“逐个会话审核创建会话”与“通过访问审核创建会话”?
当我通过以下方式启用创建会话的审核时:
audit create session by session;
然后我查询以下内容:
select * from dba_priv_audit_opts;
结果是:
USERNAME | PROXY_NAME | AUDIT_OPTION | SUCCESS | FAILURE |
...............................................................
- | - | CREATE SESSION | BY ACCESS | BY ACCESS|
但是,当我通过以下方式启用创建会话的审核时:
audit create session by access;
然后我查询如下:
select * from dba_priv_audit_opts;
结果是一样的:
USERNAME | PROXY_NAME | AUDIT_OPTION | SUCCESS | FAILURE |
...............................................................
- | - | CREATE SESSION | BY ACCESS | BY ACCESS|
为什么?你有什么想法吗?
When I enabling auditing for create session by the following way:
audit create session by session;
Then I am querying the following:
select * from dba_priv_audit_opts;
The result is:
USERNAME | PROXY_NAME | AUDIT_OPTION | SUCCESS | FAILURE |
...............................................................
- | - | CREATE SESSION | BY ACCESS | BY ACCESS|
But, when I enabling auditing for create session by the following way:
audit create session by access;
Then I am querying the following:
select * from dba_priv_audit_opts;
The result is the same:
USERNAME | PROXY_NAME | AUDIT_OPTION | SUCCESS | FAILURE |
...............................................................
- | - | CREATE SESSION | BY ACCESS | BY ACCESS|
Why? Do you have any idea?
如果你对这篇内容有疑问,欢迎到本站社区发帖提问 参与讨论,获取更多帮助,或者扫码二维码加入 Web 技术交流群。
绑定邮箱获取回复消息
由于您还没有绑定你的真实邮箱,如果其他用户或者作者回复了您的评论,将不能在第一时间通知您!
发布评论
评论(1)
11gR2 及更高版本:
按会话< /code>被有效禁用,并且所有审核都是在每次访问时完成的。11gR1 及以下版本:
BY SESSION和BY ACCESS是当你指定BY SESSION时Oracle会尝试将多个审计条目合并为一个记录会话和审核的操作何时匹配。它只适用于 DDL 以外的 SQL 语句,来自上面的链接:
由于
CREATE SESSION是一条DDL语句,Oracle通过访问来审计该语句。11gR2 and above:
BY SESSIONis effectively disabled and all auditing is done per access.11gR1 and below:
The difference between
BY SESSIONandBY ACCESSis that when you specifyBY SESSIONOracle will try to merge multiple audit entries into one record when the session and the action audited match.It only works for SQL statements other than DDL though, From the above link:
Since
CREATE SESSIONis a DDL statement Oracle audits this statement by access.