zoukankan html css js c++ java

Oracle 11gR1中细粒度会见收集效力(3)

作者: 黄永兵因由:51CTO.com　

权限反省

处置责罚会见节制列表视图外，还可以行使DBMS_NETWORK_ACL_ADMIN包中的CHECK_PRIVILEGE和CHECK_PRIVILEGE_ACLID函数来反省权限。

CONN sys/password@db11g AS SYSDBA
SELECT DECODE(
         DBMS_NETWORK_ACL_ADMIN.check_privilege('test_acl_file.xml', 'TEST1', 'connect'),
         1, 'GRANTED', 0, 'DENIED', NULL) privilege 
FROM dual;
PRIVILE
-------
GRANTED
1 row selected.
SQL> 
COLUMN acl FORMAT A30
COLUMN host FORMAT A30
SELECT acl,
       host,
       DECODE(
         DBMS_NETWORK_ACL_ADMIN.check_privilege_aclid(aclid, 'TEST2', 'connect'),
         1, 'GRANTED', 0, 'DENIED', NULL) privilege 
FROM   dba_network_acls;
PRIVILE
-------
DENIED
1 row selected.
SQL>

DBMS_NETWORK_ACL_UTILITY包网罗了匡助坚定年夜概立室的域的函数，DOMAINS表函数按顺序前去通盘年夜概受影响的主机，域，ip所在或子网的集合。

SELECT *
FROM   TABLE(DBMS_NETWORK_ACL_UTILITY.domains('oel5-11g.localdomain'));
COLUMN_VALUE
-------------------------------
oel5-11g.localdomain
*.localdomain
*
3 rows selected.
SQL>
SELECT *
FROM   TABLE(DBMS_NETWORK_ACL_UTILITY.domains('192.168.2.3'));
COLUMN_VALUE
-------------------------------
192.168.2.3
192.168.2.*
192.168.*
192.*
*
5 rows selected.
SQL>

DOMAIN_LEVEL函数前去主机，域，ip所在或子网的级数。

SELECT DBMS_NETWORK_ACL_UTILITY.domain_level('oel5-11g.localdomain')
FROM   dual;
DBMS_NETWORK_ACL_UTILITY.DOMAIN_LEVEL('OEL5-11G.LOCALDOMAIN')
-------------------------------------------------------------
                                                            2
1 row selected.
SQL> 
SELECT DBMS_NETWORK_ACL_UTILITY.domain_level('192.168.2.3')
FROM   dual;
DBMS_NETWORK_ACL_UTILITY.DOMAIN_LEVEL('192.168.2.3')
----------------------------------------------------
                                                   4
1 row selected.
SQL>

在为年夜概立室的主机，域，ip所在或子网盘问会见节制列表视图是这些函数年夜概出格极度有效。

SELECT host,
       lower_port,
       upper_port,
       acl,
       DECODE(
         DBMS_NETWORK_ACL_ADMIN.check_privilege_aclid(aclid,  'TEST1', 'connect'),
         1, 'GRANTED', 0, 'DENIED', null) PRIVILEGE
FROM   dba_network_acls
WHERE  host IN (SELECT *
                FROM   TABLE(DBMS_NETWORK_ACL_UTILITY.domains('10.1.10.191')))
ORDER BY 
       DBMS_NETWORK_ACL_UTILITY.domain_level(host) desc, lower_port, upper_port;
HOST                           LOWER_PORT UPPER_PORT ACL                            PRIVILE
------------------------------ ---------- ---------- ------------------------------ -------
10.1.10.*                                            /sys/acls/test_acl_file.xml    GRANTED
1 row selected.
SQL>

查看全文

相关阅读:
asm volatile ("B .")
最大熵学习笔记（一）预备知识
 12、Cocos2dx 3.0游戏开发找小三之3.0中的生命周期分析
 Android中通过反射来设置Toast的显示时间
 Linux Centos7 Apache 訪问 You don't have permission to access / on this server.
校园双选会，你都懂么
 关于虚继承和析构函数的一个奇怪的问题
 Codeforces Round #252 (Div. 2)B. Valera and Fruits
P3809 【模版】后缀排序
 752. [BJOI2006] 狼抓兔子

原文地址：https://www.cnblogs.com/zgqjymx/p/1974645.html