33. Some non-DBA users in your database have been granted ANY TABLE system privileges and they
are able to access data dictionary base tables. You decide to restrict their access to data dictionary
objects.
Which method would you adopt to achieve this objective?
A.Revoke the RESOURCE role from the users.
B.Set the value of the OS_ROLES parameter to TRUE.
C.Use Database Resource Manager to restrict user access to objects.
D.Grant ANY TABLE system privileges again without ADMIN OPTION.
E.Set the value of the O7_DICTIONARY_ACCESSIBILITY parameter to FALSE.
Answer: E
答案解析:
参考:http://blog.csdn.net/rlhua/article/details/12277557
保护数据字典:默认情况下,O7_DICTIONARY_ACCESSIBILITY参数设置为FALSE。
如果没有很好的理由,一定不要更改这个设置,因为这会阻止具有ANY TABLE系统权限的用户访问数据字典的基表。这个参数设置还确保了SYS用户只能以SYSDBA身份登录。
sys@TEST0924> show parameter O7_DICTIONARY_ACCESSIBILITY
NAME TYPE VALUE
------------------------------------ ----------- ------------------------------
O7_DICTIONARY_ACCESSIBILITY boolean FALSE