QUESTION 107- SYS and SYSTEM users can always bypass any existing Oracle Data Redaction policies

最新推荐文章于 2021-06-16 21:12:20 发布
最新推荐文章于 2021-06-16 21:12:20 发布
阅读量192 收藏
点赞数
分类专栏: 060
版权声明:本文为博主原创文章,遵循 CC 4.0 BY-SA 版权协议,转载请附上原文出处链接和本声明。
本文链接:https://blog.csdn.net/jisen_huang/article/details/116674244
版权

A redaction policy was added to the SAL column of the SCOTT.EMP table:
BEGIN
DBMS_REDACT.ADD_POLICY(
OBJECT_SCHEMA => 'SCOTT',
OBJECT_NAME => 'EMP',
POLICY_NAME => 'SCOTT_EMP',
COLUMN_NAME => 'SAL',
EXPRESSION => 'SYS_CONTEXT (''SYS_SESSION_ROLES'',''MGR'') = ''FALSE'');
END;
/
All users have their default set of system privileges.
For which three situations will data not be redacted? (Choose three.)
所有用户都有其默认的系统权限集。
对于哪三种情况,数据将不被编辑(选择三个。)
A. SYS sessions, regardless of the roles that are set in the session
A.SYS会话,而不考虑在会话中设置的角色
B. SYSTEM sessions, regardless of the roles that are set in the session
B.系统会话,而不考虑在会话中设置的角色
C. SCOTT sessions, only if the MGR role is set in the session
D. SCOTT sessions, only if the MGR role is granted to SCOTT
D.SCOTT会话,仅当MGR角色被授予SCOTT时
E. SCOTT sessions, because he is the owner of the table
F. SYSTEM session, only if the MGR role is set in the session
Correct Answer: ABD


Both users SYS and SYSTEM automatically have the EXEMPT REDACTION POLICY system privilege.
(SYSTEM has the EXP_FULL_DATABASE role, which includes the EXEMPT REDACTION POLICY system privilege.) This means that the SYS and SYSTEM users can always bypass any existing Oracle Data Redaction policies, and will always be able to view data from tables (or views) that have Data Redaction policies defined on them

