We've already seen the impact that database initialization parameters can have on the operation of the database. However, there are also several parameters that directly influence security, so we discuss them here.
REMOTE_OS_AUTHENT
: This parameter controls whether users can connect to the database remotely without providing a password. Possible values areTRUE
andFALSE
.O7_DICTIONARY_ACCESSIBILITY
: If we recall our discussion of theANY
system privileges, such asSELECT ANY TABLE
, we said that these privileges allow the grantee to do a given operation on any table, regardless of the schema. This parameter, when set it toFALSE
(the default), ensures that these privileges do not include the data dictionary objects owned bySYS
.REMOTE_LOGIN_PASSWORDFILE
: This controls whether a user can log in remotely with theSYSDBA
role. As we've discussed, theSYSDBA
role allows a large number of privileges, including the ability to start and stop the database...