1. AnarGodjaev
http://anargodjaev.wordpress.com/
User and password management
To enable password management, run utlpwdmg.sql as sys user.
Set the following parameters
Failed_login_attempts
Password_lock_time
Password_life_time
Password_Grace_time
Password_reuse_time
Password_reuse_max
Password_verify_function//this function must be created in sys schema and must have the
following specification
function_name( userid_parameter in varchar2(30),
password_parameter in varchar2(30),
old_password_parameter in varchar2(30)) return boolean;
SQL> create profile grace_s [LIMIT] failed_login_attemps 3
Password_lock_timeunlimitied
...
create user anar identified by socer
defaulttablespace data
default temporary tablesapce temp
quota 15m on data
quota 10m on users
password expire;
dba_users
dba_profiles
dba_ts_quotas
SQL> Alter system set os_authent_prefix = [OPS$] //default
Alter system set remote_os_authen = true|false
Create user ops$user identified by <password>;
Alter|drop<user name> [cascade];
Grant create session to anar [with admin option];
Revoke create table from anar;
Grant update on anar.customers to jeff with grant option;
Grant execute on dbms_output to jeff;
2. AnarGodjaev
http://anargodjaev.wordpress.com/
Query the following tables
Dba_sys_privs
Session_privs
Dba_tab_privs
Dba_col_privs
Logic of roles
SQL> create role ol_clerk;
Create role hr_clerk identified by bonus;
Grant ol_cleck to scott;
Grant hr_clerk to hr_manager [with admin option];
Show parameter max_enabled_roles;
Alter user scott default role all [except hr_clerk];
Drop role <role name;>
Some priviliges:
Connect
Resource
Dba
Exp_full_database
Imp_full_database
Delete_catalog_online
Execute_catalog_role
Select_catalog_role
SQL> Audit <table name>;
Audit create any trigger;
Audit select on anar.orders;
Query the following tables:
All_def_audit_opts
Dba_stmt_audit_opts
Dba_priv_audit_opts
Dba_obj_audit_opts
Dba_audit_trail
Dba_audit_exists
Dba_audit_object
Dba_audit_session
Dba_audit_statement