SV-237708r667156_rule
V-237708
SRG-APP-000243-DB-000374
O121-C2-003900
CAT II
10
Restrict accessibility of Oracle system tables and other configuration information or metadata to DBAs or other authorized users.
Review user privileges to system tables and configuration data stored in the Oracle database.
If non-DBA users are assigned privileges to access system tables and tables containing configuration data, this is a finding.
To obtain a list of users and roles that have been granted access to any dictionary table, run the query:
SELECT unique grantee from dba_tab_privs where table_name in
(select table_name from dictionary)
order by grantee;
To obtain a list of dictionary tables and assigned privileges granted to a specific user or role, run the query:
SELECT grantee, table_name, privilege from dba_tab_privs where table_name in
(select table_name from dictionary)
and grantee = '<applicable account>';
V-237708
False
O121-C2-003900
Review user privileges to system tables and configuration data stored in the Oracle database.
If non-DBA users are assigned privileges to access system tables and tables containing configuration data, this is a finding.
To obtain a list of users and roles that have been granted access to any dictionary table, run the query:
SELECT unique grantee from dba_tab_privs where table_name in
(select table_name from dictionary)
order by grantee;
To obtain a list of dictionary tables and assigned privileges granted to a specific user or role, run the query:
SELECT grantee, table_name, privilege from dba_tab_privs where table_name in
(select table_name from dictionary)
and grantee = '<applicable account>';
M
4059