Results 1 to 5 of 5
  1. #1
    Join Date
    May 2006
    Posts
    42

    Red face Unanswered: all users can login as sysdba.. help

    i m learning Oracle to become a DBA. Oracle 9.2 installed on windows machine.

    i created password file using he orapwd utility and changed the REMOTE_LOGIN_PASSWORDFILE parameter to exclusive ...

    Code:
    OS prompt>orapwd file="C:\oracle\ora92\database\PWDarvind.ORA" password=sys entries=1
    
    SQL> shut immediate
    Database closed.
    Database dismounted.
    ORACLE instance shut down.
    SQL> startup
    ORACLE instance started.
    
    Total System Global Area  143727176 bytes                                       
    Fixed Size                   453192 bytes                                       
    Variable Size             125829120 bytes                                       
    Database Buffers           16777216 bytes                                       
    Redo Buffers                 667648 bytes                                       
    Database mounted.
    Database opened.
    SQL> select * from v$pwfile_users;
    
    USERNAME                       SYSDB SYSOP                                      
    ------------------------------ ----- -----                                      
    SYS                            TRUE  TRUE                                       
    
    SQL> show user
    USER is "SYS"
    SQL> conn scott/tiger as sysdba
    Connected.
    SQL> show user
    USER is "SYS"
    SQL> show parameter REMOTE_LOGIN_PASSWORDFILE
    
    NAME                                 TYPE        VALUE
    ------------------------------------ ----------- ------------------------------
    remote_login_passwordfile            string      EXCLUSIVE
    SQL> revoke sysdba from scott;
    
    Revoke succeeded.
    
    SQL> conn scott/tiger as sysdba
    Connected.
    
    SQL> spool off
    even then the scott is being allowed to login as sysdba user. i revoked sysdba from scott. it still gets connected as sysdba.
    why is this so.

  2. #2
    Join Date
    Aug 2003
    Location
    Where the Surf Meets the Turf @Del Mar, CA
    Posts
    7,776
    Provided Answers: 1
    Because you are logged onto the server as user oracle & Oracle is using OS authentication.
    You, as OS user Oracle, is allowed to log into database as any user without any password.

    Please RTFM
    http://download.oracle.com/docs/cd/B...b14220/toc.htm
    You can lead some folks to knowledge, but you can not make them think.
    The average person thinks he's above average!
    For most folks, they don't know, what they don't know.
    Good judgement comes from experience. Experience comes from bad judgement.

  3. #3
    Join Date
    May 2006
    Posts
    42
    ohk ... so i should either try and log in from a remote machine n chk the same??
    or log in from another user account of this machine itself which is not a member of ORA_DBA?
    am I getting it correct??

  4. #4
    Join Date
    Jun 2004
    Location
    Liverpool, NY USA
    Posts
    2,509
    yes.......
    Bill
    You do not need a parachute to skydive. You only need a parachute to skydive twice.

  5. #5
    Join Date
    May 2006
    Posts
    42
    thank you..

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •