Yes, you can try the Mysql Administrator from your server at home, or the mysql command line tool. Then you can test the tunnel at 3306.
Also remember to add authorization in mysql for the user you are using. From the mysql-server point of view, you are connection locally (i.e. dbu...@localhost or [email protected]) Two-sided ssl is conceptually the same I think. In both cases you set up a tunnel. This is assuming Mysql cannot use two-sided ssl for its connection. I use two-sided-ssh for connecting over ssh to avoid dictionary attacks for username/passwords and I disabled logging in using username/password. There is a ssh-keygen tool you can use to generate the key-pairs. This is off-topic, so let's move of the list. Reinier Van: Benjamin Fleischer [mailto:[email protected]] Verzonden: woensdag 13 mei 2009 23:14 Aan: Reinier Balt CC: track-discuss Onderwerp: Re: [Tracks-discuss] ssh mysql tunnel re: client tools, you mean a locally installed mysql binary, and running 'use database' etc? Besides tunneling over ssh, the only other way to have a secure connection (unencrypted tcp sql commands just seems dangerous to me) is to have an ssl certificate signed at both ends, is that correct? I know I can self-sign a certificate on my local computer. It seemed more involved to me than tunneling. I tried tunnling with putty and got what seems to be the correct connection 127.0.0.1:3306 0.0.0.0 listening 127.0.0.1:3306 127.0.0.1:51171 time_wait anyhow, I know this is a little off topic so I'll stop pinging the list about it. -Benjamin On Wed, May 13, 2009 at 3:38 PM, Reinier Balt <[email protected]> wrote: Did you try to access your mysql database through the mysql client tools? Just to make sure your tunnel is working Btw, using mysql over ssh will hurt performance a lot. I tried it too in the past. Reinier Van: [email protected] [mailto:[email protected]] Namens Benjamin Fleischer Verzonden: woensdag 13 mei 2009 22:22 Aan: track-discuss Onderwerp: [Tracks-discuss] ssh mysql tunnel I'm running my server at home but would like to use the mysql database on my web host (which I don't have the resources to run tracks on, but this way, if my computer's not up, I can still get my data, and I can use the script to add via sms). I know on windows I read I can use plink or putty to create an ssh session and tunnel into my database through that without having to create a mysql user with privili...@% . So, I tried plink -C -v -L localhost:3307:localhost:3306 [email protected] and logged in (3307 because I have another mysql instance on 3306 right now) In database.yml I set production: adapter: mysql database: tracks host: localhost username: tracks password: password port: 3307 but it doesn't work In netstat -na I get TCP [::1]:3307 [::]:0 listening I'm using Instant Rails fwiw. The errors starts with app/models/tag.rb:7: warning already initialized constant DELIMITER, then line 8 and JOIN_DELIMITER Exiting then mysql_adapter.rb:548 in real_connect, lost connection to mysql server during query Any ideas? -Benjamin
_______________________________________________ Tracks-discuss mailing list [email protected] http://lists.rousette.org.uk/mailman/listinfo/tracks-discuss
