以下兩個過程呢,其實是輔助過程,一個是完成寫日志,一個是完成發郵件,在以后的程序中,可能會經常用到。
1、寫日志過程
name:sp_Write_log
parameter:textContext in varchar2 日志內容
create date:2003-06-01
creater:chen jiping
desc: •寫日志,把內容記到服務器指定目錄下
•必須配置Utl_file_dir初始化參數,并保證日志路徑與Utl_file_dir路徑一致或者是其中一個
create or replace PROCEDURE sp_Write_log(textContext VARCHAR2)
IS
file_handle UTL_FILE.file_type;
Write_content VARCHAR2(1024);
Write_file_name VARCHAR2(50);
BEGIN
--打開文件
--Write_file_name := rtrim(to_char(SYSDATE,'YYYY-MM-DD'))'.log';
Write_file_name := 'db108_alert.log';
file_handle := UTL_FILE.FOPEN('/u01/prodUCt/admin/ora81/logs',Write_file_name,'a');
Write_content := to_char(SYSDATE,'yyyy-mm-dd hh24:mi:ss')''textContext;
--寫文件
IF UTL_FILE.IS_OPEN(file_handle) THEN
UTL_FILE.PUT_LINE(file_handle,Write_content);
END IF;
--關閉文件
UTL_FILE.Fclose(file_handle);
EXCEPTION
WHEN OTHERS THEN
IF UTL_FILE.IS_OPEN(file_handle) THEN
UTL_FILE.Fclose(file_handle);
END IF;
END sp_Write_log;
2、發送Email的過程
name:sp_Send_mail
parameter: Rcpter in varchar2 接收者郵箱
Mail_Content in Varchar2 郵件內容
create date:2003-06-01
creater:chen jiping
desc: •發送郵件到指定郵箱
•只能指定一個郵箱,假如需要發送到多個郵箱,需要另外的輔助程序
create or replace procedure sp_send_mail(
Rcpter IN VARCHAR2,
Mail_Content IN VARCHAR2)
IS
conn utl_smtp.connection;
PROCEDURE send_header(NAME IN VARCHAR2, header IN VARCHAR2) AS
BEGIN
utl_smtp.write_data(conn, NAME ': ' header utl_tcp.CRLF);
END;
BEGIN
conn := utl_smtp.open_connection('smtp.ur.net.cn');
utl_smtp.helo(conn, 'Oracle');
utl_smtp.mail(conn, 'oracle info');
utl_smtp.rcpt(conn, Rcpter);
utl_smtp.open_data(conn);
send_header('From', 'Oracle Database');
send_header('To', '"Recipient" <'Rcpter'>');
send_header('Subject', 'Hello');
utl_smtp.write_data(conn, utl_tcp.CRLF Mail_Content);
utl_smtp.close_data(conn);
utl_smtp.quit(conn);
EXCEPTION
WHEN utl_smtp.transient_error OR utl_smtp.permanent_error THEN
BEGIN
utl_smtp.quit(conn);
EXCEPTION
WHEN utl_smtp.transient_error OR utl_smtp.permanent_error THEN
NULL; -- When the SMTP server is down or unavailable, we don't have
-- a connection to the server. The quit call will raise an
-- exception that we can ignore.
END;
raise_application_error(-20000,
'Failed to send mail due to the following error: ' SQLERRM);
END sp_send_mail;
3、監控數據庫關閉/啟動的觸發器
create or replace trigger TR_DB_SHUTDOWN
before shutdown ON DATABASE
DECLARE
msMsg VARCHAR2(500);
BEGIN
msMsg :='user 'ora_login_user' in 'ora_client_ip_address' ready shutdown database 'ora_database_name ' now';
sp_send_mail('urmail@mail.com',msMsg);
EXCEPTION
WHEN OTHERS THEN
sp_send_mail(' urmail@mail.com ',ora_database_name' shutdown error');
END;
說明:當數據庫關閉之前,發送Mail到指定郵箱
不要在關閉/啟動數據庫的觸發器中調用utl_file包寫文件,可能會導致BUG,引起數據庫不能啟動,假如實在有必要,則關閉數據庫與啟動數據庫不要使用同一個會話。
4、監控登錄用戶的觸發器
先需要建立一張表,用于存放登陸信息
create table LOG$INFORMATION
(
ID NUMBER(10),
USERNAME VARCHAR2(30),
LOGINTIME DATE,
