安全-权限-Oracle自带用户

①Sysdba和dba的区别

新建时给的是系统权限sysdba,

后面使用到该用户的时候不能以normal状态登录plsql,

因为没有给用户赋予创建session的权限。只要用sys登录

grant connect,resource to xwm 给用户赋权就行了

dba是Oracle里的一种对象,Role 和User一样,是实实在在存在在Oracle里的物理对象,而sysdba是指的一种概念上的操作对象,在Oracle数据里并不存在。

所以说这两个概念是完全不同的。

dba是一种role对应的是对Oracle实例里对象的操作权限的集合,而sysdba是概念上的role是一种登录认证时的身份标识而已。

SYSDBA不是权限,当用户以SYSDBA身份登陆数据库时,登陆用户都会变成SYS。

sysdba身份登陆可以打开,关闭数据库,创建SPFILE,对数据库进行恢复操作等,而这些是DBA角色无法实现的。

Oracle自带用户

以下这些账户有的为了管理目的、有些为了数据库额外的功能、有些为了示例而存在。如果你启用了一些比较偏的功能还会自动新增一些用户,比如标签安全性、数据库保险箱啊等等。

这些账户每个你Google一番都能讲一个故事。。。

账户和访问表没有直接的关系,权限才是,拿SELECT ANY TABLE(查看任何表)为例,看看谁能查看任何表:

SQL> select grantee from dba_sys_privswhere privilege=‘SELECT ANY TABLE‘;

oracle中的帐户分为两类:

一类是必需的帐户

一类是存储各种应用的帐户

【】SYS   安装时用户指定/CHANGE_ON_INSTALL

描述:数据库管理帐户/执行数据库的管理任务,实例的数据字典都在SYS下/超级用户,老大

Recreation Script:$ORACLE_HOME/rdbms/admin/sql.bsq.Recover from backup or recreate the database.

Safe To Remove:No

Purpose:Anaccount used to perform. database administration tasks. Password is created atinstallation or database creation time.

【】SYSMAN    OEM_TEMP/manager

描述:企业管理器帐户

Recreation Script:Createdas part of the dbconsole or Enterprise Manager build.

Safe To Remove:Yes

Purpose:Theaccount used to perform. Oracle Enterprise Manager database administrationtasks. The SYS and SYSTEM accounts can also perform. these tasks. Password iscreated at installation or database creation time.

【】SYSTEM    安装时用户指定

描述:数据库管理帐户/用于执行数据库管理任务,有少量的实例对象/权限也非常高,但是不具备以下权限:ALTER DATABASE LINK/  ALTERPUBLIC DATABASE LINK/  EXEMPT ACCESSPOLICY/  EXEMPT IDENTITY POLICY/  SYSDBA/ SYSOPER。其中SYSDBA和SYSOPER还能启动关闭数据库实例,所以SYSTEM当然不能启动关闭数据库实例了。

Recreation Script:$ORACLE_HOME/rdbms/admin/sql.bsq.Recover from backup or recreate the database.

Safe To Remove:No

Purpose:A defaultgeneric database administrator account for Oracle databases. For productionsystems, Oracle recommends creating individual database administrator accountsand not using the generic SYSTEM account for database administrationoperations. Password is created at installation or database creation time.

【】ANONYMOUS  ANONYMOUS

描述:访问http的匿名用户帐户/用于访问ORACLE XML DB知识库的帐户。

Recreation Script:$ORACLE_HOME/rdbms/admin/catqm.sql

Safe To Remove:Yes

Purpose:Accountthat allows HTTP access to Oracle XML DB. It is used in place of theAPEX_PUBLIC_USER account when the Embedded PL/SQL Gateway (EPG) is installed inthe database. EPG is a Web server that can be used with Oracle Database. Itprovides the necessary infrastructure to create dynamic applications. See alsoXDB.

