Pete Finnigan's Oracle Security Forum
        (http://www.petefinnigan.com/forum/yabb/YaBB.cgi)
      

        Oracle Security >> Oracle Security >> Security privilige analysis
        
(Message started by: Pete Finnigan on Jul 13th, 2007, 3:02pm)
Title: Security privilige analysis
Post by Pete Finnigan on Jul 13th, 2007, 3:02pm
Does anyone know of a tool that can analyze the Oracle 10g log, filter on a specified userid, and determine the minimum, specific priviliges needed for that userid to do what it has done (using much higher, god-like priviliges which we now want to limit)?
Title: Re: Security privilige analysis
Post by Pete Finnigan on Jul 16th, 2007, 10:49am
hi,

what do you mean by log? - the audit trail?

cheers

Pete
Title: Re: Security privilige analysis
Post by Pete Finnigan on Jul 17th, 2007, 5:13pm
I mean the active log - also called the redo log and sometimes the archive log (once saved away) - the log used for transaction recovery.
Title: Re: Security privilige analysis
Post by Pete Finnigan on Jul 24th, 2007, 3:15pm
Look into LogMiner, this should be useful for what you want.

cheers

pete


Powered by YaBB 1 Gold - SP 1.4!
Forum software copyright © 2000-2004 Yet another Bulletin Board