datenbanken iib dbms implementierung chapter 2 basic
play

Datenbanken IIB: DBMS-Implementierung Chapter 2: Basic Oracle - PowerPoint PPT Presentation

Mar 14, 2024 •154 likes •1.04k views

Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown Datenbanken IIB: DBMS-Implementierung Chapter 2: Basic Oracle Architecture and Administration Prof. Dr. Stefan Brass Martin-Luther-Universit at

  1. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown Datenbanken IIB: DBMS-Implementierung Chapter 2: Basic Oracle Architecture and Administration Prof. Dr. Stefan Brass Martin-Luther-Universit¨ at Halle-Wittenberg Wintersemester 2019/20 http://www.informatik.uni-halle.de/˜brass/dbi19/ Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 1/88

  2. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown Objectives After completing this chapter, you should be able to: create users in Oracle. enumerate processes, files, memory structures of the Oracle architecture. explain why delayed writing of changed database blocks is a good idea, and how the logfile protects changes. start and stop the Oracle server, enumerate different system states of the server. Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 2/88

  3. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown Inhalt Creating Users in Oracle 1 Oracle Files 2 Oracle Architecture 3 Startup and Shutdown 4 Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 3/88

  4. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown Object Privileges (1) Access rights in standard SQL are a set of triples: Who can execute which command on which table? GRANT SELECT ON EMP TO SMITH REVOKE INSERT ON DEPT FROM MILLER Actually, they are quadruples: Who has given whom what right on which database object? This is important when rights are revoked. Rights can also be granted “ TO PUBLIC ”. All users, including users created in future. Rights can be given “ WITH GRANT OPTION ”. Then the grantee can grant the right to further users. The owner of a table (the user who created it) automatically holds all rights on it WITH GRANT OPTION . For views this is more complicated. Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 4/88

  5. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown Object Privileges (2) USER_TAB_PRIVS : Grants on objects for which the current user is owner, grantor, or grantee. USER_TAB_PRIVS GRANTEE OWNER TABLE_NAME GRANTOR PRIVILEGE GRANTABLE PUBLIC SCOTT DEPT SCOTT SELECT N SMITH SCOTT EMP SCOTT SELECT Y MILLER SCOTT EMP SMITH SELECT N SMITH SCOTT EMP SCOTT INSERT N I.e. all users have read access to the table DEPT . SMITH got read access to EMP WITH GRANT OPTION , and has given the right to MILLER . In addition, SMITH can append rows to EMP . In contrast to other data dictionary tables, the prefix USER here does not mean that only tables owned by the current user are listed. Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 5/88

  6. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown Object Privileges (3) Columns of USER_TAB_PRIVS : OWNER and TABLE_NAME identify the table. GRANTEE : The user who got the privilege. GRANTOR : The user who gave the privilege. Because of the grant option, not only the owner can be grantor. PRIVILEGE : The right, e.g. ’SELECT’ . GRANTABLE : ’YES’ if right includes grant option. In this way, the SQL GRANT commands are stored in the data dictionary. Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 6/88

  7. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown Object Privileges (4) USER_TAB_PRIVS_MADE is the subset of USER_TAB_PRIVS with OWNER=USER . USER_TAB_PRIVS_RECD is the subset of USER_TAB_PRIVS with GRANTEE=USER . The user might also have access to database objects because of grants to PUBLIC , which are not listed in these tables (but see ALL_TAB_PRIVS ). Unless, of course, they are made by the current user or refer to tables of the current user. Otherwise, the name of the current user is neither OWNER , nor GRANTOR , nor GRANTEE , therefore the grant is not shown. Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 7/88

  8. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown Object Privileges (5) The INSERT and UPDATE right can be given selectively for certain columns. An insert right for only part of the columns means that the other columns cannot be explicitly specified, and thus get their declared default value (or null). USER_COL_PRIVS : Grants that refer to single columns. USER_COL_PRIVS looks like USER_TAB_PRIVS , but has the additional column COLUMN_NAME . Grants for whole tables are not repeated here. USER_COL_PRIVS_MADE , USER_COL_PRIVS_RECD : Subsets with current user as owner/grantee (as above). Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 8/88