黄继生 jisen
关注
  • 0
    点赞
  • 0
    收藏
    觉得还不错? 一键收藏
  • 0
    评论
专栏目录
hikvision_CVE-2017-7921_auth_bypass_config_decryptor-main.zip
05-20
标题 "hikvision_CVE-2017-7921_auth_bypass_config_decryptor-main.zip" 指向的是一个与海康威视(Hikvision)设备相关的安全漏洞,具体是CVE-2017-7921认证绕过漏洞。这个压缩包可能包含一个工具或指南,用于解析...
QUESTION 77、数据编写(Redaction
jisen_huang的专栏
03-02 364
You execute the following piece of code with appropriate privileges: BEGIN DBMS_REDACT.ADD_POLICY( OBJECT_SCHEMA => 'SCOTT', OBJECT_NAME => 'EMP', POLICY_NAME => 'SCOTT_EMP', COLUMN_NAME => 'SAL', FUNCTION_TYPE => DBMS_REDACT.FULL, EXPRESSIO
Oracle Data Redaction数据加密
cuibaye0692的博客
12-26 361
1.Oracle Redaction概述 Oracle Data RedactionOracle安全加密类的高级功能,可用于对于敏感数据的加密处理,加密配置处理均在Oracle层面实现。这是一项和安全相关的技...
NO.16-25
u012887743的博客
06-16 1226
NO.16 You administer an online transaction processing (OLTP) system whose database is stored in Automatic Storage Management (ASM) and whose disk group use normal redundancy. One of the ASM disks goes...
QUESTION 152-Oracle Data Redaction
jisen_huang的专栏
06-16 152
You must configure Oracle Data Redaction for the EMP table to satisfy the following requirements: - RANDOM redaction on the SAL and COMM columns - PARTIAL redaction on the HIREDATE column - FULL redaction on the MGR column What would you define to
级联授权中role中的权限不能单独的抽取出来授予别的用户
cuichao5297的博客
09-23 119
View the Exhibit to observe the privileges granted to the MGR_ROLE role. The SCOTT user has beenwww.supportcenter....
AsiaSecWest-2018-Chakra-vulnerability-and-exploit-bypass-all-system-mitigation:Chakra漏洞和利用漏洞绕过所有系统缓解措施
05-14
**Chakra漏洞与利用:绕过系统缓解措施详解** Chakra是Microsoft Edge浏览器中的JavaScript引擎,负责处理Web页面上的脚本执行。2018年,AsiaSecWest会议上的一场演讲详细介绍了Chakra中存在的一些漏洞以及如何巧妙...
CVE-2023-32315-Openfire-Bypass-main.zip
最新发布
07-17
这个安全漏洞被称为“Openfire Bypass”,它可能导致敏感信息泄露、服务拒绝或其他恶意攻击。 **漏洞概述** CVE-2023-32315 是一个认证绕过漏洞,允许未经授权的攻击者在没有正确凭证的情况下访问受保护的系统资源...
bypass-paywalls-chrome-master_bypass_sitetemplate_
09-29
Bypass website paywalls
bypass-paywalls-chrome-clean-magnolia1234:绕过Paywalls Chrome Clean(GitLab代理)
03-31
解压缩该文件,您应该有一个名为bypass-paywalls-chrome-clean-master的文件夹。 将文件夹移动到计算机上的永久位置(安装后请勿删除该文件夹)。 转到扩展程序页面( chrome://extensions或edge://extension
ocp 1Z0-042 121-178题解析
weixin_34406061的博客
02-27 255
121. You want to create a new optimized database for your transactional production environment to be used by a financial application. While creating the database, you want the Oracle software to take ...
oracle redact加密介绍和详细步骤
m0_37857602的博客
08-16 2587
环境:oracle 11.2.0.4 一、     1. Oracle Data Redaction介绍 Oracle高级安全新组件,其作用是限制SQL语句的返回结果样式,对于特定的用户可以限制某些字段显示被自动改写过的值。 说明:不能对syssystem用户进行数据的redact。因为他们都有EXP_FULL_DATABASE这个角色,而这个角色又包含了EXEMPT REDACTION
说说sys_context函数
ciqu9915的博客
02-18 442
sys_context函数是Oracle提供的一个获取环境上下文信息的预定义函数。该函数用来返回一个指定namespace下的parameter值。该函数可以在SQL和PL/SQL语言中使用。 sys_con...
20151211 OCP 047 40-60
gumengkai的博客
12-11 367
41.view the exhibit and examine the structure of the emp table .you executed the following command to add a primary key to the  emp table ; alter table emp add constraint emp_id_pk primary key(emp_i
oracle11g OCP 认证 1Z0-053考试笔记3
wlbzy的专栏
11-24 1万+
202.In which two aspects 方面 does hot patching 热补丁differ from conventional常规的 patching? (Choose two.) A. It consumes more memory compared with conventional patching 与常规补丁比较消耗更多的内存 D. It does not req
SYS_CONTEXT
文档搬运工
03-12 878
原文地址:https://docs.oracle.com/cd/E11882_01/server.112/e41084/functions184.htm#SQLRF06117SYS_CONTEXTSyntaxDescription of the illustration ''sys_context.gif''PurposeSYS_CONTEXT returns the value of param...
oracle 12配置安全与更新,Oracle 12c 数据库安全核心技术讨论
weixin_28989055的博客
04-06 586
Oracle AdvancedSecurity新功能 =>Oracle Data RedactionOracle Data Redaction对应用户权限的实时访问控制根据用户的权限以及客户端信息,Redaction实时数据修正应用代码代表在不必要的数据库中完成列访问的控制根据客服中心以及技术支持的职责不同,对访问客户信息进行控制,以及控制表示对应PCIDSS的信用卡编号、控制应用开发者的直...
Oracle OCP 1z0-052 2018年9月最新考过的题库分享-3
热门推荐
技术=勤奋+思考
09-29 1万+
1. Which four statements are true about truncating a table? A) Any insert triggers for the table will be executed. B) Any of the table’s indexes are also truncated. C) Any delete triggers for the tabl...
OCP 1Z0 052 158
有教无类的专栏
06-22 1536
158. You want to create a role to meet these requirements:  1: The role is to be protected from unauthorized usage.  2: The password of the role is not to be embedded in the application source code
husky > pre-commit hook failed (add --no-verify to bypass)
06-28
这句话的意思是:husky > pre-commit hook 失败了(添加 --no-verify 来绕过)。 其中,husky 是一个 Git 钩子管理工具,pre-commit hook 是其中的一个钩子,用于在提交代码前执行一些操作,比如代码格式化、代码...

“相关推荐”对你有帮助么?

  • 非常没帮助
  • 没帮助
  • 一般
  • 有帮助
  • 非常有帮助
提交
评论
添加红包

请填写红包祝福语或标题

红包个数最小为10个

红包金额最低5元

当前余额3.43前往充值 >
需支付:10.00
成就一亿技术人!
领取后你会自动成为博主和红包主的粉丝 规则
hope_wisdom
发出的红包
实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、付费专栏及课程。

余额充值