【】CTXSYS    CTXSYS

描述:interMedia Text用户,是MEDIATEXT的用户,有CONNECT\RESOURCE\DBA权限

Recreation Script:$ORACLE_HOME/ctx/admin/ctxsys.sql

Safe To Remove:Yes

Purpose:Theaccount used to administer Oracle Text. Oracle Text enables the building oftext query applications and document classification applications. It providesindexing, word and theme searching, and viewing capabilities for text.

【】DBSNMP    DBSNMP

描述:目录集成平台用户/具有NNECT\RESOUCEHE\SNMPAGENT 权限的角色,可用CATNSMP.SQL脚本删除此用户和角色

Recreation Script:$ORACLE_HOME/rdbms/admin/catsnmp.sql

Safe To Remove:Yes– run $ORACLE_HOME/rdbms/admin/catnsnmp.sql

Purpose:Theaccount used by the Management Agent component of Oracle Enterprise Manager tomonitor and manage the database. Password is created at installation ordatabase creation time.

【】DIP    DIP

描述:目录集成平台的帐户(DIRECTORY INTEGERATION PLATFORM)

Recreation Script:$ORACLE_HOME/rdbms/admin/catdip.sql

Safe To Remove:Yes

Purpose:Theaccount used by the Directory Integration Platform. (DIP) to synchronize thechanges in Oracle Internet Directory with the applications in the database.

【】EXFSYS    EXFSYS

描述:表达式过滤器帐户(EXPRESSIO FILTER)

Recreation Script:$ORACLE_HOME/rdbms/admin/exfsys.sql

Safe To Remove:Yes

Purpose:Theaccount used internally to access the EXFSYS schema, which is associated withthe Rules Manager and Expression Filter feature. This feature enables thebuilding of complex PL/SQL rules and expressions. The EXFSYS schema containsthe Rules Manager and Expression Filter DDL, DML, and associated metadata.

【】MDDATA    MDDATA

描述:oracle空间数据帐户

Recreation Script:$ORACLE_HOME/md/admin/catmd.sql

Safe To Remove:Yes

Purpose:Theschema used by Oracle Spatial for storing Geocoder and router data. See alsoSPATIAL_CSW_ADMIN_USR , SPATIAL_WFS_ADMIN_USR and MDSYS.

【】MDSYS     MDSYS

描述:oracle空间数据媒体管理员/空间数据(SPATIAL)\媒介(INTERMEDIA)\音频(AUDIO)\视频(VIDEO)和图像管理员帐户

Recreation Script:$ORACLE_HOME/ord/admin/ordinst.sql

Safe To Remove:Yes

Purpose:TheOracle Spatial and Oracle Multimedia Locator administrator account. See alsoSPATIAL_CSW_ADMIN_USR , MDDATA and SPATIAL_WFS_ADMIN_USR.

【】MGMT_VIEW  MGMT_VIEW

描述:不拥有任何对象,仅用于查询 SYSMAN 用户对象。安装OMS时自动创建的。

Recreation Script:$ORACLE_HOME/sysman/admin/emdrep/bin/RepManager

Safe To Remove:Yes

Purpose:Anaccount used by Oracle Enterprise Manager Database Control. Password israndomly generated at installation or database creation time. Users do not needto know this password.

【】OLAPSYS    MANGER

描述:用于创建olap元数据/用于创建OLAP元数据的用户。包括OLAP_DBA\RESOURCE\CONNECT角色

Recreation Script:$ORACLE_HOME/olap/admin/amdsys.sql

Safe To Remove:Yes

Purpose:Theaccount that owns the OLAP Catalog (CWMLite). This account has been deprecated,but is retained for backward compatibility.