  9. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown System Privileges (1) Commands like “ CREATE TABLE ” cannot be restricted with this standard security model. A user who is only supposed to enter data does not need to create new tables. For a secure system, every user should only be able to execute the commands he/she is supposed to execute. Therefore, Oracle has also “system privileges”. Every major DBMS vendor has a to the problem (all different). In contrast to “object privileges”, these refer to the execution of specific commands, not to DB objects. E.g. one needs the system privilege “ CREATE TABLE ” in order to be able to execute this command. Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 9/88

  10. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown System Privileges (2) In order to log into Oracle, one needs the system privilege “ CREATE SESSION ”. An account can be locked by not granting (or revoking) this privilege. It is still possible to access tables, views, etc. under this account via synonyms or “ � User � . � Table � ” (if one has the necessary access rights). Many system privileges are only for DBAs, e.g.: “ SELECT ANY TABLE ” (read access to all tables), “ DROP ANY TABLE ” (delete data of arbitrary users), “ CREATE USER ” (create a new user). Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 10/88

  11. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown System Privileges (3) Since the usual privileges of a DBA are separated into different system privileges, it is possible to have several DBAs with different responsibilities. Of course, one can still have one DBA with all privileges. There are currently 157 different system privileges. Basically, every administration command corresponds to a system privilege. Different kinds of CREATE commands also correspond to system privileges (since these commands could not be restricted otherwise). Most commands also have an ANY -version as a system privilege (allows one to apply the command to objects of any user). CREATE ANY TABLE : create tables in any schema. Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 11/88

  12. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown System Privileges (4) If a user has a system privilege “ WITH ADMIN OPTION ”, he/she can give it to other users: GRANT CREATE TABLE TO SCOTT Adding “ WITH ADMIN OPTION ” gives SCOTT the right to grant “ CREATE TABLE ”, too. When a system privilege is revoked from a user A who had it “ WITH ADMIN OPTION ”, privileges are not recursively revoked from users B who got it from A . This might be the reason why it was not called “ GRANT OPTION ”. But it is very similar (“ GRANT OPTION ” can be used only for object privileges). Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 12/88

  13. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown System Privileges (5) SYSTEM_PRIVILEGE_MAP : List of all system privileges. SYSTEM_PRIVILEGE_MAP PRIVILEGE NAME . . . . . . -5 CREATE SESSION . . . . . . -40 CREATE TABLE . . . . . . -47 SELECT ANY TABLE . . . . . . Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 13/88

  14. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown System Privileges (6) USER_SYS_PRIVS : System privileges granted to the current user or to PUBLIC . Columns are: USERNAME (always the name of the current user, not very useful), PRIVILEGE (name of the system privilege, no join with SYSTEM_PRIVILEGE_MAP necessary), ADMIN_OPTION (similar to grant option for object privileges). DBA_SYS_PRIVS : System privileges for each user. For DBA only. It has the columns GRANTEE , PRIVILEGE , ADMIN_OPTION . Only directly granted privileges are listed. Additional system privileges might have been granted via roles (see below). Therefore, USER_SYS_PRIVS is often empty, although the user actually has many system privileges. Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 14/88

  15. Creating Users in Oracle Oracle Files Oracle Architecture Startup and Shutdown Roles (1) It is difficult to grant privileges to many users one by one. In one way or another, all modern DBMS support groups of users with similar privileges. Oracle has the concept of “roles”, which are sets of privileges that can be granted to users: CREATE ROLE MANAGEMENT This command requires DBA rights (system privilege “ CREATE ROLE ”). Access rights are granted to a role in the same way as they are granted to a user: GRANT SELECT ON EMP TO MANAGEMENT Stefan Brass: DB IIB: DBMS-Implementation 2. Basic Oracle 15/88

Download Presentation
Download Policy: The content available on the website is offered to you 'AS IS' for your personal information and use only. It cannot be commercialized, licensed, or distributed on other websites without prior consent from the author. To download a presentation, simply click this link. If you encounter any difficulties during the download process, it's possible that the publisher has removed the file from their server.

