Selamat datang di Scribd!

Oracle 11g Error-Network Access Denied by Access Control List (ACL)

Diunggah oleh

0% menganggap dokumen ini bermanfaat (0 suara)

262 tayangan3 halaman

Oracle 11g introduced Fine-Grained Access to network packages by creating an Access Control List to use any external network resource through these packages. Before this any user who had an execute privilege on these packages was able to do anything to any network resource like web and local mail servers etc.

Deskripsi Asli:

Hak Cipta

Format Tersedia

PDF, TXT atau baca online dari Scribd

Bagikan dokumen Ini

Bagikan atau Tanam Dokumen

Opsi Berbagi

Apakah menurut Anda dokumen ini bermanfaat?

Apakah konten ini tidak pantas?

Laporkan Dokumen Ini

Hak Cipta:

Attribution Non-Commercial (BY-NC)

Format Tersedia

Unduh sebagai PDF, TXT atau baca online dari Scribd

Tandai sebagai konten tidak pantas

0% menganggap dokumen ini bermanfaat (0 suara)

262 tayangan3 halaman

Oracle 11g Error-Network Access Denied by Access Control List (ACL)

Diunggah oleh

s_k_g_1

Hak Cipta:

Attribution Non-Commercial (BY-NC)

Format Tersedia

Unduh sebagai PDF, TXT atau baca online dari Scribd

Tandai sebagai konten tidak pantas

Lompat ke Halaman

Anda di halaman 1dari 3

Cari di dalam dokumen

Oracle 11g Error: Network access denied by access control list (ACL)

From Oracle 11g network packages like UTL_TCP, UTL_SMTP, UTL_MAIL, UTL_HTTP, and UTL_INADDR which can be used to access external network resources, are more restricted and secured. Oracle 11g introduced Fine-Grained Access to these packages by creating an Access Control List to use any external network resource through these packages. Before this any user who had an execute privilege on these packages was able to do anything to any network resource like web and local mail servers etc. But now a user needs a little more than just an execute privilege on the network packages. ERROR at line 1: ORA-29273: HTTP request failed ORA-06512: at "SYS.UTL_HTTP", line 1722 ORA-24247: network access denied by access control list (ACL) ORA-06512: at "EDTS.ACCESS_URL", line 5 ORA-06512: at line 1

How to configure Access Control List

We need to configure an Access Control List (ACL) and grant "connect" privilege on that ACL to our user. Then we need to assign host to this ACL and any other host to which user needs access. DBMS_NETWORK_ACL_ADMIN.CREATE_ACL () - Creates a new Access Control List. Following are the parameters that it takes.

Acl => Name of the Access Control List. This is a XML file which will be created in /sys/acls directory by default. Description => Description of the ACL. Principal => Name of the user or role (case sensitive) to whom the permissions are being granted or denied. is_grant => TRUE or FALSE, whether to grant access or deny access Privilege => connect or resolve (lowercase always). Will the user be able to connect to the network resource or just could resolve the network address start_date => Start date (optional) of the access to the user end_date => End date (optional) of the access to the user

Example:BEGIN DBMS_NETWORK_ACL_ADMIN.CREATE_ACL ( ACL => 'EDTS_utl_http.xml', DESCRIPTION => 'Allow to call http url', PRINCIPAL => 'EDTS', IS_GRANT => TRUE, PRIVILEGE => 'connect' ); COMMIT; END;

Add a privilege to Access Control List

First access to the ACL to any user is granted when the ACL is created with the CREATE_ACL procedure. If any other user or role needs permission on the ACL you may user the procedure ADD_PRIVILEGE. DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE () Add access for more users or roles in an already existing ACL. It takes similar parameters as CREATE_ACL procedure except there is no description parameter and a new parameter position which is used in ADD_PRIVILEGE but not in CREATE_ACL. The position parameter decides the precedence of the rights for multiple users. When granting access to multiple roles and user set the precedence appropriately. Example:BEGIN DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE ( ACL => 'EDTS_utl_http.xml', PRINCIPAL => 'EDTS', IS_GRANT => TRUE, PRIVILEGE => 'resolve' ); COMMIT; END;

