Comments on: Oracle Security, Part 2: Your read only accounts aren’t that read only http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/ Oracle troubleshooting, internals and performance tuning Sat, 13 Mar 2010 15:03:23 +0000 http://wordpress.org/?v=2.9.2 hourly 1 By: OraExplorer » Select-only-privileged user can lock table http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/comment-page-1/#comment-838 OraExplorer » Select-only-privileged user can lock table Wed, 21 Jan 2009 04:47:32 +0000 http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/#comment-838 [...] is an interesting post by Tanel Poder on “Your read only accounts aren’t that read only”. Basically a read-only account with the select privilege only on a table can issue the lock on that [...] [...] is an interesting post by Tanel Poder on “Your read only accounts aren’t that read only”. Basically a read-only account with the select privilege only on a table can issue the lock on that [...]

]]> By: Select-only-privileged user can lock table « Oraexplorer’s Blog http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/comment-page-1/#comment-798 Select-only-privileged user can lock table « Oraexplorer’s Blog Wed, 14 Jan 2009 02:25:23 +0000 http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/#comment-798 [...] a comment » This is an interesting post by Tanel Poder on “Your read only accounts aren’t that read only”. Basically a read-only account with the select privilege only on a table can issue the lock on that [...] [...] a comment » This is an interesting post by Tanel Poder on “Your read only accounts aren’t that read only”. Basically a read-only account with the select privilege only on a table can issue the lock on that [...]

]]> By: tanelp http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/comment-page-1/#comment-224 tanelp Tue, 18 Mar 2008 12:23:00 +0000 http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/#comment-224 Yep, I think there could be use for a "select for update" priv, or maybe making a select for update to require both "select" AND "update" privs in order to succeed - as it essentially does both select (retuns data to client) and an sort of an update (updating the lock byte in a row). what's even weirder though, is that you can lock a table in exclusive mode just with select priv :) Yep, I think there could be use for a “select for update” priv, or maybe making a select for update to require both “select” AND “update” privs in order to succeed – as it essentially does both select (retuns data to client) and an sort of an update (updating the lock byte in a row).

what’s even weirder though, is that you can lock a table in exclusive mode just with select priv :)

]]> By: Polarski bernard http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/comment-page-1/#comment-223 Polarski bernard Tue, 18 Mar 2008 07:46:02 +0000 http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/#comment-223 Very interresting, smart analysis, efficiently coded and above all usefull and re-usable. However, I all sound like an Oracle conception bug when they put the 'select for update' into the category of 'Select' while it should be treated as an operation of the 'update familly' and the grants/role should follow. In short you should have the grant update to issue a 'select for update' Very interresting, smart analysis, efficiently coded and above all usefull and re-usable.

However, I all sound like an Oracle conception bug when they put the ’select for update’ into the category of ‘Select’ while it should be treated as an operation of the ‘update familly’ and the grants/role should follow. In short you should have the grant update to issue a ’select for update’

]]> By: sunil http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/comment-page-1/#comment-221 sunil Tue, 20 Nov 2007 13:04:50 +0000 http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/#comment-221 Gr8....thnx for sharing this! Gr8….thnx for sharing this!

]]> By: Sven’s Technik-Blog » Blog Archive » Oracle: Readonly != Readonly ?? http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/comment-page-1/#comment-222 Sven’s Technik-Blog » Blog Archive » Oracle: Readonly != Readonly ?? Sun, 18 Nov 2007 22:17:28 +0000 http://blog.tanelpoder.com/2007/11/19/oracle-security-part-2-your-read-only-accounts-arent-that-read-only/#comment-222 [...] Poder beschreibt in seinem Blog-Eintrag "Your read only accounts aren’t that read only", dass Benutzer mit ausschliesslich Select-Rechten [...] [...] Poder beschreibt in seinem Blog-Eintrag “Your read only accounts aren’t that read only”, dass Benutzer mit ausschliesslich Select-Rechten [...]

]]>