September 2013 archive

Sep 20

Finding Oracle users with DBA privilege hidden by roles

Some users in Oracle may have very dangerous privileges without your consent, they can cause great damage to the database. Sometimes this privilege is hidden via a chain of roles, which makes it difficult to perception. Eg: SQL> CREATE USER SYSADM identified by "sysadm1"; SQL> CREATE ROLE A; SQL> CREATE ROLE B; SQL> CREATE ROLE …

Continue reading