|
- select * from database_properties;
- select u.USERNAME,
- u.ACCOUNT_STATUS,
- u.AUTHENTICATION_TYPE,
- u.EXPIRY_DATE,
- u.LOCK_DATE
- from dba_users u
- where u.USERNAME='USER3';
-
- select to_date('2018-05-08:19:51:31','YYYY-MM-DD:HH24:MI:SS')- sysdate
- from dual;
-
- grant connect to user2 identified by oracle_4U;
-
- grant create session to user3 identified by oracle_4U;
-
- select * from role_sys_privs rsp
- where rsp.ROLE='CONNECT';
-
-
-
复制代码 [oracle@station26 ~]$ sqlplus /nolog
SQL*Plus: Release 12.1.0.2.0 Production on Thu Nov 9 19:55:37 2017
Copyright (c) 1982, 2014, Oracle. All rights reserved.
SQL> conn / as sysdba
Connected.
SQL> show parameter authe
NAME TYPE VALUE
------------------------------------ ----------- ------------------------------
os_authent_prefix string ops$
remote_os_authent boolean FALSE
SQL>
- select u.USERNAME,
- u.ACCOUNT_STATUS,
- u.AUTHENTICATION_TYPE,
- u.EXPIRY_DATE,
- u.LOCK_DATE
- from dba_users u
- where u.USERNAME='OPS$ORACLE';
- create user ops$oracle identified externally ;
- grant create session to ops$oracle;
- select u.PASSWORD from dba_users u ;
- select u.PASSWORD from user[ DISCUZ_CODE_15 ]nbsp; u
- where u.NAME='HR' ;
复制代码 禁用ops$和sysdba的操作系统验证:
sqlnet.authentication_services=(none)
- select u.USERNAME,
- u.ACCOUNT_STATUS,
- u.AUTHENTICATION_TYPE,
- u.EXPIRY_DATE,
- u.LOCK_DATE
- from dba_users u
- where u.USERNAME='USER1';
- alter user user1 account lock;
- alter user user2 password expire;
- select u.USERNAME,
- u.ACCOUNT_STATUS,
- u.AUTHENTICATION_TYPE,
- u.EXPIRY_DATE,
- u.LOCK_DATE
- from dba_users u
- where u.USERNAME='USER2';
- select u.USERNAME,
- u.ACCOUNT_STATUS,
- u.AUTHENTICATION_TYPE,
- u.EXPIRY_DATE,
- u.LOCK_DATE
- from dba_users u
- where u.USERNAME='USER3';
- grant create table to user3;
- select * from dba_ts_quotas;
- alter user user3 quota 1M on users;
- alter user user3 quota 0 on users;
- select * from dba_ts_quotas;
复制代码- select * from system_privilege_map
- order by 2 ;
-
- select * from dba_sys_privs sp
- where sp.GRANTEE='USER3';
-
- grant select any table to user3 with admin option;
- revoke select any table from user3;
- select * from dba_sys_privs sp
- where sp.GRANTEE='OPS$ORACLE';
-
- revoke select any table from OPS$ORACLE;
- -----
- select * from table_privilege_map;
-
- select * from dba_tab_privs tp
- where tp.GRANTEE='USER3';
-
复制代码
|
|