Which has the higher priority in your organization: Deploying a new database or securing the ones you already have?
Looking for a website, and resources, dedicated solely to securing Oracle databases? Check out DBSecWorx.
Purpose
Grants the privileges needed by a user to be an administrator for Xstreams Optionally generates a script whose execution has the same effect.
AUTHID
CURRENT_USER
Dependencies
ALL_USERS
DBMS_STANDARD
DBMS_XSTREAM_ADM_UTL
DBMS_ASSERT
DBMS_STREAMS_AUTH
DBMS_XSTREAM_AUTH_IVK
DBMS_LOGREP_UTIL
DBMS_UTILITY
Documented
Yes
First Available
Not Known
Security Model
Owned by SYS with no privileges granted.
The documentation states that the privilege is granted to the EXECUTE_CATALOG_ROLE but a query of the data dictionary does not substantiate that claim. A revoke from EXECUTE_CATALOG_ROLE is coded into c1201000.sql.
Either grants the privileges needed by a user to be an XStream administrator directly, or generates a script that grants privileges
dbms_xstream_auth.grant_admin_privilege(
grantee IN VARCHAR2,
privilege_type IN VARCHAR2 DEFAULT '*',
grant_select_privileges IN BOOLEAN DEFAULT FALSE,
do_grants IN BOOLEAN DEFAULT TRUE,
file_name IN VARCHAR2 DEFAULT NULL,
directory_name IN VARCHAR2 DEFAULT NULL,
grant_optional_privileges IN VARCHAR2 DEFAULT NULL,
container IN VARCHAR2 DEFAULT 'CURRENT');
Either revokes XStream administrator
privileges from a user directly, or generates a script that revokes privileges
dbms_xstream_auth.revoke_admin_privilege(
grantee IN VARCHAR2,
privilege_type IN VARCHAR2 DEFAULT '*',
revoke_select_privileges IN BOOLEAN DEFAULT FALSE,
do_revokes IN BOOLEAN DEFAULT TRUE,
file_name IN VARCHAR2 DEFAULT NULL,
directory_name IN VARCHAR2 DEFAULT NULL
revoke_optional_privileges IN VARCHAR2 DEFAULT NULL,
container IN VARCHAR2 DEFAULT 'CURRENT');