Recommend

Datenbanken IIB: DBMS-Implementierung Chapter 1: Introduction Prof. Dr. Stefan Brass

Datenbanken IIB: DBMS-Implementierung Chapter 1: Introduction Prof. Dr. Stefan Brass

DB Services Tasks of the DBA The Oracle Data Dictionary DB Schema Information in Oracle Datenbanken IIB: DBMS-Implementierung Chapter 1: Introduction Prof. Dr. Stefan Brass Martin-Luther-Universit at Halle-Wittenberg Wintersemester

942 views • 65 slides
Ipsec unter Linux 2.6 Einleitung: Die native IPsec Implementierung im Linux Kernel ab

Ipsec unter Linux 2.6 Einleitung: Die native IPsec Implementierung im Linux Kernel ab

Ipsec unter Linux 2.6 Einleitung: Die native IPsec Implementierung im Linux Kernel ab Version 2.5.47 basiert auf dem USAGI Projekt. Hierbei handelt es sich um eine alternative Implementierung des IPsec Stacks zum FreeS/WAN Projekt.

610 views • 8 slides
Neues in Open-Source-SQL-Datenbanken @MarkusWinand @ModernSQL

Neues in Open-Source-SQL-Datenbanken @MarkusWinand @ModernSQL

Neues in Open-Source-SQL-Datenbanken @MarkusWinand @ModernSQL http://www.almaden.ibm.com/cs/people/chamberlin/sequel-1974.pdf Neues in Open-Source-SQL-Datenbanken @MarkusWinand @ModernSQL

2.09k views • 196 slides
BASIC SQL CHAPTER 4 (6/E) CHAPTER 8 (5/E) 1 CHAPTER 4 OUTLINE SQL Data Definition and

BASIC SQL CHAPTER 4 (6/E) CHAPTER 8 (5/E) 1 CHAPTER 4 OUTLINE SQL Data Definition and

BASIC SQL CHAPTER 4 (6/E) CHAPTER 8 (5/E) 1 CHAPTER 4 OUTLINE SQL Data Definition and Data Types Specifying Constraints in SQL Basic Retrieval Queries in SQL Set Operations in SQL 2 BASIC SQL Structured Query

534 views • 28 slides
260 Chapter 21 Exercise 21.3 Consider a parallel DBMS in which each relation is stored by

260 Chapter 21 Exercise 21.3 Consider a parallel DBMS in which each relation is stored by

260 Chapter 21 Exercise 21.3 Consider a parallel DBMS in which each relation is stored by horizontally partitioning its tuples across all disks. Employees( eid: integer , did: integer , sal: real ) Departments( did: integer , mgrid: integer ,

298 views • 10 slides
Database Systems IIB: DBMS-Implementation Chapter 6: Storage of Relations I: Segments (Files)

Database Systems IIB: DBMS-Implementation Chapter 6: Storage of Relations I: Segments (Files)

Disk Space Management Database Systems IIB: DBMS-Implementation Chapter 6: Storage of Relations I: Segments (Files) Prof. Dr. Stefan Brass Martin-Luther-Universit at Halle-Wittenberg Wintersemester 2019/20

403 views • 36 slides
Database Systems IIB: DBMS-Implementation Chapter 4: Disks Prof. Dr. Stefan Brass

Database Systems IIB: DBMS-Implementation Chapter 4: Disks Prof. Dr. Stefan Brass

Disks RAID Storage Tablespaces in Oracle Database Systems IIB: DBMS-Implementation Chapter 4: Disks Prof. Dr. Stefan Brass Martin-Luther-Universit at Halle-Wittenberg Wintersemester 2019/20

1.06k views • 67 slides
System Aspects of SQL (Chapter 9: Four more ways to make SQL calls CS411 from outside the DBMS)

System Aspects of SQL (Chapter 9: Four more ways to make SQL calls CS411 from outside the DBMS)

System Aspects of SQL (Chapter 9: Four more ways to make SQL calls CS411 from outside the DBMS) Database Systems Call-Level Interface PHP 07: SQL System Aspects Java Database Connectivity Kazuhiro Minami Stored procedures Embedded SQL 2

263 views • 8 slides
Database Systems IIB: DBMS-Implementation Chapter 10: More Data Structures for Relations Prof.

