Block Sql Plus Login

Hi,
I have database 8.05. For client server application on the client side we mention
D:\ORACLE\BIN\F50RUN32.EXE c:\test\test.fmx test/test@test
Now anyone can logon to sql plus and if he knows sql plus as the username and password is there. I dont want to remove sql plus from each machine and at the same time i dont want to user to logon to sql prompt.
Operation system is windows NT.
Rgds

What you need to do is , give only CONNECT permissions to user TEST. So even if the user logs in SQLPLUS he wont be able to access any OBJECTS.
ALSO you need to create another Oracle user , which will have all the necessary permissions.
In your client application (FORMS), you need to connect using this new user after you have initially logged in using TEST user
Hope this helps
Ashwin N.

Similar Messages

  • How to block Sql Plus sessions in Oracle 10g

    Hi,
    I want to block all sql plus sessions in oracle 10g, as we have a application and we need each and every one to use this application not the sql plus session.
    Kindly update us as soon as possible. and also thanks in advanced.

    Understand the concept Karl, but a layered defense seldom works in the IP world. If I manage to get through the firewall, then how can you prevent me access, at IP level, at any other ISO stack layer? If you manage to get through, then your firewall policies could just be too weak :) at least you must have some kind of an IDS infrastructure in place..
    what I mean is, you can have infinite number of threats.. and this will be part of your Risk Analysis. Determining all possible threats to the assets, what are being protected and their associated value, and predicting the rate of occurrence.... with all of these you could probably come up with contingency plans and incident response.. And most of all, you should not ignore the fact that people are creative, ingenious, and curious, and they'll prove this to you by testing your security implementations. So you'll have to periodically evaluate your security.. that's why there are audits.. Also, you must balance Security, Performance, Usability, and your Budget.
    Yes, you can argue that if the entire firewall goes down (thus no IP defense), then something like DBV (or even denying IPs in sqlnet) can provide some defense. But is that not then a case of too little too late? It's better too little too late, than no protection at all... Imagine if there's no DBV, or if you have not implemented the concept of "Least Privilege"? or if the backups and exports are not encrypted? That would be more devastating.. that's the importance of database security options and features in providing "defense in depth"
    I question just what purpose and how effective IP packet security is at higher layers. It can never substitute doing this instead at firewall level. Well, it's not all about network security. All facets must be considered and the inter-relationships should be understand. Like the core information security and access management, physical and personnel security, training them, etc... And all of these are equally important in providing a secure ecosystem
    As for security that relies on the client to pass secure data (like executable name or o/s user name)... all this can easily be spoofed. Even if the app and Oracle driver are somehow digitally signed and these signatures can be verified on the server side, we only need to look at Vista to see how secure this really would be. Microsoft attempted to encrypt every single h/w and s/w layer from the physical DVD track to the pixel on the monitor.. and this was defeated. And this was done as o/s kernel level. It is less complex to hack at driver level and even trivial to do it at application level.Security is about risk management. Blocking SQL*Plus does not negate the risk of SQL from the wild being run on a production server. For example, the client is a VB client using ODBC. It is easy to create a proxy that accepts the ODBC connection from the VB client and proxy the OCI packets to the real Oracle server. Now you have a man-in-the-middle than can inspect every single SQL call made to Oracle, and inject any PL/SQL or SQL code it wants.
    Security is far beyond writing a login trigger to deny SQL*Plus sessions and calling that a defense. >
    Yes I agree with you. That's why there are independent organizations and regulating bodies that provides security best practices, to give us a headstart on comming up of strong security policies.
    And one of my favorites is the one provided by IASE (sponsored by Defense Information Systems Agency) where there's lot of content regarding hardening and policies
    http://iase.disa.mil/stigs/stig/index.html
    http://iase.disa.mil/stigs/checklist/index.html
    http://iase.disa.mil/stigs/SRR/index.html
    - Karl Arao
    http://karlarao.wordpress.com

  • Oracle10g Developer Suite - Application Development - SQL Plus Login Info

    I have installed Oracle10g Developer Suite and when I am trying to login into the sql*plus environment the username scott with the passcode tiger is not working. I have Oracle9i Enterprise Edition Release 9.2.0.1.0 as the database.
    Can anyone help me in setting up the username and password to login into Sql*plus Release 10.1.0.4.2

