Secure Oracle Database link method

I need the syntax for a Oracle Database link that offers the best security if a user needs to link to our database. We would like to be able to control the passwords and the user of the link shouldn't know the passwords of the link or  be able to get into our remote system if they ever got into our building and had access to our PC's
7SoulsData Analyst/Database AdministratorAsked:
Who is Participating?
sdstuberConnect With a Mentor Commented:
it's not so much the link itself then as the user that will log into the database to use the link.
If they user can read$ then he/she can read the passwords.

Similarly, if the account on the remote system has extra privileges then don't let the user use that link at all.

the best way I know of is to create an unauthenticated link.

CREATE DATABASE LINK my_link  USING 'mydatabase';

this creates a private link, so it's only usable to the owner if the user you're interested in isn't the owner, then he/she can't use it.

if you want them to use it, then create it public, or create it under that user's schema.

With a database link like that,  you see it has no user or password.  In that case.  when you use the link  the current users' username and password are sent to the remote system.  So  the user logs in as themself and only as themself.   So they have only the permissions they have if they were to log in to the remote system directly.  If that's no permissions at all, then the link won't work for them.

Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.