ORA-29471 DBMS_SQL SECURITY ERROR

By



Please set the below:
============== suggestions from oracle(Service request) as fallows===============
alter system set "_dbms_sql_security_level" = 384 scope=spfile;
and bounce the instance.
===================================================================



Cause of this error is setting the security level using parameter _dbms_sql_security_level.
The system parameter "_dbms_sql_security_level" controls the security in DBMS_SQL in the following ways:
a. Scan protection
DBMS_SQL will be locked out with access denied error once an invalid
cursor is detected. This scan protection security feature is on by
default. To back out or disable this security feature set
_dbms_sql_security_level system parameter with 0x80 (128) bit.
b. Privilege checking
DBMS_SQL will error out if the effective userid and roles of the
caller to dbms_sql subprogram is not the same as those of the caller
of the most recent parse operation.
Level 0 Level
0 allows all DBMS_SQL operations on the cursor without any security
checks. The cursor may be fetched from, and even rebound
and
reexecuted,
by code running with a different effective userid or roles
than in effect at the time the cursor was parsed.
Level 1 (default privilege checking level) Level
1 requires that the effective userid and roles of the caller to
dbms_sql for bind and execute operations on the cursor must be the same
as those of the caller of the most recent parse operation on the cursor.
Level 2 Level
2 requires that the effective userid and roles of the caller to
dbms_sql for all bind, execute, define, describe, and fetch operations
on the cursor must be the same as those of the caller of the most recent
parse operation on the cursor.
c. Security Enforcement in open_cursor
DBMS_SQL does not allow open_cursor with lower security level (level 0) to be specified.
Security enforcement in open_cursor is on by default. To back out or disable security
enforcement in open_cursor set _dbms_sql_security_level system parameter with 0x100 (256) bit.
By default, level 0 is disallowed. Level 0 is allowed only when security enforcement in open_cursor set by the system parameter
_dbms_sql_security_level is turned off (0x100).
When setting _dbms_sql_security_level with 384 (0x180), it means:
no security checks(level 0), no scan protection (0x80), and no security enforcement in open_cursor (0x100)



Thanks for the visit !
 Any doubts or correction/suggestions, please comment below it helps me to improve in further posts.

Comments

Post a Comment

Popular posts from this blog

Shareplex some commands

By
Shareplex some commands i will post here and update in this post with more commands later, if i provide with example so post become lengthy so please to understand. =====================================================================   sp_ctrl  :- Shareplex provides a command line utility called    'sp_ctrl'   this  sp_ctl located in  <product_directory>/bin  ($SP_HOME/bin)  , if you set profile in os level you easy redirect location. Below i will give commands run under  sp_ctrl  sp_ctrl (xxx)>   show config   ==> To check the active configuration (source side). sp_ctrl (xxx)>   show log reverse  ==> To check the log file sp_ctrl (xxx)>  show  ==>   command to displays status of the replication processes (Capture, Read, Export, Import and Post) . sp_ctrl (xxx)>  status  ==> command from sp_ctrl utility that provides an overview on the state of Shareplex replication. sp_ctrl (xxx)>  qstatus   ==> We can monitor, t
Read more

SQL Tuning Task Creation ORA-13780: SQL statement does not exist.

By
SQL Tuning Task Creation ORA-13780: SQL statement does not exist. ================================================= example:- declare  l_sql_tune_task_id  varchar2(100); begin  l_sql_tune_task_id := dbms_sqltune.create_tuning_task (         sql_id      => 'your sql_id',         scope       => dbms_sqltune.scope_comprehensive,         time_limit  => 10800,         task_name   => 'tuning task name',         description => 'tuning task description');  dbms_output.put_line('l_sql_tune_task_id: ' || l_sql_tune_task_id); end; / declare * ERROR at line 1: ORA-13780: SQL statement does not exist. ORA-06512: at "SYS.DBMS_SYS_ERROR", line 79 ORA-06512: at "SYS.PRVT_SQLADV_INFRA", line 125 ORA-06512: at "SYS.DBMS_SQLTUNE", line 655 solution :----  SELECT SNAP_ID FROM DBA_HIST_SQLSTAT WHERE SQL_ID='sql_id' ORDER BY SNAP_ID; ===========now create task============ declare  l_sql
Read more

ORA 700 [kskvmstatact: excessive swapping observed]

By
ORA 700 [kskvmstatact: excessive swapping observed] ======================================== One of my database down suddenly. Reason:  ORA-700 SWAP error, as the dump it's taking more that 10 minutes pmon killed the process and the database was down. this database running with less memory . Solution alter system set "_kse_die_timeout"=XX or 0 if we want to disable the pmon killer during dumping . note: The error is documented in:  -  Note:1919850.1  - 12c: Warning Message About Heavy Swapping Observation and ORA-700 [kskvmstatact: excessive swapping observed]  Because your swap memory has low values of swap in / swap out, this warning message can be safely ignored.  Given both the alert log message and ORA-700 are expected behavior for 12c, no action is required.  An enhancement request (ER) was created to change the threshold in future releases in  Bug 19495842  - CHANGE THRESHOLD IN THE SWAP WARNING IN THE ALERT_<SID>.LOG  ==============
Read more