AUTHENT is true. Is there any danger of this? Can o/s and SAP user can login remotely on database?

Another question is PRODUCT_PROFILE table is empty. Is there any drawback of this?

And last one is that DBA_TAB_PRIVS table, the public role has assigned execute access to number of tables.

Thanks in advance.

Harish

lbreddemann · ‎12-10-2008

Hi Harish,

as usual, reading the documentation helps a great deal.

"REMOTE_OS_AUTHENT specifies whether remote clients will be authenticated with the value of the OS_AUTHENT_PREFIX parameter."

Change this parameter to FALSE and you basically disable the OPS$-connect mechanism of the disp+work processes. No workprocess can logon to the database anymore (of course you can argue that this improves security to the database in a way...)

PRODUCT_PROFILE table - is only evaluated by the SQL-tools of Oracle.

If the database is actually accessible from any other host than the DBA-console and the SAP application servers, then you should not waste time thinking about this table...

PUBLIC access to tables - some access is always necessary. For example the database catalog.

Without catalog access there cannot be parsing, which means no queries.

So better than restricting what public can do is to restrict who can logon to the database in the first place.

regards,

Lars

Audit related query - Oracle Database

Accepted Solutions (0)

Answers (1)

Answers (1)

Is it possible to ignore Textcollection from Busin...

Re: Upgrade solution manager tool ST release 720 f...

Upgrade solution manager tool ST release 720 from ...

How to write the sum of same values into each line...

Re: How to get Binary Value from Partner Directory...