    It sounds like you may be new to Oracle and its products. I would recommend doing some reading.
    Oracle 9.2 Net Services Admin Guide
    http://download-west.oracle.com/docs/cd/B10501_01/network.920/a96580/toc.htm
    Oracle Developer Suite Installation Guide
    http://download-west.oracle.com/docs/cd/B25016_06/doc/dl/core/B16012_03/toc.htm
    You create the "login" information when you install the database. If you are not the person who performed the installation, you will need to contact them or install it again. Also, be aware that the SCOTT schema is disabled by default in newer database versions for security reasons.
    The tnsnames.ora and sqlnet.ora files can be found in the ORACLE_HOME\network\admin directory. This is the same for all Oracle products that use Sql-Net for database connections. You can also use the TNS_ADMIN environment variable to point to a pre-existing tnsnames.ora file (see previously mentioned documents).
    The tnsnames.ora entry will be unique to your database and its listener however here is an example:
    ORCL =
    (DESCRIPTION =
    (ADDRESS = (PROTOCOL = TCP)(HOST = someServer.com)(PORT = 1521))
    (CONNECT_DATA =
    (SERVICE_NAME = orcl)
    )

  • SQL Plus Login issue

    Please assist...when i am trying to login following error is occuring ....
    Enter user-name: / as sysdba
    ERROR:
    ORA-01031: Message 1031 not found; No message file for product=RDBMS,
    facility=ORA

    Maran thanks for the prompts replies, i have already set the variables & restarted the machine but there is no change. please see below;
    C:\Documents and Settings\Administrator>sqlplus
    Error 6 initializing SQL*Plus
    Message file sp1<lang>.msb not found
    SP2-0750: You may need to set ORACLE_HOME to your Oracle software directory
    C:\Documents and Settings\Administrator>d:
    D:\>cd oracle
    D:\oracle>cd ora92
    D:\oracle\ora92>cd bin
    D:\oracle\ora92\bin>sqlplus
    SQL*Plus: Release 9.2.0.6.0 - Production on Fri May 11 17:31:09 2007
    Copyright (c) 1982, 2002, Oracle Corporation. All rights reserved.
    Enter user-name: / as sysdba
    ERROR:
    ORA-01031: Message 1031 not found; No message file for product=RDBMS,
    facility=ORA

  • Enterprise manager & sql* plus login failed

    hi
    this is the problem i encountered yesterday:
    there are server_3 and rs_16 machines which are in D1 domain and server_1 in W1 workgroup. server_3 and rs_16 has no oracle software whatsoever and on server_1 8i database exists. other machines with 8i clients, all in D1 domain, succesfully connect to server_1.
    i installed 10g database on server_3 machine; after installation i created a database db1. after the database was created, i tried to start enterprise manager (EM) and it failed (the database is not mounted ....), and i found out that tns listener wasn't created during the installation. so i created tns listener and started EM again and browser showed the proper page (username and login). so i entered sys as username, pswrd (created during the installation) and connect as sysdba. when i clicked on login button, the page refreshed but nothing happened, the same page (login) was still opened. i tried to connect from rs_16 and the same thing happened. this happened using internet explorer for opening EM. i tried to login as system, sysman but all in vain.
    then i installed 10g on rs_16, created db2 database and found out that tnsnames.ora file was missing. created db3 as well, and all went ok. started EM, tried to login and the same thing happened as on server_3, browser just refreshed the page.
    also have to say that i tried to connect to databases using sql* plus and login also failed.
    also tried using administration assistent for windows and tried to connect to db3. when i tried to connect as sys acount (database authentication) login failed, but when i used os authentication i succeeded.
    then i tried to start EM from another machine rs_13 (D1 domain) using internet explorer and i succeeded, there was no problem at all. after all, i installed mozilla firefox (1.0.6) on rs_16 and succesfully started EM for any database i wanted. but have to mention that i still can't connect to any db using sql* plus.
    rs_13 setup:
    - win 2000 + sp4
    - ie 6.0.2600.0000IC
    and rs_16:
    - win xp + sp2
    - ie 6.0.2900.2180.xpsp_sp2
    server_3:
    - windows server 2003
    on every machine i was logged in as top administrator so i had any possible permission.
    could anybody answer these questions:
    1. why tnsnames.ora wasn't created?
    2. why tns listener wasn't created?
    3. why couldn't i start EM using ie on server_3 and rs_16 and could on rs_13?
    4. why did login fail using sql* plus and why can't i still connect to any db using sql* plus? is it a problem of assigning some privileges or something else?
    5. why did login fail using database authentication while succeeded using windows authentication in administration assistent for windows? what should i do to make it succeed? is this all problem due to ie browser, win security or oracle security?
    6. why microsoft is giving me a hard time with their security?
    thanks for help in advance
    hope this post will help someone else as well !!
    Message was edited by:
    uncle carmine
    Message was edited by:
    uncle carmine

