Q

Database security when users can connect without password

If you give sys / as sysdba it will connect to the database directly, so how can we give security to our database?

If you give sys / as sysdba it will connect to the database directly, so how can we give security to our database? By creating the password file, but after creating the password file it also will connect to the database using the above. How can we secure that one?
The only way you can connect to the database without a password (connect / as sysdba) is to be a member of the 'dba' group in Unix/Linux or the ORA_DBA group in Windows. So make sure users are not part of these groups. If someone other than the DBA needs DBA access to the database, then use the password file to grant them the appropriate access.
This was first published in July 2007
This Content Component encountered an error

Pro+

Features

Enjoy the benefits of Pro+ membership, learn more and join.

Have a question for an expert?

Please add a title for your question

Get answers from a TechTarget expert on whatever's puzzling you.

You will be able to add details on the next page.

0 comments

Oldest 

Forgot Password?

No problem! Submit your e-mail address below. We'll send you an email containing your password.

Your password has been sent to:

-ADS BY GOOGLE

SearchDataManagement

SearchBusinessAnalytics

SearchSAP

SearchSQLServer

TheServerSide

SearchDataCenter

SearchContentManagement

SearchFinancialApplications

Close