Security Fix for 7.3.x.x See Doc 1337926.1

This new security patch for 7.3.x.x customers reduces the database priveledges for the Demantra user.

This may cause problems for customers who have customized their Demantra installation.  We are discussing Oracle Patch 12556935.

This is a RDBMS script for revoking unnecessary privileges and granting only the minimum required by Demantra.  This can be considered a Security fix.  The patch can be applied to any Demantra 7.3.0.x or 7.3.1 release. 

This may cause problems for customers who customized their Demantra installation, since you might lose RDBMS privileges that your custom code assumes are available. 

For example, imagine that you have a custom script for loading the Demantra staging tables.  Further imagine that your custom script runs with the Demantra RDBMS user credentials, i.e. logged into the RDBMS as DEMANTRA.  Your custom script copies data from some other RDBMS schema. 

After running Patch 12556935 your custom script may not work, since the Demantra RDBMS user can no longer access the other RDBMS schema.

Comments:

Post a Comment:
  • HTML Syntax: NOT allowed
About

This blog delivers the latest information regarding performance and install/upgrade. Comments welcome

Search

Archives
« April 2014
SunMonTueWedThuFriSat
  
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
   
       
Today