Prevent user from downloading data

Hi folks,
I am currently exploring SQL Developer. I have this problem and hope u folks can help me.
Currently, I am trying to prevent users that have access to the database from downloading ALL the data in the database, esp in the data window of the tables, user can easily right click and export the data into csv files etc. I was wondering if this can be disabled.
Would it be disabled from the software i.e. sql developer or has it got something to do with the role and privileges that I need to set with the account??
Any advice is appreciated.
Thanks!

The first question that comes to my mind is that if you are that worried about your users accessing data and copying it off then is SQL*Developer really a tool you want to be giving them access to. As others have stated, if the users have access via SQL*Plus then they can spool off the data to files. There are many other tools they could use to extract the information (MS-Access, MS-Query (part of Excel), JDeveloper &c, they could even write their own tool if they so wished).
You either trust your users in which case SQL*Developer isn't a problem or you don't which means that you have to deal with more issues than just SQL*Developer. If there are certain fields that you don't want your users to be able to see but they need to access the table then you could, for example, deny them access to the table but create a view that excludes the fields you don't want them to see or use encryption/obfuscation from your application on those fields.
Also, if you don't trust your users, you really need to talk to your HR department about hiring practices and salaries. Your company may be lax in it's hiring (hiring untrustwothy people) or not paying your staff enough (the less you pay yopur staff the easier they are to tempt).
Stephen

Similar Messages

  • Prevent user from download my PDF file on JSP page

    I'm developing a web application using JSP, html, and javascript. I would like to prevent user from download my PDF file and only able to open on browser and read.
    How can i do that?
    Thanks!

    opening and reading involves a download.
    So i dont think you cant prevent that.

  • Web Gallery: Preventing Users from Downloading Photos

    Hi,
    Ive recently uploaded a web gallery (wedding pictures) from iPhoto and I need to secure it. So far Ive password protected the web gallery, so that it is not accessible to the public. Ive also checked the option to prevent people from downloading pictures.
    When I login to the Gallery, I find the "Download" button for each picture is greyed out, but then there is nothing stopping me from right-clicking on the image and saving it to the hard drive. Is there something Im missing here, or is this a bug in the Web Gallery?
    Mark

    Mark:
    As already pointed out there's no way from stopping viewers from taking screenshots of your photos. You can, however, add a watermark to your photos to identify the owner. You can use an image editor like Photoshop Elements (used in the example) or one of the many watermarking applications available. Go to VersionTracker.com and do a search for watermark to find the various candidates.
    TIP: For insurance against the iPhoto database corruption that many users have experienced I recommend making a backup copy of the Library6.iPhoto database file and keep it current. If problems crop up where iPhoto suddenly can't see any photos or thinks there are no photos in the library, replacing the working Library6.iPhoto file with the backup will often get the library back. By keeping it current I mean backup after each import and/or any serious editing or work on books, slideshows, calendars, cards, etc. That insures that if a problem pops up and you do need to replace the database file, you'll retain all those efforts. It doesn't take long to make the backup and it's good insurance.
    I've created an Automator workflow application (requires Tiger), iPhoto dB File Backup, that will copy the selected Library6.iPhoto file from your iPhoto Library folder to the Pictures folder, replacing any previous version of it. It's compatible with iPhoto 08 libraries and Leopard. iPhoto does not have to be closed to run the application, just idle. You can download it at Toad's Cellar. Be sure to read the Read Me pdf file.

  • How to prevent users from saving data in pdf

    I have created several new pdfs for my communications center and would like to know how I can have these documents to be filled out but not have the info saved by the users?  I dont want the original document to be lost because someone accidentally saved the info they were inputing into it.  The forms I have created already have a print button at the top right corner so that is all I want the users to be able to do, fill it out, print it out, then close out original document without saving.

    You can't prevent it absolutely, but there are some things you can try to minimize the problem, such as:
    1. Provide a reset form button that the user can click to clear all of the fields, either with a Reset Form action or the resetForm JavaScript method.
    2. Reset the form using JavaScript in the Document Will Save event.
    3. Have the users set the file to read-only in the file system.

  • How to prevent users from saving and emailing intranet documents externally

    Someone in our company needs to upload a pdf to our sharepoint intranet site for internal-only use. How can I prevent users from downloading it and emailing it externally?
    I mean, a user could screenshot it I guess, but I need to give management a due diligence answer.

    You would need to look into a reverse proxy/firewall that had the ability to block access based on content. This isn't something you can accomplish out of the box with SharePoint (even with AD RMS).
    Trevor Seward
    Follow or contact me at...
    &nbsp&nbsp
    This post is my own opinion and does not necessarily reflect the opinion or view of Microsoft, its employees, or other MVPs.

  • Is there any way to prevent users from ship confirming on a particular date?

