plsql>> LCL>> 返回
项目作者: frankiechapson

项目描述 :
Oracle SQL and PL/SQL solution to controll logins
高级语言: PLSQL
项目地址: git://github.com/frankiechapson/LCL.git
创建时间: 2020-07-17T09:04:05Z
项目社区:https://github.com/frankiechapson/LCL
开源协议:GNU General Public License v3.0
下载


Login Controll for Oracle

Oracle SQL and PL/SQL solution to controll logins

Why?

I have two reasons:

  1. to refuse the unauthorized logins, and
  2. log the attempts

How?

There is a logon trigger which checks the

  • Oracle user
  • OS user
  • IP address of the client
  • Program / Application

If the login allowed then goes on, but if it did not, then logs the data and raise an error.

For DBA roled users the login is allowed all the time despite the trigger is invalid nor raises an error.

There is a table to controll the logins:

  1.   ORACLE_USER             VARCHAR2 (   400 )
  2.   OS_USER                 VARCHAR2 (   400 )
  3.   IP_ADDRESS              VARCHAR2 (   400 )
  4.   PROGRAM                 VARCHAR2 (   400 )
  5.   ENABLED                 CHAR     (     1 )     Y or N

This table contains the valid user/client/program combinations.

The column values will use with LIKE, so it can be pattern.
i.e. “%” means “every” user/IP address/program e.t.c.
But ‘%’,’%’,’%’,’%’,’Y’ means anybody from anywhere, and this overwrites any other rules!
The refused logon data will be logged into LCL_LOG table.

There is an ENABLED column in the LCL_TABLE too, so you can disabled the logins anytime to set this value to “N”.

The whole solution is not too complicated, so see the install script file for more details!