Database Systems IIB: DBMS-Implementation Chapter 10: More Data Structures for Relations Prof.

Physical Design Clusters Hash-Based Indexes Partitioned Tables Bitmap Indexes Index-Organized Tables Database Systems IIB: DBMS-Implementation Chapter 10: More Data Structures for Relations Prof. Dr. Stefan Brass Martin-Luther-Universit

747 views • 63 slides
CS 356 Lecture 16 Denial of Service Spring 2013 Review Chapter 1: Basic Concepts and

CS 356 Lecture 16 Denial of Service Spring 2013 Review Chapter 1: Basic Concepts and

CS 356 Lecture 16 Denial of Service Spring 2013 Review Chapter 1: Basic Concepts and Terminology Chapter 2: Basic Cryptographic Tools Chapter 3 User Authentication Chapter 4 Access Control Lists Chapter 5

482 views • 27 slides
CS 356 Lecture 29 Wireless Security Spring 2013 Review Chapter 1: Basic Concepts and

CS 356 Lecture 29 Wireless Security Spring 2013 Review Chapter 1: Basic Concepts and

CS 356 Lecture 29 Wireless Security Spring 2013 Review Chapter 1: Basic Concepts and Terminology Chapter 2: Basic Cryptographic Tools Chapter 3 User Authentication Chapter 4 Access Control Lists Chapter 5

469 views • 30 slides
Database Systems IIB: DBMS-Implementation Chapter 5: The Buffer Cache Prof. Dr. Stefan Brass

Database Systems IIB: DBMS-Implementation Chapter 5: The Buffer Cache Prof. Dr. Stefan Brass

Storage Hierarchy, Buffer Manager Disk/Buffer Performance in Oracle Database Systems IIB: DBMS-Implementation Chapter 5: The Buffer Cache Prof. Dr. Stefan Brass Martin-Luther-Universit at Halle-Wittenberg Wintersemester 2019/20

623 views • 50 slides
DBMS + ML Julian Oks Josh Sennett Jan. 29, 2020 Context + Problem Statement Context: DBMS + ML

DBMS + ML Julian Oks Josh Sennett Jan. 29, 2020 Context + Problem Statement Context: DBMS + ML

DBMS + ML Julian Oks Josh Sennett Jan. 29, 2020 Context + Problem Statement Context: DBMS + ML DBMS / RDBMS - Prevalent in all industries - Efficient - Highly reliable & available - Consistent & Transactional - Provide

887 views • 63 slides
Alert: An Architecture for Transforming a Passive DBMS into an Active DBMS Ulf Schreier, Hamid

Alert: An Architecture for Transforming a Passive DBMS into an Active DBMS Ulf Schreier, Hamid

Alert: An Architecture for Transforming a Passive DBMS into an Active DBMS Ulf Schreier, Hamid Pirasesh, Rakesh Agrawal, C. Mohan IBM Almaden Research Center Alert Idea Does not build an Active DMBS from scratch Extends a Passive DBMS into an

474 views • 16 slides
Chapter 2: First Declension Chapter 2 covers the following: the term declension, the three basic

Chapter 2: First Declension Chapter 2 covers the following: the term declension, the three basic

Chapter 2: First Declension Chapter 2 covers the following: the term declension, the three basic qualities of Latin nouns, that is, case, number and gender, basic sentence structure, subject, verb, direct object and so on, the six cases of Latin

332 views • 9 slides
Parallel DBMS Chapter 21, Part A Slides by Joe Hellerstein, UCB, with some material from Jim

Parallel DBMS Chapter 21, Part A Slides by Joe Hellerstein, UCB, with some material from Jim