TERMINAL VARCHAR2(50),
IPADRESS VARCHAR2(20),
OSUSER VARCHAR2(30),
MACHINE VARCHAR2(64),
PROGRAM VARCHAR2(64),
SID NUMBER,
SERIAL# NUMBER,
AUSID NUMBER
)
然后需要創建一個序列,才產生連續的序列號,根據序列的信息,可以更好的得到登錄的信息
create sequence SQ_LOGIN
minvalue 1
maxvalue 999999999
start with 1
increment by 1
cache 20;
最后創建觸發器,記載登錄信息
CREATE OR REPLACE TRIGGER TR_LOGIN_RECORD
AFTER logon ON DATABASE
DECLARE
mtsession v$session%ROWTYPE;
CURSOR cSession(iiQuerySid IN NUMBER) IS
SELECT * FROM v$session
WHERE audsid = iiQuerySid;
BEGIN
OPEN cSession(userenv('SESSIONID'));
FETCH cSession INTO mtSession;
IF cSession%FOUND THEN
INSERT INTO log$information(id,username,logintime,terminal,ipadress,osuser,machine,
program,sid,serial#,ausid)
VALUES(sq_login.nextval,USER,SYSDATE,mtSession.Terminal,
SYS_CONTEXT ('USERENV','IP_ADDRESS'),mtSession.Osuser,
mtSession.Machine,mtSession.Program,mtSession.Sid,mtSession.Serial#,userenv('SESSIONID'));
ELSE
sp_write_log('session信息錯誤:'SQLERRM);
raise_application_error(-20099,'登錄異常錯誤',FALSE);
END IF;
CLOSE cSession;
EXCEPTION
WHEN OTHERS THEN
sp_write_log('登記登錄信息錯誤:'SQLERRM);
RAISE;
END;
說明:這個觸發器監控所有登錄用戶,并把其信息存入到以上表中。
根據表中記載的信息,可以獲得所有登錄信息,用于審計用戶的登陸是否許可。
5、監控所有DDL的觸發器
當然,在此之前我們需要建立一張表,用來記錄所有的DDL操作的信息。
create table DDL$TRACE
(
LOGIN_USER VARCHAR2(30),
AUDSID NUMBER,
IPADDRESS VARCHAR2(20),
SCHEMA_USER VARCHAR2(30),
SCHEMA_OBJECT VARCHAR2(30),
DDL_TIME DATE,
DDL_SQL VARCHAR2(4000)
)
下面就是觸發器的主體,用來記錄審計所有的DDL操作。
CREATE OR REPLACE TRIGGER tr_trace_ddl
AFTER ddl
ON database
DECLARE
sql_text ora_name_list_t;
state_sql ddl$trace.ddl_sql%TYPE;
BEGIN
FOR i IN 1..ora_sql_txt(sql_text) LOOP
state_sql := state_sqlsql_text(i);
END LOOP;
INSERT INTO ddl$trace(login_user,audsid,ipaddress,
schema_user,schema_object,ddl_time,ddl_sql)
VALUES(ora_login_user,userenv('SESSIONID'),sys_context('userenv','ip_address'),
ora_dict_obj_owner,ora_dict_obj_name,SYSDATE,state_sql);
EXCEPTION
WHEN OTHERS THEN
sp_write_log('捕捉DDL語句異常錯誤:'SQLERRM);
END tr_trace_ddl;
說明:以上語句是監控整個數據庫的DDL語句,假如只想監控一個用戶的話,需要修改
ON database
為
ON uruser.schema
6、捕捉有需要的DML語句
對于某些非凡的表,可能需要記載DML語句,我們也需要創建一張表來記載這個信息:
create table CAPT$SQL
(
CAPT_TIME DATE,
USERNAME VARCHAR2(30),
AUDSID NUMBER,
CLIENT_IP VARCHAR2(20),
SQL_TEXT VARCHAR2(4000),
TABLE_NAME VARCHAR2(30),
OWNER VARCHAR2(30)
)
以下就是捕捉特定表的DML語句的觸發器
CREATE OR REPLACE TRIGGER tr_capt_sql
BEFORE DELETE OR INSERT OR UPDATE
ON mtamanager.emailbox
DECLARE
stmt VARCHAR2(4000);
sql_text ora_name_list_t;
BEGIN
FOR i IN 1..ora_sql_txt(sql_text) LOOP
stmt := stmt sql_text(i);
END LOOP;
INSERT INTO
capt$sql(CAPT_TIME,USERNAME,AUDSID,CLIENT_IP,SQL_TEXT,
TABLE_NAME,OWNER)
VALUES(sysdate,ora_login_user,userenv('SESSIONID'),
sys_context('userenv','ip_address'),stmt,'emailbox','mtamanager');
EXCEPTION
WHEN OTHERS THEN
pkgsys_manage.sp_write_log('捕捉DML語句異常錯誤:'SQLERRM);
END;