    Hello All,
    We have a requirement to prevent users from ship confirming on a particular date. This is due to they are performing Annual Physical Inventory.
    Is it possible to restrict users performing shipping transactions on this particular date?
    I have tried adding exception to the existing Calendar set at org level and there is no customer specific Calendar defined, however it is still allowing me to perform ship confirm.
    Please let me know if you have any suggestion on this requirement.
    Thanks

    Hi,
    Yes is Possible.
    You can add An Exception in Your Shipping Calender.
    So when Some one tries to ship an Order on that date Oracle will automatically select Next possible date.
    Thanks
    Shameer

  • Prevent user from deleting someone else data

    I have a table
    create table T(
    infoID number primary key,
    info varchar2(4000),
    user varchar2(1)
    and users a,b,c with object priveleges on table T.
    What is the best way to prevent user from deleting someone else data?
    1. Create a view for each user to interacat with ( where user='a') and revoke privileges from table T.
    2. Use procedures or trigers to catch a bad user.
    3. ?

    Leo is certainly correct that VPD will solve the issue you have described. however another option also exists without the need to create a separate view for each user (as you described) or the use of VPD, the option would be to do something like the following.
    create user ownera identified by ownera;
    create user usera identified by usera;
    create user userb identified by userb;
    create user userc identified by userc;
    grant connect, resource to ownera;
    grant create view to ownera;
    grant connect to usera, userb, userc;
    conn ownera/ownera
    create table mytable ( id number primary key,
    userid varchar2(8) not null, mod_date date not null, text varchar2 (100));
    create sequence mytable_seq;
    create or replace trigger biu_mytable_trg
    before insert or update on mytable
    for each row
    begin
         select mytable_seq.nextval into :new.id from dual;
         :new.userid := user;
         :new.mod_date := sysdate;
    end;
    create or replace view v_mytable as
    select * from mytable where userid=user;
    grant select, insert, update, delete on v_mytable to usera, userb, userc;
    try inserting and selecting as the various userX users.
    Good luck.

  • Prevent user from setting a parameter in url. Always use http session variable

    In my xsql page I want to prevent a user from seeing data that he is not allowed to see. I am thinking of implementing this by reading a http session variable (like userid=xxx) to be used in my query. I want to be absolutely sure that the userid variable cannot be set manually by the user, for instance by manipulating the url (like: mypage.xsql?userid=123). How can I do this?

    Sorry guys, already found it. Thanks to a reply from our lead-guru Muench on another post in this forum. Look here for the answer:
    http://download-west.oracle.com/otndoc/oracle9i/901_doc/appdev.901/a88894/adx10xsq.htm#1023490
    Search for "Understanding the Different Kinds of Parameters".

  • How to prevent users from running PRC: Transaction Import from WebADI form?

    Hi,
    We are 12.1.3 and trying to create a workflow to approve Project transactions coming through web ADI before they become effective. To this end, we want to prevent users from running the PRC: Transaction Import from the Web ADI.
    I know that if the checkbox Automatically run transaction import is not checked, the program does not run. But we want to hide this checkbox and not allow the possibility that the program could get triggered.
    To this end, we updated the BNE_INTEGRATORS_B with source='C'. This allows you to edit the integrator from Desktop Integration Manager.
    UPDATE BNE_INTEGRATORS_B SET SOURCE ='C' WHERE  INTEGRATOR_CODE ='PAXTTRXB'
    In the 4th step, where the value for Uploader Parameters is set, we have set boolean value to No. These are the fields on the page:
    Parameter Name: bne:import
    Display Name: Start Transaction Upload
    Data Type: Boolean
    Category: Field
    Default Value: Boolean Flag: No
    Description: start Transaction Import Concurrent Request
    Display Options: Displayed: Unchecked
    Display Options: Enabled: Checked
    Display Options: Required: Checked
    Prompt Left: Automatically submit Transaction import
    Display Type: Check Box
    Maximun Size: 100
    Display Size:100
    Now the checkbox is not appearing for the user to check it, But the program is automatically running when you hit Upload in the WebADI. 

    Hi ,
    Try removing the PRC: Transaction Import Program from the request group for the responsibility used by customers to submit the WebADI and then check if the program launches.
    Regards,
    Raghavan

  • How do I prevent users from being able to update Firmware

    I have several users (14) with iPad 2 and they rely on an in-house developed App. we have yet to test this App on iOS 5.1 and therefore want to avoid any of the users updating the iPads at all cost!
    this question is in two parts:
    How can I prevent users from upgrading firmware themselves short of just asking nicely?
    How can I stop the iPad from automatically downloading the Upgrade when I deploy a Policy using the iPhone Configuration Utility?
    Any advice would be great!

    We've been looking at the AirWatch mdm and have been told it has this capability.  Not sure if it would be justified from an economic standpoint for you, however. 

  • How do I restrict users from downloading?

