Whoever Resembles a People is One of Them. He is not one of us who resembles other than us,
nor who resembles the Jews nor the Christians.(jami-at-tirmidhi-vol-5-ahadith-2695)
O you who believe (who wish to reach ALLAH C.C. before death)! Do not take my and
your enemies for friends!
And although they have denied what has come to you
from the Truth, you still love them (treating them as your friends).
If you go forth to struggle hard in My Way, seeking My Pleasure, (then why) you manifest
love to them and share with them your secrets.
And I know what you conceal and what you manifest. And whoever of you does that, then he
indeed has gone astray from the right Way. 60/Al-Mumtahanah-1
They are driving out the Messenger and yourselves from your land because you
believe in ALLAH C.C., your Lord.
Recite (read and explain to others) that which has been revealed to you of the Book
and keep up the Prayer.
Surely the Prayer keeps away from Al-Fahsh (to do what ALLAH C.C. prohibits) and Al-Munkar
(to deny what ALLAH C.C. commands).
Whoever obeys me, obeys ALLAH C.C., and whoever disobeys me, disobeys ALLAH C.C.
Whoever obeys the ruler, obeys me, and whoever disobeys the ruler, disobeys me. " (Sahih)

11G Network Servislerine izin verilmesi

11G ile birlikte yeni güvenlik ayarları geldi. Bunlardan biri de network erişim listesi (ACL -access control list), veritabanı sunucunuzun network kaynaklarına erişebilmesi için izin vermeniz gerekiyor, bu adımları aşağıda anlatmaya çalıştım. 10G’de sorunsuz çalışan mail gönderimleri 11G’ye upgrade den sonra çalışmamaya ve aşağıdaki hatayı vermeye başladı, eğer sizde de aynı sorun varsa kendinize uygun ayarlarla aşağıdaki adımları gerçekleştirebilirsiniz.

ORA-24247: network access denied by access control list (ACL)
ORA-06512: at “SYS.UTL_TCP”,
ORA-06512: at “SYS.UTL_TCP”,
ORA-06512: at “SYS.UTL_SMTP”,
ORA-06512: at “SYS.UTL_SMTP”,
ORA-06512: at “XXX”,
ORA-06512: at line 1
ADIM_1

{code class=”brush: xml;”}BEGIN
DBMS_NETWORK_ACL_ADMIN.CREATE_ACL (
acl => ‘Mail_Service.xml’,
description => ‘Mail ACL’,
principal => ‘Hak-verilecek-kullanıcı-yada-rol’,
is_grant => TRUE,
privilege => ‘connect’,
start_date => NULL,
end_date => NULL
);

commit ;
end;{/code}

ADIM_2

{code class=”brush: xml;”}BEGIN
DBMS_NETWORK_ACL_ADMIN.ADD_PRIVILEGE(
acl => ‘Mail_Service.xml’,
principal => ‘Hak-verilecek-kullanıcı-yada-rol’,
is_grant => true,
privilege => ‘connect’,
start_date => NULL,
end_date => NULL);
commit ;
end;{/code}
ADIM_3

{code class=”brush: xml;”}BEGIN
DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL(
acl => ‘Mail_Service.xml’,
host => ‘mail.sysdba.org’, –buraya IP de girebilirsiniz.
lower_port => 587,
upper_port => NULL);
COMMIT;
END;

örnek_2
BEGIN
DBMS_NETWORK_ACL_ADMIN.ASSIGN_ACL(
acl => ‘Web_Service.xml’, — öncesinde mail_service.xml de oldugu gibi xml dosyasının oluşturulması lazım.
host => ‘web.sysdba.org’, –buraya IP de girebilirsiniz.
lower_port => 80,
upper_port => NULL);
COMMIT;
END;{/code}
Çeşitli Sorgular
{code class=”brush: xml;”}COLUMN host FORMAT A30
COLUMN acl FORMAT A30

SELECT host, lower_port, upper_port, acl
FROM dba_network_acls;{/code}
{code class=”brush: xml;”}COLUMN acl FORMAT A30
COLUMN principal FORMAT A30

SELECT acl,
principal,
privilege,
is_grant,
TO_CHAR(start_date, ‘DD-MON-YYYY’) AS start_date,
TO_CHAR(end_date, ‘DD-MON-YYYY’) AS end_date
FROM dba_network_acl_privileges;{/code}
{code class=”brush: xml;”}COLUMN host FORMAT A30

SELECT host, lower_port, upper_port, privilege, status
FROM user_network_acl_privileges;{/code}
{code class=”brush: xml;”}COLUMN host FORMAT A30

SELECT host, lower_port, upper_port, privilege, status
FROM user_network_acl_privileges;{/code}

{jcomments on}

Copyright © 2015 Sysdba All Rights Reserved Web Designer