Oracle Consulting Oracle Training Oracle Support Development
Home
Catalog
Oracle Books
SQL Server Books
IT Books
Job Interview Books
eBooks
Rampant Horse Books
911 Series
Pedagogue Books

Oracle Software
image
Write for Rampant
Publish with Rampant
Rampant News
Rampant Authors
Rampant Staff
 Phone
 800-766-1884
Oracle News
Oracle Forum
Oracle Tips
Articles by our Authors
Press Releases
SQL Server Books
image
image

Oracle 11g Books

Oracle tuning

Oracle training

Oracle support

Remote Oracle

STATSPACK Viewer

Privacy Policy

 

   
 

Oracle Tips by Burleson

Chapter 11 Oracle Fine Grained Auditing

'A8D63820782A4AC510124A64311D1ABC3F6E07429558BE88'
))

Note the long key is supplied by the application, along with the Domain Name. The result of the above call is placed in a variable, and this variable is placed in the Client Identifier using SECUSER.SET_CLIENT_ID procedure.

If the domain name is PROLIGENCE.COM, the value will look something like:

5E56F606BF398ECF3442BE6708BEBF21

which probably means nothing when seen from v$session, or from the Fine Grained Auditing tables and views. However, if there is a need to uncover which domain name was used, we could use the function:

select  get_decrypted_value(
    '5E56F606BF398ECF3442BE6708BEBF21',
    hextoraw(
'A8D63820782A4AC510124A64311D1ABC3F6E07429558BE88'
    ))
from dual;

It returns PROLIGENCE.COM.

Notice, only the application has the key value hard coded inside it, or somehow placed via some sort of table owned by SECUSER; not known to the regular users. Even if a regular user connects as APPUSER and
 

The above text is an excerpt from the bestselling book: Oracle Privacy Security Auditing It's only $39.95 and has an download of working security scripts:

 

This is the only authoritative book on Oracle Security, Oracle Privacy, and Oracle Auditing written by two of the world’s leading Oracle Security experts.

This indispensable book is only $39.95 and has an download of working security scripts:

 

http://rampant-books.com/book_2003_2_audit.htm

 


Download your Oracle scripts now:

www.oracle-script.com

The definitive Oracle Script collection for every Oracle professional DBA

 

Linux Oracle commands syntax poster

ION Oracle tuning software

Oracle data dictionary reference poster



Oracle Forum

BC Oracle consulting support training

BC remote Oracle DBA   

 

   

 Copyright © 1996 -2016 by Burleson. All rights reserved.


Oracle® is the registered trademark of Oracle Corporation. SQL Server® is the registered trademark of Microsoft Corporation. 
Many of the designations used by computer vendors to distinguish their products are claimed as Trademarks