Hi Jyri, >> Please review the changes made to the MySQL-OpenSSL ARC writeup. > > >> MySQL source provides the Certificate Authority(CA) >> certificate, the server public key and the server private key >> to start the MySQL server so that it allows the clients to >> connect via SSL. > > Not clear to me what you mean by "MySQL source provides ..."? > It sounds as if the CA cert and server keys are embedded in the > source? > That can't be it though. But then what does the above paragraph mean?
They aren't embedded in the source - the test suite provides a set of suitable files so that the test suite can be executed by a user/ developer without them having to produce their own certificates just to get the test suite to pass. When it comes to deploying their own server, users are expected to provide either own self-signed certs, or provide a suitable cert from Verisign or another CA. MC -- Martin 'MC' Brown, mc at mcslp.com and mc.brown at sun.com Technical Writer, Database Group, Sun Microsystems Everything MCslp: http://planet.mcslp.com
