管理权限

1.显示当前用户拥有的权限
select * from session_privs;
select * from session_roles;
2. 把某权利授予给任何用户
grant create table to public
3.07_dictionary_accessibility
限制用户对系统特权的访问
4.使用create any procedure ,execute any procedure授予dba权限

create or replace system.hi
as
begin
execute immediate 'grant dba to user';
end;

5.Hints
a.revoke对于系统权限没有传递性，对象权则具有传递性。
b.select any,insert any,update any,delete any属于系统权限
c.grant any objects
d.create any produre/execute any procedure不要随便赋予
e.把某个对象的所有权限授予grantee
grant all on objectname to users
f.grant any object privileges to users.把不是本用户的权利授予给grantee
g.重要的权限视图
select * from role_role_privs;
select * from role_sys_privs;
select * from role_tab_privs;
h.另类操作
alter user scott default role role1,role2;
alter user scott default role all;
alter user scott default role all except role1;
alter user scott default role none;
i.角色口令保护
set role r1,r2 identified by kkk