Parallel DBMS Chapter 21, Part A Slides by Joe Hellerstein, UCB, with some material from Jim Gray, Microsoft Research. See also: http://www.research.microsoft.com/research/BARC/Gray/PDB95.ppt Database Management Systems, 2 nd Edition. Raghu

584 views • 23 slides
Grantee Actions in inForm U.S. Department of Housing and Urban Development (HUD) July, 2017

Grantee Actions in inForm U.S. Department of Housing and Urban Development (HUD) July, 2017

Participant Record-level (PRL) Report: Grantee Actions in inForm U.S. Department of Housing and Urban Development (HUD) July, 2017 Agenda Introduction to inForm (OLDC) Login and Navigation Grantee Steps (Service Coordinators) o

271 views • 14 slides
ivar tri Festival of awakening and meditation 02/21/2020 Sw Sw m Day nanda

ivar tri Festival of awakening and meditation 02/21/2020 Sw Sw m Day nanda

ivar tri Festival of awakening and meditation 02/21/2020 Sw Sw m Day nanda nanda Ja Jayant nti Ph lguna K a Da am 02 02.18 18.2 .202 020 By Acharya Suryanarayan Nanda 2020-02-23 for Arya Samaj Greater

390 views • 23 slides
Ja Jayan yanti ti Phalguna Krishna Dashami (12 February 1825) By Dr. Suryanarayana Nanda

Ja Jayan yanti ti Phalguna Krishna Dashami (12 February 1825) By Dr. Suryanarayana Nanda

Day ay nand and Ja Jayan yanti ti Phalguna Krishna Dashami (12 February 1825) By Dr. Suryanarayana Nanda 02.28.2019 2019-03-03 for Arya Samaj Greater Houston 1 iv ar tri ivar tri By Dr. Suryanarayana Nanda 2019-03-03 for

708 views • 28 slides
Role-based access control 1 RBAC: Motivations Complexity of security administration For

Role-based access control 1 RBAC: Motivations Complexity of security administration For

Role-based access control 1 RBAC: Motivations Complexity of security administration For large number of subjects and objects, the number of o a ge u be o subjects a d objects, t e u be o authorizations can become extremely large

783 views • 26 slides
OPPORTUNITY ANNOUNCEMENT SM-18-002 PRE-APPLICATION WEBINAR T U E S D AY, J A N U A R Y 1 6

OPPORTUNITY ANNOUNCEMENT SM-18-002 PRE-APPLICATION WEBINAR T U E S D AY, J A N U A R Y 1 6

MINORITY FELLOWSHIP PROGRAM FUNDING OPPORTUNITY ANNOUNCEMENT SM-18-002 PRE-APPLICATION WEBINAR T U E S D AY, J A N U A R Y 1 6 , 2 0 1 8 1 MINORITY FELLOWSHIP PROGRAM Welcome Eric Weakly DSCSD Western Branch Chief Purpose of

291 views • 16 slides
P A R T N E R I N G T R U S T Enabling trust in the digital online economy P A R T N E R

P A R T N E R I N G T R U S T Enabling trust in the digital online economy P A R T N E R

P A R T N E R I N G T R U S T Enabling trust in the digital online economy P A R T N E R I N G T R U S T Michiel Steltman Thomas Niessen - Project lead, Partnering Trust - MD, Kompetenznetzwerk Trusted Cloud - Director, DINL -

434 views • 18 slides
Crypto Currency Security from the Frontlines Hedge Funds, Nation State Threats & T echnical

Crypto Currency Security from the Frontlines Hedge Funds, Nation State Threats & T echnical

Crypto Currency Security from the Frontlines Hedge Funds, Nation State Threats & T echnical Security Approaches Adam Healy, CISO State of Crypto Asset Security 2016 Market Capitalization NASDAQ 1 ~$7.8 trillion London Stock Exchange 1

291 views • 12 slides
1 2 Subject area exper/se In mul/ple o7en related

1 2 Subject area exper/se In mul/ple o7en related

1 2 Subject area exper/se In mul/ple o7en related areas for transla/ons that really ma;er Translators must keep abreast of the latest

514 views • 22 slides

More recommend