 |
|
Oracle Tips by Burleson |
Chapter 11 Oracle Fine Grained Auditing
'A8D63820782A4AC510124A64311D1ABC3F6E07429558BE88'
))
Note the long key is supplied by the
application, along with the Domain Name. The result of the above
call is placed in a variable, and this variable is placed in the
Client Identifier using SECUSER.SET_CLIENT_ID procedure.
If the domain name is PROLIGENCE.COM, the value
will look something like:
5E56F606BF398ECF3442BE6708BEBF21
which probably means nothing when seen from
v$session, or from the Fine Grained Auditing tables and views.
However, if there is a need to uncover which domain name was used,
we could use the function:
select get_decrypted_value(
'5E56F606BF398ECF3442BE6708BEBF21',
hextoraw(
'A8D63820782A4AC510124A64311D1ABC3F6E07429558BE88'
))
from dual;
It returns PROLIGENCE.COM.
Notice, only
the application has the key value hard coded inside it, or somehow
placed via some sort of table owned by SECUSER; not known to the
regular users. Even if a regular user connects as APPUSER and
The above text is
an excerpt from
the bestselling book:
Oracle
Privacy Security Auditing.
It's only $39.95 and has an
download of working security scripts:
This is the only authoritative
book on Oracle Security, Oracle Privacy, and Oracle Auditing written
by two of the world’s leading Oracle Security experts.
This indispensable book is only $39.95 and has an
download of working security scripts:
http://rampant-books.com/book_2003_2_audit.htm
|
Download your Oracle scripts now:
www.oracle-script.com
The
definitive Oracle Script collection for every Oracle professional DBA
|
|