    could anybody answer these questions:
    1. why tnsnames.ora wasn't created?
    2. why tns listener wasn't created?I think you cancel Network Configuration Assistan which would create tnsnames.ora and listener. I hope others help you with the other questions I have plenty of work
    Best Regards
    Krystian Zieja / mob

  • Oracle SQL Plus login fails

    Hi
    I have install Oracle 9i Enterprise Edition on Windows XP. Then I have created a database call "itcmdb". Then to login to SQL Plus in graphical mode I have enter
    User Name: sys as sysdba
    Password : password
    Host String : itcmdb
    Then I have got an error:
    SQL*Plus: Release 9.2.0.1.0 - Production on Fri Feb 17 16:46:17 2006
    Copyright (c) 1982, 2002, Oracle Corporation. All rights reserved.
    SP2-0306: Invalid option.
    Usage: CONN[ECT] [logon] [AS {SYSDBA|SYSOPER}]
    where <logon> ::= <username>[<password>][@<connect_string>] | /
    so I try to log into SQL Plus by using command prompt. So i enter following command in the command prompt.
    D:\>SQLPLUS /NOLOG
    SQL*Plus: Release 9.2.0.1.0 - Production on Fri Feb 17 16:50:34 2006
    Copyright (c) 1982, 2002, Oracle Corporation. All rights reserved.
    SQL> connect sys/password@itcmdb as sysdba
    Connected.
    SQL>
    the it was connected without any problem. Then i check "C:\oracle\ora92\network\admin\tnsnames.ora". So it was contain following information.
    ITCMDB =
    (DESCRIPTION =
    (ADDRESS_LIST =
    (ADDRESS = (PROTOCOL = TCP)(HOST = Rasika)(PORT = 1521))
    (CONNECT_DATA =
    (SERVER = DEDICATED)
    (SERVICE_NAME=itcmdb)
    Then i check "C:\oracle\ora92\network\admin\listener.ora". so it was contains following information.
    LISTENER =
    (DESCRIPTION_LIST =
    (DESCRIPTION =
    (ADDRESS_LIST =
    (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC0))
    (ADDRESS_LIST =
    (ADDRESS = (PROTOCOL = TCP)(HOST = rasika)(PORT = 1521))
    SID_LIST_LISTENER =
    (SID_LIST =
    (SID_DESC =
    (SID_NAME = PLSExtProc)
    (ORACLE_HOME = C:\oracle\ora92)
    (PROGRAM = extproc)
    (SID_DESC =
    (GLOBAL_DBNAME = ITCMDB)
    (ORACLE_HOME = C:\oracle\ora92)
    (SID_NAME = ITCMDB)
    Cold u plz help me to fix this problem........