Assign a network host to Access Control List

DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL ()-Assigns a network host local or remote to an ACL. It

takes the following parameters: acl=> Name of the Access Control List.

host=> Name of the host. lower_port=> Lower port (optional) from the range of ports allowed on this host. upper_port=> Upper port (optional) from the range of ports allowed on this host Example:BEGIN DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL ( ACL => 'EDTS_utl_http.xml', HOST => '*.myvaluefirst.com', LOWER_PORT => 60, UPPER_PORT => 8080 ); COMMIT; END;

For details refer http://oracleflash.com/36/Oracle-11g-Access-Control-List-for-External-NetworkServices.html

Anda mungkin juga menyukai

NoSQL Injection for Elasticsearch
Dari Everand
NoSQL Injection for Elasticsearch
Gary Drocella
Belum ada peringkat
Communication Networks Fundamental Concepts and Key Architectures 2nd PDF
Dokumen2 halaman
Communication Networks Fundamental Concepts and Key Architectures 2nd PDF
Dustin
0% (2)
Transition Plan Template
Dokumen7 halaman
Transition Plan Template
timaamrev
100% (3)
CC ($CC) True: Subject ($subject)
Dokumen5 halaman
CC ($CC) True: Subject ($subject)
Ven Ven
100% (1)
Roles and Privileges in Oracle PDF
Dokumen16 halaman
Roles and Privileges in Oracle PDF
G.R.THIYAGU ; Oracle DBA
100% (8)
Muller's Method Root Finding Exercise for Cos(x)-xe^x Function
Dokumen27 halaman
Muller's Method Root Finding Exercise for Cos(x)-xe^x Function
Chillie Bronzal Ullamot
Belum ada peringkat
Configuration of Access Control - Oracle 11g
Dokumen7 halaman
Configuration of Access Control - Oracle 11g
Asim Jamal
Belum ada peringkat
2010 03 17 Oracle 11g Access Control List and Ora 24247
Dokumen6 halaman
2010 03 17 Oracle 11g Access Control List and Ora 24247
Paul Leung
Belum ada peringkat
Oracle Application Express (APEX) 5.0 Installation: Setup
Dokumen23 halaman
Oracle Application Express (APEX) 5.0 Installation: Setup
a3scribd
Belum ada peringkat
Login Using Sys User: To Be Done by Oracle SYS
Dokumen2 halaman
Login Using Sys User: To Be Done by Oracle SYS
Abhishek Jha
Belum ada peringkat
DCL Commands (Oracle)
Dokumen14 halaman
DCL Commands (Oracle)
Prasanthi Kolli
Belum ada peringkat
Apex 11g Configuration Guide
Dokumen6 halaman
Apex 11g Configuration Guide
Huma Zahra
Belum ada peringkat
Install Oracle REST Data Services (ORDS) For Oracle APEX
Dokumen21 halaman
Install Oracle REST Data Services (ORDS) For Oracle APEX
a3scribd
100% (1)
Krams::: Spring Security 3: Full ACL Tutorial (Part 1)
Dokumen11 halaman
Krams::: Spring Security 3: Full ACL Tutorial (Part 1)
Tamra Rowe
Belum ada peringkat
Privilege Escalation Via Oracle Indexes: David Litchfield 21 January 2015
Dokumen4 halaman
Privilege Escalation Via Oracle Indexes: David Litchfield 21 January 2015
Tú Phương
Belum ada peringkat
