On Tue, 2003-01-14 at 20:47, Jeremy Zawodny wrote: > > has anyone been able to setup ssl secure replication for mysql? > > I don't believe you can do that yet. There's now way to specify the > necessary credentials in the slave setup. > > > how do i know whether the replication is actually done over ssl?
There are many variables about SSL shown in "SHOW STATUS" output. They also include cipher currently in use and other similar stuff. This is right way to detect SSL usage because SSL has also ciphers which have no actual encryption at all. Paranoid people must verify if key length in use is long enough. Also I must note that using SSL without having appropriate ACL structure is nonsense. You must use GRANT blahblah REQUIRE SSL CIPHER blahblah. Then MySQL server just won't allow nonencrpyted connection. Otherwise default fallback mechanism will work. > You'd have to sniff the network traffic and see. This is always must be done :) > > there seem to be a lack of documentation on this part. > > Mostly because it can't be done (that I'm aware of). I think so too. Tõnu --------------------------------------------------------------------- Before posting, please check: http://www.mysql.com/manual.php (the manual) http://lists.mysql.com/ (the list archive) To request this thread, e-mail <[EMAIL PROTECTED]> To unsubscribe, e-mail <[EMAIL PROTECTED]> Trouble unsubscribing? Try: http://lists.mysql.com/php/unsubscribe.php