    Hi
    I have install Oracle 9i Enterprise Edition on
    Windows XP. Then I have created a database call
    "itcmdb". Then to login to SQL Plus in graphical mode
    I have enter
    User Name: sys as sysdba
    Password : password
    Host String : itcmdb
    Then I have got an error:
    SQL*Plus: Release 9.2.0.1.0 - Production on Fri Feb
    17 16:46:17 2006
    Copyright (c) 1982, 2002, Oracle Corporation. All
    rights reserved.
    SP2-0306: Invalid option.
    Usage: CONN[ECT] [logon] [AS {SYSDBA|SYSOPER}]
    where <logon> ::=
    <username>[<password>][@<connect_string>] | /
    so I try to log into SQL Plus by using command
    prompt. So i enter following command in the command
    prompt.
    D:\>SQLPLUS /NOLOG
    SQL*Plus: Release 9.2.0.1.0 - Production on Fri Feb
    17 16:50:34 2006
    Copyright (c) 1982, 2002, Oracle Corporation. All
    rights reserved.
    SQL> connect sys/password@itcmdb as sysdba
    Connected.
    SQL>
    the it was connected without any problem. Then i
    check "C:\oracle\ora92\network\admin\tnsnames.ora".
    So it was contain following information.
    ITCMDB =
    (DESCRIPTION =
    (ADDRESS_LIST =
    (ADDRESS = (PROTOCOL = TCP)(HOST = Rasika)(PORT
    )(PORT = 1521))
    (CONNECT_DATA =
    (SERVER = DEDICATED)
    (SERVICE_NAME=itcmdb)
    Then i check
    "C:\oracle\ora92\network\admin\listener.ora". so it
    was contains following information.
    LISTENER =
    (DESCRIPTION_LIST =
    (DESCRIPTION =
    (ADDRESS_LIST =
    (ADDRESS = (PROTOCOL = IPC)(KEY = EXTPROC0))
    (ADDRESS_LIST =
    (ADDRESS = (PROTOCOL = TCP)(HOST =
    )(HOST = rasika)(PORT = 1521))
    SID_LIST_LISTENER =
    (SID_LIST =
    (SID_DESC =
    (SID_NAME = PLSExtProc)
    (ORACLE_HOME = C:\oracle\ora92)
    (PROGRAM = extproc)
    (SID_DESC =
    (GLOBAL_DBNAME = ITCMDB)
    (ORACLE_HOME = C:\oracle\ora92)
    (SID_NAME = ITCMDB)
    Cold u plz help me to fix this problem........on the sqlplusw gui you can not pass sys as sysdba as this option is available in OEM or other FRONTEND tools, wherein they inherently implement connect command.
    Hope this helps !

  • Unable to get SQL Plus login id & pw

    Hi all, I am a beginner in using Oracle products.
    Q1)
    I am using windows vista and I have installed Oracle 10g on my machine, and when I tried to access SQL Plus, they prompted me for :
    ID
    Password
    Host String
    I do not know how to get/create those values. May I ask how to?
    Q2)
    How do I uninstall Oracle 10g from Windows Vista? I couldn't uninstall from the control panel.
    Thanks!

    On that page you had the choice of...
    1. Oracle Database 10g Release 2 (10.2.0.3)
    Enterprise/Standard Edition for Microsoft Windows Vista
    2. Oracle Database 10g Companion CD Release 2 (10.2.0.3)
    10203_companion_vista.zip (677,074,714 bytes)
    Download latest Oracle Application Express (formerly HTML DB)
    3. Oracle Database 10g Client Release 2 (10.2.0.3)
    10203_client_vista.zip (616,067,114 bytes)
    If you select the first one then that looks like the full database, so you have installed a database locally on your PC.
    When you choose the starter database there should have been an option to set the default password for all the default users with an option (usually missed) to set different passwords for each of the default users.
    It's difficult to recall the details without actually going through an install which isn't something I do every day.
    Best bet is in the installation forum.
    ;)

  • SQL Plus login

    Installed Oracle 9i enterprise edition from disk set provided with course text on advanced database concepts.
    Received registration key from oracle but no user name or password to open a session on SQL Plus. Cannot logon.
    Does anyone have info on who to contact?

    I followed your suggestion and pulled up the configuration assistant. I managed to create a password without being sure of anything I was doing and voile!
    I was able to log on to SQL PLUS.
    Thanks for the tip!

