Home » RDBMS Server » Security » Preventing end-users from connecting using 3rd party softwares
Preventing end-users from connecting using 3rd party softwares [message #120958] Wed, 25 May 2005 02:22 Go to next message
bijugv
Messages: 2
Registered: May 2005
Junior Member
DB: 9i R2
OS: Sun Solaris

Hi

I've implemented a Virtual Private Database for confidential information. The users are supposed to acces only using the application. Is it possible to prevent users from connectin to the Database using 3rd party tools like TOAD, SQL Navigator and even MSExcel!

Regards
Re: Preventing end-users from connecting using 3rd party softwares [message #120990 is a reply to message #120958] Wed, 25 May 2005 06:00 Go to previous messageGo to next message
Mahesh Rajendran
Messages: 10707
Registered: March 2002
Location: oracleDocoVille
Senior Member
Account Moderator
not possible.
In a logon trigger,You can block a particular application by saying something like,

if toad.exe
block.
else
go.

But someone can rename toad.exe to frog.exe and continue their business.
Anyhow with VPD, you have done what can be possible.
WHy worry about external applications?

Re: Preventing end-users from connecting using 3rd party softwares [message #121056 is a reply to message #120958] Wed, 25 May 2005 10:19 Go to previous messageGo to next message
bijugv
Messages: 2
Registered: May 2005
Junior Member
Thanks Mahesh

Your reply is worth considering. I could build in a table to hold list of valid application that can be used and another table to hold users who can use each application. I can then handle them through the login trigger.

But how correct is that application information in Oracle? Is there any other way that users can fool the system!

FYI: The reason to prevent external application is that users end up using tools to connect into database and extract information without puting valid conditions, thus creating junk reports and then creating confusion on the validity of the data within the database. I want to enforce usage of established application and reports to all end-user purposes.

Regards
Biju.
Re: Preventing end-users from connecting using 3rd party softwares [message #121057 is a reply to message #121056] Wed, 25 May 2005 10:26 Go to previous message
Mahesh Rajendran
Messages: 10707
Registered: March 2002
Location: oracleDocoVille
Senior Member
Account Moderator
>> I could build in a table to hold list of valid application that can be used and another table to hold users who can use each application.
as i said before, this method will not work.
Please go through
http://asktom.oracle.com/pls/ask/f?p=4950:8:::::F4950_P8_DISPLAYID:9312070542748

http://asktom.oracle.com/pls/ask/f?p=4950:8:::::F4950_P8_DISPLAYID:561622956788

[Updated on: Wed, 25 May 2005 10:27]

Report message to a moderator

Previous Topic: Question about granting tables
Next Topic: PL/SQL code for a login/password feature
Goto Forum:
  


Current Time: Fri Mar 29 03:39:30 CDT 2024