今天犯了一个傻,有一个人抄了一个小纸条,上面写道 catalog_role,问我这个视图是干嘛用的,我也不知道,没有针对某些普通用户受过这个角色,后来他问我,catalog是干嘛的,那我当然知道了,catalog是rman可以用到的资料库,于是我的方向就错了,后来上网查了一下,呵呵,纠正了自己的错误:
1. SELECT_CATALOG_ROLE
This role can be granted to users to allow SELECT privileges on data dictionary views.
2.EXECUTE_CATALOG_ROLE
This role can be granted to users to allow EXECUTE privileges for packages and
procedures in the data dictionary.
3.DELETE_CATALOG_ROLE
This role can be granted to users to allow them to delete records from the
system audit table (AUD$).
4.SELECT ANY DICTIONARY
This system privilege allows query access to any object in the SYS schema,
including tables created in that schema. It must be granted individually to each
user requiring the privilege. It is not included in GRANT ALL PRIVILEGES,
nor can it be granted through a role.
Caution: You should grant these roles and the SELECT ANY DICTIONARY system privilege with extreme care, since the integrity of your system can be compromised by their misuse.
参考文献:
Oracle Database
Security Guide
10g Release 1 (10.1)
Part No. B10773-01
来自 “ ITPUB博客 ” ,链接:http://blog.itpub.net/9252210/viewspace-612602/,如需转载,请注明出处,否则将追究法律责任。
转载于:http://blog.itpub.net/9252210/viewspace-612602/