本站中文解释
Oracle视图DBA_UNUSED_SYSPRIVS用于列出未在帐户中使用的系统权限。它可以用来监视可能出现滥用的系统权限,并使数据库更安全。
使用方法:
1. 连接到SYSTEM用户,并执行以下查询:
SELECT Grantee, Privilege FROM DBA_UNUSED_SYSPRIVS;
2. 在结果中,可以看到具有特定权限,但它们未在许可的帐户中使用的帐户列表。可以查看Grantee列,以了解谁具有哪些未使用的权限。
3. 可以继续通过REVOKE语句撤消多余的权限,以使系统更安全,可以执行以下语句:
REVOKE FROM ;
其中是要收回的权限,是未使用的账户。
官方英文解释
DBA_UNUSED_SYSPRIVS lists the system privileges (without privilege grant paths) that are not used for the privilege analysis policies reported by the DBMS_PRIVILEGE_CAPTURE.GENERATE_RESULT procedure.
This view provides access to analyzed privilege records in SYS tables.
You must have the CAPTURE_ADMIN role to access this view.
| Column | Datatype | NULL | Description |
|---|---|---|---|
|
|
|
|
Name of a privilege analysis policy |
|
|
|
Name of the user whose privileges are reported |
|
|
|
|
Name of the role whose unused privileges are reported (for |
|
|
|
|
Unused system privilege |
|
|
|
|
Indicates whether the privilege is granted with the
|
|
|
|
|
The name of the run during which the privilege was reported |
See Also:
-
“DBA_UNUSED_SYSPRIVS_PATH” for privilege grant path information for unused system privileges
-
Oracle Database Security
Guide for more information about privilege analysis -
Oracle Database PL/SQL
Packages and Types Reference for more information about theDBMS_PRIVILEGE_CAPTURE.GENERATE_RESULTprocedure