【】ORDPLUGINS   ORDPLUGINS

描述:ORACLE INTERMEDIA和VIDEO的用户名,有CONNECT和RESURCE角色,与第三方连接

Recreation Script:$ORACLE_HOME/ord/admin/ordinst.sql

Safe To Remove:Yes

Purpose:TheOracle Multimedia user. Plug-ins supplied by Oracle and third-party, formatplug-ins are installed in this schema. Oracle Multimedia enables OracleDatabase to store, manage, and retrieve images, audio, video, DICOM formatmedical images and other objects, or other heterogeneous media data integratedwith other enterprise information. See also ORDSYS and SI_INFORMTN_SCHEMA.

【】ORDSYS   ORDSYS

描述:image管理员/ORACLE INTERMEDIA和VIDEO的用户名,有CONNECT和RESOURCE角色

Recreation Script:$ORACLE_HOME/ord/admin/ordinst.sql

Safe To Remove:Yes

Purpose:TheOracle Multimedia administrator account. See also ORDPLUGINS and SI_INFORMTN_SCHEMA.

【】OUTLN    OUTLN

描述:拥有connect和resource角色

Recreation Script:$ORACLE_HOME/rdbms/admin/sql.bsq.Recover from backup or recreate the database.

Safe To Remove:No

Purpose:Theaccount that supports plan stability. Plan stability prevents certain databaseenvironment changes from affecting the performance characteristics ofapplications by preserving execution plans in stored outlines. OUTLN acts as arole to centrally manage metadata associated with stored outlines.

【】SCOTT    Tiger

描述:简单的样例帐户

Recreation Script:$ORACLE_HOME/rdbms/admin/utlsampl.sql

Safe To Remove:Yes

Purpose:Anaccount used by Oracle sample programs and examples.

【】HR   hr

描述:简单的样例帐户

Recreation Script:$ORACLE_HOME/demo/schema/human_resources/hr_main.sql

Safe To Remove:Yes– run $ORACLE_HOME/demo/schema/drop_sch.sql

Purpose:Theaccount that owns the Human Resources schema included in the Oracle SampleSchemas. See also BI, OE, SH, IX and PM.

【】SI_INFORMTN_SCHEMA    oracleineterMedia,video用户

描述:静止图像标准浏览帐户

Recreation Script:$ORACLE_HOME/ord/admin/ordinst.sql

Safe To Remove:Yes

Purpose:Theaccount that stores the information views for the SQL/MM Still Image Standard.See also ORDPLUGINS and ORDSYS.

【】WK_TEST    WK_TEST

描述:同wksys/管理ORACLE 10g ULTRASEARCH的帐户,和WKSYS有一样的作用

Recreation Script:$ORACLE_HOME/ultrasearch/admin/wk0csys.sql

Safe To Remove:Yes

Purpose:Theinstance administrator for the default instance, WK_INST. After unlocking thisaccount and assigning this user a password, then the cached schema passwordmust also be updated using the administration tool Edit Instance Page. UltraSearch provides uniform. search-and-location capabilities over multiplerepositories, such as Oracle databases, other ODBC compliant databases, IMAPmail servers, HTML documents managed by a Web server, files on disk, and more.See also WKSYS

【】WKPROXY

描述:ORACLE 10g与代理服务器有关的帐户

Recreation Script:$ORACLE_HOME/ultrasearch/admin/wk0csys.sql

Safe To Remove:Yes

Purpose:Anadministrative account of Application Server Ultra Search.

【】WKSYS     WKSYS

描述:同wk_test/管理ORACLE 10g AS ULTRASEARCH帐户,与WK_TEST有一样的作用

Recreation Script:$ORACLE_HOME/ultrasearch/admin/wk0csys.sql

Safe To Remove:Yes

Purpose:AnUltra Search database super-user. WKSYS can grant super-user privileges toother users, such as WK_TEST. All Oracle Ultra Search database objects areinstalled in the WKSYS schema. See also WK_TEST

【】WMSYS    WMSYS

描述:工作空间管理帐户/工作实景管理的帐户

Recreation Script:$ORACLE_HOME/rdbms/admin/owmctab.plb

Safe To Remove:Yes

Purpose:Theaccount used to store the metadata information for Oracle Workspace Manager.

