I think you've been able to write to a file for quite a while (8.1.7
certainly).

That file would be owned by oracle/dba (or whatever) and, so, could be
altered/deleted by the oracle id.


-----Original Message-----
From: Justin Cave
[mailto:oracledba-ezmlmshield-x30291407.[Email address protected]
Sent: Wednesday, August 18, 2004 11:31 AM
To: LazyDBA Discussion
Subject: RE: Question on auditing and permissions

I know there is a parameter in 9i to have Oracle write audit records to the
file system, which can presumably be secured from the Oracle DBA's (assuming
they don't have the root password as well). Unfortunately, though, I don't
believe that parameter existed in 8.1.7...


Justin Cave
Distributed Database Consulting, Inc.
http://www.ddbcinc.com/askDDBC

-----Original Message-----
From: Bloyd David [BS]
[mailto:oracledba-ezmlmshield-x19001302.[Email address protected]
Sent: Wednesday, August 18, 2004 12:31 PM
To: LazyDBA Discussion
Subject: Question on auditing and permissions

We are using Oracle 817 on Solaris 9. We currently have auditing turned on
for all users on all our databases. Our management came to us today and
wants us to somehow lock things down so that audit records can't be altered
or deleted by ANY user including sys or system. Is it possible to
completely lock down the audit records inside Oracle?





--------
website: http://www.LazyDBA.com
Please don't reply to RTFM questions
Oracle documentation is here: http://tahiti.oracle.com To unsubscribe: see
http://www.lazydba.com/unsubscribe.html
To subscribe: see http://www.lazydba.com By using this list you agree to
these terms:http://www.lazydba.com/legal.html








--------
website: http://www.LazyDBA.com
Please don't reply to RTFM questions
Oracle documentation is here: http://tahiti.oracle.com
To unsubscribe: see http://www.lazydba.com/unsubscribe.html
To subscribe: see http://www.lazydba.com
By using this list you agree to these
terms:http://www.lazydba.com/legal.html


Oracle LazyDBA home page