  • SQL*Plus login problems

    Hi. I am just reading through my PL/SQL 101 book and exam guide for preparation for the 1Z0-007 exam. I have downloaded Oracle 9i and I cannot login to SQL+ at all. I want to use my database as a stand alone system for the time being until I can network my other computer with my new one.
    All I want is to get into SQL+ so that I can practice pl/sql code for the exam.
    Can anyone help me? What steps should I do?
    thank you, comments and solutions are greatly appreciated.
    Karin

    If you are connecting a local default database (which you may be if I make a guess at your configuration), you don't need to enter anything in the host string field. Just enter the username and password.
    If you are connecting to a remote database, or non-default database, you need to enter a connect string in the host strint field. To find your connect string, look in your tnsnames.ora file (in the network/admin directory) and you will see an entry for the default database you created. Use the value set for SERVICE_NAME.
    Alison
    iSQL*Plus Team

  • Can I block SQL PLUS (inserts, updates, deletes, drop, etc)?

    Let's say I make a forms or reports builder module, and I would like to avoid that any user alter a table by using SQL code.
    (regarless I use a different user/pass)
    is it possible?

    Ronald
    If im correct is your requirement like this ?
    You want to avoid a user using SQL and running script to alter the table structure when you
    have your form or report module is already built.
    If my understanding to ur req is correct then you can avoid this by using the
    PRODUCT_USER_PROFILE. there you can restrict the user to use only mentioned modules.
    You can allow the user to use only FORMS, REPORTS and disallow the user to connect the database by any other means.
    Also you can achieve this by creating a trigger at the schema level and check whether the product/application he is using to access the database is other than FORMS,REPORTS and raising an error
    message.
    If your requirement is just only for the data then you can achieve this same also using the similar triggers.
    try that
    all the best
    prakash
    [email protected]

  • [urgent]sql plus 's user login

    how do i know my sql plus login name and password? when i install...they never ask me to set my own login name and password...

    Hi 489652,
    Which version of oracle you are using?
    Oracle 8i & below sys password is change_on_install & system password is manager
    You can even login as internal with a password oracle.
    if 9i & above you need to provide oracle password for sys & system and no internal login.
    What ever version you use this should work as generic
    01. Login as oracle user in unix box in windows as admin.
    02. export ORACLE_SID=dbname in unix . set ORACLE_SID=dbname in windows
    03. sqlplus "/ as sysdba" you should be loggin as sys ..(as oracle admin)
    Moreover, please remember when you raise this kind of question try to include the version of oracle and OS.
    Cheers,
    kamalesh jk

  • SQL*PLUS 에서 ONLINE HELP 기능

    제품 : SQL*PLUS
    작성날짜 : 1999-10-08
    SQL*PLUS Help
    =============
    SQL*PLUS 에서 Online Help 기능을 제공하여 굳이 SQL Reference 를 참조하지
    않아도 Online 상에서 확인이 가능하다.
    그런데 간혹 help 에 문제가 생기는 경우 다음과 같이 새로 생성하면 된다.
    1. help 디렉토리로 이동한다.
    % cd $ORACLE_HOME/sqlplus/admin/help
    2. SYSTEM user 로 SQL*Plus 에 Login 한다.
    % sqlplus system/<password>
    3. 해당 디렉토리의 "helptbl.sql" script 를 수행한다.
    SQL> @helptbl
    해당 스크립트는 Help 라는 테이블을 생성하고 Public 으로 지정한다.
    4. SQL*Loader 로 필요한 Record 를 Help 테이블에 로딩한다..
    % sqlldr system/manager control=plushelp.ctl
    % sqlldr system/manager control=sqlhelp.ctl
    % sqlldr system/manager control=plshelp.ctl
    5. SYSTEM user 로 SQL*Plus 에 Login 한다.
    "helpindx.sql" script 를 수행한다.
    SQL> @helpindx
    해당 스크립트는 필요한 각종 view 와 index 를 생성한다.
    // 위의 사항은 Unix 계열의 SQL*PLUS 에서 적용이 되는 내용이다
    Windows 95/98/NT 에서는 현재 On-line Help 가 지원되지 않는다.
    다만 Oracle install CD 에서 Oracle Online Documentation 을 인스톨 한
    후 Adobe Acrobat runtime 으로 보아야 한다.
    DB SERVER 8.1.6 이상에서는
    SQLPLUS에서 사용되는 help 기능만 제공됩니다.
    8.1.6 이상에서 help를 생성하기 위해서는
    % cd $ORACLE_HOME/sqlplus/admin/help
    % sqlplus system/<password>
    SQLPLUS>helpbld.sql
    SQLPLUS>helpus.sql