【】XDB    CHANGE_ON_INSTALL

描述:ORACLE 10G XML DB帐户

Recreation Script:$ORACLE_HOME/rdbms/admin/catqm.sql

Safe To Remove:Yes

Purpose:Theaccount used for storing Oracle XML DB data and metadata. See also ANONYMOUS.

【】ORACLE_OCM

描述:Oracle预定义的非管理员用户

Recreation Script:$ORACLE_HOME/rdbms/admin/catocm.sql

Safe To Remove:Yes

Purpose:Thisaccount contains the instrumentation for configuration collection used by theOracle Configuration Manager.

【】BI

描述:

Recreation Script:$ORACLE_HOME/demo/schema/bus_intelligence/bi_main.sql

Safe To Remove:Yes-run$ORACLE_HOME/demo/schema/drop_sch.sql

Purpose:Theaccount that owns the Business Intelligence schema included in the OracleSample Schemas. See also HR, OE, SH, IX and PM.

【】OE

描述:

Recreation Script:$ORACLE_HOME/demo/schema/order_entry/oe_main.sql

Safe To Remove:Yes– run $ORACLE_HOME/demo/schema/drop_sch.sql

Purpose:Theaccount that owns the Order Entry schema included in the Oracle Sample Schemas.See also BI, HR, SH, IX and PM.

【】IX

描述:

Recreation Script:$ORACLE_HOME/demo/schema/info_exchange/ix_main.sql

Safe To Remove:Yes– run $ORACLE_HOME/demo/schema/drop_sch.sql

Purpose:Theaccount that owns the Information Transport schema included in the OracleSample Schemas. See also BI, HR, OE, SH and PM.

【】PM

描述:

Recreation Script:$ORACLE_HOME/demo/schema/product_media/pm_main.sql

Safe To Remove:Yes– run $ORACLE_HOME/demo/schema/drop_sch.sql

Purpose:Theaccount that owns the Product Media schema included in the Oracle SampleSchemas. See also BI, HR, OE, SH and IX.

【】SH

描述:

Recreation Script:$ORACLE_HOME/demo/schema/sales_history/sh_main.sql

Safe To Remove:Yes– run $ORACLE_HOME/demo/schema/drop_sch.sql

Purpose:Theaccount that owns the Sales History schema included in the Oracle SampleSchemas and is only available for Enterprise Edition installations. See alsoBI, HR, OE, IX and PM.

【】APEX_030200

描述:

Recreation Script:$ORACLE_HOME/apex/apexins.sql

Safe To Remove:Yes

Purpose:Partof the Oracle Application Express Suite - (Oracle APEX, previously named OracleHTML DB) which is a freeware software development environment. It allows a fastdevelopment cycle to be achieved to create web based applications. The accountowns the Application Express schema and metadata. See also APEX_PUBLIC_USER andFLOW_FILES.

【】APEX_PUBLIC_USER

描述:

Recreation Script:$ORACLE_HOME/apex/apexins.sql

Safe To Remove:Yes

Purpose:Partof the Oracle Application Express Suite - (Oracle APEX, previously named OracleHTML DB) which is a freeware software development environment. It allows a fastdevelopment cycle to be achieved to create web based applications. Thisminimally privileged account is used for Application Express configuration withOracle HTTP Server and mod_plsql. See also APEX_030200 and FLOW_FILES.

【】APPQOSSYS

描述:

Recreation Script:$ORACLE_ADMIN/rdbms/admin/catqos.sql

Safe To Remove:Yes

Purpose:Usedfor storing/managing all data and metadata required by Oracle Quality ofService Management.