    I am trying to a create a generic student account on several new iMacs.  I need to prevent students from downloading or installing programs, such as limewire.  I would also like this account to delete all files when the "student" user is logged out,  like the guest account.  Can I just rename the guest account "student"?
    I am sure this is any easy answer.  The Mac's are brand new in our school and I am still trying to figure everything out.  Lovin' it so far.  Thanks for any help!!

    you can create new user account(s), set them to restricted and then use the children protection feature of OSX to enforce a lot of settings to these users.
    You need only 2 items in SystemSettings : 1. Users ( heads icon ) and 2. the Children Protection item ( yellow icon -- I dont know how it is called in english OSX ).

  • To prevent user from droping his own object .

    Dear User
    I have a database user like "aaa" in oracle 7.3.4.0.1 database.i do not want user "aaa" to drop his own schema objects like table and any other objects that he is owner.Do i have any system privilege to stop this user from doing so.User should be able to create objects and modify object but not to drop his own objects.For this purpose i have created a database trigger at database level to stop user "aaa" for doing above action.this trigger is giving me error on creation in oracle 7.3.4.0.1 .But when i tried same trigger in oracle 8i and 9i it work well.In oracle 8i and 9i it is preventing user from droping his own objects but i get other errors also along with raised error in trigger which i want to stop .The error which i am raising in trigger is
    ORA-20001 INVALID COMMAND BUT OTHER TWO ERRORS THAT R RAISED AUTOMATICALLY ARE
    ORA-00604 ERROR OCCURED AT RECURSIVE SQL LEVEL 1
    AND
    ORA-06512 AT LINE 8
    I WANT TO STOP THESE TWO ERRORS .
    PLZ HELP ME IN THIS REGARD AS SOON AS POSSBILE .
    plz tell me is there any system privilege to stop user from droping his own object or any other way along with trigger at database level.
    Thank u.

    Hi
    DBAs can use PRODUCT_USER_PROFILE (in system schema) to disable certain SQL and SQL*Plus commands in the SQL*Plus environment on a per-user basis. SQL*Plus, not Oracle, enforces this security. DBAs can even restrict access to the GRANT, REVOKE, and SET ROLE commands in order to control users' ability to change their database privileges.
    The PRODUCT_USER_PROFILE table enables you to list roles which you do not want users to activate with an application. You can also explicitly disable use of various commands, such as SET ROLE. For example, you could create an entry in the PRODUCT_USER_PROFILE table to:
    read more about this at
    http://download-west.oracle.com/docs/cd/B10501_01/server.920/a90842/ch10.htm#1005648

  • CE10 how to prevent user from view hostrical instance

    hi,
    We are currently using CE10. One of our user used search functionality in enterprise to search for reports start with 'employee' and it came  back with all the crystal reports on the server that  started with employees, even the one the user doesn't have access to.  My greatest concern about this is that users can view historical instance and it is sensitive data.  Does anybody know whether or not this is a bug in CE10?  Is there a patch/fix for this?  Is there any configuration change that I can make to
    prevent users from being able search all the reports on the server rather just their own reports?  Any help is greatly appreciated.
    Regards,
    Susan

    hi,
    I have an EVERYONE group with limited access(view object), and EVERYONE group is added to each folder with NO ACCESS.  If I revoke view object(explicitly denied) privilege from EVERYONE group, do I still need to remove EVERYONE group from each folder?  When I'm at folder level in CMC, I see EVERYONE GROUP added, but when I tried to remove the EVERYONE GROUP, the EVERYONE group is not an option for removal.  What am I missing?
    Thanks for your help!
    Regards,
    Susan Johnson

  • How to prevent user from creating jobs

    Hi,
    we need to prevent user from creating jobs on a dev enviorement. It's a 10.2.0.4 database standard on linux 64bits.
    Their schema has only connect and resource roles. Is there a way to prevent them from creating jobs? In 11g it's the CREATE JOB permission, but in 10g i'm not sure how can i do this.
    Thanks for any ideas!

    On 10g it's probably the CREATE JOB as well.
    http://www.oracle.com/pls/db102/homepage
    Alternatively you could:
    alter system set job_queue_processes=0
    http://download.oracle.com/docs/cd/B19306_01/server.102/b14237/initparams089.htm#REFRN10077

  • Sales Order - Prevent user from creating more that one schedule line

    Hello,
    Is it possible to prevent users from adding lines (rows) in the schedule line tab of VA01/VA02 ? Our requirement is that one item will have one only schedule line, the quantity cannot be split into different dates.
    Regards,
    Joã

    Hi
    There are 2 schedule lines with different dates for a single line item in a sales order because of forward scheduling done by the system
    System does backward scheduling first and if it fails then it does forward scheduling and that is why you find 2 different schedule lines
    In configuration you can restrict the system to do only backward scheduling and stop after that
    I am not infront of SAP now to tell you exactly where is the configuration available
    I think it is  Logistics execution--delivery scheduling
    But This config is definately available in standard system to avoid 2 or more schedule lines for a single line item in a sales order
    But i am not able to understand what is the business logic for such a requirement because i feel it will create a lot of problems
    with this requirement
    Regards
    Raja

Maybe you are looking for