BITWeek8 - L13 - ITE2422 V1
Dokumen8 halaman
BITWeek8 - L13 - ITE2422 V1
Tuan Ajreen
Belum ada peringkat
Chapter No 4 (RS)
Dokumen29 halaman
Chapter No 4 (RS)
Priyanshu
Belum ada peringkat
SQL Grant Revoke Commands SQL GRANT Command
Dokumen7 halaman
SQL Grant Revoke Commands SQL GRANT Command
Syed Masud
Belum ada peringkat
Assignmt5 (522) Wajid Sir
Dokumen12 halaman
Assignmt5 (522) Wajid Sir
Dil Nawaz
Belum ada peringkat
Acl LINUX
Dokumen13 halaman
Acl LINUX
Mădălina Stănășel
Belum ada peringkat
E - 20231023 Access Control Lists (ACL)
Dokumen3 halaman
E - 20231023 Access Control Lists (ACL)
squaresh
Belum ada peringkat
Commissioning, Decommissioning, and ACL in Hadoop
Dokumen16 halaman
Commissioning, Decommissioning, and ACL in Hadoop
vinit
Belum ada peringkat
Oracle Database 11g Privileges Roles and Application Contexts
Dokumen44 halaman
Oracle Database 11g Privileges Roles and Application Contexts
Yelena Bytenskaya
Belum ada peringkat
Access Control List Full Notes PDF
Dokumen6 halaman
Access Control List Full Notes PDF
samweli.mwakatobe
Belum ada peringkat
Chapter 29
Dokumen27 halaman
Chapter 29
ak.microsoft20056613
Belum ada peringkat
Apex Install On Linux
Dokumen7 halaman
Apex Install On Linux
Mushtaq Ahmed
Belum ada peringkat
Hacking Aurora
Dokumen9 halaman
Hacking Aurora
Juan Ramón Nieto Gómez
Belum ada peringkat
Abusing Active Directory ACLs - ACEs - Red Teaming Experiments PDF
Dokumen10 halaman
Abusing Active Directory ACLs - ACEs - Red Teaming Experiments PDF
Vanuti Mascarenhas
Belum ada peringkat
DCL Slide
Dokumen6 halaman
DCL Slide
Jyoti Bala Warwal
Belum ada peringkat
Data Base Links
Dokumen23 halaman
Data Base Links
G.R.THIYAGU ; Oracle DBA
100% (4)
Oracle Cheat Sheet
Dokumen6 halaman
Oracle Cheat Sheet
Aneek Kumar
Belum ada peringkat
Module 8: Access and Query Logging
Dokumen28 halaman
Module 8: Access and Query Logging
ranusofi
Belum ada peringkat
Mysql Connection Using Mysql Binary
Dokumen2 halaman
Mysql Connection Using Mysql Binary
Clyde Mkorombindo
100% (1)
Oracle Roles
Dokumen14 halaman
Oracle Roles
Rafael
Belum ada peringkat
SQL GRANT REVOKE Commands
Dokumen3 halaman
SQL GRANT REVOKE Commands
Alok Patil
Belum ada peringkat
Cloning
Dokumen3 halaman
Cloning
srutidba
Belum ada peringkat
Department of Information Technology: Compiled By: Afaq Alam Khan
Dokumen36 halaman
Department of Information Technology: Compiled By: Afaq Alam Khan
elvis page kamunanwire
Belum ada peringkat
Create Role
Dokumen6 halaman
Create Role
diranj
Belum ada peringkat
Customizing Your SQL Prompt
Dokumen2 halaman
Customizing Your SQL Prompt
harimajor
Belum ada peringkat
Step by Step Example On Setting Up Streams
Dokumen3 halaman
Step by Step Example On Setting Up Streams
Anonymous 8RhRm6Eo7h
Belum ada peringkat
Zend - Acl: 1.1. Resources
Dokumen8 halaman
Zend - Acl: 1.1. Resources
irodiwan
Belum ada peringkat