【】FLOWS_FILES

描述:

Recreation Script:$ORACLE_HOME/apex/apexins.sql

Safe To Remove:Yes

Purpose:Partof the Oracle Application Express Suite - (Oracle APEX, previously named OracleHTML DB) which is a freeware software development environment. It allows a fastdevelopment cycle to be achieved to create web based applications. This accountowns the Application Express uploaded files. See also APEX_030200 andAPEX_PUBLIC_USER.

【】OWBSYS

描述:

Recreation Script:$ORACLE_HOME/owb/UnifiedRepos/cat_owb.sql

Safe To Remove:Yes

Purpose:Theaccount for administrating the Oracle Warehouse Builder repository. Access thisaccount during the installation process to define the base language of therepository and to define Warehouse Builder workspaces and users. A datawarehouse is a relational or multidimensional database that is designed forquery and analysis. See also OWBSYS_AUDIT.

【】OWBSYS_AUDIT

描述:

Recreation Script:$ORACLE_HOME/owb/UnifiedRepos/cat_owb.sql

Safe To Remove:Yes

Purpose:Thisaccount is used by the Warehouse Builder Control Center Agent to access the heterogeneousexecution audit tables in the OWBSYS schema.

【】SPATIAL_CSW_ADMIN_USR

描述:

Recreation Script:$ORACLE_HOME/md/admin/sdocswpv.sql

Safe To Remove:Yes

Purpose:TheCatalog Services for the Web (CSW) account. It is used by the Oracle SpatialCSW cache manager to load all record type metadata, and record instances fromthe database into the main memory for the record types that are cached. Seealso SPATIAL_WFS_ADMIN_USR, MDDATA and MDSYS.

【】SPATIAL_WFS_ADMIN_USR

描述:

Recreation Script:$ORACLE_HOME/md/admin/sdowfspv.sql

Safe To Remove:Yes

Purpose:TheWeb Feature Service (WFS) account. It is used by the Oracle Spatial WFS cachemanager to load all feature type metadata, and feature instances from thedatabase into main memory for the feature types that are cached. See alsoSPATIAL_CSW_ADMIN_USR , MDDATA and MDSYS.

【】XS$NULL

描述:

Recreation Script:$ORACLE_HOME/rdbms/admin/sql.bsq.Recover from backup or recreate the database.

Safe To Remove:No

Purpose:Aninternal account that represents the absence of a user in a session. BecauseXS$NULL is not a user, this account can only be accessed by the Oracle Databaseinstance. XS$NULL has no privileges and no one can authenticate as XS$NULL, norcan authentication credentials ever be assigned to XS$NULL.

【】LBACSYS

描述:

Recreation Script:$ORACLE_HOME/rdbms/admin/catlbacs.sql

Safe To Remove:Yes

Purpose:Theaccount used to administer Oracle Label Security (OLS). It is created only whenthe Label Security custom option is installed.

【】ORDDATA

描述:

Recreation Script:$ORACLE_HOME/ord/admin/ordisysc.sql

Safe To Remove:Yes

Purpose:Thisaccount contains the Oracle Multimedia DICOM data model.

【】TSMSYS

描述:Oracle?10g的所有目录上的特点及与此相关的观点/表的新特征是储存在TSMSYS用户下

Recreation Script:

Safe To Remove:

Purpose:

【】DMSYS

描述:Oracle数据挖掘账号

Recreation Script:

Safe To Remove:

Purpose:

时间: 2024-09-30 16:14:44

安全-权限-Oracle自带用户的相关文章

Oracle 创建普通用户,并赋予权限

采用sys or system / manager as sysdba; 连接数据库. 创建普通用户konglin: create user konglin identified by pwd_oracle; 删除用户, drop user konglin; 授予用户登录数据库的权限: grant create session to konglin; 授予用户操作表空间的权限: grant unlimited tablespace to konglin; grant create tablesp

[转]oracle中查看用户权限

本文转自:http://www.cnblogs.com/QDuck/archive/2010/08/11/1797225.html 1.查看所有用户:   select * from dba_users;   select * from all_users;   select * from user_users; 2.查看用户或角色系统权限(直接赋值给用户或角色的系统权限):   select * from dba_sys_privs;   select * from user_sys_priv

