Audit

Oracle Database

Audit "a grana fine"

Feature introdotta a partire dalla release del RDBMS 9i, l’audit “a grana fine” estende le capacità di audit di Oracle.. Caratteristiche principali: – l’Audit periodico si può abilitare tramite il parametro AUDIT_TRAIL. FGA non richiede nessuna modifica di parametri. – Le variabili bind Sql vengono catturate di default in FGA – In FGA l’audit è più flessibile quando alcune colonne sono accessibili e una certa condizione è vera. – FGA può essere abilitato e disabilitato temporaneamente. Una volta identificati schema e tabelle da controllare si procede a configurare la policy di audit. Ipotizziamo di voler controllare tutti gli accessi alla Continua a leggere

Oracle Database

Moving Audit Trail Table

Reading the previous article posted on June 3 about enabling auditing in an Oracle Database, I’d like to add some other useful information. Oracle stores all the audit results in the SYS.AUD$ table, as stated in the previous article. But the bad news are that the table is by default in the SYSTEM tablespace: SELECT OWNER, TABLE_NAME, TABLESPACE_NAME FORM DBA_TABLES WHERE TABLE_NAME = ‘AUD$’; OWNER  TABLE_NAME      TABLESPACE_NAME —— ————— —————————— SYS    AUD$            SYSTEM So the risk of having a full SYSTEM tablespace is very high if you plan to enable the audit feature, leading to possible unpredictable errors. The solution Continua a leggere

Oracle Database

Audit

The Oracle RDBMS provides various control functions of the system security. Among these, there is also a function of AUDIT TRAIL that lets you record any activity carried out on the database of interest. The control possibilities are very sophisticated and flexible, but it is necessary to avoid excessive control to avoid needlessly heavy and impossible access checks. Controls POSSIBLE And ‘possible to activate controls aimed at: • specific SQL statement (eg. connect, create table, …), • specific privileges (eg. grant system, …), • operations (select, insert, alter, execute, …) of objects RDBMS. Can be controlled actions that returned errors Continua a leggere