openssl support

openssl support

am 26.04.2003 10:55:53 von Arkadiusz Miskiewicz

Hi again,

When I specify --ssl then I expect SSL secured connection or
nothing (displaying error if such connection can't be established).

Right now if ssl can't be estabilished then unsecure connection
is used which seems really bad choice.

[root@maja certs]# mysql -u arekm -p -h db.sys....pl --ssl
Enter password:
Welcome to the MySQL monitor. Commands end with ; or \g.
Your MySQL connection id is 991 to server version: 4.0.12-log

Type 'help;' or '\h' for help. Type '\c' to clear the buffer.

mysql> status
--------------
mysql Ver 12.18 Distrib 4.0.12, for pld-linux-gnu (i686)

Connection id: 991
Current database:
Current user: arekm@something.pl
SSL: Not in use
Current pager: stdout
Using outfile: ''
Server version: 4.0.12-log
Protocol version: 10
Connection: db.sys....pl via TCP/IP
Client characterset: latin1
Server characterset: latin1
TCP port: 3306
Uptime: 11 min 44 sec

Threads: 50 Questions: 16023 Slow queries: 6180 Opens: 212 Flush tables: 1 Open tables: 206 Queries per second avg: 22.760
--------------

mysql>

Second thing are client user certificates. I need only crypted
connection and no key/cert authentification (just normal user/pass
auth). Why I need to specify ssl-key and ssl-cert on client side
in that case? These are only needed to achieve key/cert
authentification (AFAIK) ... just like in web browsers.

Thanks for great db server.
--
Arkadiusz Mi¶kiewicz CS at FoE, Wroclaw University of Technology
arekm@sse.pl AM2-6BONE, 1024/3DB19BBD, arekm(at)ircnet, PLD/Linux

--
MySQL Bugs Mailing List
For list archives: http://lists.mysql.com/bugs
To unsubscribe: http://lists.mysql.com/bugs?unsub=gcdmb-bugs@m.gmane.org