
80
|
Oracle DBA Pocket Guide
Security
Oracle provides a variety of features that can help secure
your database from unauthorized access and can help pro-
tect your data from being seen or manipulated by unau-
thorized users. This section provides information on Oracle’s
major security features: authentication, profiles, privileges,
roles, and auditing.
Authentication
Authentication is the process of identifying and recognizing
authorized users of the database. Oracle security is primarily
based on the concept of individual authorized users, so
authentication is a critical component.
Two system users are created when you install Oracle:
SYS
The schema for SYS contains the base tables and views
used for the data dictionary. You should never change
any of these tables. The SYS user has the DBA role.
(Roles are described in the “Roles” section later in this
book.) The default password for SYS is CHANGE_ON_
INSTALL.
SYSTEM
The SYSTEM username is used to create additional
tables and views for administrative information. The
SYSTEM user has the DBA role. The default password
for SYSTEM is MANAGER.
When you create an Oracle database using the CREATE
DATABASE statement, you can use the USER SYS IDENTI-
FIED BY password and USER SYSTEM IDENTIFIED BY pass-
word clauses to protect access by these powerful pre-created
users.