Oracle实例、用户、权限和角色

1.数据库的实例:数据库创建后会有一系列为该数据库提供服务的内存空间和后天进程,称为该数据库的实例.每一个数据库至少会有一个实例为其服务.实例中的内存结构称为系统全局区(SGA),系统会根据当前计算机系统的性能给SGA分配非常可观的内存空间. 2.虽然一个Oracle数据库服务器中可以安装多个数据库,但是一个数据库需要占用非常大的内存空间,因此一般一个服务器只安装一个数据库.每一个数据库可以有很多用户,不同的用户拥有自己的数据库对象(比如:数据库表),一个用户如果访问其他用户的数据库对象,必须由

oracle中创建用户、角色、权限、表空间简单使用

一.数据库用户 创建数据库用户 create user 用户名 identified by 密码; 授权 grant 权限名 to 用户名; 查看当前用户权限 select * from session_privs; 移除权限 revoke 权限 session from 用户名; 用户解锁/锁定 alter user 用户名 account unlock/lock;  二.角色 角色:权限组,多种权限的集合,将角色赋予某个用户时即是将其包含权限一次性赋予该用户: 常用系统角色 dba 拥有对数

01-查询Oracle中所有用户信息

[[email protected] ~]# su - oracle [[email protected] ~]$ sqlplus /nolog SQL*Plus: Release 10.2.0.1.0 - Production on Tue Jul 8 21:47:01 2014 Copyright (c) 1982, 2005, Oracle.  All rights reserved. SQL> conn /as sysdba; Connected. 查询Oracle中所有用户信息 1.查

Oracle数据库任何用户密码都能以sysdba角色登入

* 本文相关环境:Windows 10,64位操作系统:Oracle 11gR2:toad for Oracle12.1 最近在学习Oracle数据库,使用Toad for Oracle来查看数据库的信息,发现在以sysdba角色登录数据库时,无论输入什么密码,均可以连接到数据库,以为是数据库又出故障了,带着疑问,查找资料.发现里面有很多的学问,下面简单记述一下. Oracle认证用户有两种方式:操作系统认证与口令认证.操作系统认证也叫本地认证. 操作系统认证:Oracle认为操作系统用户是可靠

oracle查看当前用户信息

一.查看当前用户信息: 1.查看当前用户拥有的角色权限信息:select * from role_sys_privs; 2.查看当前用户的详细信息:select * from user_users; 3.查看当前用户的角色信息:select * from user_role_privs; 总结:ORACLE中数据字典视图分为3大类,用前缀区别,分别为:USER,ALL 和 DBA, 许多数据字典视图包含相似的信息. USER_*:有关用户所拥有的对象信息,即用户自己创建的对象信息. ALL_*:

oracle 11g系列 用户管理实验报告

Oracle 数据库用户管理 在数据库中各种对象被以用户(方案)的方式组织管理 在创建对象和访问对象前,首先创建对象的拥有者---用户 用户有相关的属性,有些必须明确设置,有些可以用默认值 下面是用户的相关属性 --用户名 --口令 --默认表空间 --临时表空间 --账户状态 --空间配额 --概要文件 其中用户名和口令是必须要设置的 数据库当中的对象是一schema的方式组织管理的 数据库当中存在哪些类型的对象 对象是放在user下,通常称之为用户下的对象,又称作schema. 模式对象指的

oracle查询所有用户表的表名、主键名称、索引、外键等

1.查找表的所有索引(包括索引名,类型,构成列): select t.*,i.index_type from user_ind_columns t,user_indexes i where t.index_name = i.index_name and t.table_name = i.table_name and t.table_name = 要查询的表 2.查找表的主键(包括名称,构成列): select cu.* from user_cons_columns cu, user_constr