Oracle
1Z0-146 · Question #107
1Z0-146 Question #107: Real Exam Question with Answer & Explanation
Sign in or unlock 1Z0-146 to reveal the answer and full explanation for question #107. The question stem and answer options stay visible for context.
Question
A procedure is created in the SYS schema to allow users to change the password as follows: CREATE OR REPLACE PROCEDURE change_password(p_username VARCHAR2 DEFAULT NULL, p_new_password VARCHAR2 DEFAULT NULL) IS v_sql_stmt VARCHAR2(500); BEGIN v_sql_stmt := 'ALTER USER '||p_username ||' IDENTIFIED BY ' || p_new_password; EXECUTE IMMEDIATE v_sql_stmt; END change_password; The SYS user has granted EXECUTE privilege on the procedure to the OE user. But OE is able to change the password for SYS by using this procedure. How would you protect this?
Options
- Aby using the procedure as part of a PL/SQL package
- Bby using a bind argument with dynamic SQL in the procedure
- Cby using AUTHID DEFINER in the procedure to implement the definer's right
- Dby using AUTHID CURRENT_USER in the procedure to implement the invoker's right
Unlock 1Z0-146 to see the answer
You've previewed enough free 1Z0-146 questions. Unlock 1Z0-146 for full answers, explanations, the timed quiz mode, progress tracking, and the master PDF. Question stem and options stay visible so you can still see what's on the exam.