[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-users] MySQL 4 with SSL
- Subject: Re: [cobalt-users] MySQL 4 with SSL
- From: "Ian" <cobalt@xxxxxxxxxxxxx>
- Date: Thu May 15 01:38:01 2003
- List-id: Mailing list for users to share thoughts on Sun Cobalt products. <cobalt-users.list.cobalt.com>
On 14 May 2003 at 17:54, René Mølsted wrote:
<snip>
> > Can I ask - how are you intending to use this ssl connection ?
> > Is it for a web site on the same server? Another client on the
> > network ? Another client on the internet ?
> It is intented for all three connections ;o)
There is not much you can do about connections from the server, apart
from encrypting data yourself. For websites with sensetive data, I
use gnupgp.
> > The reason I ask - I have seen nothing but problems with getting
> > mysql-ssl working, I ended up just using a secure tunnel - took
> > about five minutes to set up.
> How does secure tunnel works?
I use stunnel ( http://www.stunnel.org ).
It works in two modes: client and server.
Basically the server listens on a port you specify ( eg 3007 ) for
any SSL connections and passes them on unencrypted to another local
port you specify (in this case the MySQL port 3306 ).
The client listens on a local port ( eg 3006) for any unencrypted
connections, then creates a SSL connection to the server port (3007).
Stunnel is available as source code for Linux and as a precompiled
binary for windows. The latest version even runs as a service under
win2k.
You don't just have to use it for MySQL, it can provide secure access
to any service.
Regards
Ian
--