Best practice regarding sqlplus access for "common" users?
Hi,
simple setup description:
-one database server (currently 10gR2 if that would make any difference)
-a few other servers with oracle clients, and access to the database
"Normal users" need to be able to run sqlplus from all of these servers. On the database server I need to run $OH/install/changePerm.sh to lighten the permissions so non-dba user can use sqlplus (don't remember right now, but this might also be the case with the client installation).
Anyway, shold I do this to the database HOME, or should I rather make a separate client installation on the database server, and give users access to that more forgiving (file permission wise) HOME instead? Or is it simply no difference, form a security point of view?
simple setup description:
-one database server (currently 10gR2 if that would make any difference)
-a few other servers with oracle clients, and access to the database
"Normal users" need to be able to run sqlplus from all of these servers. On the database server I need to run $OH/install/changePerm.sh to lighten the permissions so non-dba user can use sqlplus (don't remember right now, but this might also be the case with the client installation).
Anyway, shold I do this to the database HOME, or should I rather make a separate client installation on the database server, and give users access to that more forgiving (file permission wise) HOME instead? Or is it simply no difference, form a security point of view?
0