Oracle Database Discussions

Announcement

For appeals, questions and feedback about Oracle Forums, please email oracle-forums-moderators_us@oracle.com. Technical questions should be asked in the appropriate category. Thank you!

Unauthorized User Access

618702Jul 8 2010 — edited Jul 8 2010

Dear OTN Community,

First here are the database and operating system details;

Oracle 10gR2 Patchset 3 (10.2.0.4.0)
HP-UX v11.31

My question is our customer wants to keep track of unauthorized login accesses to the database like;

#sqlplus deneme/password

SQL*Plus: Release 10.2.0.4.0 - Production on Thu Jul 8 10:29:23 2010

Copyright (c) 1982, 2007, Oracle.  All Rights Reserved.

ERROR:
ORA-01017: invalid username/password; logon denied

Enter user-name:
ERROR:
ORA-01017: invalid username/password; logon denied

Enter user-name:
ERROR:
ORA-01017: invalid username/password; logon denied

SP2-0157: unable to CONNECT to ORACLE after 3 attempts, exiting SQL*Plus

How can we log those unauthorized logins to a logfile or something, somewhere else? I know we can create a login trigger but i will only work for after login on database, not before. I have also checked the listener.log file but no chance at all because it does not write these kind of logins in there.

Helpful answers will be highly appreciated.

Ogan

This post has been answered by Satish Kandi on Jul 8 2010

Jump to Answer

Locked Post

New comments cannot be posted to this locked post.

Locked on Aug 5 2010

Added on Jul 8 2010

#general-database-discussions

7 comments

1,258 views