The following recommendations apply to database access protection in general, regardless of the specific database that you use:
· Whenever possible, use SAP tools to access the data in the database. For more information, see Access Using Database Tools.
· Change the default password for SAPR3 or SAP<SAPSID> ( <SID>OFR on AS/400).
· Do not grant any access for other DBA users to the following tables:
¡ USR* tables
¡ T000 table (no write access)
¡ General tables (such as SAPUSER or RFCDES) or application-specific tables (such as PA* or HCL*)