    I personally don't like SQL Developer or TOAD, though perhaps I'm in a minority. I agree completely. Toad does a lot of things but many of are ill thought out, the most obvious is the default feature of displaying a result time after fetching the first screen of rows. This alone has led to hundreds of posting along the lines of, I have this query that returns 12 billion rows. In a stored procedure it takes days, but it completes in 12 milliseconds in TOAD?
    The last I looked SQL Developer had that typical Java sluggishness on a Windows box, and I am still not interested in whether that is a Windows or Java problem. I just know that if I have to use Windows I tend to choose applications that are not written in Java if possible.
    It also was unable to connect using OS authenticated accounts which effectively ruled it out as anything other than a toy as our development environment mandates it. I believe there may be a workaround, but there are always hints of waving a rubber chicken at it and frankly why bother at this stage.
    PL/SQL Developer is by far the best.

  • Login Error SQL Plus in Oracle9i

    I installed completely Oracle9i on my system. I have to make databases, make forms and generate reports for my scool project. I cannot login to sql Plus using scott tiger . I think the problem is with HOST STRING. Can anyone help please.
    Thank you
    Sharif Vohra

    it would help if you post the error message(s), if any, that you are receiving while connecting.
    Did you install the database part (or the client tools only), and did you also create a
    starter (or customized) database while installing Oracle?

  • How to login as DBA in oracle 9i from sql plus .

    how to login as DBA in oracle 9i from sql plus . ???

    First you need to check whether your HR schema is still unlocked or not? If it is locked - then you have to unlock it. And, then you can connect the Hr schema.
    But, i'm not sure - why you need system to log into the HR schema?
    Regards.
    Satyaki De.

  • Problem in login with scott/tiger in SQL Plus

    Hi,
    I want to login with Scott/Tiger in SQL Plus, I have client on my machine, I can connect to any database by entering entry in tnsnames.ora file, but when I try to login with scott/tiger, Protocol adapter error comes, Do I need to enter any thing in tnsnames.ora file? if yes, please tell me the entries,
    Thanks
    Nidhi..

    I have modified tnsnames.ora file, Below is this file
    ORCL =
    (DESCRIPTION =
    (ADDRESS = (PROTOCOL = TCP)(HOST = localhost)(PORT = 1521))
    (CONNECT_DATA =
    (SERVER = DEDICATED)
    (SERVICE_NAME = ORCL)
    Now i ger error
    Error: ORA-12541: TNS: no listener
    Regards,
    Nidhi..

Maybe you are looking for

  • Open item check box in gl Master

    Hi Previsouly for the advance gl there is no open item check box not checked. But now i want to tick the check box so that all my entries will be shown as open items if they were not cleared. But my question i want my previous entries should also sho

  • ITunes 10.7 won't download to Mac OS X 10.7.4

    Bought the iPhone 5 today and need to sync it. Trying to download iTunes 10.7, says download complete, but when I open iTunes it still says 10.6.3. Has anyone run into this issue of iTunes not updating?

  • Need help with Flash CS6 swf files

    I have upgraded to Flash CS6 from CS5.  My problem is now whenever I made an swf movie, install it into an html page then upload it is doesnt show up.  I didnt have this problem with CS5.  I run it in test and it works on my computer but when I uploa

  • Google Map Links

    Hi I would like to add links from Calendar events to locations on Google Maps. Ultimately it would be nice if I could create an Automator Workflow that iCal would log in to MyMaps in Google, and link with the location to the actual date. Does anyone

  • How do I manually synch itunes to my iPhone ?

    Hi I have an iphone 5 and macbook pro with all the software updates done inc IOS7 and want to be able to plug my iphone in to my macbook and manually sort and load up specific songs. I used to be able to see how to do it when I used my old 3G with my