Sysoper and Sysdba (Auth)
Dokumen14 halaman
Sysoper and Sysdba (Auth)
G.R.THIYAGU ; Oracle DBA
100% (1)
Oracle Baseline Security Checklist
Dokumen15 halaman
Oracle Baseline Security Checklist
Chidi Okereke
Belum ada peringkat
Permissions Poster 2016 and SQLDB
Dokumen1 halaman
Permissions Poster 2016 and SQLDB
Adi Sandu
Belum ada peringkat
Exploring SqlConnection in
Dokumen12 halaman
Exploring SqlConnection in
jerlin sundari
Belum ada peringkat
Module 14-2 - Privileges
Dokumen12 halaman
Module 14-2 - Privileges
Gautam Trivedi
Belum ada peringkat
LDAP Authentication For 3PAR InServs PDF
Dokumen5 halaman
LDAP Authentication For 3PAR InServs PDF
Shawn Praful
Belum ada peringkat
Network ACLs
Dokumen99 halaman
Network ACLs
janerie71
Belum ada peringkat
DALC4NET A Generic Data Access Layer For DOT NET
Dokumen7 halaman
DALC4NET A Generic Data Access Layer For DOT NET
Kiran Waje
Belum ada peringkat
11 Managing Sub Programs
Dokumen5 halaman
11 Managing Sub Programs
RASHMI_HR
Belum ada peringkat
Grant Rollback
Dokumen4 halaman
Grant Rollback
Harsha Pania
Belum ada peringkat
Module 14-3 - Manage Database Roles and Privileges
Dokumen15 halaman
Module 14-3 - Manage Database Roles and Privileges
Gautam Trivedi
Belum ada peringkat
Best Practices For Oracle Databases: Alexander Kornbrust
Dokumen33 halaman
Best Practices For Oracle Databases: Alexander Kornbrust
Pedro Perez
Belum ada peringkat
ORACLE INSTALLATION GUIDE
Dokumen29 halaman
ORACLE INSTALLATION GUIDE
bilal
Belum ada peringkat
DB Link Creation
Dokumen4 halaman
DB Link Creation
Ramesh Gurumoorthy
Belum ada peringkat
SQL Injection Leads to NT AUTHORITY\SYSTEM Access
$SQL Injection Leads to NT AUTHORITY\SYSTEM Access$
Dokumen15 halaman
SQL Injection Leads to NT AUTHORITY\SYSTEM Access
MK
Belum ada peringkat
DCL in SQL
Dokumen3 halaman
DCL in SQL
Abhisheka Vidyalankara
Belum ada peringkat
M.ALI ARIF Lab Report 12
Dokumen11 halaman
M.ALI ARIF Lab Report 12
MUHAMMAD Ali Arif
Belum ada peringkat
Optimize MySQL ALTER statements
Dokumen10 halaman
Optimize MySQL ALTER statements
Irwan Fath
Belum ada peringkat
Unit 3 Managing Users and Security
Dokumen22 halaman
Unit 3 Managing Users and Security
Dhiraj Jha
Belum ada peringkat
Basic DBA Query v.1: Oracle Database
Dari Everand
Basic DBA Query v.1: Oracle Database
Oraclesql-plsql
Penilaian: 5 dari 5 bintang
5/5 (1)
Windows Security Monitoring: Scenarios and Patterns
Dari Everand
Windows Security Monitoring: Scenarios and Patterns
Andrei Miroshnikov
Belum ada peringkat
Starting Database Administration: Oracle DBA
Dari Everand
Starting Database Administration: Oracle DBA
Oraclesql-plsql
Penilaian: 3 dari 5 bintang
3/5 (2)
Gadget Comparison - Mi 1c - 02 - Ahmad Ridlo Suhardi#14 - Gita Kartika Pariwara#21 - Putri Dian Istiana
Dokumen8 halaman
Gadget Comparison - Mi 1c - 02 - Ahmad Ridlo Suhardi#14 - Gita Kartika Pariwara#21 - Putri Dian Istiana
