Results 1 to 5 of 5
  1. #1
    Join Date
    May 2003
    Posts
    369

    Unanswered: security question for tables and packages

    Hi gurus:

    Sorry two separate but related questions:

    1. In Oracle 8i/9i, can I grant or revoke INSERT and DROP privileges on a particular table to a user?

    2. Also with regard to packages, is it possible to create a package within an
    Oracle table? Can you execute a package within Oracle to run without
    privileges granted to certain users? Like say I have DBMS_JOB and do not
    want the scott user to run this, can I revoke privileges on this package?

    Thanks!

  2. #2
    Join Date
    Aug 2003
    Location
    Where the Surf Meets the Turf @Del Mar, CA
    Posts
    7,776
    Provided Answers: 1
    1) No
    2) I don't know where to start.
    packages do NOT reside in "tables"; rows do.
    http://download-west.oracle.com/docs...ntro.htm#44577
    Take some time to RTFM & educate yourself!
    You can lead some folks to knowledge, but you can not make them think.
    The average person thinks he's above average!
    For most folks, they don't know, what they don't know.
    Good judgement comes from experience. Experience comes from bad judgement.

  3. #3
    Join Date
    Sep 2004
    Location
    London, UK
    Posts
    565
    It would not make much sense to grant DROP on an object to a user; for example, user WILLIAM may drop the table SCOTT.EMP. You could only use that privilege once.

    However you can grant INSERT on a table to another user. You can also selectively grant and revoke EXECUTE permission on packages, procedures etc.
    Last edited by WilliamR; 12-16-04 at 19:02.

  4. #4
    Join Date
    May 2003
    Posts
    369

    schema and tables

    Thanks .. I had to explain to a developer about Oracle security and he was confused. Schema objects belong to a user or group of users.

  5. #5
    Join Date
    Sep 2004
    Location
    London, UK
    Posts
    565
    Schema objects belong to a user or group of users.
    A schema object always resides in a schema; that is, it is created and owned by a named account. That account may then GRANT or REVOKE privileges on it to other accounts or roles. (A role can be thought of as a convenient way of administering privileges for groups of end users, although it can also include system privileges like DROP ANY TABLE.)

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •