Forum Stats

  • 3,750,460 Users
  • 2,250,181 Discussions
  • 7,866,986 Comments

Discussions

Database User with Only Create Session Privilege is able to access all data dictionary views

sudiptabhaskar
sudiptabhaskar Member Posts: 3 Green Ribbon
edited Jul 22, 2021 9:00PM in Database Security - General

Hello Everyone,

I created user with only "Create Session" Privilege. But I can see that it is able to access all data dictionary views. Is it the default behavior?

SQL> create user bhaskar identified by *******;

User created.


SQL> grant create session to bhaskar;

Grant succeeded.


SQL> conn bhaskar

Enter password:

Connected.


User => BHASKAR has been granted the following privileges

====================================================================

       SYS PRIV => CREATE SESSION grantable => NO


SQL> select count(*) from sys.KU$_TYPE_VIEW;

 COUNT(*)

----------

        0

SQL> select count(*) from sys.v_$BH;

 COUNT(*)

----------

    12579

SQL> select file_name from sys.dba_data_files;

FILE_NAME

--------------------------------------------------------------------------------

/u01/app/oracle/oradata/NONCDB/datafile/o1_mf_system_hp9nptdf_.dbf

/u01/app/oracle/oradata/NONCDB/datafile/o1_mf_sysaux_hp9nqmht_.dbf

/u01/app/oracle/oradata/NONCDB/datafile/o1_mf_users_hp9nr3mg_.dbf

/u01/app/oracle/oradata/NONCDB/datafile/o1_mf_undotbs1_hp9nr2kv_.dbf


4 rows selected.

Best Answer

Answers