首页 / MYSQL / 授予SELECTANYTABLE权限后无法访问sys用户的表

授予SELECTANYTABLE权限后无法访问sys用户的表

内容导读

互联网集市收集整理的这篇技术教程文章主要介绍了授予SELECTANYTABLE权限后无法访问sys用户的表,小编现在分享给大家,供广大互联网技能从业者学习和参考。文章包含2119字,纯文字阅读大概需要4分钟

内容图文

SQL show parameter dict NAME TYPE VALUE ------------------------------------ ----------- ------------------------- O7_DICTIONARY_ACCESSIBILITY boolean FALSE ---------缺省为false ----设置为true后普通用户拥有 select any table 权限的就可以访

SQL> show parameter dict

NAME TYPE VALUE
------------------------------------ ----------- -------------------------
O7_DICTIONARY_ACCESSIBILITY boolean FALSE ---------缺省为false

----设置为true后普通用户拥有 select any table 权限的就可以访问 sys schema了
SQL> alter system set O7_DICTIONARY_A【本文来自鸿网互联 (http://www.68idc.cn)】CCESSIBILITY=true scope=spfile

O7_DICTIONARY_ACCESSIBILITY 会控制普通用无法直接访问sys schema


FYI:

O7_DICTIONARY_ACCESSIBILITY
Property Description
Parameter type Boolean
Default value false
Modifiable No
Range of values true | false

O7_DICTIONARY_ACCESSIBILITY controls restrictions on SYSTEM privileges. If the parameter is set to true, access to objects in the SYS schema is allowed (Oracle7 behavior). The default setting of false ensures that system privileges that allow access to objects in "any schema" do not allow access to objects in the SYSschema.

For example, if O7_DICTIONARY_ACCESSIBILITY is set to false, then the SELECT ANY TABLE privilege allows access to views or tables in any schema except the SYSschema (data dictionary tables cannot be accessed). If O7_DICTIONARY_ACCESSIBILITY is set to false, then to access objects in the SYS schema, the user should have SELECT ANY DICTIONARY system privilege or the user should have been granted SELECT object privilege on the specific objects. The system privilegeEXECUTE ANY PROCEDURE allows access on the procedures in any schema except the SYS schema.

If this parameter is set to false and you need to access objects in the SYS schema, then you must be granted explicit object privileges. The following roles, which can be granted to the database administrator, also allow access to dictionary objects:

    SELECT_CATALOG_ROLE

    EXECUTE_CATALOG_ROLE

    DELETE_CATALOG_ROLE

内容总结

以上是互联网集市为您收集整理的授予SELECTANYTABLE权限后无法访问sys用户的表全部内容,希望文章能够帮你解决授予SELECTANYTABLE权限后无法访问sys用户的表所遇到的程序开发问题。 如果觉得互联网集市技术教程内容还不错,欢迎将互联网集市网站推荐给程序员好友。

内容备注

版权声明:本文内容由互联网用户自发贡献,该文观点与技术仅代表作者本人。本站仅提供信息存储空间服务,不拥有所有权,不承担相关法律责任。如发现本站有涉嫌侵权/违法违规的内容, 请发送邮件至 gblab@vip.qq.com 举报,一经查实,本站将立刻删除。

内容手机端

扫描二维码推送至手机访问。

本文链接:https://qyyshop.com/info/559660.html

来源:【匿名】