Restict access to SQLNET.ORA, LISTENER.LOG, SQLNET.LOG to only Administrators.

Hi,

        I need to secure the following files,  SQLNET.ORA, LISTENER.LOG, SQLNET.LOG on our Oracle db. Only Admins, DBA's and SYSTEM accounts should be able to access. I checked our system and users are listed as having read write and execute. If I revoke all permissions for local users to these files, will this "break" their functionality in Oracle? Do regular users need these files to write to?

THanks, MIssyMadi
missymadiAsked:
Who is Participating?
 
Mark GeerlingsConnect With a Mentor Database AdministratorCommented:
If you are talking about these files in the Oracle_home on the database server itself, no, regular users don't need any access to these files at all.  They usually don't need any access to other files or directories in the Oracle_home on the server either!

If they have local Oracle clients on their own PC, they will need access to sqlnet.ora and tnsnames.ora on their client, but not on the server.
0
 
Dave HoweConnect With a Mentor Software and Hardware EngineerCommented:
you will need only that the account used to run the sql listener (usually local system) and admins have access - there is no need for users to have read access (although no real harm there either). Users and the listener need no write access to the .ora file, which should be read only even for the listener.
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.