Database Administration (MOSC)

MOSC Banner

DML grants to PUBLIC

edited May 20, 2020 5:01AM in Database Administration (MOSC) 3 commentsAnswered

Hi-

This would be indeed a old topic, but I did not find any clear answer on this.

One of the IT users deleted all records from a table in Production. I could confirm he has RO privileges only.

But the hidden thing identified is that dba_rsrc_consumer_group_ privs has a default consumer group granted to PUBLIC and that user's login is using this group. And, the fact is that we have DML grants on that table given to PUBLIC. So I am thinking this is how we could have got the privilege to delete records.

Is there a way we can have another resource group assigned to user to prevent this? I do not want to remove grants from PUBLIC at this moment, as it may break anything in app.

Howdy, Stranger!

Log In

To view full details, sign in to My Oracle Support Community.

Register

Don't have a My Oracle Support Community account? Click here to get started.

Category Leaderboard

Top contributors this month

Instructions for posting

×

1. Select a discussion category from the picklist.


2. Enter a title that clearly identifies the subject of your question.


3. In the body, insert detailed information, including Oracle product and version.


Please abide by the Oracle Community guidelines and refrain from posting any customer or personally identifiable information (PI/CI).


Cloud / Fusion customers - Our Cloud community has moved! Please go to Cloud Customer Connect .


New to My Oracle Support Community? Visit our Welcome Center

MOSC Help Center