Posts by Alex Gorbachev

Exploiting SYSDBA Invoker Rights Using Trigger on Database

This is a follow up on my previous post about SYSDBA keeping invoker rights when calling PL/SQL procedure. Working on the previous test case a bit more I figured that the same anomaly is observed with triggers. So here is one way to get your PL/SQL code called by a SYSDBA. In this case you need to be able to create trigger on database, i. e. need privileges ADMINISTER DATABASE TRIGGER and CREATE TRIGGER.

Cock & Lion Ale House

Doug Burns has spent 4 weeks in our Ottawa office and now he is back home to Madeline and boys. Yesterday, before he left, we had the lunch at Cock & Lion Ale House:


At the end of my last MySQL post I mentioned strange behavior with GROUP BY and DISTINCT. This MySQL “feature” could save some resources on sorts and aggregates but generally I would avoid it as this is not portable solution. Generally speaking, query output is non-deterministic — it depends on the full table scan implementation and on the physical order of rows in a table. This means that it’s actually a bug and , instead, MySQL should produce and error on those statements.

ORA-07202: sltln: invalid parameter to sltln

I’ve started to use DBCA more and I try to use its template management capabilities. It looks like templates is not the most robust feature of Database Configuration Assistant. Sometimes, there are issues when I want to reuse template. I reviewed the parameters and found that control_files is set to an empty string. Checked Metaclick and, indeed, this error is related to empty control_files parameter.

Calling Definer-Rights Procedure as SYSDBA – Security Hole?

In one of my previous posts I mentioned SYSTEM_PRIVILEGE_MAP view. Taking this thread further, I looked into another nice view – V$ENABLEDPRIVS – showing the privileges enabled for the session at the moment. It should be pretty useful if you decide to add some diagnostics into your application. You might also find it very helpful to call from PL/SQL.

Yes, More and More and Moore… but Different!

We humans are not able to process large amount of precise data. In any human–readable report, we don’t need more than ten or twenty lines of numbers. Every time we look at processes or data more complex that that, we employ simplifications — graph trends, mind–mapping, aggregations, and so on. How will we make computers process information just as humans do? Perhaps we can find the answer inside ourselves if we figure out how our minds work. We recognize images even though our brain is not capable of processing huge amounts of data in milliseconds.

Page 25 of 28« First Page...10...2324252627...Last Page »