Gita Kartika Pariwara
Belum ada peringkat
Zipato MQTTCloud
Dokumen34 halaman
Zipato MQTTCloud
densas
Belum ada peringkat
FIM and The PCI DSS
Dokumen3 halaman
FIM and The PCI DSS
kej827
Belum ada peringkat
ISO - 9241 - 307 - 2008 - EN - PDF 307
Dokumen19 halaman
ISO - 9241 - 307 - 2008 - EN - PDF 307
patricia nhavoto
Belum ada peringkat
Oops
Dokumen305 halaman
Oops
Kartik
Belum ada peringkat
Sthira Solns PVT LTD, Bangalore
Dokumen25 halaman
Sthira Solns PVT LTD, Bangalore
shanmathieswaran07
Belum ada peringkat
WHJ v.32 Submission Form
Dokumen1 halaman
WHJ v.32 Submission Form
RJ Asuncion
Belum ada peringkat
Devices Emergency Rescue Tool
Dokumen2 halaman
Devices Emergency Rescue Tool
Diego Alves
Belum ada peringkat
CV Richa Hanik
Dokumen5 halaman
CV Richa Hanik
AriefSuryoWidodo
Belum ada peringkat
Avijit Sood: Background
Dokumen7 halaman
Avijit Sood: Background
Ashwani kumar
Belum ada peringkat
.Archivetempevents 2020 00000 of 00001.json
Dokumen19 halaman
.Archivetempevents 2020 00000 of 00001.json
Beyz
100% (1)
Rms Keyboards Documentation v1.0: 4 Features 4 Download and Installation of Software 5
Dokumen19 halaman
Rms Keyboards Documentation v1.0: 4 Features 4 Download and Installation of Software 5
Geraint
Belum ada peringkat
UMTS Presentation Ericsson
Dokumen45 halaman
UMTS Presentation Ericsson
Dev Singh
Belum ada peringkat
Thread Basics
Dokumen20 halaman
Thread Basics
khoaitayran2012_4950
Belum ada peringkat
Mind Reading Seminar and PPT With PDF Report
Dokumen2 halaman
Mind Reading Seminar and PPT With PDF Report
Jaya Raman
Belum ada peringkat
Industrial Extreme Programming: Submitted By: Group 3 Submitted To
Dokumen7 halaman
Industrial Extreme Programming: Submitted By: Group 3 Submitted To
Shazzad Hossain
Belum ada peringkat
2 N 3820
Dokumen3 halaman
2 N 3820
Ariel Navarrete
Belum ada peringkat
Manual Logitech Z906 PDF
Dokumen52 halaman
Manual Logitech Z906 PDF
Luis
Belum ada peringkat
Apollo Configuration Management Manual
Dokumen308 halaman
Apollo Configuration Management Manual
Bob Andrepont
100% (1)
Audacity Cheat Sheet Guide
Dokumen4 halaman
Audacity Cheat Sheet Guide
mnirun
Belum ada peringkat
BCSXP SB A059
Dokumen7 halaman
BCSXP SB A059
Cristian Steven Ruiz
Belum ada peringkat
Schneider Electric ATV312HU40N4 Datasheet
Dokumen3 halaman
Schneider Electric ATV312HU40N4 Datasheet
Magda Diaz
Belum ada peringkat
Shimadzu Prominence Brochureg
Dokumen40 halaman
Shimadzu Prominence Brochureg
asapphuvinh
0% (1)
project 1
Dokumen11 halaman
project 1
teferi Getachew
Belum ada peringkat
Language Extensions For CBEA 2.6
Dokumen168 halaman
Language Extensions For CBEA 2.6
Ruben Palmer
Belum ada peringkat
8000io Cutsheet
Dokumen2 halaman
8000io Cutsheet
Padmo Padmundono
Belum ada peringkat
Flow Indicator Totaliser PDF
Dokumen2 halaman
Flow Indicator Totaliser PDF
KARAN SAXENA
Belum ada peringkat